Unable to handle kernel NULL pointer dereference at virtual address 0000000000000032 Mem abort info: ESR = 0x0000000096000005 EC = 0x25: DABT (current EL), IL = 32 bits SET = 0, FnV = 0 EA = 0, S1PTW = 0 FSC = 0x05: level 1 translation fault Data abort info: ISV = 0, ISS = 0x00000005 CM = 0, WnR = 0 user pgtable: 4k pages, 48-bit VAs, pgdp=0000000107b0f000 [0000000000000032] pgd=0000000000000000, p4d=0000000000000000 Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP Modules linked in: CPU: 0 PID: 2522 Comm: syz-executor.0 Not tainted 6.1.0-rc6-syzkaller-32662-g6d464646530f #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/30/2022 pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : rose_transmit_link+0x24/0x32c net/rose/rose_link.c:266 lr : rose_transmit_link+0x24/0x32c net/rose/rose_link.c:263 sp : ffff80001f9cbb30 x29: ffff80001f9cbb30 x28: 00000000002e0003 x27: 0000000000000000 x26: ffff000137bb8888 x25: 0000000000000000 x24: 0000000000000001 x23: 0000000000000000 x22: 0000000000000013 x21: ffff0000fa22a45a x20: ffff0001023d1000 x19: 0000000000000000 x18: fffffffffffffff5 x17: ffff80000c0cd83c x16: 0000000000000000 x15: 0000000000000000 x14: 0000000000000000 x13: 000000000000000f x12: ffff80000d8c1a90 x11: ff8080000b9528f8 x10: 0000000000000000 x9 : ffff80000b9528f8 x8 : ffff00012e5f1a40 x7 : 0000000000000000 x6 : 000000000000003f x5 : 00000000ffffffff x4 : 0000000000082a20 x3 : 0000000000000200 x2 : 00000000000001c0 x1 : 0000000000000000 x0 : ffff0001023d1000 Call trace: rose_transmit_link+0x24/0x32c net/rose/rose_link.c:263 rose_write_internal+0x720/0x75c net/rose/rose_subr.c:198 rose_release+0x180/0x33c net/rose/af_rose.c:637 __sock_release net/socket.c:650 [inline] sock_close+0x50/0xf0 net/socket.c:1365 __fput+0x198/0x3e4 fs/file_table.c:320 ____fput+0x20/0x30 fs/file_table.c:348 task_work_run+0x100/0x148 kernel/task_work.c:179 exit_task_work include/linux/task_work.h:38 [inline] do_exit+0x2dc/0xcac kernel/exit.c:820 __arm64_sys_exit_group+0x0/0x18 kernel/exit.c:950 __do_sys_exit_group kernel/exit.c:961 [inline] __se_sys_exit_group kernel/exit.c:959 [inline] __wake_up_parent+0x0/0x40 kernel/exit.c:959 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall arch/arm64/kernel/syscall.c:52 [inline] el0_svc_common+0x138/0x220 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x48/0x164 arch/arm64/kernel/syscall.c:206 el0_svc+0x58/0x150 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:584 Code: 910003fd aa0103f3 aa0003f4 97254c19 (3940ca75) ---[ end trace 0000000000000000 ]--- ---------------- Code disassembly (best guess): 0: 910003fd mov x29, sp 4: aa0103f3 mov x19, x1 8: aa0003f4 mov x20, x0 c: 97254c19 bl 0xfffffffffc953070 * 10: 3940ca75 ldrb w21, [x19, #50] <-- trapping instruction