R13: 00000000004c8d54 R14: 00000000004def30 R15: 0000000000000005 kasan: CONFIG_KASAN_INLINE enabled FAULT_INJECTION: forcing a failure. name failslab, interval 1, probability 0, space 0, times 0 kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN CPU: 0 PID: 21116 Comm: syz-executor.5 Not tainted 4.19.56 #28 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 CPU: 1 PID: 21134 Comm: syz-executor.1 Not tainted 4.19.56 #28 RIP: 0010:scatterwalk_start include/crypto/scatterwalk.h:73 [inline] RIP: 0010:scatterwalk_pagedone include/crypto/scatterwalk.h:98 [inline] RIP: 0010:scatterwalk_done include/crypto/scatterwalk.h:106 [inline] RIP: 0010:gcmaes_crypt_by_sg.constprop.0+0xde2/0x1850 arch/x86/crypto/aesni-intel_glue.c:868 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Code: 82 f3 f9 ff ff e8 6e ac 35 00 4c 89 f7 e8 c6 c7 eb 01 48 8d 78 08 49 89 c6 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a5 09 00 00 41 8b 46 08 89 84 Call Trace: RSP: 0018:ffff88804053f230 EFLAGS: 00010202 __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0x172/0x1f0 lib/dump_stack.c:113 fail_dump lib/fault-inject.c:51 [inline] should_fail.cold+0xa/0x1b lib/fault-inject.c:149 RAX: dffffc0000000000 RBX: 0000000000000056 RCX: ffffc900108c4000 RDX: 0000000000000001 RSI: ffffffff8321329b RDI: 0000000000000008 RBP: ffff88804053f570 R08: ffff88808af3a6c0 R09: 000000000000000d R10: ffff8880a7a26040 R11: 0000000000000010 R12: 0000000000000000 __should_failslab+0x121/0x190 mm/failslab.c:32 R13: 0000000000000056 R14: 0000000000000000 R15: 0000000000000029 should_failslab+0x9/0x14 mm/slab_common.c:1557 FS: 00007f0c59528700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 slab_pre_alloc_hook mm/slab.h:424 [inline] slab_alloc mm/slab.c:3383 [inline] kmem_cache_alloc+0x2ae/0x700 mm/slab.c:3557 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b31c21000 CR3: 00000000a924f000 CR4: 00000000001406f0 Call Trace: ptlock_alloc+0x20/0x70 mm/memory.c:4831 ptlock_init include/linux/mm.h:1890 [inline] pgtable_page_ctor include/linux/mm.h:1924 [inline] pte_alloc_one+0x6d/0x1a0 arch/x86/mm/pgtable.c:38 do_huge_pmd_anonymous_page+0xa21/0x14e0 mm/huge_memory.c:686 gcmaes_encrypt.constprop.0+0x62a/0xd90 arch/x86/crypto/aesni-intel_glue.c:932 create_huge_pmd mm/memory.c:3932 [inline] __handle_mm_fault+0x2c80/0x3f80 mm/memory.c:4136 handle_mm_fault+0x43f/0xb30 mm/memory.c:4202 __do_page_fault+0x62a/0xe90 arch/x86/mm/fault.c:1393 do_page_fault+0x71/0x57d arch/x86/mm/fault.c:1468 page_fault+0x1e/0x30 arch/x86/entry/entry_64.S:1181 RIP: 0010:copy_user_enhanced_fast_string+0xe/0x20 arch/x86/lib/copy_user_64.S:181 Code: 89 d1 c1 e9 03 83 e2 07 f3 48 a5 89 d1 f3 a4 31 c0 0f 1f 00 c3 0f 1f 80 00 00 00 00 0f 1f 00 83 fa 40 0f 82 70 ff ff ff 89 d1 a4 31 c0 0f 1f 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 83 RSP: 0018:ffff8880991cfb60 EFLAGS: 00010206 generic_gcmaes_encrypt+0x108/0x159 arch/x86/crypto/aesni-intel_glue.c:1297 RAX: 0000000000000000 RBX: 0000000000231b00 RCX: 0000000000031d60 RDX: 0000000000231b00 RSI: 0000000020200000 RDI: ffff88801e5ffde0 RBP: ffff8880991cfb98 R08: ffffed1003cc6368 R09: 0000000000000000 R10: ffffed1003cc6367 R11: ffff88801e631b3f R12: 0000000020000260 crypto_aead_encrypt include/crypto/aead.h:335 [inline] gcmaes_wrapper_encrypt+0x15f/0x200 arch/x86/crypto/aesni-intel_glue.c:1130 R13: 0000000020231d60 R14: ffff88801e400040 R15: 00007ffffffff000 crypto_aead_encrypt include/crypto/aead.h:335 [inline] tls_do_encryption net/tls/tls_sw.c:193 [inline] tls_push_record+0x9c0/0x13a0 net/tls/tls_sw.c:228 tls_sw_sendpage+0x540/0xd40 net/tls/tls_sw.c:583 copy_from_user include/linux/uaccess.h:147 [inline] do_replace net/ipv4/netfilter/ip_tables.c:1133 [inline] do_ipt_set_ctl+0x29d/0x492 net/ipv4/netfilter/ip_tables.c:1675 inet_sendpage+0x168/0x630 net/ipv4/af_inet.c:815 nf_sockopt net/netfilter/nf_sockopt.c:106 [inline] nf_setsockopt+0x77/0xd0 net/netfilter/nf_sockopt.c:115 kernel_sendpage+0x92/0xf0 net/socket.c:3377 ip_setsockopt net/ipv4/ip_sockglue.c:1258 [inline] ip_setsockopt+0xdf/0x100 net/ipv4/ip_sockglue.c:1238 udp_setsockopt+0x68/0xb0 net/ipv4/udp.c:2525 sock_sendpage+0x8b/0xc0 net/socket.c:847 ipv6_setsockopt+0xb6/0x170 net/ipv6/ipv6_sockglue.c:928 pipe_to_sendpage+0x296/0x360 fs/splice.c:452 tcp_setsockopt net/ipv4/tcp.c:3062 [inline] tcp_setsockopt+0x8f/0xe0 net/ipv4/tcp.c:3056 sock_common_setsockopt+0x94/0xd0 net/core/sock.c:3044 __sys_setsockopt+0x17a/0x280 net/socket.c:1901 splice_from_pipe_feed fs/splice.c:503 [inline] __splice_from_pipe+0x391/0x7d0 fs/splice.c:627 splice_from_pipe+0x108/0x170 fs/splice.c:662 __do_sys_setsockopt net/socket.c:1912 [inline] __se_sys_setsockopt net/socket.c:1909 [inline] __x64_sys_setsockopt+0xbe/0x150 net/socket.c:1909 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x4597c9 generic_splice_sendpage+0x3c/0x50 fs/splice.c:833 Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 RSP: 002b:00007fa194f5ec78 EFLAGS: 00000246 do_splice_from fs/splice.c:852 [inline] do_splice+0x642/0x12c0 fs/splice.c:1148 ORIG_RAX: 0000000000000036 RAX: ffffffffffffffda RBX: 00007fa194f5ec90 RCX: 00000000004597c9 RDX: 0000000000000040 RSI: 0000000000000000 RDI: 0000000000000003 __do_sys_splice fs/splice.c:1415 [inline] __se_sys_splice fs/splice.c:1395 [inline] __x64_sys_splice+0x2c6/0x330 fs/splice.c:1395 RBP: 000000000075bf20 R08: 0000000000000001 R09: 0000000000000000 do_syscall_64+0xfd/0x620 arch/x86/entry/common.c:293 R10: 0000000020000200 R11: 0000000000000246 R12: 00007fa194f5f6d4 entry_SYSCALL_64_after_hwframe+0x49/0xbe R13: 00000000004c775d R14: 00000000004dcf08 R15: 0000000000000004 RIP: 0033:0x4597c9 Code: fd b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 cb b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 kobject: 'loop0' (00000000d72a1d95): kobject_uevent_env RSP: 002b:00007f0c59527c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 RAX: ffffffffffffffda RBX: 00007f0c59527c90 RCX: 00000000004597c9 RDX: 0000000000000004 RSI: 0000000000000000 RDI: 0000000000000003 RBP: 000000000075bf20 R08: 0000000100000300 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 00007f0c595286d4 R13: 00000000004c8d54 R14: 00000000004def30 R15: 0000000000000005 Modules linked in: ---[ end trace 7d59c38488d9855b ]--- kobject: 'loop0' (00000000d72a1d95): fill_kobj_path: path = '/devices/virtual/block/loop0' RIP: 0010:scatterwalk_start include/crypto/scatterwalk.h:73 [inline] RIP: 0010:scatterwalk_pagedone include/crypto/scatterwalk.h:98 [inline] RIP: 0010:scatterwalk_done include/crypto/scatterwalk.h:106 [inline] RIP: 0010:gcmaes_crypt_by_sg.constprop.0+0xde2/0x1850 arch/x86/crypto/aesni-intel_glue.c:868 Code: 82 f3 f9 ff ff e8 6e ac 35 00 4c 89 f7 e8 c6 c7 eb 01 48 8d 78 08 49 89 c6 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e a5 09 00 00 41 8b 46 08 89 84 RSP: 0018:ffff88804053f230 EFLAGS: 00010202 RAX: dffffc0000000000 RBX: 0000000000000056 RCX: ffffc900108c4000 RDX: 0000000000000001 RSI: ffffffff8321329b RDI: 0000000000000008 RBP: ffff88804053f570 R08: ffff88808af3a6c0 R09: 000000000000000d R10: ffff8880a7a26040 R11: 0000000000000010 R12: 0000000000000000 R13: 0000000000000056 R14: 0000000000000000 R15: 0000000000000029 FS: 00007f0c59528700(0000) GS:ffff8880ae800000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000001b31c21000 CR3: 00000000a924f000 CR4: 00000000001406f0 kobject: 'loop0' (00000000d72a1d95): kobject_uevent_env