RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003
RBP: 00007fd1afd191d0 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000001000000 R11: 0000000000000246 R12: 0000000000000001
R13: 00007ffe34f7a21f R14: 00007fd1afd19300 R15: 0000000000022000
==================================================================
BUG: KASAN: use-after-free in memcpy include/linux/string.h:377 [inline]
BUG: KASAN: use-after-free in memcpy_dir crypto/scatterwalk.c:28 [inline]
BUG: KASAN: use-after-free in scatterwalk_copychunks+0x271/0x6a0 crypto/scatterwalk.c:43
Read of size 4096 at addr ffff888031158000 by task syz-executor.2/1745

CPU: 1 PID: 1745 Comm: syz-executor.2 Not tainted 4.19.211-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
Call Trace:
 __dump_stack lib/dump_stack.c:77 [inline]
 dump_stack+0x1fc/0x2ef lib/dump_stack.c:118
 print_address_description.cold+0x54/0x219 mm/kasan/report.c:256
 kasan_report_error.cold+0x8a/0x1b9 mm/kasan/report.c:354
 kasan_report+0x8f/0xa0 mm/kasan/report.c:412
 memcpy+0x20/0x50 mm/kasan/kasan.c:302
 memcpy include/linux/string.h:377 [inline]
 memcpy_dir crypto/scatterwalk.c:28 [inline]
 scatterwalk_copychunks+0x271/0x6a0 crypto/scatterwalk.c:43
 scatterwalk_map_and_copy crypto/scatterwalk.c:72 [inline]
 scatterwalk_map_and_copy+0x121/0x1a0 crypto/scatterwalk.c:60
 gcmaes_encrypt.constprop.0+0x760/0xd90 arch/x86/crypto/aesni-intel_glue.c:956

The buggy address belongs to the page:
page:ffffea0000c45600 count:2 mapcount:0 mapping:ffff8880b1af18b8 index:0xb63
flags: 0xfff00000001038(uptodate|dirty|lru|private)
raw: 00fff00000001038 ffffea0000c6a6c8 ffffea0000c45648 ffff8880b1af18b8
raw: 0000000000000b63 ffff8880534a52a0 00000002ffffffff ffff8880b59f68c0
page dumped because: kasan: bad access detected
page->mem_cgroup:ffff8880b59f68c0

Memory state around the buggy address:
 ffff888031157f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff888031157f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
>ffff888031158000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
                   ^
 ffff888031158080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
 ffff888031158100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
==================================================================