Legion 7i Gen8 Kernel NULL pointer dereference

Hi,
I am getting crashes at quite random times.
It mostly happens when I either work in VSCode and have a youtube video on a chrome based browser in the background, or when i press the reboot or shutdown button in the KDE application menu.
But also in other random times, and seldom even seconds after a boot.

The hardware is a Lenovo Legion 7i Gen 8 (Intel 13800HX, 32GB DDR5-5600 2x SO-DIMM, NVidia RTX 4080) running NixOS unstable on a Kingston Fury 1TB SSD with btrf and LUKS.

Kernel is Linux 6.7.6 #1-NixOS SMP PREEMPT_DYNAMIC

Journalctl gives me the following a bunch of times:

Mär 03 12:01:39 markusnix kernel: BUG: kernel NULL pointer dereference, address: 00000000000000eb
Mär 03 12:01:39 markusnix kernel: #PF: supervisor read access in kernel mode
Mär 03 12:01:39 markusnix kernel: #PF: error_code(0x0000) - not-present page
Mär 03 12:01:39 markusnix kernel: PGD 0 P4D 0 
Mär 03 12:01:39 markusnix kernel: Oops: 0000 [#1] PREEMPT SMP NOPTI
Mär 03 12:01:39 markusnix kernel: CPU: 4 PID: 981 Comm: systemd-journal Tainted: P           O       6.7.6 #1-NixOS
Mär 03 12:01:39 markusnix kernel: Hardware name: LENOVO 82WQ/LNVNB161216, BIOS KWCN42WW 09/15/2023
Mär 03 12:01:39 markusnix kernel: RIP: 0010:simple_xattr_get+0x31/0xa0
Mär 03 12:01:39 markusnix kernel: Code: 00 00 41 56 49 89 ce 41 55 4c 8d 6f 08 41 54 49 89 d4 55 48 89 f5 53 48 89 fb 4c 89 ef e8 e7 e9 72 00 48 8b 1b 48 85 db 74 1b <48> 8b 7b 18 48 89 ee e8 33 1c 70 00 85 c0 78 27 74 2b 48 8b 5b 08
Mär 03 12:01:39 markusnix kernel: RSP: 0018:ffff9ac280bcfcf8 EFLAGS: 00010202
Mär 03 12:01:39 markusnix kernel: RAX: 0000000000000000 RBX: 00000000000000d3 RCX: 0000000000000067
Mär 03 12:01:39 markusnix kernel: RDX: ffff915e04f4bd80 RSI: ffff9ac280bcfdc8 RDI: ffff915e176ce5e0
Mär 03 12:01:39 markusnix kernel: RBP: ffff9ac280bcfdc8 R08: ffff915e04f4bd80 R09: 0000000000000067
Mär 03 12:01:39 markusnix kernel: R10: ffff9ac280bcfdc8 R11: 0000000000000000 R12: ffff915e04f4bd80
Mär 03 12:01:39 markusnix kernel: R13: ffff915e176ce5e0 R14: 0000000000000067 R15: ffff9ac280bcfdc8
Mär 03 12:01:39 markusnix kernel: FS:  00007efd54c800c0(0000) GS:ffff91658ce00000(0000) knlGS:0000000000000000
Mär 03 12:01:39 markusnix kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Mär 03 12:01:39 markusnix kernel: CR2: 00000000000000eb CR3: 0000000108b9c000 CR4: 0000000000f50ef0
Mär 03 12:01:39 markusnix kernel: PKRU: 55555554
Mär 03 12:01:39 markusnix kernel: Call Trace:
Mär 03 12:01:39 markusnix kernel:  <TASK>
Mär 03 12:01:39 markusnix kernel:  ? __die+0x23/0x70
Mär 03 12:01:39 markusnix kernel:  ? page_fault_oops+0x17d/0x4b0
Mär 03 12:01:39 markusnix kernel:  ? exc_page_fault+0x72/0x160
Mär 03 12:01:39 markusnix kernel:  ? asm_exc_page_fault+0x26/0x30
Mär 03 12:01:39 markusnix kernel:  ? simple_xattr_get+0x31/0xa0
Mär 03 12:01:39 markusnix kernel:  ? simple_xattr_get+0x29/0xa0
Mär 03 12:01:39 markusnix kernel:  __vfs_getxattr+0x7f/0xb0
Mär 03 12:01:39 markusnix kernel:  do_getxattr+0xf0/0x180
Mär 03 12:01:39 markusnix kernel:  getxattr+0x91/0xd0
Mär 03 12:01:39 markusnix kernel:  path_getxattr+0x7b/0xd0
Mär 03 12:01:39 markusnix kernel:  do_syscall_64+0x44/0x100
Mär 03 12:01:39 markusnix kernel:  entry_SYSCALL_64_after_hwframe+0x6f/0x77
Mär 03 12:01:39 markusnix kernel: RIP: 0033:0x7efd55120c8e
Mär 03 12:01:39 markusnix kernel: Code: 01 0d 00 f7 d8 64 89 02 ba ff ff ff ff eb d5 e8 f8 37 01 00 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 49 89 ca b8 c0 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 72 01 0d 00 f7 d8 64 89 01 48
Mär 03 12:01:39 markusnix kernel: RSP: 002b:00007ffd975c5d58 EFLAGS: 00000246 ORIG_RAX: 00000000000000c0
Mär 03 12:01:39 markusnix kernel: RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efd55120c8e
Mär 03 12:01:39 markusnix kernel: RDX: 000055b2eabd4560 RSI: 000055b2e94bb8f0 RDI: 000055b2eac0a770
Mär 03 12:01:39 markusnix kernel: RBP: 000055b2eabd4560 R08: 0000000000000007 R09: 0000000000000005
Mär 03 12:01:39 markusnix kernel: R10: 0000000000000067 R11: 0000000000000246 R12: 000055b2eac0a770
Mär 03 12:01:39 markusnix kernel: R13: 000055b2e94bb8f0 R14: 0000000000000068 R15: 0000000000000007
Mär 03 12:01:39 markusnix kernel:  </TASK>
Mär 03 12:01:39 markusnix kernel: Modules linked in: nft_chain_nat xt_MASQUERADE nf_conntrack_netlink xfrm_user xfrm_algo xt_addrtype ccm af_packet cmac algif_hash algif_skcipher af_alg bnep msr xt_conntrack ip6t_rpfilter ipt_rpfilter xt_pkttype xt_LOG nf_log_syslog xt_tcpudp nft_compat nf_tables sch_fq_codel snd_hda_codec_realtek snd_hda_codec_generic ledtrig_audio uinput snd_sof_pci_intel_tgl snd_sof_intel_hda_common snd_soc_hdac_hda soundwire_intel snd_sof_intel_hda_mlink soundwire_cadence snd_sof_intel_hda snd_sof_pci snd_sof_xtensa_dsp snd_hda_codec_hdmi snd_sof snd_sof_utils snd_hda_ext_core snd_soc_acpi_intel_match snd_soc_acpi soundwire_generic_allocation soundwire_bus iwlmvm r8153_ecm cdc_ether hid_multitouch usbnet i915 mac80211 nls_iso8859_1 ptp nls_cp437 pps_core libarc4 vfat fat btusb uvcvideo btrtl btintel snd_hda_scodec_tas2781_i2c btbcm intel_uncore_frequency videobuf2_vmalloc snd_soc_tas2781_fmwlib btmtk intel_uncore_frequency_common uvc videobuf2_memops intel_tcc_cooling snd_hda_intel videobuf2_v4l2 snd_soc_tas2781_comlib
Mär 03 12:01:39 markusnix kernel:  bluetooth drm_buddy snd_intel_dspcfg x86_pkg_temp_thermal snd_intel_sdw_acpi videodev snd_soc_core ttm cmdlinepart iTCO_wdt intel_powerclamp snd_hda_codec intel_pmc_bxt spi_nor iwlwifi drm_display_helper watchdog intel_rapl_msr joydev videobuf2_common mousedev processor_thermal_device_pci snd_compress snd_hda_core processor_thermal_device r8152 coretemp processor_thermal_wt_hint ac97_bus mtd mc processor_thermal_rfim snd_pcm_dmaengine crc32_pclmul snd_hwdep polyval_clmulni mii mei_pxp mei_hdcp cec processor_thermal_rapl polyval_generic snd_pcm ecdh_generic r8169 gf128mul pmt_telemetry intel_rapl_common intel_gtt ecc pmt_class ghash_clmulni_intel ucsi_acpi crc16 snd_timer intel_lpss_pci ideapad_laptop realtek typec_ucsi agpgart processor_thermal_wt_req i2c_i801 evdev tpm_crb sparse_keymap spi_intel_pci processor_thermal_power_floor mdio_devres intel_lpss rapl wmi_bmof nvidia_wmi_ec_backlight snd idma64 intel_cstate cfg80211 i2c_hid_acpi intel_uncore libphy typec platform_profile tpm_tis spi_intel i2c_smbus
Mär 03 12:01:39 markusnix kernel:  i2c_algo_bit soundcore roles virt_dma processor_thermal_mbox mac_hid intel_vsec rfkill crc8 i2c_hid mei_me int3403_thermal battery int340x_thermal_zone int3400_thermal tpm_tis_core intel_pmc_core serio_raw pinctrl_alderlake acpi_thermal_rel acpi_tad acpi_pad mei tiny_power_button ac button nvidia_drm(PO) drm_kms_helper nvidia_modeset(PO) video wmi nvidia_uvm(PO) nvidia(PO) ctr loop cpufreq_powersave xt_nat nf_nat nf_conntrack nf_defrag_ipv6 nf_defrag_ipv4 br_netfilter veth tun tap macvlan bridge stp llc kvm_intel kvm drm irqbypass fuse efi_pstore backlight configfs nfnetlink efivarfs dmi_sysfs ip_tables x_tables autofs4 dm_crypt aes_generic cbc encrypted_keys trusted asn1_encoder tee tpm rng_core hid_generic usbhid hid xhci_pci xhci_pci_renesas input_leds firmware_class led_class xhci_hcd atkbd nvme libps2 thunderbolt vivaldi_fmap usbcore sha512_ssse3 nvme_core sha512_generic sha256_ssse3 sha1_ssse3 aesni_intel t10_pi libaes crypto_simd cryptd crc64_rocksoft rtc_cmos crc64 crc_t10dif i8042
Mär 03 12:01:39 markusnix kernel:  crct10dif_generic crct10dif_pclmul usb_common crct10dif_common serio dm_mod dax btrfs blake2b_generic libcrc32c crc32c_generic crc32c_intel xor raid6_pq
Mär 03 12:01:39 markusnix kernel: CR2: 00000000000000eb
Mär 03 12:01:39 markusnix kernel: ---[ end trace 0000000000000000 ]---
Mär 03 12:01:39 markusnix kernel: RIP: 0010:simple_xattr_get+0x31/0xa0
Mär 03 12:01:39 markusnix kernel: Code: 00 00 41 56 49 89 ce 41 55 4c 8d 6f 08 41 54 49 89 d4 55 48 89 f5 53 48 89 fb 4c 89 ef e8 e7 e9 72 00 48 8b 1b 48 85 db 74 1b <48> 8b 7b 18 48 89 ee e8 33 1c 70 00 85 c0 78 27 74 2b 48 8b 5b 08
Mär 03 12:01:39 markusnix kernel: RSP: 0018:ffff9ac280bcfcf8 EFLAGS: 00010202
Mär 03 12:01:39 markusnix kernel: RAX: 0000000000000000 RBX: 00000000000000d3 RCX: 0000000000000067
Mär 03 12:01:39 markusnix kernel: RDX: ffff915e04f4bd80 RSI: ffff9ac280bcfdc8 RDI: ffff915e176ce5e0
Mär 03 12:01:39 markusnix kernel: RBP: ffff9ac280bcfdc8 R08: ffff915e04f4bd80 R09: 0000000000000067
Mär 03 12:01:39 markusnix kernel: R10: ffff9ac280bcfdc8 R11: 0000000000000000 R12: ffff915e04f4bd80
Mär 03 12:01:39 markusnix kernel: R13: ffff915e176ce5e0 R14: 0000000000000067 R15: ffff9ac280bcfdc8
Mär 03 12:01:39 markusnix kernel: FS:  00007efd54c800c0(0000) GS:ffff91658ce00000(0000) knlGS:0000000000000000
Mär 03 12:01:39 markusnix kernel: CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
Mär 03 12:01:39 markusnix kernel: CR2: 00000000000000eb CR3: 0000000108b9c000 CR4: 0000000000f50ef0
Mär 03 12:01:39 markusnix kernel: PKRU: 55555554
Mär 03 12:01:39 markusnix kernel: note: systemd-journal[981] exited with irqs disabled
Mär 03 12:01:39 markusnix kernel: note: systemd-journal[981] exited with preempt_count 1
Mär 03 12:01:39 markusnix systemd[1]: systemd-journald.service: Scheduled restart job, restart counter is at 1.
Mär 03 12:01:39 markusnix systemd[1]: Starting Journal Service...
Mär 03 12:01:39 markusnix systemd-journald[2714]: Collecting audit messages is disabled.
Mär 03 12:01:39 markusnix systemd-journald[2714]: File /var/log/journal/5aae701564b64802b60753d819e46764/system.journal corrupted or uncleanly shut down, renaming and replacing.
Mär 03 12:01:39 markusnix systemd-journald[2714]: Journal started
Mär 03 12:01:39 markusnix systemd-journald[2714]: System Journal (/var/log/journal/5aae701564b64802b60753d819e46764) is 3.7G, max 4.0G, 216.5M free.

I let memtest86+ run for couple of passes. 0 errors.

I have the suspicion that the NVidia driver is the problem. The crash happens very often when using the new 550 version on the laptop. 545 runs much more stable.