syzbot

==================================================================
BUG: KASAN: null-ptr-deref in instrument_atomic_read include/linux/instrumented.h:68 [inline]
BUG: KASAN: null-ptr-deref in atomic_read include/linux/atomic/atomic-instrumented.h:32 [inline]
BUG: KASAN: null-ptr-deref in buffer_busy fs/buffer.c:2876 [inline]
BUG: KASAN: null-ptr-deref in drop_buffers+0x64/0x4c0 fs/buffer.c:2888
Read of size 4 at addr 0000000000000060 by task syz.3.6190/21857

CPU: 0 UID: 0 PID: 21857 Comm: syz.3.6190 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120
 print_report+0xe8/0x550 mm/kasan/report.c:492
 kasan_report+0x143/0x180 mm/kasan/report.c:602
 kasan_check_range+0x282/0x290 mm/kasan/generic.c:189
 instrument_atomic_read include/linux/instrumented.h:68 [inline]
 atomic_read include/linux/atomic/atomic-instrumented.h:32 [inline]
 buffer_busy fs/buffer.c:2876 [inline]
 drop_buffers+0x64/0x4c0 fs/buffer.c:2888
 try_to_free_buffers+0x278/0x3b0 fs/buffer.c:2942
 shrink_folio_list+0x241e/0x5ca0 mm/vmscan.c:1440
 evict_folios+0x3c92/0x58c0 mm/vmscan.c:4600
 try_to_shrink_lruvec+0x9a6/0xc70 mm/vmscan.c:4799
 lru_gen_shrink_lruvec mm/vmscan.c:4948 [inline]
 shrink_lruvec+0x53c/0x3160 mm/vmscan.c:5703
 shrink_node_memcgs mm/vmscan.c:5939 [inline]
 shrink_node+0xb15/0x3e50 mm/vmscan.c:5980
 shrink_zones mm/vmscan.c:6225 [inline]
 do_try_to_free_pages+0x78c/0x1cf0 mm/vmscan.c:6287
 try_to_free_mem_cgroup_pages+0x48c/0xab0 mm/vmscan.c:6619
 try_charge_memcg+0x8c7/0x1150 mm/memcontrol.c:2238
 obj_cgroup_charge_pages+0x91/0x230 mm/memcontrol.c:2646
 __memcg_kmem_charge_page+0xc8/0x1d0 mm/memcontrol.c:2673
 __alloc_pages_noprof+0x2c9/0x710 mm/page_alloc.c:4770
 alloc_pages_mpol_noprof+0x3e1/0x780 mm/mempolicy.c:2269
 io_mem_alloc_compound io_uring/memmap.c:29 [inline]
 io_pages_map+0xc5/0x520 io_uring/memmap.c:73
 io_allocate_scq_urings+0x16a/0x650 io_uring/io_uring.c:3494
 io_uring_create+0x5b5/0xc00 io_uring/io_uring.c:3718
 io_uring_setup io_uring/io_uring.c:3807 [inline]
 __do_sys_io_uring_setup io_uring/io_uring.c:3834 [inline]
 __se_sys_io_uring_setup+0x2ba/0x330 io_uring/io_uring.c:3828
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f2401785d29
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007f240267dfc8 EFLAGS: 00000202 ORIG_RAX: 00000000000001a9
RAX: ffffffffffffffda RBX: 00007f2401975fa0 RCX: 00007f2401785d29
RDX: 0000000000000000 RSI: 0000000020000100 RDI: 0000000000003665
RBP: 0000000020000100 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000003665 R15: 0000000000000000
 </TASK>
==================================================================