kasan: CONFIG_KASAN_INLINE enabled
kasan: GPF could be caused by NULL-ptr deref or user memory access
general protection fault: 0000 [#1] PREEMPT SMP KASAN
Modules linked in:
CPU: 0 PID: 10149 Comm: syz-executor.5 Not tainted 4.14.213-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
task: ffff8880ac1526c0 task.stack: ffff88805b1f0000
RIP: 0010:scatterwalk_start include/crypto/scatterwalk.h:86 [inline]
RIP: 0010:scatterwalk_pagedone include/crypto/scatterwalk.h:111 [inline]
RIP: 0010:scatterwalk_copychunks+0x4a3/0x680 crypto/scatterwalk.c:55
RSP: 0018:ffff88805b1f7520 EFLAGS: 00010202
RAX: dffffc0000000000 RBX: 0000000000001000 RCX: ffffc90009ef3000
RDX: 0000000000000002 RSI: ffffffff831eea94 RDI: ffff8880ac66e938
RBP: 0000000000000000 R08: 0000000000000001 R09: ffffed100a286d19
R10: ffff8880514368cc R11: 0000000000000000 R12: 0000000000001000
R13: ffff88805b1f75d8 R14: 0000000000001000 R15: ffff8880ac66e944
FS:  00007fb550791700(0000) GS:ffff8880ba400000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000000020c00000 CR3: 00000000abd31000 CR4: 00000000001406f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 scatterwalk_map_and_copy crypto/scatterwalk.c:72 [inline]
 scatterwalk_map_and_copy+0x100/0x1a0 crypto/scatterwalk.c:60
 gcmaes_encrypt.constprop.0+0x5b5/0xc00 arch/x86/crypto/aesni-intel_glue.c:778
Code: fc ff df 80 3c 02 00 0f 85 d9 01 00 00 48 8d 45 10 49 89 6d 00 48 89 c2 48 89 44 24 18 48 b8 00 00 00 00 00 fc ff df 48 c1 ea 03 <0f> b6 04 02 84 c0 74 08 3c 03 0f 8e 81 01 00 00 48 b8 00 00 00 
RIP: scatterwalk_start include/crypto/scatterwalk.h:86 [inline] RSP: ffff88805b1f7520
RIP: scatterwalk_pagedone include/crypto/scatterwalk.h:111 [inline] RSP: ffff88805b1f7520
RIP: scatterwalk_copychunks+0x4a3/0x680 crypto/scatterwalk.c:55 RSP: ffff88805b1f7520
netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'.
netlink: 40 bytes leftover after parsing attributes in process `syz-executor.3'.
---[ end trace 88331179510767fc ]---