BUG: kernel NULL pointer dereference, address: 0000000000000010
#PF: supervisor read access in kernel mode
#PF: error_code(0x0000) - not-present page
PGD 80000001199ae067 P4D 80000001199ae067 PUD 0 
Oops: Oops: 0000 [#1] SMP KASAN PTI
CPU: 1 UID: 0 PID: 64 Comm: kworker/u11:0 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
Workqueue: hci0 hci_rx_work
RIP: 0010:kcov_remote_start+0x2a1/0x710
Code: 8c 8d 4c 8b b8 88 a2 70 92 bd 00 00 04 00 eb 4f 41 8b ae a4 00 00 00 49 c7 c7 a0 5d 02 8e 4d 8b 3f 49 81 ff a0 5d 02 8e 74 4c <41> 39 6f 10 75 ee 4c 89 ff e8 11 77 f0 02 84 c0 74 0e 49 8b 07 49
RSP: 0000:ffffc900014bfa70 EFLAGS: 00010207
RAX: 0000000000000000 RBX: ffff888105ed9d80 RCX: 0000000000000000
RDX: 000000002d0f9500 RSI: 0000000000000001 RDI: ffffffff8ba85b00
RBP: 0000000000100000 R08: ffffffff8b2ad9d0 R09: ffffffff8dfc8240
R10: dffffc0000000000 R11: fffffbfff1f1597f R12: 0000000000000002
R13: 0000000000000001 R14: ffff8881159f2f00 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8882a9f1f000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000010 CR3: 00000001197be000 CR4: 00000000000006f0
Call Trace:
 <TASK>
 hci_rx_work+0x10f/0x1040
 process_one_work+0x98b/0x1630
 worker_thread+0xb49/0x1140
 kthread+0x388/0x470
 ret_from_fork+0x514/0xb70
 ret_from_fork_asm+0x1a/0x30
 </TASK>
Modules linked in:
CR2: 0000000000000010
---[ end trace 0000000000000000 ]---
RIP: 0010:kcov_remote_start+0x2a1/0x710
Code: 8c 8d 4c 8b b8 88 a2 70 92 bd 00 00 04 00 eb 4f 41 8b ae a4 00 00 00 49 c7 c7 a0 5d 02 8e 4d 8b 3f 49 81 ff a0 5d 02 8e 74 4c <41> 39 6f 10 75 ee 4c 89 ff e8 11 77 f0 02 84 c0 74 0e 49 8b 07 49
RSP: 0000:ffffc900014bfa70 EFLAGS: 00010207
RAX: 0000000000000000 RBX: ffff888105ed9d80 RCX: 0000000000000000
RDX: 000000002d0f9500 RSI: 0000000000000001 RDI: ffffffff8ba85b00
RBP: 0000000000100000 R08: ffffffff8b2ad9d0 R09: ffffffff8dfc8240
R10: dffffc0000000000 R11: fffffbfff1f1597f R12: 0000000000000002
R13: 0000000000000001 R14: ffff8881159f2f00 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8882a9f1f000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000000000010 CR3: 00000001197be000 CR4: 00000000000006f0
