program:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="4000000010006622000000000000000002000000050d5a8499e1710ead614db9662494fe0f7027ceea4b8c779f292ffd58e51325b3cac657e38ba4bb849e73c17bba9abaa8bd087a82691f0587"], 0x40}}, 0x840) (async)
r0 = io_uring_setup(0xeb, &(0x7f0000000380)={0x0, 0xc572, 0x2, 0x0, 0x21f})
io_uring_enter(r0, 0x50d8, 0x1f10, 0x4f, 0x0, 0x0) (async)
socket$netlink(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0) (async, rerun: 32)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000100)={[{@dioread_nolock}, {@norecovery}, {@resgid}, {@nojournal_checksum}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@grpid}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@grpid}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}], [{@subj_user={'subj_user', 0x3d, '('}}, {@measure}, {@smackfsfloor}, {@appraise_type}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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") (async, rerun: 32)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000140)='./file1\x00')
r5 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x2)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r5, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000001c0)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x18, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)=ANY=[@ANYBLOB="20010000", @ANYRES16=r2, @ANYBLOB="050000000000000000000f00000008000300", @ANYRES32=r4, @ANYBLOB="47000e00800000000802110000000802110000015050505050500000000000000000000064000000000602020202020204060000000000000602000025030034003c040106b80400080026006c09000008000c006400000008000d0000000000a2000f00329c"], 0x120}, 0x1, 0x0, 0x0, 0x90}, 0x0)

[   75.085110][ T4682] Bluetooth: hci0: command tx timeout
[   75.193385][ T5338] loop0: detected capacity change from 0 to 1024
[   75.219601][ T5335] BUG: kernel NULL pointer dereference, address: 0000000000000000
[   75.222652][ T5335] #PF: supervisor instruction fetch in kernel mode
[   75.225357][ T5335] #PF: error_code(0x0010) - not-present page
[   75.227954][ T5335] PGD 0 P4D 0 
[   75.229454][ T5335] Oops: Oops: 0010 [#1] SMP KASAN NOPTI
[   75.231821][ T5335] CPU: 0 UID: 0 PID: 5335 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.235762][ T5335] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.239883][ T5335] RIP: 0010:0x0
[   75.241315][ T5335] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.244413][ T5335] RSP: 0018:ffffc9000ea77958 EFLAGS: 00010293
[   75.247071][ T5335] RAX: ffffffff81fbd4f4 RBX: 1ffffd40000fe640 RCX: ffff88803f2da4c0
[   75.250417][ T5335] RDX: 0000000000000000 RSI: ffffea00007f3200 RDI: ffff888033a9fc40
[   75.253708][ T5335] RBP: ffffc9000ea77a18 R08: ffffea00007f3207 R09: 1ffffd40000fe640
[   75.257356][ T5335] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.261553][ T5335] R13: ffffea00007f3208 R14: ffffea00007f3200 R15: 1ffffd40000fe641
[   75.264981][ T5335] FS:  00007ffb8557b6c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000
[   75.269068][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.272029][ T5335] CR2: ffffffffffffffd6 CR3: 0000000041142000 CR4: 0000000000352ef0
[   75.276141][ T5335] Call Trace:
[   75.277935][ T5335]  <TASK>
[   75.279444][ T5335]  filemap_read_folio+0x117/0x380
[   75.281700][ T5335]  ? __pfx_filemap_read_folio+0x10/0x10
[   75.284185][ T5335]  do_read_cache_folio+0x358/0x590
[   75.286405][ T5335]  freader_get_folio+0x3c7/0x830
[   75.288684][ T5335]  freader_fetch+0xa3/0x750
[   75.290505][ T5335]  __build_id_parse+0x133/0x7d0
[   75.292588][ T5335]  ? __pfx___build_id_parse+0x10/0x10
[   75.294781][ T5335]  procfs_procmap_ioctl+0x76f/0xce0
[   75.296892][ T5335]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.299382][ T5335]  ? __fget_files+0x2a/0x420
[   75.301428][ T5335]  ? __fget_files+0x2a/0x420
[   75.303469][ T5335]  ? __fget_files+0x3a0/0x420
[   75.305514][ T5335]  ? __fget_files+0x2a/0x420
[   75.307672][ T5335]  ? bpf_lsm_file_ioctl+0x9/0x20
[   75.309908][ T5335]  ? __pfx_procfs_procmap_ioctl+0x10/0x10
[   75.312358][ T5335]  __se_sys_ioctl+0xfc/0x170
[   75.314383][ T5335]  do_syscall_64+0xec/0xf80
[   75.316368][ T5335]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.318995][ T5335]  ? trace_irq_disable+0x37/0x100
[   75.321379][ T5335]  ? clear_bhb_loop+0x60/0xb0
[   75.323544][ T5335]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.326364][ T5335] RIP: 0033:0x7ffb8478f7c9
[   75.328398][ T5335] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.336847][ T5335] RSP: 002b:00007ffb8557b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.340752][ T5335] RAX: ffffffffffffffda RBX: 00007ffb849e5fa0 RCX: 00007ffb8478f7c9
[   75.344226][ T5335] RDX: 0000200000000180 RSI: 00000000c0686611 RDI: 000000000000000a
[   75.347617][ T5335] RBP: 00007ffb84813f91 R08: 0000000000000000 R09: 0000000000000000
[   75.351076][ T5335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.354565][ T5335] R13: 00007ffb849e6038 R14: 00007ffb849e5fa0 R15: 00007fff512c0758
[   75.357928][ T5335]  </TASK>
[   75.359262][ T5335] Modules linked in:
[   75.360945][ T5335] CR2: 0000000000000000
[   75.362823][ T5335] ---[ end trace 0000000000000000 ]---
[   75.365136][ T5335] RIP: 0010:0x0
[   75.366746][ T5335] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[   75.369934][ T5335] RSP: 0018:ffffc9000ea77958 EFLAGS: 00010293
[   75.372463][ T5335] RAX: ffffffff81fbd4f4 RBX: 1ffffd40000fe640 RCX: ffff88803f2da4c0
[   75.375704][ T5335] RDX: 0000000000000000 RSI: ffffea00007f3200 RDI: ffff888033a9fc40
[   75.379085][ T5335] RBP: ffffc9000ea77a18 R08: ffffea00007f3207 R09: 1ffffd40000fe640
[   75.382139][ T5335] R10: dffffc0000000000 R11: 0000000000000000 R12: 0000000000000000
[   75.385371][ T5335] R13: ffffea00007f3208 R14: ffffea00007f3200 R15: 1ffffd40000fe641
[   75.388483][ T5335] FS:  00007ffb8557b6c0(0000) GS:ffff88808d414000(0000) knlGS:0000000000000000
[   75.391721][ T5335] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   75.394401][ T5335] CR2: ffffffffffffffd6 CR3: 0000000041142000 CR4: 0000000000352ef0
[   75.397696][ T5335] Kernel panic - not syncing: Fatal exception
[   75.400632][ T5335] Kernel Offset: disabled
[   75.402546][ T5335] Rebooting in 86400 seconds..