program: syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@resuid}, {@abort}, {@noinit_itable}, {@norecovery}, {@discard}, {@lazytime}, {@nogrpid}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x567, &(0x7f00000009c0)="$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") (async) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0) (async) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) chdir(&(0x7f00000003c0)='./bus\x00') r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2) (async) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000640)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58) setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f00000001c0)="4b6a1bc33f6364cd8cfa6f0035e78321403825b1f336e4ba06f1dd123809ae8b32db03e4f1373a42a7a66637065c3578", 0x30) (async) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00') r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r3, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x14}, 0x7}, 0x1c) (async) r4 = socket$kcm(0x10, 0x2, 0x4) setresuid(0x0, 0xee00, 0x0) sendmsg$kcm(r4, &(0x7f0000000240)={0x0, 0xf0ffffff, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400d0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) [ 58.040159][ T5351] overlayfs: failed to resolve './file0': -2 [ 58.045630][ T5350] loop0: detected capacity change from 0 to 1024 [ 58.070295][ T5350] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 58.093029][ T5352] BUG: kernel NULL pointer dereference, address: 0000000000000000 [ 58.096403][ T5352] #PF: supervisor instruction fetch in kernel mode [ 58.099399][ T5352] #PF: error_code(0x0010) - not-present page [ 58.102303][ T5352] PGD 0 P4D 0 [ 58.104237][ T5352] Oops: Oops: 0010 [#1] SMP KASAN NOPTI [ 58.106672][ T5352] CPU: 0 UID: 60928 PID: 5352 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) [ 58.110575][ T5352] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 58.115062][ T5352] RIP: 0010:0x0 [ 58.116601][ T5352] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 58.119796][ T5352] RSP: 0018:ffffc9000d5f7998 EFLAGS: 00010293 [ 58.122446][ T5352] RAX: ffffffff81f8e634 RBX: 1ffffd4000265f88 RCX: ffff88801f61a440 [ 58.126102][ T5352] RDX: 0000000000000000 RSI: ffffea000132fc40 RDI: ffff888042f5f000 [ 58.129871][ T5352] RBP: ffffc9000d5f7a50 R08: ffffea000132fc47 R09: 1ffffd4000265f88 [ 58.133236][ T5352] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000 [ 58.136671][ T5352] R13: ffffea000132fc48 R14: ffffea000132fc40 R15: 1ffffd4000265f89 [ 58.140248][ T5352] FS: 00007f56a4d5b6c0(0000) GS:ffff88808d210000(0000) knlGS:0000000000000000 [ 58.144155][ T5352] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 58.147126][ T5352] CR2: ffffffffffffffd6 CR3: 0000000042e06000 CR4: 0000000000352ef0 [ 58.150459][ T5352] Call Trace: [ 58.151951][ T5352] [ 58.153325][ T5352] filemap_read_folio+0x117/0x380 [ 58.155732][ T5352] ? __pfx_filemap_read_folio+0x10/0x10 [ 58.158206][ T5352] ? filemap_add_folio+0x1af/0x270 [ 58.160495][ T5352] do_read_cache_folio+0x350/0x590 [ 58.162662][ T5352] freader_get_folio+0x3c4/0x830 [ 58.164814][ T5352] freader_fetch+0xa3/0x5d0 [ 58.166858][ T5352] __build_id_parse+0x133/0x7d0 [ 58.169055][ T5352] ? __pfx___build_id_parse+0x10/0x10 [ 58.171705][ T5352] ? rcu_is_watching+0x15/0xb0 [ 58.173847][ T5352] ? find_vma+0xe7/0x160 [ 58.175765][ T5352] ? __pfx_find_vma+0x10/0x10 [ 58.177822][ T5352] ? query_matching_vma+0x1b2/0x1d0 [ 58.180053][ T5352] procfs_procmap_ioctl+0x7f0/0xce0 [ 58.182359][ T5352] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 58.184802][ T5352] ? __fget_files+0x2a/0x420 [ 58.186824][ T5352] ? __fget_files+0x3a0/0x420 [ 58.188904][ T5352] ? __fget_files+0x2a/0x420 [ 58.190929][ T5352] ? bpf_lsm_file_ioctl+0x9/0x20 [ 58.193180][ T5352] ? __pfx_procfs_procmap_ioctl+0x10/0x10 [ 58.195880][ T5352] __se_sys_ioctl+0xfc/0x170 [ 58.198126][ T5352] do_syscall_64+0xfa/0x3b0 [ 58.200258][ T5352] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.202899][ T5352] ? clear_bhb_loop+0x60/0xb0 [ 58.204898][ T5352] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.207644][ T5352] RIP: 0033:0x7f56a3f8ebe9 [ 58.210074][ T5352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 58.219406][ T5352] RSP: 002b:00007f56a4d5b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 58.223666][ T5352] RAX: ffffffffffffffda RBX: 00007f56a41b6180 RCX: 00007f56a3f8ebe9 [ 58.227004][ T5352] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 0000000000000007 [ 58.230382][ T5352] RBP: 00007f56a4011e19 R08: 0000000000000000 R09: 0000000000000000 [ 58.233716][ T5352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 58.237098][ T5352] R13: 00007f56a41b6218 R14: 00007f56a41b6180 R15: 00007ffdf5fe96c8 [ 58.240511][ T5352] [ 58.241894][ T5352] Modules linked in: [ 58.243584][ T5352] CR2: 0000000000000000 [ 58.245429][ T5352] ---[ end trace 0000000000000000 ]--- [ 58.247816][ T5352] RIP: 0010:0x0 [ 58.249416][ T5352] Code: Unable to access opcode bytes at 0xffffffffffffffd6. [ 58.252595][ T5352] RSP: 0018:ffffc9000d5f7998 EFLAGS: 00010293 [ 58.255294][ T5352] RAX: ffffffff81f8e634 RBX: 1ffffd4000265f88 RCX: ffff88801f61a440 [ 58.258744][ T5352] RDX: 0000000000000000 RSI: ffffea000132fc40 RDI: ffff888042f5f000 [ 58.262279][ T5352] RBP: ffffc9000d5f7a50 R08: ffffea000132fc47 R09: 1ffffd4000265f88 [ 58.265862][ T5352] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000 [ 58.269250][ T5352] R13: ffffea000132fc48 R14: ffffea000132fc40 R15: 1ffffd4000265f89 [ 58.272551][ T5352] FS: 00007f56a4d5b6c0(0000) GS:ffff88808d210000(0000) knlGS:0000000000000000 [ 58.276467][ T5352] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 58.279399][ T5352] CR2: ffffffffffffffd6 CR3: 0000000042e06000 CR4: 0000000000352ef0 [ 58.282969][ T5352] Kernel panic - not syncing: Fatal exception [ 58.286085][ T5352] Kernel Offset: disabled [ 58.288048][ T5352] Rebooting in 86400 seconds..