kasan: CONFIG_KASAN_INLINE enabled kasan: GPF could be caused by NULL-ptr deref or user memory access general protection fault: 0000 [#1] PREEMPT SMP KASAN Dumping ftrace buffer: (ftrace buffer empty) Modules linked in: CPU: 1 PID: 10185 Comm: syz-executor5 Not tainted 4.9.122-g54068d6 #78 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 task: ffff8801a4889800 task.stack: ffff8801a4130000 RIP: 0010:[] [] get_work_pool+0xf6/0x1e0 kernel/workqueue.c:716 RSP: 0018:ffff8801a4137418 EFLAGS: 00010006 RAX: dffffc0000000000 RBX: 0000001ffffffe00 RCX: ffffc900044bb000 RDX: 00000003ffffffc0 RSI: ffffffff811862ce RDI: 0000000000000046 RBP: ffff8801a4137430 R08: 0000000000000096 R09: 0000000000000001 R10: 0000000000000000 R11: 1ffff1003491141d R12: dffffc0000000000 R13: 0000000000000001 R14: ffff8801d9984500 R15: ffff8801b089c770 FS: 00007f2879ab4700(0000) GS:ffff8801db300000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 0000000020000300 CR3: 00000001be3d0000 CR4: 00000000001606f0 Stack: ffff8801db326000 dffffc0000000000 0000000000000001 ffff8801a41374a8 ffffffff8118a4ac ffff8801a488a0c0 0000000600000007 ffff8801a4889800 fffffbfff098c050 0000000000000019 ffff8801d9984680 0000004000000001 Call Trace: [] __queue_work+0x14c/0xf10 kernel/workqueue.c:1401 [] queue_work_on+0x97/0xa0 kernel/workqueue.c:1486 [] queue_work include/linux/workqueue.h:477 [inline] [] schedule_work include/linux/workqueue.h:535 [inline] [] xfrm_policy_insert+0xa78/0xf20 net/xfrm/xfrm_policy.c:830 [] xfrm_add_policy+0x248/0x4f0 net/xfrm/xfrm_user.c:1565 [] xfrm_user_rcv_msg+0x3c7/0x6b0 net/xfrm/xfrm_user.c:2531 [] netlink_rcv_skb+0x145/0x370 net/netlink/af_netlink.c:2365 [] xfrm_netlink_rcv+0x6f/0x90 net/xfrm/xfrm_user.c:2539 [] netlink_unicast_kernel net/netlink/af_netlink.c:1285 [inline] [] netlink_unicast+0x4d8/0x6f0 net/netlink/af_netlink.c:1311 [] netlink_sendmsg+0x795/0xc30 net/netlink/af_netlink.c:1859 [] sock_sendmsg_nosec net/socket.c:636 [inline] [] sock_sendmsg+0xcc/0x110 net/socket.c:646 [] ___sys_sendmsg+0x6fc/0x840 net/socket.c:1970 [] __sys_sendmsg+0xd9/0x190 net/socket.c:2004 [] SYSC_sendmsg net/socket.c:2015 [inline] [] SyS_sendmsg+0x2d/0x50 net/socket.c:2011 [] do_syscall_64+0x1a6/0x490 arch/x86/entry/common.c:282 [] entry_SYSCALL_64_after_swapgs+0x5d/0xdb Code: b1 aa 1d 00 48 89 d8 5b 41 5c 41 5d 5d c3 e8 a2 aa 1d 00 48 81 e3 00 fe ff ff 48 b8 00 00 00 00 00 fc ff df 48 89 da 48 c1 ea 03 <80> 3c 02 00 0f 85 c6 00 00 00 48 8b 1b e8 78 aa 1d 00 48 89 d8 RIP [] get_work_pool+0xf6/0x1e0 kernel/workqueue.c:716 RSP ---[ end trace aaa37310a125065d ]---