Unable to handle kernel paging request at virtual address dfff800000000006
KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037]
Mem abort info:
  ESR = 0x0000000096000005
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x05: level 1 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000
  CM = 0, WnR = 0, TnD = 0, TagAccess = 0
  GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0
[dfff800000000006] address between user and kernel address ranges
Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP
Modules linked in:
CPU: 1 UID: 0 PID: 6520 Comm: kworker/1:6 Not tainted 6.13.0-rc2-syzkaller-g2e7aff49b5da #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Workqueue: events cleanup_bearer
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : read_pnet include/net/net_namespace.h:392 [inline]
pc : sock_net include/net/sock.h:655 [inline]
pc : cleanup_bearer+0x1c0/0x298 net/tipc/udp_media.c:820
lr : read_pnet include/net/net_namespace.h:392 [inline]
lr : sock_net include/net/sock.h:655 [inline]
lr : cleanup_bearer+0x1bc/0x298 net/tipc/udp_media.c:820
sp : ffff8000a0877aa0
x29: ffff8000a0877aa0 x28: ffff80008f97d600 x27: 1fffe000189a2b5a
x26: ffff0000c1080408 x25: ffff0000c4d15ec4 x24: dfff800000000000
x23: ffff0000c4d15ac0 x22: ffff0000d3da3b18 x21: 1fffe0001a7b4761
x20: 0000000000000030 x19: ffff0000d3da3b18 x18: 1fffe000366c5e7e
x17: ffff80008f97d000 x16: ffff800080bedcc0 x15: 0000000000000001
x14: 1ffff0001410ef00 x13: 0000000000000000 x12: 0000000000000000
x11: ffff70001410ef01 x10: 1ffff0001410ef00 x9 : 7b72131a5e8ba400
x8 : 0000000000000006 x7 : ffff8000803ce76c x6 : 0000000000000000
x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff80008b6984a4
x2 : 0000000000000001 x1 : 0000000000000008 x0 : 0000000000000001
Call trace:
 read_pnet include/net/net_namespace.h:392 [inline] (P)
 sock_net include/net/sock.h:655 [inline] (P)
 cleanup_bearer+0x1c0/0x298 net/tipc/udp_media.c:820 (P)
 read_pnet include/net/net_namespace.h:392 [inline] (L)
 sock_net include/net/sock.h:655 [inline] (L)
 cleanup_bearer+0x1bc/0x298 net/tipc/udp_media.c:820 (L)
 process_one_work+0x7a8/0x15cc kernel/workqueue.c:3229
 process_scheduled_works kernel/workqueue.c:3310 [inline]
 worker_thread+0x97c/0xeec kernel/workqueue.c:3391
 kthread+0x288/0x310 kernel/kthread.c:389
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862
Code: f9400288 9100c114 9414cacf d343fe88 (38786908) 
---[ end trace 0000000000000000 ]---
----------------
Code disassembly (best guess):
   0:	f9400288 	ldr	x8, [x20]
   4:	9100c114 	add	x20, x8, #0x30
   8:	9414cacf 	bl	0x532b44
   c:	d343fe88 	lsr	x8, x20, #3
* 10:	38786908 	ldrb	w8, [x8, x24] <-- trapping instruction