================================================================== BUG: KASAN: null-ptr-deref in i_size_read include/linux/fs.h:883 [inline] BUG: KASAN: null-ptr-deref in ext4_quota_read+0x54/0x1e2 fs/ext4/super.c:7098 Read of size 8 at addr 0000000000000050 by task syz-executor.1/14352 CPU: 1 PID: 14352 Comm: syz-executor.1 Not tainted 6.4.0-rc1-syzkaller-00012-gb104dbedbe61 #0 Hardware name: riscv-virtio,qemu (DT) Call Trace: [] dump_backtrace+0x2e/0x3c arch/riscv/kernel/stacktrace.c:121 [] show_stack+0x34/0x40 arch/riscv/kernel/stacktrace.c:127 [] __dump_stack lib/dump_stack.c:88 [inline] [] dump_stack_lvl+0xe0/0x14c lib/dump_stack.c:106 [] print_report+0x4e4/0x502 mm/kasan/report.c:465 [] kasan_report+0xbc/0x182 mm/kasan/report.c:572 [] check_region_inline mm/kasan/generic.c:181 [inline] [] __asan_load8+0x7e/0xa6 mm/kasan/generic.c:259 [] i_size_read include/linux/fs.h:883 [inline] [] ext4_quota_read+0x54/0x1e2 fs/ext4/super.c:7098 [] read_blk fs/quota/quota_tree.c:55 [inline] [] do_insert_tree+0x17e/0xc1c fs/quota/quota_tree.c:347 [] dq_insert_tree fs/quota/quota_tree.c:401 [inline] [] qtree_write_dquot+0x14e/0x338 fs/quota/quota_tree.c:420 [] v2_write_dquot+0xa4/0x12c fs/quota/quota_v2.c:358 [] dquot_acquire+0x19e/0x2e6 fs/quota/dquot.c:444 [] ext4_acquire_dquot+0x168/0x1c4 fs/ext4/super.c:6805 [] dqget+0x4da/0x972 fs/quota/dquot.c:914 [] __dquot_initialize+0x33a/0x788 fs/quota/dquot.c:1492 [] dquot_initialize fs/quota/dquot.c:1550 [inline] [] dquot_file_open fs/quota/dquot.c:2181 [inline] [] dquot_file_open+0x8c/0x90 fs/quota/dquot.c:2175 [] ext4_file_open+0x234/0xa06 fs/ext4/file.c:904 [] do_dentry_open+0x3a6/0x914 fs/open.c:920 [] vfs_open+0x52/0x5e fs/open.c:1051 [] do_open fs/namei.c:3636 [inline] [] path_openat+0x11ea/0x164c fs/namei.c:3791 [] do_filp_open+0x11c/0x246 fs/namei.c:3818 [] do_sys_openat2+0x174/0x31e fs/open.c:1356 [] do_sys_open fs/open.c:1372 [inline] [] __do_sys_openat fs/open.c:1388 [inline] [] sys_openat+0xdc/0x164 fs/open.c:1383 [] syscall_handler+0xfa/0x148 arch/riscv/include/asm/syscall.h:90 [] do_trap_ecall_u+0xea/0xec arch/riscv/kernel/traps.c:279 [] ret_from_exception+0x0/0x64 arch/riscv/kernel/entry.S:102 ==================================================================