program:
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBMETA(r0, 0x4b62, &(0x7f0000000180))
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x10, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1ab92b}, {0x85, 0x0, 0x0, 0x8}, {0x4}}, {{0x5, 0x0, 0x4, 0x9, 0x0, 0x1, 0x2000}}, [@call={0x85, 0x0, 0x0, 0xcd}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x9}, {0x85, 0x0, 0x0, 0xa4}}}, &(0x7f0000000980)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x2a, 0x60000007, &(0x7f0000000100)="feff03076844babeb89e14f086ddfee0ffff00febabec44277fb86dd1402e000030c62079f4b4d2f87e5feca6aab055013f2325f1a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff4000000000000000000", 0x0, 0xfe, 0x60000000, 0x0, 0x5a0e}, 0x2c)
r3 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r3, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x9, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x25}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x80)

[   86.247331][ T5347] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   86.250593][ T5347] #PF: supervisor instruction fetch in kernel mode
[   86.252926][ T5347] #PF: error_code(0x0010) - not-present page
[   86.255085][ T5347] PGD 0 P4D 0 
[   86.256578][ T5347] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[   86.258793][ T5347] CPU: 0 UID: 0 PID: 5347 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   86.262738][ T5347] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.267386][ T5347] RIP: 0010:0x0
[   86.268830][ T5347] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   86.271954][ T5347] RSP: 0018:ffffc9000e447958 EFLAGS: 00010287
[   86.274439][ T5347] RAX: ffffffff81fbd4f4 RBX: 1ffffd40002a64b8 RCX: 0000000000100000
[   86.277827][ T5347] RDX: ffffc90021703000 RSI: ffffea00015325c0 RDI: ffff88803396d000
[   86.281377][ T5347] RBP: ffffc9000e447a18 R08: ffffea00015325c7 R09: 1ffffd40002a64b8
[   86.285259][ T5347] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   86.288811][ T5347] R13: ffffea00015325c8 R14: ffffea00015325c0 R15: 1ffffd40002a64b9
[   86.292265][ T5347] FS:  00007fe0647896c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000
[   86.296164][ T5347] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.299078][ T5347] CR2: ffffffffffffffd6 CR3: 0000000041fbc000 CR4: 0000000000352ef0
[   86.302595][ T5347] Call Trace:
[   86.304028][ T5347]  <TASK>
[   86.305056][ T5347]  filemap_read_folio+0x117/0x380
[   86.307077][ T5347]  ? __pfx_filemap_read_folio+0x10/0x10
[   86.309552][ T5347]  do_read_cache_folio+0x358/0x590
[   86.311891][ T5347]  freader_get_folio+0x3c7/0x830
[   86.314174][ T5347]  freader_fetch+0xa3/0x750
[   86.316232][ T5347]  __build_id_parse+0x133/0x7d0
[   86.318347][ T5347]  ? __pfx___build_id_parse+0x10/0x10
[   86.320550][ T5347]  procfs_procmap_ioctl+0x76f/0xce0
[   86.322661][ T5347]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   86.324921][ T5347]  ? __fget_files+0x2a/0x420
[   86.326791][ T5347]  ? __fget_files+0x2a/0x420
[   86.328769][ T5347]  ? __fget_files+0x3a0/0x420
[   86.330668][ T5347]  ? __fget_files+0x2a/0x420
[   86.332634][ T5347]  ? bpf_lsm_file_ioctl+0x9/0x20
[   86.334602][ T5347]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   86.337148][ T5347]  __se_sys_ioctl+0xfc/0x170
[   86.339244][ T5347]  do_syscall_64+0xec/0xf80
[   86.341291][ T5347]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.343991][ T5347]  ? trace_irq_disable+0x37/0x100
[   86.346010][ T5347]  ? clear_bhb_loop+0x60/0xb0
[   86.347961][ T5347]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   86.350461][ T5347] RIP: 0033:0x7fe06398f7c9
[   86.352305][ T5347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   86.360718][ T5347] RSP: 002b:00007fe064789038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   86.364304][ T5347] RAX: ffffffffffffffda RBX: 00007fe063be6090 RCX: 00007fe06398f7c9
[   86.367858][ T5347] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000006
[   86.371158][ T5347] RBP: 00007fe063a13f91 R08: 0000000000000000 R09: 0000000000000000
[   86.374617][ T5347] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   86.377599][ T5347] R13: 00007fe063be6128 R14: 00007fe063be6090 R15: 00007ffc2f553258
[   86.380661][ T5347]  </TASK>
[   86.381962][ T5347] Modules linked in:
[   86.383428][ T5347] CR2: 0000000000000000
[   86.384954][ T5347] ---[ end trace 0000000000000000 ]---
[   86.386967][ T5347] RIP: 0010:0x0
[   86.388476][ T5347] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   86.391709][ T5347] RSP: 0018:ffffc9000e447958 EFLAGS: 00010287
[   86.394662][ T5347] RAX: ffffffff81fbd4f4 RBX: 1ffffd40002a64b8 RCX: 0000000000100000
[   86.398268][ T5347] RDX: ffffc90021703000 RSI: ffffea00015325c0 RDI: ffff88803396d000
[   86.401458][ T5347] RBP: ffffc9000e447a18 R08: ffffea00015325c7 R09: 1ffffd40002a64b8
[   86.404518][ T5347] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   86.407320][ T5347] R13: ffffea00015325c8 R14: ffffea00015325c0 R15: 1ffffd40002a64b9
[   86.410533][ T5347] FS:  00007fe0647896c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000
[   86.414380][ T5347] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   86.417138][ T5347] CR2: ffffffffffffffd6 CR3: 0000000041fbc000 CR4: 0000000000352ef0
[   86.420141][ T5347] Kernel panic - not syncing: Fatal exception
[   86.423043][ T5347] Kernel Offset: disabled
[   86.424729][ T5347] Rebooting in 86400 seconds..