kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory accessgeneral protection fault: 0000 [#1] PREEMPT SMP KASAN Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 0 PID: 2478 Comm: syz-executor596 Not tainted 4.4.150-g5541782 #83 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8801d9440000 task.stack: ffff8801d7a18000 RIP: 0010:[] [] get_work_pool+0xfb/0x1e0 kernel/workqueue.c:724 RSP: 0018:ffff8801d7a1f478 EFLAGS: 00010006 RAX: dffffc0000000000 RBX: 00000000fffffe00 RCX: 0000000000000000 RDX: 000000001fffffc0 RSI: ffffffff8117c493 RDI: 0000000000000046 RBP: ffff8801d7a1f490 R08: 0000000000000092 R09: 0000000000000001 R10: 0000000000000000 R11: ffff8801d9440000 R12: 0000000000000000 R13: ffff8801d991e000 R14: ffff8801db223c00 R15: ffff8800ac9d1638 FS: 0000000000e0e880(0063) GS:ffff8801db200000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000000415020 CR3: 00000001d3b62000 CR4: 00000000001606f0 DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 Stack: dffffc0000000000 0000000000000000 ffff8801d991e000 ffff8801d7a1f510 ffffffff8117f166 ffff8801d94408d8 0000000600000007 ffff8801d991e188 0000000000000010 ffff8801d991e180 0000000000023c00 ffffed003b323c31 Call Trace: [] __queue_work+0x146/0xea0 kernel/workqueue.c:1375 [] queue_work_on+0x4b/0xb0 kernel/workqueue.c:1458 [] queue_work include/linux/workqueue.h:475 [inline] [] schedule_work include/linux/workqueue.h:533 [inline] [] xfrm_policy_insert+0xa41/0xed0 net/xfrm/xfrm_policy.c:813 [] xfrm_add_policy+0x248/0x500 net/xfrm/xfrm_user.c:1561 [] xfrm_user_rcv_msg+0x3d6/0x6c0 net/xfrm/xfrm_user.c:2544 [] netlink_rcv_skb+0x145/0x370 net/netlink/af_netlink.c:2361 [] xfrm_netlink_rcv+0x6f/0x90 net/xfrm/xfrm_user.c:2552 [] netlink_unicast_kernel net/netlink/af_netlink.c:1277 [inline] [] netlink_unicast+0x4e9/0x700 net/netlink/af_netlink.c:1303 [] netlink_sendmsg+0x795/0xc30 net/netlink/af_netlink.c:1859 [] sock_sendmsg_nosec net/socket.c:626 [inline] [] sock_sendmsg+0xcc/0x110 net/socket.c:636 [] ___sys_sendmsg+0x745/0x880 net/socket.c:1963 [] __sys_sendmsg+0xd6/0x190 net/socket.c:1997 [] SYSC_sendmsg net/socket.c:2008 [inline] [] SyS_sendmsg+0x2d/0x50 net/socket.c:2004 [] entry_SYSCALL_64_fastpath+0x22/0x9e Code: 5c 80 1d 00 48 89 d8 5b 41 5c 41 5d 5d c3 e8 4d 80 1d 00 48 81 e3 00 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 c2 00 00 00 48 8b 1b e8 23 80 1d 00 48 89 d8 RIP [] get_work_pool+0xfb/0x1e0 kernel/workqueue.c:724 RSP ---[ end trace 4ed6c42e14e11fa0 ]---