==================================================================
BUG: KASAN: null-ptr-deref in sg_alloc_append_table_from_pages+0x58a/0x882 lib/scatterlist.c:525
Read of size 8 at addr 0000000000000010 by task syz-executor.0/4964

CPU: 0 PID: 4964 Comm: syz-executor.0 Not tainted 5.15.0-rc1-syzkaller-00001-g64a19591a293 #0
Hardware name: riscv-virtio,qemu (DT)
Call Trace:
[<ffffffff8000957e>] dump_backtrace+0x2e/0x3c arch/riscv/kernel/stacktrace.c:112
==================================================================
Unable to handle kernel access to user memory without uaccess routines at virtual address 0000000000000010
Oops [#1]
Modules linked in:
CPU: 0 PID: 4964 Comm: syz-executor.0 Tainted: G    B             5.15.0-rc1-syzkaller-00001-g64a19591a293 #0
Hardware name: riscv-virtio,qemu (DT)
epc : sg_assign_page include/linux/scatterlist.h:95 [inline]
epc : sg_set_page include/linux/scatterlist.h:119 [inline]
epc : sg_alloc_append_table_from_pages+0x5ac/0x882 lib/scatterlist.c:525
 ra : sg_alloc_append_table_from_pages+0x58a/0x882 lib/scatterlist.c:525
epc : ffffffff809ca13c ra : ffffffff809ca11a sp : ffffffe00e777bc0
 gp : ffffffff83f9a558 tp : ffffffe009678000 t0 : 0000000000000000
 t1 : 0000000000006000 t2 : 0000003fdebd81b7 s0 : ffffffe00e777ca0
 s1 : 0000000000000002 a0 : 0000000000000001 a1 : 0000000000000007
 a2 : 1ffffffc012cf000 a3 : ffffffff82bdbd8c a4 : 0000000000000000
 a5 : 0000000000000000 a6 : 0000000000f00000 a7 : ffffffe05adc84f7
 s2 : 0000000000000000 s3 : fffffffffffff000 s4 : 0000000000000010
 s5 : 0000003100000000 s6 : ffffffe007187500 s7 : 0000000000000001
 s8 : 0000000000001000 s9 : 0000000000001000 s10: 0000000000000010
 s11: 0000000000020000 t3 : 00000000000008ad t4 : ffffffc40b5b909e
 t5 : ffffffc40b5b909f t6 : 0000000000040000
status: 0000000000000120 badaddr: 0000000000000010 cause: 000000000000000d
[<ffffffff809ca13c>] sg_alloc_append_table_from_pages+0x5ac/0x882 lib/scatterlist.c:526
[<ffffffff809ca476>] sg_alloc_table_from_pages_segment+0x64/0x1d4 lib/scatterlist.c:573
[<ffffffff8109b4de>] sg_alloc_table_from_pages include/linux/scatterlist.h:331 [inline]
[<ffffffff8109b4de>] get_sg_table+0x90/0x10e drivers/dma-buf/udmabuf.c:67
[<ffffffff8109b628>] begin_cpu_udmabuf+0xcc/0xfe drivers/dma-buf/udmabuf.c:126
[<ffffffff81086040>] dma_buf_begin_cpu_access+0xc0/0x13a drivers/dma-buf/dma-buf.c:1204
[<ffffffff810861fe>] dma_buf_ioctl+0x144/0x26c drivers/dma-buf/dma-buf.c:403
[<ffffffff8045f1c2>] vfs_ioctl fs/ioctl.c:51 [inline]
[<ffffffff8045f1c2>] __do_sys_ioctl fs/ioctl.c:874 [inline]
[<ffffffff8045f1c2>] sys_ioctl+0x5fa/0x10f4 fs/ioctl.c:860
[<ffffffff8000519c>] ret_from_syscall+0x0/0x2
---[ end trace d8d1257943bfeb46 ]---