program:
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000100)={0x0, 0x0, 0x9, 0x10, 0x200, &(0x7f0000000180)="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"})
r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
fchown(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e1f0a"], 0x22)

[   75.049614][ T5322] Bluetooth: hci0: command tx timeout
[   75.083172][ T5341] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   75.086522][ T5341] #PF: supervisor instruction fetch in kernel mode
[   75.089225][ T5341] #PF: error_code(0x0010) - not-present page
[   75.091913][ T5341] PGD 0 P4D 0 
[   75.094319][ T5341] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[   75.101877][ T5341] CPU: 0 UID: 0 PID: 5341 Comm: syz.0.0 Not tainted 6.16.0-rc4-syzkaller-00286-gc435a4f487e8 #0 PREEMPT(full) 
[   75.108610][ T5341] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.113017][ T5341] RIP: 0010:0x0
[   75.114570][ T5341] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.117671][ T5341] RSP: 0018:ffffc9000eeaf998 EFLAGS: 00010283
[   75.120128][ T5341] RAX: ffffffff81f85ac4 RBX: 1ffffd4000268c98 RCX: 0000000000100000
[   75.123399][ T5341] RDX: ffffc9000de52000 RSI: ffffea00013464c0 RDI: ffff88803e5f5700
[   75.126688][ T5341] RBP: ffffc9000eeafa50 R08: ffffea00013464c7 R09: 1ffffd4000268c98
[   75.129930][ T5341] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.133228][ T5341] R13: ffffea00013464c8 R14: ffffea00013464c0 R15: 1ffffd4000268c99
[   75.136571][ T5341] FS:  00007ff7b841c6c0(0000) GS:ffff88808d21c000(0000) knlGS:0000000000000000
[   75.140233][ T5341] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.142993][ T5341] CR2: ffffffffffffffd6 CR3: 000000004456a000 CR4: 0000000000352ef0
[   75.146345][ T5341] Call Trace:
[   75.147824][ T5341]  <TASK>
[   75.149079][ T5341]  filemap_read_folio+0x117/0x380
[   75.151330][ T5341]  ? __pfx_filemap_read_folio+0x10/0x10
[   75.153650][ T5341]  ? filemap_add_folio+0x1af/0x270
[   75.155814][ T5341]  do_read_cache_folio+0x350/0x590
[   75.157924][ T5341]  freader_get_folio+0x3c4/0x830
[   75.159931][ T5341]  freader_fetch+0xa3/0x5d0
[   75.161854][ T5341]  __build_id_parse+0x133/0x7d0
[   75.163906][ T5341]  ? __pfx___build_id_parse+0x10/0x10
[   75.166179][ T5341]  ? find_vma+0xe7/0x160
[   75.167986][ T5341]  ? __pfx_find_vma+0x10/0x10
[   75.169979][ T5341]  ? query_matching_vma+0x1b2/0x1d0
[   75.172250][ T5341]  procfs_procmap_ioctl+0x7f0/0xce0
[   75.174377][ T5341]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.176561][ T5341]  ? __fget_files+0x2a/0x420
[   75.178537][ T5341]  ? __fget_files+0x2a/0x420
[   75.180335][ T5341]  ? __fget_files+0x3a0/0x420
[   75.182474][ T5341]  ? __fget_files+0x2a/0x420
[   75.184493][ T5341]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.186638][ T5341]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.189019][ T5341]  __se_sys_ioctl+0xf9/0x170
[   75.191009][ T5341]  do_syscall_64+0xfa/0x3b0
[   75.193060][ T5341]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.195151][ T5341]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.197682][ T5341]  ? clear_bhb_loop+0x60/0xb0
[   75.199281][ T5341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.201582][ T5341] RIP: 0033:0x7ff7b758e929
[   75.203433][ T5341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.211844][ T5341] RSP: 002b:00007ff7b841c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.215704][ T5341] RAX: ffffffffffffffda RBX: 00007ff7b77b5fa0 RCX: 00007ff7b758e929
[   75.219129][ T5341] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000004
[   75.222656][ T5341] RBP: 00007ff7b7610b39 R08: 0000000000000000 R09: 0000000000000000
[   75.225995][ T5341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.229127][ T5341] R13: 0000000000000000 R14: 00007ff7b77b5fa0 R15: 00007ffcd2f812c8
[   75.232276][ T5341]  </TASK>
[   75.233538][ T5341] Modules linked in:
[   75.235174][ T5341] CR2: 0000000000000000
[   75.236911][ T5341] ---[ end trace 0000000000000000 ]---
[   75.239202][ T5341] RIP: 0010:0x0
[   75.240699][ T5341] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.243933][ T5341] RSP: 0018:ffffc9000eeaf998 EFLAGS: 00010283
[   75.246712][ T5341] RAX: ffffffff81f85ac4 RBX: 1ffffd4000268c98 RCX: 0000000000100000
[   75.250124][ T5341] RDX: ffffc9000de52000 RSI: ffffea00013464c0 RDI: ffff88803e5f5700
[   75.253401][ T5341] RBP: ffffc9000eeafa50 R08: ffffea00013464c7 R09: 1ffffd4000268c98
[   75.256700][ T5341] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.259897][ T5341] R13: ffffea00013464c8 R14: ffffea00013464c0 R15: 1ffffd4000268c99
[   75.263295][ T5341] FS:  00007ff7b841c6c0(0000) GS:ffff88808d21c000(0000) knlGS:0000000000000000
[   75.267019][ T5341] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.269667][ T5341] CR2: ffffffffffffffd6 CR3: 000000004456a000 CR4: 0000000000352ef0
[   75.273124][ T5341] Kernel panic - not syncing: Fatal exception
[   75.276026][ T5341] Kernel Offset: disabled
[   75.277900][ T5341] Rebooting in 86400 seconds..