slab radix_tree_node start ffff88804204e2c0 pointer offset 24 size 576
BUG: kernel NULL pointer dereference, address: 0000000000000000
#PF: supervisor instruction fetch in kernel mode
#PF: error_code(0x0010) - not-present page
PGD 546e5067 P4D 546e5067 PUD 0 
Oops: Oops: 0010 [#1] PREEMPT SMP KASAN NOPTI
CPU: 0 UID: 0 PID: 6483 Comm: syz.5.294 Not tainted 6.14.0-rc4-syzkaller-00212-g276f98efb64a #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:0x0
Code: Unable to access opcode bytes at 0xffffffffffffffd6.
RSP: 0000:ffffc90002d9fb18 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: 1ffff11008409c5c RCX: b5cfe946df1b7e00
RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff88804204e2d8
RBP: ffffc90002d9fd50 R08: ffffffff81a1153c R09: 1ffff11003f8519a
R10: dffffc0000000000 R11: 0000000000000000 R12: ffffffff81a8d7d7
R13: ffff88804204e2e0 R14: 0000000000000000 R15: ffff88804204e2d8
FS:  00007f5c366176c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffffd6 CR3: 0000000040e44000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 rcu_do_batch kernel/rcu/tree.c:2546 [inline]
 rcu_core+0xaaa/0x17a0 kernel/rcu/tree.c:2802
 handle_softirqs+0x2d4/0x9b0 kernel/softirq.c:561
 __do_softirq kernel/softirq.c:595 [inline]
 invoke_softirq kernel/softirq.c:435 [inline]
 __irq_exit_rcu+0xf7/0x220 kernel/softirq.c:662
 irq_exit_rcu+0x9/0x30 kernel/softirq.c:678
 instr_sysvec_apic_timer_interrupt arch/x86/kernel/apic/apic.c:1049 [inline]
 sysvec_apic_timer_interrupt+0x57/0xc0 arch/x86/kernel/apic/apic.c:1049
 asm_sysvec_apic_timer_interrupt+0x1a/0x20 arch/x86/include/asm/idtentry.h:702
RIP: 0033:0x7f5c3564fc86
Code: f0 72 6e 48 63 cd 48 01 c1 49 39 4f 08 72 4c 8d 4d ff 85 ed 74 33 66 0f 1f 44 00 00 48 39 f0 72 1b 4d 8b 07 49 89 c1 49 29 f1 <47> 0f b6 0c 08 45 84 c9 74 08 45 88 0c 00 49 8b 47 10 48 83 c0 01
RSP: 002b:00007f5c366164a0 EFLAGS: 00000206
RAX: 0000000000d9e836 RBX: 00007f5c36616540 RCX: 00000000000000bb
RDX: 0000000000000015 RSI: 0000000000000001 RDI: 00007f5c366165e0
RBP: 0000000000000102 R08: 00007f5c2c400000 R09: 0000000000d9e835
R10: 0000000000000000 R11: 00007f5c36616550 R12: 0000000000000001
R13: 00007f5c358293e0 R14: 0000000000000000 R15: 00007f5c366165e0
 </TASK>
Modules linked in:
CR2: 0000000000000000
---[ end trace 0000000000000000 ]---
RIP: 0010:0x0
Code: Unable to access opcode bytes at 0xffffffffffffffd6.
RSP: 0000:ffffc90002d9fb18 EFLAGS: 00010246
RAX: dffffc0000000000 RBX: 1ffff11008409c5c RCX: b5cfe946df1b7e00
RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff88804204e2d8
RBP: ffffc90002d9fd50 R08: ffffffff81a1153c R09: 1ffff11003f8519a
R10: dffffc0000000000 R11: 0000000000000000 R12: ffffffff81a8d7d7
R13: ffff88804204e2e0 R14: 0000000000000000 R15: ffff88804204e2d8
FS:  00007f5c366176c0(0000) GS:ffff88801fc00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: ffffffffffffffd6 CR3: 0000000040e44000 CR4: 0000000000352ef0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400