1
[ 1263.081303][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1263.081303][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1263.081303][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1263.081303][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1263.081303][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1263.081303][ C1] CR2: 00007f4ebe494000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1263.081303][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1263.081303][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1263.081303][ C1] Call Trace:
[ 1263.081303][ C1]
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1263.081303][ C1] __run_hrtimer+0x48b/0xd20
[ 1263.081303][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1263.081303][ C1] ? hrtimer_init+0x570/0x570
[ 1263.081303][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1263.081303][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1263.081303][ C1]
[ 1263.081303][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1263.081303][ C1] RIP: 0010:virt_to_page_or_null+0xe5/0xf0
[ 1263.081303][ C1] Code: 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f <48> 01 c2 e9 49 ff ff ff 0f 1f 00 55 48 89 e5 41 57 41 56 41 55 41
[ 1263.081303][ C1] RSP: 0018:ffff888115ebf680 EFLAGS: 00000293
[ 1263.081303][ C1] RAX: 00000000116a06c0 RBX: ffffffff916a06c0 RCX: ffff888111601f00
[ 1263.081303][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff916a06c0
[ 1263.081303][ C1] RBP: ffff888115ebf680 R08: ffffea000000000f R09: ffff88813fffa000
[ 1263.081303][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: ffff8881116029c8
[ 1263.081303][ C1] R13: ffffffff916a06c0 R14: 0000000000000000 R15: 0000000000000001
[ 1263.081303][ C1] kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1263.081303][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1263.081303][ C1] make_kuid+0x69/0x550
[ 1263.081303][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1263.081303][ C1] ? step_into+0xe14/0x33a0
[ 1263.081303][ C1] generic_permission+0xcb/0xe90
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] inode_permission+0x171/0x9c0
[ 1263.081303][ C1] link_path_walk+0x439/0x1540
[ 1263.081303][ C1] path_openat+0x383/0x6be0
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? __msan_get_context_state+0x9/0x20
[ 1263.081303][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1263.081303][ C1] ? should_fail+0x72/0x9e0
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] do_filp_open+0x2b8/0x710
[ 1263.081303][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1263.081303][ C1] do_sys_openat2+0x25f/0x830
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1263.081303][ C1] __se_sys_open+0x271/0x2d0
[ 1263.081303][ C1] __x64_sys_open+0x4a/0x70
[ 1263.081303][ C1] do_syscall_64+0x9f/0x140
[ 1263.081303][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1263.081303][ C1] RIP: 0033:0x7f4ec2407840
[ 1263.081303][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1263.081303][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1263.081303][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1263.081303][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1263.081303][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1263.081303][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1263.081303][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1263.081303][ C1] ---[ end trace 4b028c9d42567c29 ]---
[ 1263.081303][ C1] ------------[ cut here ]------------
[ 1263.081303][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1263.081303][ C1] Modules linked in:
[ 1263.081303][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1263.081303][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1263.081303][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1263.081303][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1263.081303][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1263.081303][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1263.081303][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1263.081303][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1263.081303][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1263.081303][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1263.081303][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1263.081303][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1263.081303][ C1] CR2: 00007f4ebe494000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1263.081303][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1263.081303][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1263.081303][ C1] Call Trace:
[ 1263.081303][ C1]
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1263.081303][ C1] __run_hrtimer+0x48b/0xd20
[ 1263.081303][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1263.081303][ C1] ? hrtimer_init+0x570/0x570
[ 1263.081303][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1263.081303][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1263.081303][ C1]
[ 1263.081303][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1263.081303][ C1] RIP: 0010:virt_to_page_or_null+0xe5/0xf0
[ 1263.081303][ C1] Code: 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f <48> 01 c2 e9 49 ff ff ff 0f 1f 00 55 48 89 e5 41 57 41 56 41 55 41
[ 1263.081303][ C1] RSP: 0018:ffff888115ebf680 EFLAGS: 00000293
[ 1263.081303][ C1] RAX: 00000000116a06c0 RBX: ffffffff916a06c0 RCX: ffff888111601f00
[ 1263.081303][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff916a06c0
[ 1263.081303][ C1] RBP: ffff888115ebf680 R08: ffffea000000000f R09: ffff88813fffa000
[ 1263.081303][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: ffff8881116029c8
[ 1263.081303][ C1] R13: ffffffff916a06c0 R14: 0000000000000000 R15: 0000000000000001
[ 1263.081303][ C1] kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1263.081303][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1263.081303][ C1] make_kuid+0x69/0x550
[ 1263.081303][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1263.081303][ C1] ? step_into+0xe14/0x33a0
[ 1263.081303][ C1] generic_permission+0xcb/0xe90
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] inode_permission+0x171/0x9c0
[ 1263.081303][ C1] link_path_walk+0x439/0x1540
[ 1263.081303][ C1] path_openat+0x383/0x6be0
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? __msan_get_context_state+0x9/0x20
[ 1263.081303][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1263.081303][ C1] ? should_fail+0x72/0x9e0
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1263.081303][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] do_filp_open+0x2b8/0x710
[ 1263.081303][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1263.081303][ C1] do_sys_openat2+0x25f/0x830
[ 1263.081303][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1263.081303][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1263.081303][ C1] __se_sys_open+0x271/0x2d0
[ 1263.081303][ C1] __x64_sys_open+0x4a/0x70
[ 1263.081303][ C1] do_syscall_64+0x9f/0x140
[ 1263.081303][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1263.081303][ C1] RIP: 0033:0x7f4ec2407840
[ 1263.081303][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1263.081303][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1263.081303][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1263.081303][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1263.081303][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1263.081303][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1263.081303][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1263.081303][ C1] ---[ end trace 4b028c9d42567c2a ]---
[ 1264.092959][ C1] ------------[ cut here ]------------
[ 1264.098547][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1264.102066][ C1] Modules linked in:
[ 1264.102066][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1264.102066][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1264.102066][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1264.102066][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1264.102066][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1264.102066][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1264.102066][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1264.102066][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1264.102066][ C1] R10: 000000004d1d8650 R11: ffff888111601f40 R12: 0000000000000000
[ 1264.102066][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1264.102066][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1264.102066][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1264.102066][ C1] CR2: 00007f4ebe494000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1264.102066][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1264.102066][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1264.102066][ C1] Call Trace:
[ 1264.102066][ C1]
[ 1264.102066][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.102066][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1264.102066][ C1] __run_hrtimer+0x48b/0xd20
[ 1264.102066][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1264.102066][ C1] ? hrtimer_init+0x570/0x570
[ 1264.102066][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1264.102066][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1264.102066][ C1]
[ 1264.102066][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1264.102066][ C1] RIP: 0010:virt_to_page_or_null+0xe5/0xf0
[ 1264.102066][ C1] Code: 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f <48> 01 c2 e9 49 ff ff ff 0f 1f 00 55 48 89 e5 41 57 41 56 41 55 41
[ 1264.102066][ C1] RSP: 0018:ffff888115ebf680 EFLAGS: 00000293
[ 1264.102066][ C1] RAX: 00000000116a06c0 RBX: ffffffff916a06c0 RCX: ffff888111601f00
[ 1264.102066][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff916a06c0
[ 1264.102066][ C1] RBP: ffff888115ebf680 R08: ffffea000000000f R09: ffff88813fffa000
[ 1264.102066][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: ffff8881116029c8
[ 1264.102066][ C1] R13: ffffffff916a06c0 R14: 0000000000000000 R15: 0000000000000001
[ 1264.102066][ C1] kmsan_get_metadata+0x116/0x180
[ 1264.102066][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1264.102066][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1264.102066][ C1] make_kuid+0x69/0x550
[ 1264.102066][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1264.102066][ C1] ? step_into+0xe14/0x33a0
[ 1264.102066][ C1] generic_permission+0xcb/0xe90
[ 1264.102066][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.102066][ C1] inode_permission+0x171/0x9c0
[ 1264.102066][ C1] link_path_walk+0x439/0x1540
[ 1264.102066][ C1] path_openat+0x383/0x6be0
[ 1264.102066][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.102066][ C1] ? __msan_get_context_state+0x9/0x20
[ 1264.102066][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1264.102066][ C1] ? should_fail+0x72/0x9e0
[ 1264.102066][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.102066][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.102066][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1264.102066][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.102066][ C1] do_filp_open+0x2b8/0x710
[ 1264.102066][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1264.102066][ C1] do_sys_openat2+0x25f/0x830
[ 1264.102066][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.102066][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1264.102066][ C1] __se_sys_open+0x271/0x2d0
[ 1264.102066][ C1] __x64_sys_open+0x4a/0x70
[ 1264.102066][ C1] do_syscall_64+0x9f/0x140
[ 1264.102066][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1264.102066][ C1] RIP: 0033:0x7f4ec2407840
[ 1264.102066][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1264.102066][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1264.102066][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1264.102066][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1264.102066][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1264.102066][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1264.102066][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1264.102066][ C1] ---[ end trace 4b028c9d42567c2b ]---
06:43:20 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x20000000, &(0x7f0000000840)={[{@grpid}]})
[ 1264.703476][ C1] ------------[ cut here ]------------
[ 1264.709090][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1264.712556][ C1] Modules linked in:
[ 1264.712556][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1264.712556][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1264.712556][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1264.712556][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1264.712556][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1264.712556][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1264.712556][ C1] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1264.712556][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1264.712556][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1264.712556][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1264.712556][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1264.712556][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1264.712556][ C1] CR2: 000000000810e9a2 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1264.712556][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1264.712556][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1264.712556][ C1] Call Trace:
[ 1264.712556][ C1]
[ 1264.712556][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.868238][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1264.868238][ C1] __run_hrtimer+0x48b/0xd20
[ 1264.868238][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1264.868238][ C1] ? hrtimer_init+0x570/0x570
[ 1264.868238][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1264.898087][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1264.898087][ C1]
[ 1264.898087][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1264.898087][ C1] RIP: 0010:virt_to_page_or_null+0x1/0xf0
[ 1264.898087][ C1] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00
[ 1264.928395][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000297
[ 1264.928395][ C1] RAX: 00000000007fffc4 RBX: ffff888085c2d248 RCX: 000000008542d200
[ 1264.928395][ C1] RDX: 0000000085c2d248 RSI: 0000000000000001 RDI: ffff888085c2d248
[ 1264.928395][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1264.928395][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 80000000a921e007
[ 1264.928395][ C1] R13: ffff888085c2d248 R14: 0000000000000001 R15: 0000000000000001
[ 1264.928395][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.928395][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.928395][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1264.928395][ C1] copy_pte_range+0x1ad8/0x50c0
[ 1264.928395][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1264.928395][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1264.928395][ C1] copy_page_range+0x1a81/0x2410
[ 1264.928395][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1264.928395][ C1] dup_mmap+0x1674/0x2250
[ 1264.928395][ C1] dup_mm+0x1f0/0x7c0
[ 1264.928395][ C1] copy_process+0x3ec4/0x9b80
[ 1264.928395][ C1] ? kmsan_get_metadata+0xd1/0x180
06:43:21 executing program 4:
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x1e, &(0x7f0000000000)=[@in={0x2, 0x0, @local}], 0x10)
[ 1264.928395][ C1] kernel_clone+0x4ea/0x1350
[ 1264.928395][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1264.928395][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1264.928395][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1264.928395][ C1] __do_fast_syscall_32+0x127/0x180
[ 1265.078056][ C1] do_fast_syscall_32+0x77/0xd0
[ 1265.078056][ C1] do_SYSENTER_32+0x73/0x90
[ 1265.078056][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1265.078056][ C1] RIP: 0023:0xf7f41549
[ 1265.078056][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1265.108082][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1265.108082][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1265.108082][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1265.108082][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1265.108082][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1265.108082][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1265.108082][ C1] ---[ end trace 4b028c9d42567c2c ]---
[ 1265.177099][ C1] ------------[ cut here ]------------
[ 1265.182672][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1265.186320][ C1] Modules linked in:
[ 1265.186320][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1265.186320][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1265.186320][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1265.186320][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1265.186320][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1265.186320][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1265.186320][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1265.186320][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1265.186320][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1265.186320][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1265.186320][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1265.186320][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1265.186320][ C1] CR2: 000000000810e9a2 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1265.186320][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1265.186320][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1265.186320][ C1] Call Trace:
[ 1265.186320][ C1]
[ 1265.186320][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.186320][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1265.186320][ C1] __run_hrtimer+0x48b/0xd20
[ 1265.186320][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1265.186320][ C1] ? hrtimer_init+0x570/0x570
[ 1265.186320][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1265.186320][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1265.186320][ C1]
[ 1265.186320][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1265.186320][ C1] RIP: 0010:virt_to_page_or_null+0x1/0xf0
[ 1265.186320][ C1] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00
[ 1265.186320][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000297
[ 1265.186320][ C1] RAX: 00000000007fffc4 RBX: ffff888085c2d248 RCX: 000000008542d200
[ 1265.186320][ C1] RDX: 0000000085c2d248 RSI: 0000000000000001 RDI: ffff888085c2d248
[ 1265.186320][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1265.186320][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 80000000a921e007
[ 1265.186320][ C1] R13: ffff888085c2d248 R14: 0000000000000001 R15: 0000000000000001
[ 1265.186320][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1265.186320][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.186320][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1265.186320][ C1] copy_pte_range+0x1ad8/0x50c0
[ 1265.186320][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1265.186320][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.186320][ C1] copy_page_range+0x1a81/0x2410
[ 1265.186320][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1265.186320][ C1] dup_mmap+0x1674/0x2250
[ 1265.186320][ C1] dup_mm+0x1f0/0x7c0
[ 1265.186320][ C1] copy_process+0x3ec4/0x9b80
[ 1265.186320][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1265.186320][ C1] kernel_clone+0x4ea/0x1350
[ 1265.186320][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1265.186320][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1265.186320][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1265.186320][ C1] __do_fast_syscall_32+0x127/0x180
[ 1265.186320][ C1] do_fast_syscall_32+0x77/0xd0
[ 1265.186320][ C1] do_SYSENTER_32+0x73/0x90
[ 1265.186320][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1265.186320][ C1] RIP: 0023:0xf7f41549
[ 1265.186320][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1265.186320][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1265.186320][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1265.186320][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1265.186320][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1265.186320][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1265.186320][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1265.186320][ C1] ---[ end trace 4b028c9d42567c2d ]---
[ 1265.646570][ C1] ------------[ cut here ]------------
[ 1265.652161][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1265.655764][ C1] Modules linked in:
[ 1265.655764][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1265.655764][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1265.655764][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1265.655764][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1265.655764][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1265.655764][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1265.655764][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1265.655764][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1265.655764][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1265.655764][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1265.655764][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1265.655764][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1265.655764][ C1] CR2: 000000000810e9a2 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1265.655764][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1265.655764][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1265.655764][ C1] Call Trace:
[ 1265.655764][ C1]
[ 1265.655764][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.655764][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1265.655764][ C1] __run_hrtimer+0x48b/0xd20
[ 1265.655764][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1265.655764][ C1] ? hrtimer_init+0x570/0x570
[ 1265.655764][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1265.655764][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1265.655764][ C1]
[ 1265.655764][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1265.655764][ C1] RIP: 0010:virt_to_page_or_null+0x1/0xf0
[ 1265.655764][ C1] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00
[ 1265.655764][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000297
[ 1265.655764][ C1] RAX: 00000000007fffc4 RBX: ffff888085c2d248 RCX: 000000008542d200
[ 1265.655764][ C1] RDX: 0000000085c2d248 RSI: 0000000000000001 RDI: ffff888085c2d248
[ 1265.655764][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1265.655764][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 80000000a921e007
[ 1265.655764][ C1] R13: ffff888085c2d248 R14: 0000000000000001 R15: 0000000000000001
[ 1265.655764][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1265.655764][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.655764][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1265.655764][ C1] copy_pte_range+0x1ad8/0x50c0
[ 1265.655764][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1265.655764][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1265.655764][ C1] copy_page_range+0x1a81/0x2410
[ 1265.655764][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1265.655764][ C1] dup_mmap+0x1674/0x2250
[ 1265.655764][ C1] dup_mm+0x1f0/0x7c0
[ 1265.655764][ C1] copy_process+0x3ec4/0x9b80
[ 1265.655764][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1265.655764][ C1] kernel_clone+0x4ea/0x1350
[ 1265.655764][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1265.655764][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1265.655764][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1265.655764][ C1] __do_fast_syscall_32+0x127/0x180
[ 1265.655764][ C1] do_fast_syscall_32+0x77/0xd0
[ 1265.655764][ C1] do_SYSENTER_32+0x73/0x90
[ 1265.655764][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1265.655764][ C1] RIP: 0023:0xf7f41549
[ 1265.655764][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1265.655764][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1265.655764][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1265.655764][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1265.655764][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1265.655764][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1265.655764][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1265.655764][ C1] ---[ end trace 4b028c9d42567c2e ]---
[ 1266.215534][ C1] ------------[ cut here ]------------
[ 1266.221158][ C1] WARNING: CPU: 1 PID: 0 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1266.224653][ C1] Modules linked in:
[ 1266.224653][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1266.224653][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1266.224653][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1266.224653][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1266.224653][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1266.224653][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888101bf9f40
[ 1266.224653][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1266.224653][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1266.224653][ C1] R10: 00000000b56c2fd0 R11: 00000126d0dee4f2 R12: 0000000000000000
[ 1266.224653][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1266.224653][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1266.224653][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1266.224653][ C1] CR2: 000000000000010c CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1266.224653][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1266.224653][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1266.224653][ C1] Call Trace:
[ 1266.224653][ C1]
[ 1266.224653][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1266.224653][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1266.224653][ C1] __run_hrtimer+0x48b/0xd20
[ 1266.224653][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1266.224653][ C1] ? __msan_instrument_asm_store+0x104/0x130
[ 1266.224653][ C1] ? hrtimer_init+0x570/0x570
[ 1266.224653][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1266.224653][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1266.224653][ C1]
[ 1266.224653][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1266.224653][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 1266.224653][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 9c e2 2b fb 0f 00 2d 1f 33 6e 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 7f d3 ae fb e9 e5
[ 1266.224653][ C1] RSP: 0018:ffff888102403c40 EFLAGS: 00000246
[ 1266.224653][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f9f40
[ 1266.224653][ C1] RDX: ffff888101bf9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 1266.224653][ C1] RBP: ffff888102403cd8 R08: ffffffff8690512e R09: ffff88813fffa000
[ 1266.224653][ C1] R10: 0000000000000002 R11: ffff888101bf9f40 R12: 0000000000000000
[ 1266.224653][ C1] R13: ffff888142d9c464 R14: 0000000000000000 R15: ffff888101bfa9c8
[ 1266.224653][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 1266.224653][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 1266.224653][ C1] cpuidle_enter_state+0x99e/0x1750
[ 1266.224653][ C1] cpuidle_enter+0xe3/0x170
[ 1266.224653][ C1] do_idle+0x5df/0x790
[ 1266.224653][ C1] cpu_startup_entry+0x45/0x50
[ 1266.224653][ C1] ? setup_APIC_timer+0x210/0x210
[ 1266.224653][ C1] start_secondary+0xe9/0xf0
[ 1266.224653][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 1266.224653][ C1] ---[ end trace 4b028c9d42567c2f ]---
[ 1266.553548][ C1] ------------[ cut here ]------------
[ 1266.559098][ C1] WARNING: CPU: 1 PID: 0 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1266.562748][ C1] Modules linked in:
[ 1266.562748][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1266.562748][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1266.562748][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1266.562748][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1266.562748][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1266.562748][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888101bf9f40
[ 1266.562748][ C1] RDX: 0000000000010000 RSI: 0000000000000014 RDI: 0000000000000001
[ 1266.562748][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1266.562748][ C1] R10: 00000000b56c2fd0 R11: 00000126e505cf28 R12: 0000000000000000
[ 1266.562748][ C1] R13: 0000000000000000 R14: 0000000000000014 R15: ffff88813fd27b00
[ 1266.562748][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1266.562748][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1266.562748][ C1] CR2: 000000000000010c CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1266.562748][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1266.562748][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1266.562748][ C1] Call Trace:
[ 1266.562748][ C1]
[ 1266.562748][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1266.562748][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1266.562748][ C1] __run_hrtimer+0x48b/0xd20
[ 1266.562748][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1266.562748][ C1] ? __msan_instrument_asm_store+0x104/0x130
[ 1266.562748][ C1] ? hrtimer_init+0x570/0x570
[ 1266.562748][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1266.562748][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1266.562748][ C1]
[ 1266.562748][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1266.562748][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 1266.562748][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 9c e2 2b fb 0f 00 2d 1f 33 6e 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 7f d3 ae fb e9 e5
[ 1266.562748][ C1] RSP: 0018:ffff888102403c40 EFLAGS: 00000246
[ 1266.562748][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f9f40
[ 1266.562748][ C1] RDX: ffff888101bf9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 1266.562748][ C1] RBP: ffff888102403cd8 R08: ffffffff8690512e R09: ffff88813fffa000
[ 1266.562748][ C1] R10: 0000000000000002 R11: ffff888101bf9f40 R12: 0000000000000000
[ 1266.562748][ C1] R13: ffff888142d9c464 R14: 0000000000000000 R15: ffff888101bfa9c8
[ 1266.562748][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 1266.562748][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 1266.562748][ C1] cpuidle_enter_state+0x99e/0x1750
[ 1266.562748][ C1] cpuidle_enter+0xe3/0x170
[ 1266.562748][ C1] do_idle+0x5df/0x790
[ 1266.562748][ C1] cpu_startup_entry+0x45/0x50
[ 1266.562748][ C1] ? setup_APIC_timer+0x210/0x210
[ 1266.562748][ C1] start_secondary+0xe9/0xf0
[ 1266.562748][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 1266.562748][ C1] ---[ end trace 4b028c9d42567c30 ]---
[ 1266.562748][ C1] ------------[ cut here ]------------
[ 1266.562748][ C1] WARNING: CPU: 1 PID: 0 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1266.562748][ C1] Modules linked in:
[ 1266.562748][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1266.562748][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1266.562748][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1266.562748][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1266.562748][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1266.562748][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888101bf9f40
[ 1266.562748][ C1] RDX: 0000000000010000 RSI: 0000000000000014 RDI: 0000000000000001
[ 1266.562748][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1266.562748][ C1] R10: 000000004d1d8650 R11: 00000126e505cf28 R12: 0000000000000000
[ 1266.562748][ C1] R13: 0000000000000000 R14: 0000000000000014 R15: ffff88813fd27b00
[ 1266.562748][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1266.562748][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1266.562748][ C1] CR2: 000000000000010c CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1266.562748][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1266.562748][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1266.562748][ C1] Call Trace:
[ 1266.562748][ C1]
[ 1266.562748][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1266.562748][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1266.562748][ C1] __run_hrtimer+0x48b/0xd20
[ 1266.562748][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1266.562748][ C1] ? __msan_instrument_asm_store+0x104/0x130
[ 1266.562748][ C1] ? hrtimer_init+0x570/0x570
[ 1266.562748][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1266.562748][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1266.562748][ C1]
[ 1266.562748][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1266.562748][ C1] RIP: 0010:acpi_idle_enter+0x61d/0x760
[ 1266.562748][ C1] Code: f7 d3 44 21 e3 48 85 db 0f 84 ec 00 00 00 4d 85 e4 0f 85 f4 00 00 00 e9 0c 00 00 00 e8 9c e2 2b fb 0f 00 2d 1f 33 6e 09 fb f4 e9 e0 00 00 00 84 c0 8b 7d b8 0f 45 7d 98 e8 7f d3 ae fb e9 e5
[ 1266.562748][ C1] RSP: 0018:ffff888102403c40 EFLAGS: 00000246
[ 1266.562748][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00000001017f9f40
[ 1266.562748][ C1] RDX: ffff888101bf9f40 RSI: 0000000000000000 RDI: 0000000000000000
[ 1266.562748][ C1] RBP: ffff888102403cd8 R08: ffffffff8690512e R09: ffff88813fffa000
[ 1266.562748][ C1] R10: 0000000000000002 R11: ffff888101bf9f40 R12: 0000000000000000
[ 1266.562748][ C1] R13: ffff888142d9c464 R14: 0000000000000000 R15: ffff888101bfa9c8
[ 1266.562748][ C1] ? acpi_idle_enter+0x5ee/0x760
[ 1266.562748][ C1] ? acpi_idle_lpi_enter+0x160/0x160
[ 1266.562748][ C1] cpuidle_enter_state+0x99e/0x1750
[ 1266.562748][ C1] cpuidle_enter+0xe3/0x170
[ 1266.562748][ C1] do_idle+0x5df/0x790
[ 1266.562748][ C1] cpu_startup_entry+0x45/0x50
[ 1266.562748][ C1] ? setup_APIC_timer+0x210/0x210
[ 1266.562748][ C1] start_secondary+0xe9/0xf0
06:43:23 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, 0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(0x0, r1, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(0x0, r1, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(r0)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(0x0, r1, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1266.562748][ C1] secondary_startup_64_no_verify+0xb0/0xbb
[ 1266.562748][ C1] ---[ end trace 4b028c9d42567c31 ]---
06:43:23 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0x0, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1267.261737][ C1] ------------[ cut here ]------------
[ 1267.261737][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1267.261737][ C1] Modules linked in:
[ 1267.261737][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1267.261737][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1267.261737][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1267.261737][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1267.261737][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1267.261737][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1267.261737][ C1] RDX: 0000000080010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1267.261737][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1267.261737][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1267.427783][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1267.427783][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1267.427783][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1267.427783][ C1] CR2: 00007f4ebe497000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1267.427783][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1267.427783][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1267.427783][ C1] Call Trace:
[ 1267.427783][ C1]
[ 1267.427783][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1267.427783][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1267.427783][ C1] __run_hrtimer+0x48b/0xd20
[ 1267.427783][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1267.427783][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1267.427783][ C1] ? hrtimer_init+0x570/0x570
[ 1267.427783][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1267.427783][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1267.427783][ C1]
[ 1267.427783][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1267.427783][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1267.427783][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1267.427783][ C1] RSP: 0018:ffff888115ebf910 EFLAGS: 00000206
[ 1267.427783][ C1] RAX: ffff8881116029c8 RBX: 0000000000000246 RCX: ffffffff825a2431
[ 1267.427783][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff888115ebfa4f
[ 1267.427783][ C1] RBP: ffff888115ebf960 R08: 0000000000000002 R09: ffff888115ebf938
[ 1267.427783][ C1] R10: 000000008425d35c R11: ffff888111601f40 R12: ffff888115ebfa4f
[ 1267.427783][ C1] R13: ffff88811a4919c0 R14: 0000000000000001 R15: 00000000069a0004
[ 1267.615858][ C1] ? step_into+0xd1/0x33a0
[ 1267.615858][ C1] ? step_into+0xd1/0x33a0
[ 1267.615858][ C1] ? step_into+0xd1/0x33a0
[ 1267.615858][ C1] step_into+0xd1/0x33a0
[ 1267.615858][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1267.615858][ C1] walk_component+0x8c6/0xbb0
[ 1267.615858][ C1] path_lookupat+0x34f/0x1120
[ 1267.648114][ C1] filename_lookup+0x312/0xc60
[ 1267.648114][ C1] ? getname_flags+0x74c/0xbe0
[ 1267.648114][ C1] user_path_at_empty+0x123/0x140
[ 1267.648114][ C1] do_faccessat+0x779/0xfa0
[ 1267.648114][ C1] __se_sys_access+0x7d/0x90
[ 1267.648114][ C1] __x64_sys_access+0x3e/0x60
[ 1267.648114][ C1] do_syscall_64+0x9f/0x140
[ 1267.648114][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1267.648114][ C1] RIP: 0033:0x7f4ec21339c7
[ 1267.648114][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1267.648114][ C1] RSP: 002b:00007ffda9800708 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1267.648114][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1267.728321][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005607391549a3
[ 1267.728321][ C1] RBP: 00007ffda9800850 R08: 000056073914a3e5 R09: 0000000000000018
[ 1267.728321][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1267.753358][ C1] R13: 0000000000000000 R14: 000056073a8888a0 R15: 00007ffda9800d40
[ 1267.753358][ C1] ---[ end trace 4b028c9d42567c32 ]---
[ 1267.773243][ C1] ------------[ cut here ]------------
[ 1267.778837][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1267.788259][ C1] Modules linked in:
[ 1267.793259][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1267.793259][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1267.808120][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1267.808120][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1267.808120][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1267.808120][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1267.808120][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1267.808120][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1267.808120][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1267.808120][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1267.808120][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1267.808120][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1267.808120][ C1] CR2: 00007f4ebe497000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1267.905650][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1267.905650][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1267.905650][ C1] Call Trace:
[ 1267.905650][ C1]
[ 1267.905650][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1267.940800][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1267.940800][ C1] __run_hrtimer+0x48b/0xd20
[ 1267.940800][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1267.940800][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1267.940800][ C1] ? hrtimer_init+0x570/0x570
[ 1267.940800][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1267.940800][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1267.940800][ C1]
[ 1267.940800][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1267.940800][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1267.940800][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1267.940800][ C1] RSP: 0018:ffff888115ebf910 EFLAGS: 00000206
[ 1267.940800][ C1] RAX: ffff8881116029c8 RBX: 0000000000000246 RCX: ffffffff825a2431
[ 1267.940800][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff888115ebfa4f
[ 1267.940800][ C1] RBP: ffff888115ebf960 R08: 0000000000000002 R09: ffff888115ebf938
[ 1267.940800][ C1] R10: 000000008425d35c R11: ffff888111601f40 R12: ffff888115ebfa4f
[ 1267.940800][ C1] R13: ffff88811a4919c0 R14: 0000000000000001 R15: 00000000069a0004
[ 1267.940800][ C1] ? step_into+0xd1/0x33a0
[ 1267.940800][ C1] ? step_into+0xd1/0x33a0
[ 1267.940800][ C1] ? step_into+0xd1/0x33a0
[ 1267.940800][ C1] step_into+0xd1/0x33a0
[ 1267.940800][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1267.940800][ C1] walk_component+0x8c6/0xbb0
[ 1267.940800][ C1] path_lookupat+0x34f/0x1120
[ 1267.940800][ C1] filename_lookup+0x312/0xc60
[ 1267.940800][ C1] ? getname_flags+0x74c/0xbe0
[ 1267.940800][ C1] user_path_at_empty+0x123/0x140
[ 1267.940800][ C1] do_faccessat+0x779/0xfa0
[ 1267.940800][ C1] __se_sys_access+0x7d/0x90
[ 1267.940800][ C1] __x64_sys_access+0x3e/0x60
[ 1267.940800][ C1] do_syscall_64+0x9f/0x140
[ 1267.940800][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1268.131092][ C1] RIP: 0033:0x7f4ec21339c7
[ 1268.131092][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1268.131092][ C1] RSP: 002b:00007ffda9800708 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1268.131092][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1268.131092][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005607391549a3
[ 1268.131092][ C1] RBP: 00007ffda9800850 R08: 000056073914a3e5 R09: 0000000000000018
[ 1268.131092][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1268.131092][ C1] R13: 0000000000000000 R14: 000056073a8888a0 R15: 00007ffda9800d40
[ 1268.131092][ C1] ---[ end trace 4b028c9d42567c33 ]---
[ 1268.131092][ C1] ------------[ cut here ]------------
[ 1268.131092][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1268.131092][ C1] Modules linked in:
[ 1268.131092][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1268.131092][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1268.131092][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1268.131092][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1268.131092][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1268.131092][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1268.131092][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1268.131092][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1268.131092][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1268.131092][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1268.131092][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1268.131092][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1268.131092][ C1] CR2: 00007f4ebe497000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1268.131092][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1268.131092][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1268.368298][ C1] Call Trace:
[ 1268.368298][ C1]
[ 1268.368298][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1268.368298][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1268.368298][ C1] __run_hrtimer+0x48b/0xd20
[ 1268.368298][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1268.368298][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1268.368298][ C1] ? hrtimer_init+0x570/0x570
[ 1268.368298][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1268.368298][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1268.368298][ C1]
[ 1268.368298][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1268.368298][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1268.368298][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1268.368298][ C1] RSP: 0018:ffff888115ebf910 EFLAGS: 00000206
[ 1268.368298][ C1] RAX: ffff8881116029c8 RBX: 0000000000000246 RCX: ffffffff825a2431
[ 1268.368298][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff888115ebfa4f
[ 1268.368298][ C1] RBP: ffff888115ebf960 R08: 0000000000000002 R09: ffff888115ebf938
[ 1268.368298][ C1] R10: 000000008425d35c R11: ffff888111601f40 R12: ffff888115ebfa4f
[ 1268.368298][ C1] R13: ffff88811a4919c0 R14: 0000000000000001 R15: 00000000069a0004
[ 1268.368298][ C1] ? step_into+0xd1/0x33a0
[ 1268.368298][ C1] ? step_into+0xd1/0x33a0
[ 1268.368298][ C1] ? step_into+0xd1/0x33a0
[ 1268.368298][ C1] step_into+0xd1/0x33a0
[ 1268.368298][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1268.368298][ C1] walk_component+0x8c6/0xbb0
[ 1268.368298][ C1] path_lookupat+0x34f/0x1120
[ 1268.368298][ C1] filename_lookup+0x312/0xc60
[ 1268.368298][ C1] ? getname_flags+0x74c/0xbe0
[ 1268.368298][ C1] user_path_at_empty+0x123/0x140
[ 1268.368298][ C1] do_faccessat+0x779/0xfa0
[ 1268.368298][ C1] __se_sys_access+0x7d/0x90
[ 1268.368298][ C1] __x64_sys_access+0x3e/0x60
[ 1268.368298][ C1] do_syscall_64+0x9f/0x140
[ 1268.368298][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1268.368298][ C1] RIP: 0033:0x7f4ec21339c7
[ 1268.368298][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1268.368298][ C1] RSP: 002b:00007ffda9800708 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1268.368298][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1268.368298][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005607391549a3
06:43:24 executing program 2:
r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$setperm(0x5, r0, 0x0)
keyctl$link(0xb, r0, 0x0)
[ 1268.368298][ C1] RBP: 00007ffda9800850 R08: 000056073914a3e5 R09: 0000000000000018
[ 1268.368298][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1268.368298][ C1] R13: 0000000000000000 R14: 000056073a8888a0 R15: 00007ffda9800d40
[ 1268.368298][ C1] ---[ end trace 4b028c9d42567c34 ]---
[ 1268.685532][ C1] ------------[ cut here ]------------
[ 1268.685532][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1268.685532][ C1] Modules linked in:
[ 1268.685532][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1268.685532][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1268.685532][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1268.685532][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1268.685532][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1268.685532][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1268.685532][ C1] RDX: 0000000080010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1268.685532][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1268.685532][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1268.685532][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1268.685532][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1268.685532][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1268.685532][ C1] CR2: 00007f4ebe49d000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1268.685532][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1268.685532][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1268.685532][ C1] Call Trace:
[ 1268.685532][ C1]
[ 1268.685532][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1268.928265][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1268.928265][ C1] __run_hrtimer+0x48b/0xd20
[ 1268.928265][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1268.928265][ C1] ? hrtimer_init+0x570/0x570
[ 1268.928265][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1268.928265][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1268.928265][ C1]
[ 1268.928265][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1268.928265][ C1] RIP: 0010:generic_permission+0x18e/0xe90
[ 1268.928265][ C1] Code: 85 96 02 00 00 8b 5d bc 83 e3 07 8b 45 cc 83 e0 07 8b 75 94 c1 ee 06 44 8b 7d b8 41 c1 ef 06 41 f7 d7 89 f1 21 d9 89 f2 21 c2 <44> 21 fb 09 d3 09 cb 85 f6 44 8b 65 a0 44 0f 44 65 d0 41 21 c7 4c
[ 1268.928265][ C1] RSP: 0018:ffff888115ebf7b8 EFLAGS: 00000246
[ 1268.928265][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000000
[ 1268.928265][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1268.928265][ C1] RBP: ffff888115ebf850 R08: ffffffff825788ea R09: ffff88813fffa000
[ 1268.928265][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000
[ 1268.928265][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000fffffef8
[ 1268.928265][ C1] ? generic_permission+0x14a/0xe90
[ 1268.928265][ C1] ? generic_permission+0x14a/0xe90
[ 1268.928265][ C1] inode_permission+0x171/0x9c0
[ 1268.928265][ C1] link_path_walk+0x439/0x1540
[ 1268.928265][ C1] path_openat+0x383/0x6be0
[ 1268.928265][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1268.928265][ C1] ? __msan_get_context_state+0x9/0x20
[ 1268.928265][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1268.928265][ C1] ? should_fail+0x72/0x9e0
[ 1268.928265][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1268.928265][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1268.928265][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1268.928265][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1268.928265][ C1] do_filp_open+0x2b8/0x710
[ 1268.928265][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1268.928265][ C1] do_sys_openat2+0x25f/0x830
[ 1268.928265][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1268.928265][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1268.928265][ C1] __se_sys_open+0x271/0x2d0
[ 1268.928265][ C1] __x64_sys_open+0x4a/0x70
[ 1268.928265][ C1] do_syscall_64+0x9f/0x140
[ 1268.928265][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1268.928265][ C1] RIP: 0033:0x7f4ec2407840
[ 1268.928265][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1268.928265][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1268.928265][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1268.928265][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1268.928265][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1268.928265][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1268.928265][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1268.928265][ C1] ---[ end trace 4b028c9d42567c35 ]---
[ 1269.244663][ C1] ------------[ cut here ]------------
[ 1269.250267][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1269.253546][ C1] Modules linked in:
[ 1269.253546][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1269.253546][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1269.253546][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1269.253546][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1269.253546][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1269.253546][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1269.253546][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1269.253546][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1269.253546][ C1] R10: 000000004d1d8650 R11: 00000000a2704302 R12: 0000000000000000
[ 1269.253546][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1269.253546][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1269.253546][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1269.253546][ C1] CR2: 00007f4ebe49d000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1269.253546][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1269.253546][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1269.253546][ C1] Call Trace:
[ 1269.253546][ C1]
[ 1269.253546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.253546][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1269.253546][ C1] __run_hrtimer+0x48b/0xd20
[ 1269.253546][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1269.253546][ C1] ? hrtimer_init+0x570/0x570
[ 1269.253546][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1269.253546][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1269.253546][ C1]
[ 1269.253546][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1269.253546][ C1] RIP: 0010:generic_permission+0x18e/0xe90
[ 1269.253546][ C1] Code: 85 96 02 00 00 8b 5d bc 83 e3 07 8b 45 cc 83 e0 07 8b 75 94 c1 ee 06 44 8b 7d b8 41 c1 ef 06 41 f7 d7 89 f1 21 d9 89 f2 21 c2 <44> 21 fb 09 d3 09 cb 85 f6 44 8b 65 a0 44 0f 44 65 d0 41 21 c7 4c
[ 1269.253546][ C1] RSP: 0018:ffff888115ebf7b8 EFLAGS: 00000246
[ 1269.253546][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000000
[ 1269.253546][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1269.253546][ C1] RBP: ffff888115ebf850 R08: ffffffff825788ea R09: ffff88813fffa000
[ 1269.253546][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000
[ 1269.253546][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000fffffef8
[ 1269.253546][ C1] ? generic_permission+0x14a/0xe90
[ 1269.253546][ C1] ? generic_permission+0x14a/0xe90
[ 1269.253546][ C1] inode_permission+0x171/0x9c0
[ 1269.253546][ C1] link_path_walk+0x439/0x1540
[ 1269.253546][ C1] path_openat+0x383/0x6be0
[ 1269.253546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.253546][ C1] ? __msan_get_context_state+0x9/0x20
[ 1269.253546][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1269.253546][ C1] ? should_fail+0x72/0x9e0
[ 1269.253546][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.253546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.253546][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1269.253546][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.253546][ C1] do_filp_open+0x2b8/0x710
[ 1269.253546][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1269.253546][ C1] do_sys_openat2+0x25f/0x830
[ 1269.253546][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.253546][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1269.253546][ C1] __se_sys_open+0x271/0x2d0
[ 1269.253546][ C1] __x64_sys_open+0x4a/0x70
[ 1269.253546][ C1] do_syscall_64+0x9f/0x140
[ 1269.253546][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1269.253546][ C1] RIP: 0033:0x7f4ec2407840
[ 1269.253546][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1269.253546][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1269.253546][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1269.253546][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1269.253546][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1269.253546][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1269.253546][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1269.253546][ C1] ---[ end trace 4b028c9d42567c36 ]---
[ 1269.726570][ C1] ------------[ cut here ]------------
[ 1269.732179][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1269.735487][ C1] Modules linked in:
[ 1269.735487][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1269.735487][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1269.735487][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1269.735487][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1269.735487][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1269.735487][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1269.735487][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1269.808492][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1269.808492][ C1] R10: 00000000b56c2fd0 R11: 00000000c9b9bd85 R12: 0000000000000000
[ 1269.808492][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1269.808492][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1269.808492][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1269.808492][ C1] CR2: 00007f4ebe49d000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1269.808492][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1269.808492][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1269.808492][ C1] Call Trace:
[ 1269.808492][ C1]
[ 1269.808492][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.808492][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1269.808492][ C1] __run_hrtimer+0x48b/0xd20
[ 1269.808492][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1269.808492][ C1] ? hrtimer_init+0x570/0x570
[ 1269.808492][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1269.808492][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1269.808492][ C1]
[ 1269.808492][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1269.808492][ C1] RIP: 0010:generic_permission+0x18e/0xe90
[ 1269.808492][ C1] Code: 85 96 02 00 00 8b 5d bc 83 e3 07 8b 45 cc 83 e0 07 8b 75 94 c1 ee 06 44 8b 7d b8 41 c1 ef 06 41 f7 d7 89 f1 21 d9 89 f2 21 c2 <44> 21 fb 09 d3 09 cb 85 f6 44 8b 65 a0 44 0f 44 65 d0 41 21 c7 4c
[ 1269.808492][ C1] RSP: 0018:ffff888115ebf7b8 EFLAGS: 00000246
[ 1269.808492][ C1] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 0000000000000000
[ 1269.808492][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1269.808492][ C1] RBP: ffff888115ebf850 R08: ffffffff825788ea R09: ffff88813fffa000
[ 1269.808492][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000
[ 1269.808492][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000fffffef8
[ 1269.808492][ C1] ? generic_permission+0x14a/0xe90
[ 1269.808492][ C1] ? generic_permission+0x14a/0xe90
[ 1269.808492][ C1] inode_permission+0x171/0x9c0
[ 1269.808492][ C1] link_path_walk+0x439/0x1540
[ 1269.808492][ C1] path_openat+0x383/0x6be0
[ 1269.808492][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.808492][ C1] ? __msan_get_context_state+0x9/0x20
[ 1269.808492][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1269.808492][ C1] ? should_fail+0x72/0x9e0
[ 1269.808492][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.808492][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1269.808492][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1269.808492][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.808492][ C1] do_filp_open+0x2b8/0x710
[ 1269.808492][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1269.808492][ C1] do_sys_openat2+0x25f/0x830
[ 1269.808492][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1269.808492][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1269.808492][ C1] __se_sys_open+0x271/0x2d0
[ 1269.808492][ C1] __x64_sys_open+0x4a/0x70
[ 1269.808492][ C1] do_syscall_64+0x9f/0x140
[ 1269.808492][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1269.808492][ C1] RIP: 0033:0x7f4ec2407840
[ 1270.128484][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1270.128484][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1270.128484][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1270.128484][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1270.128484][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1270.128484][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1270.128484][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1270.128484][ C1] ---[ end trace 4b028c9d42567c37 ]---
[ 1270.308172][ C1] ------------[ cut here ]------------
[ 1270.313759][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1270.317276][ C1] Modules linked in:
[ 1270.317276][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1270.317276][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1270.317276][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1270.349533][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1270.368781][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1270.368781][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1270.368781][ C1] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1270.368781][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1270.368781][ C1] R10: 00000000b56c2fd0 R11: ffff888111601f40 R12: 0000000000000000
[ 1270.368781][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1270.368781][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1270.368781][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1270.368781][ C1] CR2: 00007f4ebe4a1000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1270.368781][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1270.368781][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1270.368781][ C1] Call Trace:
[ 1270.368781][ C1]
[ 1270.368781][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1270.368781][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1270.368781][ C1] __run_hrtimer+0x48b/0xd20
[ 1270.368781][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1270.368781][ C1] ? hrtimer_init+0x570/0x570
[ 1270.368781][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1270.368781][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1270.368781][ C1]
[ 1270.368781][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1270.368781][ C1] RIP: 0010:devkmsg_read+0x909/0x1250
[ 1270.368781][ C1] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 2b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89
[ 1270.368781][ C1] RSP: 0018:ffff888115ebfb90 EFLAGS: 00000246
[ 1270.368781][ C1] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111601f40
[ 1270.368781][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1270.368781][ C1] RBP: ffff888115ebfcc0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1270.368781][ C1] R10: 0000000000000000 R11: 00000000000000ff R12: ffff8881116029c8
[ 1270.368781][ C1] R13: ffff888115fa8000 R14: 0000000000000000 R15: 0000000000000049
[ 1270.368781][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1270.368781][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1270.368781][ C1] ? devkmsg_llseek+0x2f0/0x2f0
[ 1270.368781][ C1] vfs_read+0x533/0x15a0
[ 1270.368781][ C1] ? __fget_light+0x249/0x850
[ 1270.368781][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1270.368781][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1270.368781][ C1] ksys_read+0x275/0x500
[ 1270.368781][ C1] __se_sys_read+0x92/0xb0
[ 1270.368781][ C1] __x64_sys_read+0x4a/0x70
[ 1270.368781][ C1] do_syscall_64+0x9f/0x140
[ 1270.368781][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1270.368781][ C1] RIP: 0033:0x7f4ec2407210
[ 1270.368781][ C1] Code: 73 01 c3 48 8b 0d 98 7d 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d b9 c1 20 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24
[ 1270.368781][ C1] RSP: 002b:00007ffda9800cb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1270.368781][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec2407210
[ 1270.368781][ C1] RDX: 0000000000002000 RSI: 00007ffda9801530 RDI: 0000000000000009
[ 1270.368781][ C1] RBP: 0000000000000000 R08: 0000000000000008 R09: 000056073a888a38
[ 1270.368781][ C1] R10: 000056073a888a00 R11: 0000000000000246 R12: 00007ffda9801530
[ 1270.368781][ C1] R13: 00007ffda9803688 R14: 0000560739152958 R15: 0005c5b9b0a0bd77
[ 1270.368781][ C1] ---[ end trace 4b028c9d42567c38 ]---
[ 1270.368781][ C1] ------------[ cut here ]------------
[ 1270.368781][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1270.368781][ C1] Modules linked in:
[ 1270.368781][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1270.368781][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1270.368781][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1270.368781][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1270.368781][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1270.368781][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1270.368781][ C1] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1270.368781][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1270.368781][ C1] R10: 000000004d1d8650 R11: ffff888111601f40 R12: 0000000000000000
[ 1270.368781][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1270.368781][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1270.368781][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1270.368781][ C1] CR2: 00007f4ebe4a1000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1270.368781][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1270.368781][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1270.368781][ C1] Call Trace:
[ 1270.368781][ C1]
[ 1270.368781][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1270.368781][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1270.368781][ C1] __run_hrtimer+0x48b/0xd20
[ 1270.368781][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1270.368781][ C1] ? hrtimer_init+0x570/0x570
[ 1270.368781][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1270.368781][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1270.368781][ C1]
[ 1270.368781][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1270.368781][ C1] RIP: 0010:devkmsg_read+0x909/0x1250
[ 1270.368781][ C1] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 2b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89
[ 1270.368781][ C1] RSP: 0018:ffff888115ebfb90 EFLAGS: 00000246
[ 1270.368781][ C1] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111601f40
[ 1270.368781][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1270.368781][ C1] RBP: ffff888115ebfcc0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1270.368781][ C1] R10: 0000000000000000 R11: 00000000000000ff R12: ffff8881116029c8
[ 1270.368781][ C1] R13: ffff888115fa8000 R14: 0000000000000000 R15: 0000000000000049
[ 1270.368781][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1270.368781][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1270.368781][ C1] ? devkmsg_llseek+0x2f0/0x2f0
[ 1270.368781][ C1] vfs_read+0x533/0x15a0
[ 1270.368781][ C1] ? __fget_light+0x249/0x850
[ 1270.368781][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1270.368781][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1270.368781][ C1] ksys_read+0x275/0x500
[ 1270.368781][ C1] __se_sys_read+0x92/0xb0
[ 1270.368781][ C1] __x64_sys_read+0x4a/0x70
[ 1270.368781][ C1] do_syscall_64+0x9f/0x140
[ 1270.368781][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1270.368781][ C1] RIP: 0033:0x7f4ec2407210
[ 1270.368781][ C1] Code: 73 01 c3 48 8b 0d 98 7d 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d b9 c1 20 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24
[ 1270.368781][ C1] RSP: 002b:00007ffda9800cb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1270.368781][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec2407210
[ 1270.368781][ C1] RDX: 0000000000002000 RSI: 00007ffda9801530 RDI: 0000000000000009
[ 1270.368781][ C1] RBP: 0000000000000000 R08: 0000000000000008 R09: 000056073a888a38
[ 1270.368781][ C1] R10: 000056073a888a00 R11: 0000000000000246 R12: 00007ffda9801530
[ 1270.368781][ C1] R13: 00007ffda9803688 R14: 0000560739152958 R15: 0005c5b9b0a0bd77
[ 1270.368781][ C1] ---[ end trace 4b028c9d42567c39 ]---
[ 1271.152430][ C1] ------------[ cut here ]------------
[ 1271.157996][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1271.161613][ C1] Modules linked in:
[ 1271.161613][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1271.161613][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1271.161613][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1271.161613][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1271.161613][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1271.161613][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1271.161613][ C1] RDX: 0000000080010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1271.161613][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1271.161613][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1271.161613][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1271.161613][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1271.161613][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1271.161613][ C1] CR2: 00007f4ebe4a1000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1271.161613][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1271.161613][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1271.161613][ C1] Call Trace:
[ 1271.161613][ C1]
[ 1271.161613][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1271.161613][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1271.161613][ C1] __run_hrtimer+0x48b/0xd20
[ 1271.161613][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1271.161613][ C1] ? hrtimer_init+0x570/0x570
[ 1271.161613][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1271.161613][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1271.161613][ C1]
[ 1271.161613][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1271.161613][ C1] RIP: 0010:devkmsg_read+0x909/0x1250
[ 1271.161613][ C1] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 2b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89
[ 1271.161613][ C1] RSP: 0018:ffff888115ebfb90 EFLAGS: 00000246
[ 1271.161613][ C1] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111601f40
[ 1271.161613][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1271.161613][ C1] RBP: ffff888115ebfcc0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1271.161613][ C1] R10: 0000000000000000 R11: 00000000000000ff R12: ffff8881116029c8
[ 1271.161613][ C1] R13: ffff888115fa8000 R14: 0000000000000000 R15: 0000000000000049
[ 1271.161613][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1271.161613][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1271.161613][ C1] ? devkmsg_llseek+0x2f0/0x2f0
[ 1271.161613][ C1] vfs_read+0x533/0x15a0
[ 1271.161613][ C1] ? __fget_light+0x249/0x850
[ 1271.161613][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1271.161613][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1271.161613][ C1] ksys_read+0x275/0x500
[ 1271.161613][ C1] __se_sys_read+0x92/0xb0
[ 1271.161613][ C1] __x64_sys_read+0x4a/0x70
[ 1271.161613][ C1] do_syscall_64+0x9f/0x140
[ 1271.161613][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1271.161613][ C1] RIP: 0033:0x7f4ec2407210
[ 1271.161613][ C1] Code: 73 01 c3 48 8b 0d 98 7d 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d b9 c1 20 00 00 75 10 b8 00 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24
[ 1271.161613][ C1] RSP: 002b:00007ffda9800cb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1271.161613][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec2407210
[ 1271.161613][ C1] RDX: 0000000000002000 RSI: 00007ffda9801530 RDI: 0000000000000009
[ 1271.161613][ C1] RBP: 0000000000000000 R08: 0000000000000008 R09: 000056073a888a38
[ 1271.161613][ C1] R10: 000056073a888a00 R11: 0000000000000246 R12: 00007ffda9801530
[ 1271.161613][ C1] R13: 00007ffda9803688 R14: 0000560739152958 R15: 0005c5b9b0a0bd77
[ 1271.161613][ C1] ---[ end trace 4b028c9d42567c3a ]---
[ 1271.669023][ C1] ------------[ cut here ]------------
[ 1271.669023][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1271.669023][ C1] Modules linked in:
[ 1271.669023][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1271.669023][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1271.669023][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1271.669023][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1271.728093][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1271.728093][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1271.728093][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1271.728093][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1271.728093][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1271.728093][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1271.728093][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1271.728093][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1271.728093][ C1] CR2: 00007f4ebe33b730 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1271.728093][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1271.728093][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1271.728093][ C1] Call Trace:
[ 1271.728093][ C1]
[ 1271.728093][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1271.728093][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1271.728093][ C1] __run_hrtimer+0x48b/0xd20
[ 1271.728093][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1271.728093][ C1] ? hrtimer_init+0x570/0x570
[ 1271.728093][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1271.728093][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1271.728093][ C1]
[ 1271.728093][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1271.728093][ C1] RIP: 0010:metadata_is_contiguous+0x0/0x1a0
[ 1271.888176][ C1] Code: 00 48 85 c0 75 c4 45 84 f6 74 cd 48 c7 c7 92 17 7c 90 48 c7 c6 db 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4d 0f 26 ff 0f 0b 66 90 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03
[ 1271.888176][ C1] RSP: 0018:ffff888115ebf820 EFLAGS: 00000246
[ 1271.888176][ C1] RAX: ffff8881116029c8 RBX: 0000000000000004 RCX: ffff888111601f40
[ 1271.888176][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888107b758d4
[ 1271.888176][ C1] RBP: ffff888115ebf840 R08: ffffffff825797cd R09: ffff88813fffa000
[ 1271.888176][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000081
[ 1271.888176][ C1] R13: 0000000000000000 R14: ffff888107b758d4 R15: 0000000000000000
[ 1271.888176][ C1] ? inode_permission+0x19d/0x9c0
[ 1271.888176][ C1] ? kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1271.888176][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1271.888176][ C1] inode_permission+0x2be/0x9c0
[ 1271.888176][ C1] link_path_walk+0x439/0x1540
[ 1271.888176][ C1] path_openat+0x383/0x6be0
[ 1271.888176][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1271.888176][ C1] ? __msan_get_context_state+0x9/0x20
[ 1271.888176][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1271.888176][ C1] ? should_fail+0x72/0x9e0
[ 1271.888176][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1271.888176][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1271.888176][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1271.888176][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1271.888176][ C1] do_filp_open+0x2b8/0x710
[ 1271.888176][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1271.888176][ C1] do_sys_openat2+0x25f/0x830
[ 1271.888176][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1271.888176][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1271.888176][ C1] __se_sys_open+0x271/0x2d0
[ 1271.888176][ C1] __x64_sys_open+0x4a/0x70
[ 1271.888176][ C1] do_syscall_64+0x9f/0x140
[ 1271.888176][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1271.888176][ C1] RIP: 0033:0x7f4ec2407840
[ 1271.888176][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1271.888176][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1271.888176][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1271.888176][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1271.888176][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1271.888176][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1271.888176][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1271.888176][ C1] ---[ end trace 4b028c9d42567c3b ]---
[ 1272.163601][ C1] ------------[ cut here ]------------
[ 1272.169212][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1272.172570][ C1] Modules linked in:
[ 1272.172570][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1272.172570][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1272.172570][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1272.208120][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1272.208120][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1272.208120][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1272.208120][ C1] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1272.208120][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1272.208120][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1272.208120][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1272.208120][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1272.208120][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1272.208120][ C1] CR2: 00007f4ebe33b730 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1272.208120][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1272.208120][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1272.208120][ C1] Call Trace:
[ 1272.208120][ C1]
[ 1272.208120][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.208120][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1272.208120][ C1] __run_hrtimer+0x48b/0xd20
[ 1272.208120][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1272.208120][ C1] ? hrtimer_init+0x570/0x570
[ 1272.208120][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1272.208120][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1272.208120][ C1]
[ 1272.208120][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1272.208120][ C1] RIP: 0010:metadata_is_contiguous+0x0/0x1a0
[ 1272.374967][ C1] Code: 00 48 85 c0 75 c4 45 84 f6 74 cd 48 c7 c7 92 17 7c 90 48 c7 c6 db 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4d 0f 26 ff 0f 0b 66 90 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03
[ 1272.374967][ C1] RSP: 0018:ffff888115ebf820 EFLAGS: 00000246
[ 1272.374967][ C1] RAX: ffff8881116029c8 RBX: 0000000000000004 RCX: ffff888111601f40
[ 1272.374967][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888107b758d4
[ 1272.374967][ C1] RBP: ffff888115ebf840 R08: ffffffff825797cd R09: ffff88813fffa000
[ 1272.374967][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000081
[ 1272.374967][ C1] R13: 0000000000000000 R14: ffff888107b758d4 R15: 0000000000000000
[ 1272.374967][ C1] ? inode_permission+0x19d/0x9c0
[ 1272.374967][ C1] ? kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1272.374967][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1272.374967][ C1] inode_permission+0x2be/0x9c0
[ 1272.374967][ C1] link_path_walk+0x439/0x1540
[ 1272.374967][ C1] path_openat+0x383/0x6be0
[ 1272.374967][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.374967][ C1] ? __msan_get_context_state+0x9/0x20
[ 1272.374967][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1272.374967][ C1] ? should_fail+0x72/0x9e0
[ 1272.374967][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.374967][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.374967][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1272.374967][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.374967][ C1] do_filp_open+0x2b8/0x710
[ 1272.374967][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1272.374967][ C1] do_sys_openat2+0x25f/0x830
[ 1272.374967][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.374967][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1272.374967][ C1] __se_sys_open+0x271/0x2d0
[ 1272.374967][ C1] __x64_sys_open+0x4a/0x70
[ 1272.374967][ C1] do_syscall_64+0x9f/0x140
[ 1272.374967][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1272.374967][ C1] RIP: 0033:0x7f4ec2407840
[ 1272.374967][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1272.374967][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1272.374967][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1272.374967][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1272.374967][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1272.374967][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1272.374967][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1272.374967][ C1] ---[ end trace 4b028c9d42567c3c ]---
[ 1272.652719][ C1] ------------[ cut here ]------------
[ 1272.658337][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1272.661731][ C1] Modules linked in:
[ 1272.661731][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1272.661731][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1272.661731][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1272.661731][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1272.661731][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1272.661731][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1272.661731][ C1] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1272.661731][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1272.661731][ C1] R10: 00000000b56c2fd0 R11: ffff888111601f40 R12: 0000000000000000
[ 1272.661731][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1272.661731][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1272.661731][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1272.661731][ C1] CR2: 00007f4ebe33b730 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1272.661731][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1272.661731][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1272.661731][ C1] Call Trace:
[ 1272.661731][ C1]
[ 1272.661731][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.661731][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1272.661731][ C1] __run_hrtimer+0x48b/0xd20
[ 1272.661731][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1272.661731][ C1] ? hrtimer_init+0x570/0x570
[ 1272.661731][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1272.661731][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1272.661731][ C1]
[ 1272.661731][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1272.661731][ C1] RIP: 0010:metadata_is_contiguous+0x0/0x1a0
[ 1272.661731][ C1] Code: 00 48 85 c0 75 c4 45 84 f6 74 cd 48 c7 c7 92 17 7c 90 48 c7 c6 db 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4d 0f 26 ff 0f 0b 66 90 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03
[ 1272.661731][ C1] RSP: 0018:ffff888115ebf820 EFLAGS: 00000246
[ 1272.661731][ C1] RAX: ffff8881116029c8 RBX: 0000000000000004 RCX: ffff888111601f40
[ 1272.661731][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888107b758d4
[ 1272.661731][ C1] RBP: ffff888115ebf840 R08: ffffffff825797cd R09: ffff88813fffa000
[ 1272.661731][ C1] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000081
[ 1272.661731][ C1] R13: 0000000000000000 R14: ffff888107b758d4 R15: 0000000000000000
[ 1272.928901][ C1] ? inode_permission+0x19d/0x9c0
[ 1272.928901][ C1] ? kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1272.928901][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1272.928901][ C1] inode_permission+0x2be/0x9c0
[ 1272.928901][ C1] link_path_walk+0x439/0x1540
[ 1272.928901][ C1] path_openat+0x383/0x6be0
[ 1272.928901][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.928901][ C1] ? __msan_get_context_state+0x9/0x20
[ 1272.928901][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1272.928901][ C1] ? should_fail+0x72/0x9e0
[ 1272.928901][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.928901][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1272.928901][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1272.928901][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.928901][ C1] do_filp_open+0x2b8/0x710
[ 1272.928901][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1272.928901][ C1] do_sys_openat2+0x25f/0x830
[ 1272.928901][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1272.928901][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1272.928901][ C1] __se_sys_open+0x271/0x2d0
[ 1272.928901][ C1] __x64_sys_open+0x4a/0x70
[ 1272.928901][ C1] do_syscall_64+0x9f/0x140
[ 1272.928901][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1272.928901][ C1] RIP: 0033:0x7f4ec2407840
[ 1272.928901][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1272.928901][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1272.928901][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1272.928901][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1272.928901][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1272.928901][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1272.928901][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1272.928901][ C1] ---[ end trace 4b028c9d42567c3d ]---
[ 1273.238005][ C1] ------------[ cut here ]------------
[ 1273.238005][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1273.238005][ C1] Modules linked in:
[ 1273.238005][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1273.238005][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1273.279758][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1273.279758][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1273.279758][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1273.279758][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1273.279758][ C1] RDX: 0000000080010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1273.279758][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1273.279758][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1273.279758][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1273.279758][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1273.279758][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1273.279758][ C1] CR2: 00007f4ebe4a7000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1273.279758][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1273.279758][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1273.279758][ C1] Call Trace:
[ 1273.279758][ C1]
[ 1273.279758][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.279758][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1273.279758][ C1] __run_hrtimer+0x48b/0xd20
[ 1273.279758][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1273.279758][ C1] ? hrtimer_init+0x570/0x570
[ 1273.279758][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1273.279758][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1273.279758][ C1]
[ 1273.279758][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1273.279758][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x7/0x30
[ 1273.279758][ C1] Code: 8b 54 32 08 c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 <48> c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff
[ 1273.279758][ C1] RSP: 0018:ffff888115ebf5d0 EFLAGS: 00000202
[ 1273.279758][ C1] RAX: ffff88812282e028 RBX: ffff88812282e028 RCX: 000000012202e029
[ 1273.279758][ C1] RDX: 000000012282e029 RSI: 0000000000000001 RDI: ffff88812282e028
[ 1273.279758][ C1] RBP: ffff888115ebf5d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1273.279758][ C1] R10: 0000000045171676 R11: ffff888111601f40 R12: 0000000000000000
[ 1273.279758][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1273.279758][ C1] kmsan_get_metadata+0x29/0x180
[ 1273.279758][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.279758][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1273.279758][ C1] __d_lookup_rcu+0x708/0xab0
[ 1273.279758][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.279758][ C1] lookup_fast+0x26b/0xbe0
[ 1273.279758][ C1] walk_component+0x11c/0xbb0
[ 1273.279758][ C1] link_path_walk+0xafe/0x1540
[ 1273.279758][ C1] path_openat+0x383/0x6be0
[ 1273.279758][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.279758][ C1] ? __msan_get_context_state+0x9/0x20
[ 1273.279758][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1273.279758][ C1] ? should_fail+0x72/0x9e0
[ 1273.279758][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.279758][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.279758][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1273.279758][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.279758][ C1] do_filp_open+0x2b8/0x710
[ 1273.279758][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1273.279758][ C1] do_sys_openat2+0x25f/0x830
[ 1273.279758][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.279758][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1273.279758][ C1] __se_sys_open+0x271/0x2d0
[ 1273.279758][ C1] __x64_sys_open+0x4a/0x70
[ 1273.279758][ C1] do_syscall_64+0x9f/0x140
[ 1273.279758][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1273.279758][ C1] RIP: 0033:0x7f4ec2407840
[ 1273.279758][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1273.279758][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1273.279758][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1273.279758][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1273.279758][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1273.279758][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1273.279758][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1273.279758][ C1] ---[ end trace 4b028c9d42567c3e ]---
[ 1273.745613][ C1] ------------[ cut here ]------------
[ 1273.751246][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1273.754489][ C1] Modules linked in:
[ 1273.754489][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1273.754489][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1273.754489][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1273.754489][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1273.754489][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1273.754489][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1273.754489][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1273.754489][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1273.754489][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1273.754489][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1273.754489][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1273.754489][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1273.754489][ C1] CR2: 00007f4ebe4a7000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1273.754489][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1273.888245][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1273.888245][ C1] Call Trace:
[ 1273.888245][ C1]
[ 1273.888245][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.888245][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1273.888245][ C1] __run_hrtimer+0x48b/0xd20
[ 1273.888245][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1273.888245][ C1] ? hrtimer_init+0x570/0x570
[ 1273.888245][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1273.888245][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1273.888245][ C1]
[ 1273.888245][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1273.888245][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x7/0x30
[ 1273.888245][ C1] Code: 8b 54 32 08 c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 <48> c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff
[ 1273.888245][ C1] RSP: 0018:ffff888115ebf5d0 EFLAGS: 00000202
[ 1273.888245][ C1] RAX: ffff88812282e028 RBX: ffff88812282e028 RCX: 000000012202e029
[ 1273.888245][ C1] RDX: 000000012282e029 RSI: 0000000000000001 RDI: ffff88812282e028
[ 1273.888245][ C1] RBP: ffff888115ebf5d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1273.888245][ C1] R10: 0000000045171676 R11: ffff888111601f40 R12: 0000000000000000
[ 1273.888245][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1273.888245][ C1] kmsan_get_metadata+0x29/0x180
[ 1273.888245][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.888245][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1273.888245][ C1] __d_lookup_rcu+0x708/0xab0
[ 1273.888245][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.888245][ C1] lookup_fast+0x26b/0xbe0
[ 1273.888245][ C1] walk_component+0x11c/0xbb0
[ 1273.888245][ C1] link_path_walk+0xafe/0x1540
[ 1273.888245][ C1] path_openat+0x383/0x6be0
[ 1273.888245][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.888245][ C1] ? __msan_get_context_state+0x9/0x20
[ 1273.888245][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1273.888245][ C1] ? should_fail+0x72/0x9e0
[ 1273.888245][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.888245][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1273.888245][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1273.888245][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.888245][ C1] do_filp_open+0x2b8/0x710
[ 1273.888245][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1273.888245][ C1] do_sys_openat2+0x25f/0x830
[ 1273.888245][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1273.888245][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1273.888245][ C1] __se_sys_open+0x271/0x2d0
[ 1273.888245][ C1] __x64_sys_open+0x4a/0x70
[ 1273.888245][ C1] do_syscall_64+0x9f/0x140
[ 1273.888245][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1273.888245][ C1] RIP: 0033:0x7f4ec2407840
[ 1273.888245][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1273.888245][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1273.888245][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1273.888245][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1273.888245][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1273.888245][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1273.888245][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1273.888245][ C1] ---[ end trace 4b028c9d42567c3f ]---
[ 1274.250492][ C1] ------------[ cut here ]------------
[ 1274.256102][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1274.259583][ C1] Modules linked in:
[ 1274.259583][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1274.278098][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1274.284001][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1274.284001][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1274.284001][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1274.284001][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1274.284001][ C1] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1274.284001][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1274.284001][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1274.284001][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1274.284001][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1274.368156][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1274.368156][ C1] CR2: 00007f4ebe4a7000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1274.368156][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1274.368156][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1274.368156][ C1] Call Trace:
[ 1274.368156][ C1]
[ 1274.368156][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.368156][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1274.368156][ C1] __run_hrtimer+0x48b/0xd20
[ 1274.368156][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1274.368156][ C1] ? hrtimer_init+0x570/0x570
[ 1274.368156][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1274.368156][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1274.368156][ C1]
[ 1274.368156][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1274.368156][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x7/0x30
[ 1274.368156][ C1] Code: 8b 54 32 08 c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 <48> c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff
[ 1274.368156][ C1] RSP: 0018:ffff888115ebf5d0 EFLAGS: 00000202
[ 1274.368156][ C1] RAX: ffff88812282e028 RBX: ffff88812282e028 RCX: 000000012202e029
[ 1274.368156][ C1] RDX: 000000012282e029 RSI: 0000000000000001 RDI: ffff88812282e028
[ 1274.368156][ C1] RBP: ffff888115ebf5d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1274.368156][ C1] R10: 0000000045171676 R11: ffff888111601f40 R12: 0000000000000000
[ 1274.368156][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1274.368156][ C1] kmsan_get_metadata+0x29/0x180
[ 1274.368156][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.368156][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1274.368156][ C1] __d_lookup_rcu+0x708/0xab0
[ 1274.368156][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.368156][ C1] lookup_fast+0x26b/0xbe0
[ 1274.368156][ C1] walk_component+0x11c/0xbb0
[ 1274.368156][ C1] link_path_walk+0xafe/0x1540
[ 1274.368156][ C1] path_openat+0x383/0x6be0
[ 1274.368156][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.368156][ C1] ? __msan_get_context_state+0x9/0x20
[ 1274.368156][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1274.368156][ C1] ? should_fail+0x72/0x9e0
[ 1274.368156][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.368156][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.368156][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1274.368156][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.368156][ C1] do_filp_open+0x2b8/0x710
[ 1274.368156][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1274.368156][ C1] do_sys_openat2+0x25f/0x830
[ 1274.368156][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.368156][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1274.368156][ C1] __se_sys_open+0x271/0x2d0
[ 1274.368156][ C1] __x64_sys_open+0x4a/0x70
[ 1274.368156][ C1] do_syscall_64+0x9f/0x140
[ 1274.368156][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1274.368156][ C1] RIP: 0033:0x7f4ec2407840
[ 1274.368156][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1274.368156][ C1] RSP: 002b:00007ffda98004c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1274.368156][ C1] RAX: ffffffffffffffda RBX: 00007ffda98007d0 RCX: 00007f4ec2407840
[ 1274.368156][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1274.368156][ C1] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff
[ 1274.368156][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1274.368156][ C1] R13: 000056073a885040 R14: 00007ffda9800790 R15: 000056073a88ab00
[ 1274.368156][ C1] ---[ end trace 4b028c9d42567c40 ]---
[ 1274.838092][ C1] ------------[ cut here ]------------
[ 1274.855182][ C1] WARNING: CPU: 1 PID: 4108 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1274.855182][ C1] Modules linked in:
[ 1274.855182][ C1] CPU: 1 PID: 4108 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1274.855182][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1274.855182][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1274.855182][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1274.855182][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1274.855182][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145ebe80
[ 1274.855182][ C1] RDX: 0000000080010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1274.855182][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1274.855182][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1274.855182][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1274.855182][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a22b380
[ 1274.855182][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1274.855182][ C1] CR2: 000000000819262c CR3: 0000000178114000 CR4: 00000000001506e0
[ 1274.855182][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1274.855182][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1274.855182][ C1] Call Trace:
[ 1274.855182][ C1]
[ 1274.855182][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.855182][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1274.855182][ C1] __run_hrtimer+0x48b/0xd20
[ 1274.855182][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1274.855182][ C1] ? hrtimer_init+0x570/0x570
[ 1274.855182][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1274.855182][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1274.855182][ C1]
[ 1274.855182][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1274.855182][ C1] RIP: 0010:virt_to_page_or_null+0x46/0xf0
[ 1274.855182][ C1] Code: 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 7a ed 05 10 <48> 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48
[ 1274.855182][ C1] RSP: 0000:ffff888166eefb78 EFLAGS: 00000246
[ 1274.855182][ C1] RAX: ffff8881945ec318 RBX: ffff8881145ec318 RCX: ffff88823fff4000
[ 1274.855182][ C1] RDX: 00000001145ec318 RSI: 0000000000000000 RDI: ffff8881145ec318
[ 1274.855182][ C1] RBP: ffff888166eefb78 R08: ffffea000000000f R09: ffff88813fffa000
[ 1274.855182][ C1] R10: 000000006cb3c3c2 R11: 00000000ffffffff R12: ffff8881145ec318
[ 1274.855182][ C1] R13: 0000000000000029 R14: 0000000000000001 R15: 0000000000000001
[ 1274.855182][ C1] kmsan_get_metadata+0x116/0x180
[ 1274.855182][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1274.855182][ C1] __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1274.855182][ C1] handle_mm_fault+0x2c7/0x4ef0
[ 1274.855182][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.855182][ C1] ? find_vma+0xae/0x3a0
[ 1274.855182][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1274.855182][ C1] do_user_addr_fault+0x159a/0x2650
[ 1274.855182][ C1] __exc_page_fault+0xe3/0x340
[ 1274.855182][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1274.855182][ C1] exc_page_fault+0x45/0x50
[ 1274.855182][ C1] asm_exc_page_fault+0x1e/0x30
[ 1274.855182][ C1] RIP: 0023:0x805b8d2
[ 1274.855182][ C1] Code: 8b 0c 24 89 74 24 10 8d 43 04 89 44 24 04 89 d8 8d 91 00 40 02 00 89 7c 24 14 89 ef 89 54 24 18 89 d5 89 c1 81 e1 ff 1f 00 00 <8b> 54 8d 00 39 d3 0f 84 aa 01 00 00 85 d2 0f 84 b2 01 00 00 83 c0
[ 1274.855182][ C1] RSP: 002b:00000000ff995640 EFLAGS: 00010206
[ 1274.855182][ C1] RAX: 00000000b75f098b RBX: 00000000b75f098b RCX: 000000000000098b
[ 1274.855182][ C1] RDX: 0000000008190000 RSI: 0000000086306652 RDI: 0000000000000021
[ 1274.855182][ C1] RBP: 0000000008190000 R08: 0000000000000000 R09: 0000000000000000
[ 1274.855182][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 1274.855182][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1274.855182][ C1] ---[ end trace 4b028c9d42567c41 ]---
[ 1275.273084][ C1] ------------[ cut here ]------------
[ 1275.278671][ C1] WARNING: CPU: 1 PID: 4108 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1275.282225][ C1] Modules linked in:
[ 1275.282225][ C1] CPU: 1 PID: 4108 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1275.282225][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1275.282225][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1275.282225][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1275.282225][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1275.282225][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145ebe80
[ 1275.282225][ C1] RDX: 0000000080010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1275.282225][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1275.282225][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1275.282225][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1275.282225][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a22b380
[ 1275.282225][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1275.282225][ C1] CR2: 000000000819262c CR3: 0000000178114000 CR4: 00000000001506e0
[ 1275.282225][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1275.282225][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1275.282225][ C1] Call Trace:
[ 1275.282225][ C1]
[ 1275.282225][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1275.282225][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1275.282225][ C1] __run_hrtimer+0x48b/0xd20
[ 1275.282225][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1275.282225][ C1] ? hrtimer_init+0x570/0x570
[ 1275.282225][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1275.282225][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1275.282225][ C1]
[ 1275.282225][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1275.282225][ C1] RIP: 0010:virt_to_page_or_null+0x46/0xf0
[ 1275.282225][ C1] Code: 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 7a ed 05 10 <48> 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48
[ 1275.282225][ C1] RSP: 0000:ffff888166eefb78 EFLAGS: 00000246
[ 1275.282225][ C1] RAX: ffff8881945ec318 RBX: ffff8881145ec318 RCX: ffff88823fff4000
[ 1275.282225][ C1] RDX: 00000001145ec318 RSI: 0000000000000000 RDI: ffff8881145ec318
[ 1275.282225][ C1] RBP: ffff888166eefb78 R08: ffffea000000000f R09: ffff88813fffa000
[ 1275.282225][ C1] R10: 000000006cb3c3c2 R11: 00000000ffffffff R12: ffff8881145ec318
[ 1275.282225][ C1] R13: 0000000000000029 R14: 0000000000000001 R15: 0000000000000001
[ 1275.282225][ C1] kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1275.282225][ C1] __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1275.282225][ C1] handle_mm_fault+0x2c7/0x4ef0
[ 1275.282225][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] ? find_vma+0xae/0x3a0
[ 1275.282225][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] do_user_addr_fault+0x159a/0x2650
[ 1275.282225][ C1] __exc_page_fault+0xe3/0x340
[ 1275.282225][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1275.282225][ C1] exc_page_fault+0x45/0x50
[ 1275.282225][ C1] asm_exc_page_fault+0x1e/0x30
[ 1275.282225][ C1] RIP: 0023:0x805b8d2
[ 1275.282225][ C1] Code: 8b 0c 24 89 74 24 10 8d 43 04 89 44 24 04 89 d8 8d 91 00 40 02 00 89 7c 24 14 89 ef 89 54 24 18 89 d5 89 c1 81 e1 ff 1f 00 00 <8b> 54 8d 00 39 d3 0f 84 aa 01 00 00 85 d2 0f 84 b2 01 00 00 83 c0
[ 1275.282225][ C1] RSP: 002b:00000000ff995640 EFLAGS: 00010206
[ 1275.282225][ C1] RAX: 00000000b75f098b RBX: 00000000b75f098b RCX: 000000000000098b
[ 1275.282225][ C1] RDX: 0000000008190000 RSI: 0000000086306652 RDI: 0000000000000021
[ 1275.282225][ C1] RBP: 0000000008190000 R08: 0000000000000000 R09: 0000000000000000
[ 1275.282225][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 1275.282225][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1275.282225][ C1] ---[ end trace 4b028c9d42567c42 ]---
[ 1275.282225][ C1] ------------[ cut here ]------------
[ 1275.282225][ C1] WARNING: CPU: 1 PID: 4108 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1275.282225][ C1] Modules linked in:
[ 1275.282225][ C1] CPU: 1 PID: 4108 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1275.282225][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1275.282225][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1275.282225][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1275.282225][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1275.282225][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145ebe80
[ 1275.282225][ C1] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1275.282225][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1275.282225][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1275.282225][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1275.282225][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a22b380
[ 1275.282225][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1275.282225][ C1] CR2: 000000000819262c CR3: 0000000178114000 CR4: 00000000001506e0
[ 1275.282225][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1275.282225][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1275.282225][ C1] Call Trace:
[ 1275.282225][ C1]
[ 1275.282225][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1275.282225][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1275.282225][ C1] __run_hrtimer+0x48b/0xd20
[ 1275.282225][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1275.282225][ C1] ? hrtimer_init+0x570/0x570
[ 1275.282225][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1275.282225][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1275.282225][ C1]
[ 1275.282225][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1275.282225][ C1] RIP: 0010:virt_to_page_or_null+0x46/0xf0
[ 1275.282225][ C1] Code: 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 7a ed 05 10 <48> 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48
[ 1275.282225][ C1] RSP: 0000:ffff888166eefb78 EFLAGS: 00000246
[ 1275.282225][ C1] RAX: ffff8881945ec318 RBX: ffff8881145ec318 RCX: ffff88823fff4000
[ 1275.282225][ C1] RDX: 00000001145ec318 RSI: 0000000000000000 RDI: ffff8881145ec318
[ 1275.282225][ C1] RBP: ffff888166eefb78 R08: ffffea000000000f R09: ffff88813fffa000
[ 1275.282225][ C1] R10: 000000006cb3c3c2 R11: 00000000ffffffff R12: ffff8881145ec318
[ 1275.282225][ C1] R13: 0000000000000029 R14: 0000000000000001 R15: 0000000000000001
[ 1275.282225][ C1] kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1275.282225][ C1] __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1275.282225][ C1] handle_mm_fault+0x2c7/0x4ef0
[ 1275.282225][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] ? find_vma+0xae/0x3a0
[ 1275.282225][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1275.282225][ C1] do_user_addr_fault+0x159a/0x2650
[ 1275.282225][ C1] __exc_page_fault+0xe3/0x340
[ 1275.282225][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1275.282225][ C1] exc_page_fault+0x45/0x50
[ 1275.282225][ C1] asm_exc_page_fault+0x1e/0x30
[ 1275.282225][ C1] RIP: 0023:0x805b8d2
[ 1275.282225][ C1] Code: 8b 0c 24 89 74 24 10 8d 43 04 89 44 24 04 89 d8 8d 91 00 40 02 00 89 7c 24 14 89 ef 89 54 24 18 89 d5 89 c1 81 e1 ff 1f 00 00 <8b> 54 8d 00 39 d3 0f 84 aa 01 00 00 85 d2 0f 84 b2 01 00 00 83 c0
[ 1275.282225][ C1] RSP: 002b:00000000ff995640 EFLAGS: 00010206
[ 1275.282225][ C1] RAX: 00000000b75f098b RBX: 00000000b75f098b RCX: 000000000000098b
[ 1275.282225][ C1] RDX: 0000000008190000 RSI: 0000000086306652 RDI: 0000000000000021
[ 1275.282225][ C1] RBP: 0000000008190000 R08: 0000000000000000 R09: 0000000000000000
[ 1275.282225][ C1] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 1275.282225][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1275.282225][ C1] ---[ end trace 4b028c9d42567c43 ]---
[ 1276.210315][ C1] ------------[ cut here ]------------
[ 1276.210315][ C1] WARNING: CPU: 1 PID: 4111 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1276.210315][ C1] Modules linked in:
[ 1276.210315][ C1] CPU: 1 PID: 4111 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1276.210315][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1276.210315][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1276.210315][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1276.268160][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1276.268160][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812ad39f40
[ 1276.268160][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1276.298045][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1276.298045][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1276.298045][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1276.328307][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1276.328307][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1276.328307][ C1] CR2: 00000000085a0004 CR3: 000000016c063000 CR4: 00000000001506e0
[ 1276.328307][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1276.358132][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1276.358132][ C1] Call Trace:
[ 1276.358132][ C1]
[ 1276.358132][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1276.358132][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1276.358132][ C1] __run_hrtimer+0x48b/0xd20
[ 1276.358132][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1276.358132][ C1] ? hrtimer_init+0x570/0x570
[ 1276.358132][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1276.358132][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1276.358132][ C1]
[ 1276.358132][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1276.422920][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1276.422920][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1276.422920][ C1] RSP: 0018:ffff8881537c6e90 EFLAGS: 00000246
[ 1276.422920][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 0000000223fa0dc0
[ 1276.422920][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ffaea28
[ 1276.422920][ C1] RBP: ffff8881537c6e98 R08: ffffea000000000f R09: ffff88813fffa000
[ 1276.422920][ C1] R10: 00000000b5ef5d57 R11: ffff88812ad39f40 R12: 0000000000000000
[ 1276.422920][ C1] R13: ffffffff8ffaea28 R14: ffffffff8ffaea28 R15: 0000000000000000
[ 1276.422920][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1276.422920][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1276.422920][ C1] __crc32c_le_base+0x296/0xe70
[ 1276.422920][ C1] chksum_update+0xb2/0x110
[ 1276.422920][ C1] ? chksum_init+0xd0/0xd0
[ 1276.422920][ C1] crypto_shash_update+0x467/0x5c0
[ 1276.422920][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1276.422920][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.422920][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1276.422920][ C1] ext4_block_bitmap_csum_set+0x32c/0x740
[ 1276.422920][ C1] ext4_mb_mark_diskspace_used+0x20bb/0x2a20
[ 1276.422920][ C1] ext4_mb_new_blocks+0x266e/0x39d0
[ 1276.422920][ C1] ? ext4_ext_search_right+0xcfc/0x1300
[ 1276.422920][ C1] ? ext4_inode_to_goal_block+0x552/0x5c0
[ 1276.422920][ C1] ext4_ext_map_blocks+0x566f/0x76d0
[ 1276.422920][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1276.422920][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.422920][ C1] ext4_map_blocks+0x172a/0x3820
[ 1276.422920][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.422920][ C1] ext4_getblk+0x2b0/0xe20
[ 1276.422920][ C1] ext4_bread+0xb7/0x490
[ 1276.422920][ C1] ext4_append+0x276/0x680
[ 1276.422920][ C1] ext4_init_new_dir+0x4b4/0x10e0
[ 1276.422920][ C1] ext4_mkdir+0x92a/0x1800
[ 1276.422920][ C1] ? security_inode_mkdir+0x265/0x290
[ 1276.422920][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1276.422920][ C1] vfs_mkdir+0x452/0x6d0
[ 1276.422920][ C1] do_mkdirat+0x40b/0x740
[ 1276.422920][ C1] __se_sys_mkdir+0x76/0x90
[ 1276.422920][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1276.422920][ C1] __do_fast_syscall_32+0x127/0x180
[ 1276.422920][ C1] do_fast_syscall_32+0x77/0xd0
[ 1276.422920][ C1] do_SYSENTER_32+0x73/0x90
[ 1276.422920][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1276.422920][ C1] RIP: 0023:0xf7f43549
[ 1276.422920][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1276.685319][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1276.685319][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1276.685319][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1276.685319][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1276.685319][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1276.685319][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.685319][ C1] ---[ end trace 4b028c9d42567c44 ]---
[ 1276.760737][ C1] ------------[ cut here ]------------
[ 1276.766344][ C1] WARNING: CPU: 1 PID: 4111 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1276.769728][ C1] Modules linked in:
[ 1276.769728][ C1] CPU: 1 PID: 4111 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1276.769728][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1276.769728][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1276.769728][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1276.769728][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1276.769728][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812ad39f40
[ 1276.769728][ C1] RDX: 0000000000010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1276.769728][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1276.769728][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1276.769728][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1276.769728][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1276.769728][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1276.769728][ C1] CR2: 00000000085a0004 CR3: 000000016c063000 CR4: 00000000001506e0
[ 1276.769728][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1276.769728][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1276.769728][ C1] Call Trace:
[ 1276.769728][ C1]
[ 1276.769728][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1276.769728][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1276.769728][ C1] __run_hrtimer+0x48b/0xd20
[ 1276.769728][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1276.769728][ C1] ? hrtimer_init+0x570/0x570
[ 1276.769728][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1276.769728][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1276.769728][ C1]
[ 1276.769728][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1276.769728][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1276.769728][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1276.769728][ C1] RSP: 0018:ffff8881537c6e90 EFLAGS: 00000246
[ 1276.769728][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 0000000223fa0dc0
[ 1276.769728][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ffaea28
[ 1276.769728][ C1] RBP: ffff8881537c6e98 R08: ffffea000000000f R09: ffff88813fffa000
[ 1276.769728][ C1] R10: 00000000b5ef5d57 R11: ffff88812ad39f40 R12: 0000000000000000
[ 1276.769728][ C1] R13: ffffffff8ffaea28 R14: ffffffff8ffaea28 R15: 0000000000000000
[ 1276.769728][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1276.769728][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1276.769728][ C1] __crc32c_le_base+0x296/0xe70
[ 1276.769728][ C1] chksum_update+0xb2/0x110
[ 1276.769728][ C1] ? chksum_init+0xd0/0xd0
[ 1276.769728][ C1] crypto_shash_update+0x467/0x5c0
[ 1276.769728][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1276.769728][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.769728][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1276.769728][ C1] ext4_block_bitmap_csum_set+0x32c/0x740
[ 1276.769728][ C1] ext4_mb_mark_diskspace_used+0x20bb/0x2a20
[ 1276.769728][ C1] ext4_mb_new_blocks+0x266e/0x39d0
[ 1276.769728][ C1] ? ext4_ext_search_right+0xcfc/0x1300
[ 1276.769728][ C1] ? ext4_inode_to_goal_block+0x552/0x5c0
[ 1276.769728][ C1] ext4_ext_map_blocks+0x566f/0x76d0
[ 1276.769728][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1276.769728][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.769728][ C1] ext4_map_blocks+0x172a/0x3820
[ 1276.769728][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1276.769728][ C1] ext4_getblk+0x2b0/0xe20
[ 1276.769728][ C1] ext4_bread+0xb7/0x490
[ 1276.769728][ C1] ext4_append+0x276/0x680
[ 1276.769728][ C1] ext4_init_new_dir+0x4b4/0x10e0
[ 1276.769728][ C1] ext4_mkdir+0x92a/0x1800
[ 1276.769728][ C1] ? security_inode_mkdir+0x265/0x290
[ 1276.769728][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1276.769728][ C1] vfs_mkdir+0x452/0x6d0
[ 1276.769728][ C1] do_mkdirat+0x40b/0x740
[ 1276.769728][ C1] __se_sys_mkdir+0x76/0x90
[ 1276.769728][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1276.769728][ C1] __do_fast_syscall_32+0x127/0x180
[ 1276.769728][ C1] do_fast_syscall_32+0x77/0xd0
[ 1276.769728][ C1] do_SYSENTER_32+0x73/0x90
[ 1276.769728][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1276.769728][ C1] RIP: 0023:0xf7f43549
[ 1276.769728][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1276.769728][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1276.769728][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1276.769728][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1276.769728][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1276.769728][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1276.769728][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1276.769728][ C1] ---[ end trace 4b028c9d42567c45 ]---
[ 1277.302785][ C1] ------------[ cut here ]------------
[ 1277.308371][ C1] WARNING: CPU: 1 PID: 4111 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1277.311884][ C1] Modules linked in:
[ 1277.311884][ C1] CPU: 1 PID: 4111 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1277.311884][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1277.311884][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1277.311884][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1277.311884][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1277.311884][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812ad39f40
[ 1277.311884][ C1] RDX: 0000000000010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1277.311884][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1277.311884][ C1] R10: 00000000b56c2fd0 R11: ffff88812ad39f40 R12: 0000000000000000
[ 1277.311884][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1277.311884][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1277.311884][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1277.311884][ C1] CR2: 00000000085a0004 CR3: 000000016c063000 CR4: 00000000001506e0
[ 1277.311884][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1277.311884][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1277.311884][ C1] Call Trace:
[ 1277.311884][ C1]
[ 1277.311884][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1277.311884][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1277.311884][ C1] __run_hrtimer+0x48b/0xd20
[ 1277.311884][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1277.311884][ C1] ? hrtimer_init+0x570/0x570
[ 1277.311884][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1277.311884][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1277.311884][ C1]
[ 1277.311884][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1277.311884][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1277.311884][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1277.311884][ C1] RSP: 0018:ffff8881537c6e90 EFLAGS: 00000246
[ 1277.311884][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: 0000000223fa0dc0
[ 1277.311884][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8ffaea28
[ 1277.311884][ C1] RBP: ffff8881537c6e98 R08: ffffea000000000f R09: ffff88813fffa000
[ 1277.311884][ C1] R10: 00000000b5ef5d57 R11: ffff88812ad39f40 R12: 0000000000000000
[ 1277.311884][ C1] R13: ffffffff8ffaea28 R14: ffffffff8ffaea28 R15: 0000000000000000
[ 1277.311884][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1277.311884][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1277.311884][ C1] __crc32c_le_base+0x296/0xe70
[ 1277.311884][ C1] chksum_update+0xb2/0x110
[ 1277.311884][ C1] ? chksum_init+0xd0/0xd0
[ 1277.311884][ C1] crypto_shash_update+0x467/0x5c0
[ 1277.311884][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1277.311884][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1277.311884][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1277.311884][ C1] ext4_block_bitmap_csum_set+0x32c/0x740
[ 1277.311884][ C1] ext4_mb_mark_diskspace_used+0x20bb/0x2a20
[ 1277.311884][ C1] ext4_mb_new_blocks+0x266e/0x39d0
[ 1277.311884][ C1] ? ext4_ext_search_right+0xcfc/0x1300
[ 1277.311884][ C1] ? ext4_inode_to_goal_block+0x552/0x5c0
[ 1277.311884][ C1] ext4_ext_map_blocks+0x566f/0x76d0
[ 1277.311884][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1277.311884][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1277.311884][ C1] ext4_map_blocks+0x172a/0x3820
[ 1277.311884][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1277.311884][ C1] ext4_getblk+0x2b0/0xe20
[ 1277.311884][ C1] ext4_bread+0xb7/0x490
[ 1277.311884][ C1] ext4_append+0x276/0x680
[ 1277.311884][ C1] ext4_init_new_dir+0x4b4/0x10e0
[ 1277.311884][ C1] ext4_mkdir+0x92a/0x1800
[ 1277.311884][ C1] ? security_inode_mkdir+0x265/0x290
[ 1277.311884][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1277.311884][ C1] vfs_mkdir+0x452/0x6d0
[ 1277.311884][ C1] do_mkdirat+0x40b/0x740
[ 1277.311884][ C1] __se_sys_mkdir+0x76/0x90
[ 1277.311884][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1277.311884][ C1] __do_fast_syscall_32+0x127/0x180
[ 1277.311884][ C1] do_fast_syscall_32+0x77/0xd0
[ 1277.311884][ C1] do_SYSENTER_32+0x73/0x90
[ 1277.311884][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1277.311884][ C1] RIP: 0023:0xf7f43549
[ 1277.311884][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1277.311884][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1277.311884][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1277.311884][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1277.311884][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
06:43:34 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f00000053c0)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f0000001500)=[{&(0x7f0000000040)="9a", 0x1}], 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe00}], 0x2, 0x0)
06:43:34 executing program 4:
syz_emit_ethernet(0xaa, &(0x7f00000001c0)={@broadcast, @local, @void, {@ipv4={0x800, @gre={{0x16, 0x4, 0x0, 0x0, 0x9c, 0x0, 0x0, 0x0, 0x2f, 0x0, @loopback, @dev, {[@generic={0x0, 0x11, "40cdd85241bbbf8dbd485c4ff474dc"}, @timestamp={0x44, 0x18, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0]}, @timestamp_addr={0x44, 0x14, 0x0, 0x1, 0x0, [{@broadcast}, {}]}, @generic={0x0, 0x4, "cb1c"}]}}}}}}, 0x0)
[ 1277.311884][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1277.311884][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1277.311884][ C1] ---[ end trace 4b028c9d42567c46 ]---
[ 1277.934787][ C1] ------------[ cut here ]------------
[ 1277.934787][ C1] WARNING: CPU: 1 PID: 4114 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1277.934787][ C1] Modules linked in:
[ 1277.934787][ C1] CPU: 1 PID: 4114 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1277.934787][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1277.934787][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1277.934787][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1277.934787][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1277.934787][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1277.934787][ C1] RDX: 0000000080010000 RSI: 0000000000000027 RDI: 0000000000000001
[ 1277.934787][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1278.038166][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1278.038166][ C1] R13: 0000000000000000 R14: 0000000000000027 R15: ffff88813fd27b00
[ 1278.038166][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1278.038166][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1278.038166][ C1] CR2: 00000000081709d4 CR3: 000000015ddad000 CR4: 00000000001506e0
[ 1278.038166][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1278.038166][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1278.038166][ C1] Call Trace:
[ 1278.038166][ C1]
[ 1278.038166][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.038166][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1278.038166][ C1] __run_hrtimer+0x48b/0xd20
[ 1278.038166][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1278.038166][ C1] ? hrtimer_init+0x570/0x570
[ 1278.038166][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1278.038166][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1278.038166][ C1]
[ 1278.038166][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1278.038166][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1278.038166][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1278.038166][ C1] RSP: 0018:ffff888160df3448 EFLAGS: 00000286
[ 1278.038166][ C1] RAX: ffff8880ac0c4908 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1278.038166][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88816cc79600
[ 1278.038166][ C1] RBP: ffff888160df3460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1278.038166][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1278.038166][ C1] R13: 0000000000000000 R14: ffff88816cc79600 R15: 0000000000000246
[ 1278.038166][ C1] ? __do_softirq+0x715/0x715
[ 1278.038166][ C1] kmem_cache_free+0x30d/0xf10
[ 1278.038166][ C1] ? __kfree_skb+0x284/0x320
[ 1278.038166][ C1] __kfree_skb+0x284/0x320
[ 1278.038166][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1278.038166][ C1] kfree_skb+0xd5/0x300
[ 1278.038166][ C1] sctp_ulpevent_free+0x429/0x510
[ 1278.038166][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1278.038166][ C1] sctp_close+0x143/0x1060
[ 1278.038166][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.038166][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.038166][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1278.038166][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1278.038166][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.038166][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1278.038166][ C1] inet_release+0x30c/0x390
[ 1278.038166][ C1] inet6_release+0xaf/0x100
[ 1278.038166][ C1] sock_close+0x150/0x450
[ 1278.038166][ C1] ? __inet6_bind+0x2350/0x2350
[ 1278.038166][ C1] ? sock_mmap+0x120/0x120
[ 1278.038166][ C1] __fput+0x6bd/0xf00
[ 1278.038166][ C1] ____fput+0x37/0x40
[ 1278.038166][ C1] ? fput_many+0x360/0x360
[ 1278.038166][ C1] task_work_run+0x140/0x280
[ 1278.038166][ C1] get_signal+0x37d2/0x39e0
[ 1278.038166][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1278.038166][ C1] ? kick_process+0x47/0x180
[ 1278.038166][ C1] ? task_work_add+0x3be/0x4a0
[ 1278.038166][ C1] ? fput+0x2e4/0x320
[ 1278.038166][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.038166][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1278.038166][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1278.038166][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1278.038166][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.038166][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.038166][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1278.038166][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1278.038166][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1278.038166][ C1] do_fast_syscall_32+0x77/0xd0
[ 1278.038166][ C1] do_SYSENTER_32+0x73/0x90
[ 1278.038166][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1278.038166][ C1] RIP: 0023:0xf7fac549
[ 1278.038166][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1278.038166][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1278.038166][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1278.038166][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1278.038166][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1278.038166][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1278.038166][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1278.038166][ C1] ---[ end trace 4b028c9d42567c47 ]---
[ 1278.517046][ C1] ------------[ cut here ]------------
[ 1278.522636][ C1] WARNING: CPU: 1 PID: 4114 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1278.526085][ C1] Modules linked in:
[ 1278.526085][ C1] CPU: 1 PID: 4114 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1278.526085][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1278.526085][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1278.526085][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1278.526085][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1278.526085][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1278.526085][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1278.526085][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1278.526085][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1278.526085][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1278.526085][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1278.526085][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1278.526085][ C1] CR2: 00000000081709d4 CR3: 000000015ddad000 CR4: 00000000001506e0
[ 1278.526085][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1278.526085][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1278.526085][ C1] Call Trace:
[ 1278.526085][ C1]
[ 1278.526085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.526085][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1278.526085][ C1] __run_hrtimer+0x48b/0xd20
[ 1278.526085][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1278.526085][ C1] ? hrtimer_init+0x570/0x570
[ 1278.526085][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1278.526085][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1278.526085][ C1]
[ 1278.526085][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1278.526085][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1278.526085][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1278.526085][ C1] RSP: 0018:ffff888160df3448 EFLAGS: 00000286
[ 1278.526085][ C1] RAX: ffff8880ac0c4908 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1278.526085][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88816cc79600
[ 1278.526085][ C1] RBP: ffff888160df3460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1278.526085][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1278.526085][ C1] R13: 0000000000000000 R14: ffff88816cc79600 R15: 0000000000000246
[ 1278.526085][ C1] ? __do_softirq+0x715/0x715
[ 1278.526085][ C1] kmem_cache_free+0x30d/0xf10
[ 1278.526085][ C1] ? __kfree_skb+0x284/0x320
[ 1278.526085][ C1] __kfree_skb+0x284/0x320
[ 1278.526085][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1278.526085][ C1] kfree_skb+0xd5/0x300
[ 1278.526085][ C1] sctp_ulpevent_free+0x429/0x510
[ 1278.526085][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1278.526085][ C1] sctp_close+0x143/0x1060
[ 1278.526085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.526085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.526085][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1278.526085][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1278.526085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.526085][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1278.526085][ C1] inet_release+0x30c/0x390
[ 1278.526085][ C1] inet6_release+0xaf/0x100
[ 1278.526085][ C1] sock_close+0x150/0x450
[ 1278.526085][ C1] ? __inet6_bind+0x2350/0x2350
[ 1278.526085][ C1] ? sock_mmap+0x120/0x120
[ 1278.526085][ C1] __fput+0x6bd/0xf00
[ 1278.526085][ C1] ____fput+0x37/0x40
[ 1278.526085][ C1] ? fput_many+0x360/0x360
[ 1278.526085][ C1] task_work_run+0x140/0x280
[ 1278.526085][ C1] get_signal+0x37d2/0x39e0
[ 1278.526085][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1278.526085][ C1] ? kick_process+0x47/0x180
[ 1278.526085][ C1] ? task_work_add+0x3be/0x4a0
[ 1278.526085][ C1] ? fput+0x2e4/0x320
[ 1278.526085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.526085][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1278.526085][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1278.526085][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1278.526085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1278.526085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1278.526085][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1278.526085][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1278.526085][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1278.526085][ C1] do_fast_syscall_32+0x77/0xd0
[ 1278.526085][ C1] do_SYSENTER_32+0x73/0x90
[ 1278.526085][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1278.526085][ C1] RIP: 0023:0xf7fac549
[ 1278.526085][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1278.526085][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1278.526085][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1278.526085][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1278.526085][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1278.526085][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1278.526085][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1278.526085][ C1] ---[ end trace 4b028c9d42567c48 ]---
[ 1279.089521][ C1] ------------[ cut here ]------------
[ 1279.095098][ C1] WARNING: CPU: 1 PID: 4114 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1279.098706][ C1] Modules linked in:
[ 1279.098706][ C1] CPU: 1 PID: 4114 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1279.098706][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1279.098706][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1279.098706][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1279.098706][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1279.098706][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1279.098706][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1279.098706][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1279.098706][ C1] R10: 00000000b56c2fd0 R11: ffff8880ac0c3e80 R12: 0000000000000000
[ 1279.098706][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1279.098706][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1279.098706][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1279.098706][ C1] CR2: 00000000081709d4 CR3: 000000015ddad000 CR4: 00000000001506e0
[ 1279.098706][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1279.098706][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1279.098706][ C1] Call Trace:
[ 1279.098706][ C1]
[ 1279.098706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1279.098706][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1279.098706][ C1] __run_hrtimer+0x48b/0xd20
[ 1279.098706][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1279.098706][ C1] ? hrtimer_init+0x570/0x570
[ 1279.098706][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1279.098706][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1279.098706][ C1]
[ 1279.098706][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1279.098706][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1279.098706][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1279.098706][ C1] RSP: 0018:ffff888160df3448 EFLAGS: 00000286
[ 1279.098706][ C1] RAX: ffff8880ac0c4908 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1279.098706][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88816cc79600
[ 1279.098706][ C1] RBP: ffff888160df3460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1279.098706][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1279.098706][ C1] R13: 0000000000000000 R14: ffff88816cc79600 R15: 0000000000000246
[ 1279.098706][ C1] ? __do_softirq+0x715/0x715
[ 1279.098706][ C1] kmem_cache_free+0x30d/0xf10
[ 1279.098706][ C1] ? __kfree_skb+0x284/0x320
[ 1279.098706][ C1] __kfree_skb+0x284/0x320
[ 1279.098706][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1279.098706][ C1] kfree_skb+0xd5/0x300
[ 1279.098706][ C1] sctp_ulpevent_free+0x429/0x510
[ 1279.098706][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1279.098706][ C1] sctp_close+0x143/0x1060
[ 1279.098706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1279.098706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1279.098706][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1279.098706][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1279.098706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1279.098706][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1279.098706][ C1] inet_release+0x30c/0x390
[ 1279.098706][ C1] inet6_release+0xaf/0x100
[ 1279.098706][ C1] sock_close+0x150/0x450
[ 1279.098706][ C1] ? __inet6_bind+0x2350/0x2350
[ 1279.098706][ C1] ? sock_mmap+0x120/0x120
[ 1279.098706][ C1] __fput+0x6bd/0xf00
[ 1279.098706][ C1] ____fput+0x37/0x40
[ 1279.098706][ C1] ? fput_many+0x360/0x360
[ 1279.098706][ C1] task_work_run+0x140/0x280
[ 1279.098706][ C1] get_signal+0x37d2/0x39e0
[ 1279.098706][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1279.098706][ C1] ? kick_process+0x47/0x180
[ 1279.098706][ C1] ? task_work_add+0x3be/0x4a0
[ 1279.098706][ C1] ? fput+0x2e4/0x320
[ 1279.098706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1279.098706][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1279.098706][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1279.098706][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1279.098706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1279.098706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1279.098706][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1279.098706][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1279.098706][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1279.098706][ C1] do_fast_syscall_32+0x77/0xd0
[ 1279.098706][ C1] do_SYSENTER_32+0x73/0x90
[ 1279.098706][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1279.098706][ C1] RIP: 0023:0xf7fac549
[ 1279.098706][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1279.098706][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1279.098706][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1279.098706][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1279.098706][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1279.098706][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1279.098706][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1279.098706][ C1] ---[ end trace 4b028c9d42567c49 ]---
[ 1279.748920][ C1] ------------[ cut here ]------------
[ 1279.748920][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1279.748920][ C1] Modules linked in:
[ 1279.748920][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1279.748920][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1279.798133][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1279.798133][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1279.828177][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1279.828177][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1279.843485][ C1] RDX: 0000000080010000 RSI: 0000000000000029 RDI: 0000000000000001
[ 1279.843485][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1279.860047][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1279.860047][ C1] R13: 0000000000000000 R14: 0000000000000029 R15: ffff88813fd27b00
[ 1279.860047][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1279.860047][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1279.888678][ C1] CR2: 00000000090d52c5 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1279.888678][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1279.888678][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1279.888678][ C1] Call Trace:
[ 1279.888678][ C1]
[ 1279.888678][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1279.888678][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1279.888678][ C1] __run_hrtimer+0x48b/0xd20
[ 1279.888678][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1279.888678][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1279.888678][ C1] ? hrtimer_init+0x570/0x570
06:43:36 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x20100000, &(0x7f0000000840)={[{@grpid}]})
[ 1279.888678][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1279.888678][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1279.888678][ C1]
[ 1279.888678][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1279.978292][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1/0x20
[ 1279.978292][ C1] Code: 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92
[ 1279.978292][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000246
[ 1279.978292][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880ab67b630 RCX: 00000000aae7b600
[ 1279.978292][ C1] RDX: 00000000ab67b630 RSI: 0000000000000001 RDI: ffff8880ab67b630
[ 1279.978292][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1279.978292][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff8880ab67b630
[ 1279.978292][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1279.978292][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1279.978292][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1279.978292][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1280.068131][ C1] copy_pte_range+0x424c/0x50c0
[ 1280.068131][ C1] ? __do_fast_syscall_32+0x127/0x180
[ 1280.068131][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1280.068131][ C1] copy_page_range+0x1a81/0x2410
[ 1280.068131][ C1] dup_mmap+0x1674/0x2250
[ 1280.068131][ C1] dup_mm+0x1f0/0x7c0
[ 1280.068131][ C1] copy_process+0x3ec4/0x9b80
[ 1280.068131][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1280.068131][ C1] kernel_clone+0x4ea/0x1350
[ 1280.068131][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1280.068131][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1280.068131][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1280.068131][ C1] __do_fast_syscall_32+0x127/0x180
[ 1280.068131][ C1] do_fast_syscall_32+0x77/0xd0
[ 1280.068131][ C1] do_SYSENTER_32+0x73/0x90
[ 1280.068131][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1280.068131][ C1] RIP: 0023:0xf7f41549
[ 1280.158059][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1280.158059][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1280.188210][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1280.194107][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1280.194107][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1280.194107][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1280.194107][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1280.194107][ C1] ---[ end trace 4b028c9d42567c4a ]---
[ 1280.237150][ C1] ------------[ cut here ]------------
[ 1280.242767][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1280.246014][ C1] Modules linked in:
[ 1280.246014][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1280.246014][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1280.278037][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1280.281014][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1280.281014][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1280.281014][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1280.281014][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1280.281014][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1280.281014][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1280.281014][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1280.281014][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1280.281014][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1280.281014][ C1] CR2: 00000000090d52c5 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1280.368146][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1280.368146][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1280.368146][ C1] Call Trace:
[ 1280.368146][ C1]
[ 1280.368146][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1280.368146][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1280.368146][ C1] __run_hrtimer+0x48b/0xd20
[ 1280.368146][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1280.368146][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1280.368146][ C1] ? hrtimer_init+0x570/0x570
[ 1280.368146][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1280.368146][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1280.368146][ C1]
[ 1280.368146][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1280.448187][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1/0x20
06:43:36 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendto$unix(r1, &(0x7f0000000140), 0x14ded905162a6a4b, 0x0, 0x0, 0x429)
recvfrom(r1, &(0x7f0000003240)=""/4096, 0x100000205, 0x0, 0x0, 0x415)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x100000000000008d, 0x4, 0x0)
sendmmsg(r1, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
[ 1280.448187][ C1] Code: 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92
[ 1280.448187][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000246
[ 1280.448187][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880ab67b630 RCX: 00000000aae7b600
[ 1280.448187][ C1] RDX: 00000000ab67b630 RSI: 0000000000000001 RDI: ffff8880ab67b630
[ 1280.448187][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1280.448187][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff8880ab67b630
[ 1280.518021][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1280.518021][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1280.518021][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1280.518021][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1280.518021][ C1] copy_pte_range+0x424c/0x50c0
[ 1280.548149][ C1] ? __do_fast_syscall_32+0x127/0x180
[ 1280.548149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1280.548149][ C1] copy_page_range+0x1a81/0x2410
[ 1280.548149][ C1] dup_mmap+0x1674/0x2250
[ 1280.548149][ C1] dup_mm+0x1f0/0x7c0
[ 1280.548149][ C1] copy_process+0x3ec4/0x9b80
[ 1280.578062][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1280.578062][ C1] kernel_clone+0x4ea/0x1350
[ 1280.578062][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1280.578062][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1280.578062][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1280.608103][ C1] __do_fast_syscall_32+0x127/0x180
[ 1280.608103][ C1] do_fast_syscall_32+0x77/0xd0
[ 1280.608103][ C1] do_SYSENTER_32+0x73/0x90
[ 1280.608103][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1280.608103][ C1] RIP: 0023:0xf7f41549
[ 1280.608103][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1280.637997][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1280.637997][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1280.668161][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1280.668161][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1280.668161][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1280.668161][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1280.668161][ C1] ---[ end trace 4b028c9d42567c4b ]---
[ 1280.711955][ C1] ------------[ cut here ]------------
[ 1280.717556][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1280.720946][ C1] Modules linked in:
[ 1280.720946][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1280.720946][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1280.720946][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1280.720946][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1280.720946][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1280.720946][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1280.720946][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1280.720946][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1280.720946][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1280.720946][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1280.720946][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1280.720946][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1280.720946][ C1] CR2: 00000000090d52c5 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1280.720946][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1280.720946][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1280.720946][ C1] Call Trace:
[ 1280.720946][ C1]
[ 1280.720946][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1280.720946][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1280.720946][ C1] __run_hrtimer+0x48b/0xd20
[ 1280.720946][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1280.720946][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1280.720946][ C1] ? hrtimer_init+0x570/0x570
[ 1280.720946][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
06:43:37 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0x0, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1280.720946][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1280.720946][ C1]
[ 1280.720946][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1280.720946][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1/0x20
[ 1280.928245][ C1] Code: 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92
[ 1280.928245][ C1] RSP: 0018:ffff8880ab67b3a0 EFLAGS: 00000246
[ 1280.928245][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880ab67b630 RCX: 00000000aae7b600
[ 1280.928245][ C1] RDX: 00000000ab67b630 RSI: 0000000000000001 RDI: ffff8880ab67b630
[ 1280.928245][ C1] RBP: ffff8880ab67b3c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1280.928245][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff8880ab67b630
[ 1280.928245][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[ 1280.928245][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1280.928245][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1281.008064][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1281.008064][ C1] copy_pte_range+0x424c/0x50c0
[ 1281.008064][ C1] ? __do_fast_syscall_32+0x127/0x180
[ 1281.008064][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1281.008064][ C1] copy_page_range+0x1a81/0x2410
[ 1281.008064][ C1] dup_mmap+0x1674/0x2250
[ 1281.008064][ C1] dup_mm+0x1f0/0x7c0
[ 1281.008064][ C1] copy_process+0x3ec4/0x9b80
[ 1281.008064][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1281.008064][ C1] kernel_clone+0x4ea/0x1350
[ 1281.008064][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1281.008064][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1281.008064][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1281.008064][ C1] __do_fast_syscall_32+0x127/0x180
[ 1281.008064][ C1] do_fast_syscall_32+0x77/0xd0
[ 1281.008064][ C1] do_SYSENTER_32+0x73/0x90
[ 1281.008064][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1281.008064][ C1] RIP: 0023:0xf7f41549
[ 1281.008064][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1281.008064][ C1] RSP: 002b:00000000ffcb50b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1281.008064][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1281.008064][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000aea43e8
[ 1281.008064][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1281.008064][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1281.008064][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1281.008064][ C1] ---[ end trace 4b028c9d42567c4c ]---
06:43:37 executing program 5:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f00000053c0)=[{&(0x7f0000000000)=@in={0x2, 0x0, @loopback}, 0x10, &(0x7f0000001500)=[{&(0x7f0000000040)="9a", 0x1}], 0x1}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe00}], 0x2, 0x0)
[ 1281.286320][ C1] ------------[ cut here ]------------
[ 1281.292026][ C1] WARNING: CPU: 1 PID: 4126 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1281.295344][ C1] Modules linked in:
[ 1281.295344][ C1] CPU: 1 PID: 4126 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1281.295344][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1281.295344][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1281.295344][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1281.295344][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1281.295344][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145e8000
[ 1281.295344][ C1] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1281.295344][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1281.295344][ C1] R10: 00000000b56c2fd0 R11: 00000000b123f581 R12: 0000000000000000
[ 1281.295344][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1281.295344][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1281.295344][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1281.295344][ C1] CR2: 00000000200023c4 CR3: 00000001558a3000 CR4: 00000000001506e0
[ 1281.295344][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1281.295344][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1281.295344][ C1] Call Trace:
[ 1281.295344][ C1]
[ 1281.295344][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1281.295344][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1281.295344][ C1] __run_hrtimer+0x48b/0xd20
[ 1281.295344][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1281.295344][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.295344][ C1] ? hrtimer_init+0x570/0x570
[ 1281.295344][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1281.295344][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1281.295344][ C1]
[ 1281.295344][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1281.295344][ C1] RIP: 0010:kmsan_alloc_page+0x144/0x1e0
[ 1281.295344][ C1] Code: 00 49 01 cf 49 c1 ef 04 4d 0f af fc 48 b9 00 00 00 00 80 88 ff ff 49 01 cf b9 01 00 00 00 31 d2 66 0f 1f 44 00 00 45 89 34 97 <48> 63 d1 ff c1 48 39 d0 77 f2 eb 6f 48 b8 00 00 00 00 00 16 00 00
[ 1281.295344][ C1] RSP: 0000:ffff8881618038b0 EFLAGS: 00000216
[ 1281.295344][ C1] RAX: 0000000000080000 RBX: 0000000000000206 RCX: 000000000005e31f
[ 1281.295344][ C1] RDX: 000000000005e31e RSI: 0000000000000000 RDI: 0000000004ee00d8
[ 1281.295344][ C1] RBP: ffff8881618038e0 R08: 0000000000000002 R09: ffff8881618036b8
[ 1281.295344][ C1] R10: 0000000031e2d27a R11: ffffffff8fc00715 R12: ccccccccccccd000
[ 1281.295344][ C1] R13: 0000000000080000 R14: 0000000004ee00d8 R15: ffff888117c00000
[ 1281.295344][ C1] ? __do_softirq+0x715/0x715
[ 1281.295344][ C1] __alloc_pages_nodemask+0x827/0xf90
[ 1281.295344][ C1] alloc_pages_vma+0x19d1/0x1ec0
[ 1281.295344][ C1] do_huge_pmd_anonymous_page+0x18f9/0x2180
[ 1281.295344][ C1] ? lock_page_maybe_drop_mmap+0x850/0x850
[ 1281.295344][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.295344][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.295344][ C1] handle_mm_fault+0x4a25/0x4ef0
[ 1281.295344][ C1] do_user_addr_fault+0x159a/0x2650
[ 1281.295344][ C1] __exc_page_fault+0xe3/0x340
[ 1281.295344][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1281.295344][ C1] exc_page_fault+0x45/0x50
[ 1281.295344][ C1] asm_exc_page_fault+0x1e/0x30
[ 1281.295344][ C1] RIP: 0023:0x805706b
[ 1281.295344][ C1] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83
[ 1281.295344][ C1] RSP: 002b:00000000ffcb4e70 EFLAGS: 00010246
[ 1281.295344][ C1] RAX: 00000000200023c4 RBX: 0000000000000000 RCX: 0000000000000000
[ 1281.295344][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1281.295344][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1281.295344][ C1] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000000
[ 1281.295344][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1281.295344][ C1] ---[ end trace 4b028c9d42567c4d ]---
[ 1281.721923][ C1] ------------[ cut here ]------------
[ 1281.727540][ C1] WARNING: CPU: 1 PID: 4126 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1281.730837][ C1] Modules linked in:
[ 1281.730837][ C1] CPU: 1 PID: 4126 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1281.730837][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1281.730837][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1281.730837][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1281.730837][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1281.730837][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145e8000
[ 1281.730837][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1281.730837][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1281.730837][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1281.730837][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1281.730837][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1281.730837][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1281.730837][ C1] CR2: 00000000200023c4 CR3: 00000001558a3000 CR4: 00000000001506e0
[ 1281.730837][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1281.730837][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1281.730837][ C1] Call Trace:
[ 1281.730837][ C1]
[ 1281.730837][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1281.730837][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1281.891063][ C1] __run_hrtimer+0x48b/0xd20
[ 1281.891063][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1281.891063][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.891063][ C1] ? hrtimer_init+0x570/0x570
[ 1281.891063][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1281.891063][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1281.891063][ C1]
[ 1281.891063][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1281.891063][ C1] RIP: 0010:kmsan_alloc_page+0x144/0x1e0
[ 1281.891063][ C1] Code: 00 49 01 cf 49 c1 ef 04 4d 0f af fc 48 b9 00 00 00 00 80 88 ff ff 49 01 cf b9 01 00 00 00 31 d2 66 0f 1f 44 00 00 45 89 34 97 <48> 63 d1 ff c1 48 39 d0 77 f2 eb 6f 48 b8 00 00 00 00 00 16 00 00
[ 1281.891063][ C1] RSP: 0000:ffff8881618038b0 EFLAGS: 00000216
[ 1281.891063][ C1] RAX: 0000000000080000 RBX: 0000000000000206 RCX: 000000000005e31f
[ 1281.891063][ C1] RDX: 000000000005e31e RSI: 0000000000000000 RDI: 0000000004ee00d8
[ 1281.891063][ C1] RBP: ffff8881618038e0 R08: 0000000000000002 R09: ffff8881618036b8
[ 1281.891063][ C1] R10: 0000000031e2d27a R11: ffffffff8fc00715 R12: ccccccccccccd000
[ 1281.891063][ C1] R13: 0000000000080000 R14: 0000000004ee00d8 R15: ffff888117c00000
[ 1281.891063][ C1] ? __do_softirq+0x715/0x715
[ 1281.891063][ C1] __alloc_pages_nodemask+0x827/0xf90
[ 1281.891063][ C1] alloc_pages_vma+0x19d1/0x1ec0
[ 1281.891063][ C1] do_huge_pmd_anonymous_page+0x18f9/0x2180
[ 1281.891063][ C1] ? lock_page_maybe_drop_mmap+0x850/0x850
[ 1281.891063][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.891063][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1281.891063][ C1] handle_mm_fault+0x4a25/0x4ef0
[ 1281.891063][ C1] do_user_addr_fault+0x159a/0x2650
[ 1281.891063][ C1] __exc_page_fault+0xe3/0x340
[ 1281.891063][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1281.891063][ C1] exc_page_fault+0x45/0x50
[ 1281.891063][ C1] asm_exc_page_fault+0x1e/0x30
[ 1281.891063][ C1] RIP: 0023:0x805706b
[ 1281.891063][ C1] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83
[ 1281.891063][ C1] RSP: 002b:00000000ffcb4e70 EFLAGS: 00010246
[ 1281.891063][ C1] RAX: 00000000200023c4 RBX: 0000000000000000 RCX: 0000000000000000
[ 1281.891063][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1281.891063][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1281.891063][ C1] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000000
[ 1281.891063][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1281.891063][ C1] ---[ end trace 4b028c9d42567c4e ]---
[ 1281.891063][ C1] ------------[ cut here ]------------
[ 1281.891063][ C1] WARNING: CPU: 1 PID: 4126 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1281.891063][ C1] Modules linked in:
[ 1281.891063][ C1] CPU: 1 PID: 4126 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1281.891063][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1281.891063][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1281.891063][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1282.208035][ C1] RSP: 0000:ffff88813fd05cb0 EFLAGS: 00010046
[ 1282.208035][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881145e8000
[ 1282.208035][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1282.208035][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1282.208035][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1282.208035][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1282.208035][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1282.208035][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1282.208035][ C1] CR2: 00000000200023c4 CR3: 00000001558a3000 CR4: 00000000001506e0
[ 1282.208035][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1282.208035][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1282.208035][ C1] Call Trace:
[ 1282.208035][ C1]
[ 1282.208035][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1282.208035][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1282.208035][ C1] __run_hrtimer+0x48b/0xd20
[ 1282.208035][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1282.208035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1282.208035][ C1] ? hrtimer_init+0x570/0x570
[ 1282.208035][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1282.208035][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1282.208035][ C1]
[ 1282.208035][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1282.208035][ C1] RIP: 0010:kmsan_alloc_page+0x144/0x1e0
[ 1282.208035][ C1] Code: 00 49 01 cf 49 c1 ef 04 4d 0f af fc 48 b9 00 00 00 00 80 88 ff ff 49 01 cf b9 01 00 00 00 31 d2 66 0f 1f 44 00 00 45 89 34 97 <48> 63 d1 ff c1 48 39 d0 77 f2 eb 6f 48 b8 00 00 00 00 00 16 00 00
[ 1282.208035][ C1] RSP: 0000:ffff8881618038b0 EFLAGS: 00000216
[ 1282.208035][ C1] RAX: 0000000000080000 RBX: 0000000000000206 RCX: 000000000005e31f
[ 1282.208035][ C1] RDX: 000000000005e31e RSI: 0000000000000000 RDI: 0000000004ee00d8
[ 1282.208035][ C1] RBP: ffff8881618038e0 R08: 0000000000000002 R09: ffff8881618036b8
[ 1282.208035][ C1] R10: 0000000031e2d27a R11: ffffffff8fc00715 R12: ccccccccccccd000
[ 1282.208035][ C1] R13: 0000000000080000 R14: 0000000004ee00d8 R15: ffff888117c00000
[ 1282.208035][ C1] ? __do_softirq+0x715/0x715
[ 1282.208035][ C1] __alloc_pages_nodemask+0x827/0xf90
[ 1282.208035][ C1] alloc_pages_vma+0x19d1/0x1ec0
[ 1282.208035][ C1] do_huge_pmd_anonymous_page+0x18f9/0x2180
[ 1282.208035][ C1] ? lock_page_maybe_drop_mmap+0x850/0x850
[ 1282.208035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1282.208035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1282.208035][ C1] handle_mm_fault+0x4a25/0x4ef0
[ 1282.208035][ C1] do_user_addr_fault+0x159a/0x2650
[ 1282.208035][ C1] __exc_page_fault+0xe3/0x340
[ 1282.208035][ C1] ? asm_exc_page_fault+0x8/0x30
[ 1282.208035][ C1] exc_page_fault+0x45/0x50
[ 1282.208035][ C1] asm_exc_page_fault+0x1e/0x30
[ 1282.208035][ C1] RIP: 0023:0x805706b
[ 1282.208035][ C1] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83
[ 1282.208035][ C1] RSP: 002b:00000000ffcb4e70 EFLAGS: 00010246
[ 1282.208035][ C1] RAX: 00000000200023c4 RBX: 0000000000000000 RCX: 0000000000000000
[ 1282.208035][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 1282.208035][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1282.208035][ C1] R10: 0000000000000000 R11: 0000000000000297 R12: 0000000000000000
[ 1282.208035][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1282.208035][ C1] ---[ end trace 4b028c9d42567c4f ]---
[ 1282.674709][ C1] ------------[ cut here ]------------
[ 1282.692051][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1282.692051][ C1] Modules linked in:
[ 1282.692051][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1282.692051][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1282.692051][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1282.692051][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1282.754468][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1282.754468][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1282.754468][ C1] RDX: 0000000080010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1282.754468][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1282.754468][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1282.754468][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1282.754468][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1282.754468][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1282.754468][ C1] CR2: 00007f4ebe536000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1282.754468][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1282.754468][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1282.754468][ C1] Call Trace:
[ 1282.754468][ C1]
[ 1282.754468][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1282.754468][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1282.754468][ C1] __run_hrtimer+0x48b/0xd20
[ 1282.754468][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1282.754468][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1282.754468][ C1] ? hrtimer_init+0x570/0x570
[ 1282.754468][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1282.754468][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1282.754468][ C1]
[ 1282.754468][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1282.754468][ C1] RIP: 0010:metadata_is_contiguous+0x196/0x1a0
[ 1282.754468][ C1] Code: 30 45 31 ff 48 c7 c7 41 19 7c 90 31 c0 e8 15 6a 4f ff 8b 3b e8 3b 26 00 00 44 89 f8 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54
[ 1282.754468][ C1] RSP: 0018:ffff888115ebf7a0 EFLAGS: 00000292
[ 1282.754468][ C1] RAX: 0000000015ebf801 RBX: ffffffff917e8950 RCX: 0000000000000001
[ 1282.942783][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888115ebf8a4
[ 1282.942783][ C1] RBP: ffff888115ebf7d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1282.942783][ C1] R10: 00000000ed60970e R11: ffff888111601f40 R12: 00000000ffffffff
[ 1282.942783][ C1] R13: 0000000000000004 R14: 0000000000000001 R15: ffff888115ebf8a4
[ 1282.942783][ C1] ? kmsan_internal_memset_shadow+0x23/0xa0
[ 1282.942783][ C1] __msan_poison_alloca+0x50/0x110
[ 1282.988066][ C1] ? walk_component+0x69/0xbb0
[ 1282.988066][ C1] ? walk_component+0x69/0xbb0
[ 1282.988066][ C1] walk_component+0x7e/0xbb0
[ 1282.988066][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.008849][ C1] link_path_walk+0xafe/0x1540
[ 1283.008849][ C1] path_openat+0x383/0x6be0
[ 1283.008849][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.008849][ C1] ? __msan_get_context_state+0x9/0x20
[ 1283.008849][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1283.008849][ C1] ? should_fail+0x72/0x9e0
[ 1283.008849][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.008849][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.008849][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.008849][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.008849][ C1] do_filp_open+0x2b8/0x710
[ 1283.008849][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1283.008849][ C1] do_sys_openat2+0x25f/0x830
[ 1283.078152][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.078152][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.078152][ C1] __se_sys_open+0x271/0x2d0
[ 1283.078152][ C1] __x64_sys_open+0x4a/0x70
[ 1283.078152][ C1] do_syscall_64+0x9f/0x140
[ 1283.078152][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1283.108073][ C1] RIP: 0033:0x7f4ec2407840
[ 1283.108073][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1283.108073][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1283.108073][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1283.108073][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1283.108073][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1283.108073][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1283.108073][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1283.108073][ C1] ---[ end trace 4b028c9d42567c50 ]---
[ 1283.194177][ C1] ------------[ cut here ]------------
[ 1283.199795][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1283.203068][ C1] Modules linked in:
[ 1283.203068][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1283.203068][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1283.203068][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1283.203068][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1283.203068][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1283.203068][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1283.203068][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1283.203068][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1283.203068][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1283.203068][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1283.203068][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1283.203068][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1283.203068][ C1] CR2: 00007f4ebe536000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1283.203068][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1283.203068][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1283.203068][ C1] Call Trace:
[ 1283.203068][ C1]
[ 1283.203068][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.203068][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1283.203068][ C1] __run_hrtimer+0x48b/0xd20
[ 1283.203068][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1283.378159][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1283.378159][ C1] ? hrtimer_init+0x570/0x570
[ 1283.378159][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1283.378159][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1283.378159][ C1]
[ 1283.378159][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1283.378159][ C1] RIP: 0010:metadata_is_contiguous+0x196/0x1a0
[ 1283.378159][ C1] Code: 30 45 31 ff 48 c7 c7 41 19 7c 90 31 c0 e8 15 6a 4f ff 8b 3b e8 3b 26 00 00 44 89 f8 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54
[ 1283.378159][ C1] RSP: 0018:ffff888115ebf7a0 EFLAGS: 00000292
[ 1283.378159][ C1] RAX: 0000000015ebf801 RBX: ffffffff917e8950 RCX: 0000000000000001
[ 1283.378159][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888115ebf8a4
[ 1283.378159][ C1] RBP: ffff888115ebf7d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1283.378159][ C1] R10: 00000000ed60970e R11: ffff888111601f40 R12: 00000000ffffffff
[ 1283.378159][ C1] R13: 0000000000000004 R14: 0000000000000001 R15: ffff888115ebf8a4
[ 1283.378159][ C1] ? kmsan_internal_memset_shadow+0x23/0xa0
[ 1283.378159][ C1] __msan_poison_alloca+0x50/0x110
[ 1283.378159][ C1] ? walk_component+0x69/0xbb0
[ 1283.378159][ C1] ? walk_component+0x69/0xbb0
[ 1283.378159][ C1] walk_component+0x7e/0xbb0
[ 1283.378159][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.378159][ C1] link_path_walk+0xafe/0x1540
[ 1283.378159][ C1] path_openat+0x383/0x6be0
[ 1283.378159][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.378159][ C1] ? __msan_get_context_state+0x9/0x20
[ 1283.378159][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1283.378159][ C1] ? should_fail+0x72/0x9e0
[ 1283.378159][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.378159][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.378159][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.378159][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.378159][ C1] do_filp_open+0x2b8/0x710
[ 1283.378159][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1283.378159][ C1] do_sys_openat2+0x25f/0x830
[ 1283.378159][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.378159][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.378159][ C1] __se_sys_open+0x271/0x2d0
[ 1283.378159][ C1] __x64_sys_open+0x4a/0x70
[ 1283.378159][ C1] do_syscall_64+0x9f/0x140
[ 1283.378159][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1283.378159][ C1] RIP: 0033:0x7f4ec2407840
[ 1283.378159][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1283.378159][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1283.378159][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1283.378159][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1283.378159][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1283.378159][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1283.378159][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1283.378159][ C1] ---[ end trace 4b028c9d42567c51 ]---
[ 1283.698886][ C1] ------------[ cut here ]------------
[ 1283.704528][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1283.707800][ C1] Modules linked in:
[ 1283.707800][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1283.707800][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1283.707800][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1283.707800][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1283.707800][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1283.707800][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1283.707800][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1283.707800][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1283.707800][ C1] R10: 00000000b56c2fd0 R11: ffff888111601f40 R12: 0000000000000000
[ 1283.707800][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1283.707800][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1283.707800][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1283.707800][ C1] CR2: 00007f4ebe536000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1283.707800][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1283.707800][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1283.707800][ C1] Call Trace:
[ 1283.707800][ C1]
[ 1283.707800][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.707800][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1283.707800][ C1] __run_hrtimer+0x48b/0xd20
[ 1283.707800][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1283.707800][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1283.707800][ C1] ? hrtimer_init+0x570/0x570
[ 1283.889834][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1283.889834][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1283.889834][ C1]
[ 1283.889834][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1283.889834][ C1] RIP: 0010:metadata_is_contiguous+0x196/0x1a0
[ 1283.889834][ C1] Code: 30 45 31 ff 48 c7 c7 41 19 7c 90 31 c0 e8 15 6a 4f ff 8b 3b e8 3b 26 00 00 44 89 f8 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 41 57 41 56 41 55 41 54
[ 1283.889834][ C1] RSP: 0018:ffff888115ebf7a0 EFLAGS: 00000292
[ 1283.889834][ C1] RAX: 0000000015ebf801 RBX: ffffffff917e8950 RCX: 0000000000000001
[ 1283.889834][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffff888115ebf8a4
[ 1283.889834][ C1] RBP: ffff888115ebf7d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1283.889834][ C1] R10: 00000000ed60970e R11: ffff888111601f40 R12: 00000000ffffffff
[ 1283.889834][ C1] R13: 0000000000000004 R14: 0000000000000001 R15: ffff888115ebf8a4
[ 1283.889834][ C1] ? kmsan_internal_memset_shadow+0x23/0xa0
[ 1283.889834][ C1] __msan_poison_alloca+0x50/0x110
[ 1283.889834][ C1] ? walk_component+0x69/0xbb0
[ 1283.889834][ C1] ? walk_component+0x69/0xbb0
[ 1283.889834][ C1] walk_component+0x7e/0xbb0
[ 1283.889834][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.889834][ C1] link_path_walk+0xafe/0x1540
[ 1283.889834][ C1] path_openat+0x383/0x6be0
[ 1283.889834][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.889834][ C1] ? __msan_get_context_state+0x9/0x20
[ 1283.889834][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1283.889834][ C1] ? should_fail+0x72/0x9e0
[ 1283.889834][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.889834][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1283.889834][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.889834][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.889834][ C1] do_filp_open+0x2b8/0x710
[ 1283.889834][ C1] ? get_unused_fd_flags+0x90/0xb0
[ 1283.889834][ C1] do_sys_openat2+0x25f/0x830
[ 1283.889834][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1283.889834][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1283.889834][ C1] __se_sys_open+0x271/0x2d0
[ 1283.889834][ C1] __x64_sys_open+0x4a/0x70
[ 1283.889834][ C1] do_syscall_64+0x9f/0x140
[ 1283.889834][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1283.889834][ C1] RIP: 0033:0x7f4ec2407840
[ 1283.889834][ C1] Code: 73 01 c3 48 8b 0d 68 77 20 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 89 bb 20 00 00 75 10 b8 02 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24
[ 1283.889834][ C1] RSP: 002b:00007ffda9800378 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[ 1283.889834][ C1] RAX: ffffffffffffffda RBX: 00007ffda9800680 RCX: 00007f4ec2407840
[ 1283.889834][ C1] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 000056073a88b390
[ 1283.889834][ C1] RBP: 000000000000000d R08: 000000000000ffc0 R09: 00000000ffffffff
[ 1283.889834][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00000000ffffffff
[ 1283.889834][ C1] R13: 000056073a885040 R14: 00007ffda9800640 R15: 000056073a88ab00
[ 1283.889834][ C1] ---[ end trace 4b028c9d42567c52 ]---
[ 1284.303261][ C1] ------------[ cut here ]------------
[ 1284.308934][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1284.312425][ C1] Modules linked in:
[ 1284.312425][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1284.312425][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1284.312425][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1284.312425][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1284.312425][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1284.312425][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1284.312425][ C1] RDX: 0000000080010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1284.312425][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1284.312425][ C1] R10: 00000000b56c2fd0 R11: 00000000c12c4cc9 R12: 0000000000000000
[ 1284.312425][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1284.312425][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1284.312425][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1284.312425][ C1] CR2: 00007f4ebe127000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1284.312425][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1284.312425][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1284.312425][ C1] Call Trace:
[ 1284.312425][ C1]
[ 1284.312425][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1284.312425][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1284.312425][ C1] __run_hrtimer+0x48b/0xd20
[ 1284.312425][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1284.312425][ C1] ? hrtimer_init+0x570/0x570
[ 1284.312425][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1284.312425][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1284.312425][ C1]
[ 1284.312425][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1284.312425][ C1] RIP: 0010:virt_to_page_or_null+0x69/0xf0
[ 1284.312425][ C1] Code: 48 8b 0d 7a ed 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 <4c> 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d c3 41
[ 1284.312425][ C1] RSP: 0018:ffff888115ebfbf0 EFLAGS: 00000202
[ 1284.312425][ C1] RAX: ffff888195ebfdf0 RBX: ffff888115ebfdf0 RCX: 0000000000000022
[ 1284.312425][ C1] RDX: 0000000115ebfdf0 RSI: 0000000000000220 RDI: ffff888115ebfdf0
[ 1284.312425][ C1] RBP: ffff888115ebfbf0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1284.312425][ C1] R10: 000000005e562d70 R11: ffff888111601f40 R12: 0000000000000000
[ 1284.312425][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1284.312425][ C1] kmsan_get_metadata+0x116/0x180
[ 1284.312425][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1284.312425][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1284.312425][ C1] do_epoll_wait+0x9ad/0x3460
[ 1284.312425][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1284.312425][ C1] __se_sys_epoll_wait+0x35f/0x450
[ 1284.312425][ C1] __x64_sys_epoll_wait+0x56/0x70
[ 1284.312425][ C1] do_syscall_64+0x9f/0x140
[ 1284.312425][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1284.312425][ C1] RIP: 0033:0x7f4ec21412e3
[ 1284.312425][ C1] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 29 54 2b 00 00 75 13 49 89 ca b8 e8 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24
[ 1284.312425][ C1] RSP: 002b:00007ffda98033b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
[ 1284.312425][ C1] RAX: ffffffffffffffda RBX: 000056073a8871e0 RCX: 00007f4ec21412e3
[ 1284.312425][ C1] RDX: 0000000000000013 RSI: 00007ffda98033c0 RDI: 0000000000000008
[ 1284.312425][ C1] RBP: 00007ffda98035b0 R08: 00007ffda98a5080 R09: 0000000000000000
[ 1284.312425][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda98033c0
[ 1284.312425][ C1] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c5b9b1764a68
[ 1284.312425][ C1] ---[ end trace 4b028c9d42567c53 ]---
[ 1284.312425][ C1] ------------[ cut here ]------------
[ 1284.312425][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1284.312425][ C1] Modules linked in:
[ 1284.312425][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1284.312425][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1284.312425][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1284.312425][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1284.312425][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1284.312425][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1284.312425][ C1] RDX: 0000000080010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1284.312425][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1284.312425][ C1] R10: 000000004d1d8650 R11: 00000000c12c4cc9 R12: 0000000000000000
[ 1284.312425][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1284.312425][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1284.312425][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1284.312425][ C1] CR2: 00007f4ebe127000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1284.312425][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1284.312425][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1284.312425][ C1] Call Trace:
[ 1284.312425][ C1]
[ 1284.312425][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1284.312425][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1284.312425][ C1] __run_hrtimer+0x48b/0xd20
[ 1284.312425][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1284.312425][ C1] ? hrtimer_init+0x570/0x570
[ 1284.312425][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1284.312425][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1284.312425][ C1]
[ 1284.312425][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1284.312425][ C1] RIP: 0010:virt_to_page_or_null+0x69/0xf0
[ 1284.312425][ C1] Code: 48 8b 0d 7a ed 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 <4c> 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d c3 41
[ 1284.312425][ C1] RSP: 0018:ffff888115ebfbf0 EFLAGS: 00000202
[ 1284.312425][ C1] RAX: ffff888195ebfdf0 RBX: ffff888115ebfdf0 RCX: 0000000000000022
[ 1284.312425][ C1] RDX: 0000000115ebfdf0 RSI: 0000000000000220 RDI: ffff888115ebfdf0
[ 1284.312425][ C1] RBP: ffff888115ebfbf0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1284.312425][ C1] R10: 000000005e562d70 R11: ffff888111601f40 R12: 0000000000000000
[ 1284.312425][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1284.312425][ C1] kmsan_get_metadata+0x116/0x180
[ 1284.312425][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1284.312425][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1284.312425][ C1] do_epoll_wait+0x9ad/0x3460
[ 1284.312425][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1284.312425][ C1] __se_sys_epoll_wait+0x35f/0x450
[ 1284.312425][ C1] __x64_sys_epoll_wait+0x56/0x70
[ 1284.312425][ C1] do_syscall_64+0x9f/0x140
[ 1284.312425][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1284.312425][ C1] RIP: 0033:0x7f4ec21412e3
[ 1284.312425][ C1] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 29 54 2b 00 00 75 13 49 89 ca b8 e8 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24
[ 1284.312425][ C1] RSP: 002b:00007ffda98033b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
[ 1284.312425][ C1] RAX: ffffffffffffffda RBX: 000056073a8871e0 RCX: 00007f4ec21412e3
[ 1284.312425][ C1] RDX: 0000000000000013 RSI: 00007ffda98033c0 RDI: 0000000000000008
[ 1284.312425][ C1] RBP: 00007ffda98035b0 R08: 00007ffda98a5080 R09: 0000000000000000
[ 1284.312425][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda98033c0
[ 1284.312425][ C1] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c5b9b1764a68
[ 1284.312425][ C1] ---[ end trace 4b028c9d42567c54 ]---
[ 1285.123618][ C1] ------------[ cut here ]------------
[ 1285.129182][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1285.132779][ C1] Modules linked in:
[ 1285.132779][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1285.132779][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1285.132779][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1285.132779][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1285.132779][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1285.132779][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1285.132779][ C1] RDX: 0000000080010000 RSI: 0000000000000018 RDI: 0000000000000001
[ 1285.132779][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1285.132779][ C1] R10: 000000004d1d8650 R11: 00000000bd08a39e R12: 0000000000000000
[ 1285.132779][ C1] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fd27b00
[ 1285.132779][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1285.132779][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1285.132779][ C1] CR2: 00007f4ebe127000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1285.132779][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1285.132779][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1285.132779][ C1] Call Trace:
[ 1285.132779][ C1]
[ 1285.132779][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1285.132779][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1285.132779][ C1] __run_hrtimer+0x48b/0xd20
[ 1285.132779][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1285.132779][ C1] ? hrtimer_init+0x570/0x570
[ 1285.132779][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1285.132779][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1285.132779][ C1]
[ 1285.132779][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1285.132779][ C1] RIP: 0010:virt_to_page_or_null+0x69/0xf0
[ 1285.132779][ C1] Code: 48 8b 0d 7a ed 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 <4c> 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d c3 41
[ 1285.132779][ C1] RSP: 0018:ffff888115ebfbf0 EFLAGS: 00000202
[ 1285.132779][ C1] RAX: ffff888195ebfdf0 RBX: ffff888115ebfdf0 RCX: 0000000000000022
[ 1285.132779][ C1] RDX: 0000000115ebfdf0 RSI: 0000000000000220 RDI: ffff888115ebfdf0
[ 1285.132779][ C1] RBP: ffff888115ebfbf0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1285.132779][ C1] R10: 000000005e562d70 R11: ffff888111601f40 R12: 0000000000000000
[ 1285.132779][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1285.132779][ C1] kmsan_get_metadata+0x116/0x180
[ 1285.132779][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1285.132779][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1285.132779][ C1] do_epoll_wait+0x9ad/0x3460
[ 1285.132779][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1285.132779][ C1] __se_sys_epoll_wait+0x35f/0x450
[ 1285.132779][ C1] __x64_sys_epoll_wait+0x56/0x70
[ 1285.132779][ C1] do_syscall_64+0x9f/0x140
[ 1285.132779][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1285.132779][ C1] RIP: 0033:0x7f4ec21412e3
[ 1285.132779][ C1] Code: 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 83 3d 29 54 2b 00 00 75 13 49 89 ca b8 e8 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24
[ 1285.132779][ C1] RSP: 002b:00007ffda98033b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e8
[ 1285.132779][ C1] RAX: ffffffffffffffda RBX: 000056073a8871e0 RCX: 00007f4ec21412e3
[ 1285.132779][ C1] RDX: 0000000000000013 RSI: 00007ffda98033c0 RDI: 0000000000000008
[ 1285.132779][ C1] RBP: 00007ffda98035b0 R08: 00007ffda98a5080 R09: 0000000000000000
[ 1285.132779][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffda98033c0
[ 1285.132779][ C1] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c5b9b1764a68
[ 1285.132779][ C1] ---[ end trace 4b028c9d42567c55 ]---
[ 1285.619117][ C1] ------------[ cut here ]------------
[ 1285.619117][ C1] WARNING: CPU: 1 PID: 4673 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1285.619117][ C1] Modules linked in:
[ 1285.619117][ C1] CPU: 1 PID: 4673 Comm: kworker/1:3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1285.619117][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1285.619117][ C1] Workqueue: wg-kex-wg1 wg_packet_handshake_receive_worker
[ 1285.619117][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1285.619117][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1285.708038][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1285.708038][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103011f40
[ 1285.708038][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1285.708038][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1285.738088][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1285.738088][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1285.738088][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1285.738088][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1285.738088][ C1] CR2: 000000000931d404 CR3: 0000000152b8a000 CR4: 00000000001506e0
[ 1285.738088][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1285.738088][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1285.738088][ C1] Call Trace:
[ 1285.738088][ C1]
[ 1285.738088][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1285.738088][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1285.738088][ C1] __run_hrtimer+0x48b/0xd20
[ 1285.738088][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1285.738088][ C1] ? hrtimer_init+0x570/0x570
[ 1285.738088][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1285.738088][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1285.738088][ C1]
[ 1285.738088][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1285.738088][ C1] RIP: 0010:kmsan_memcpy_memmove_metadata+0x21f/0x2d0
[ 1285.738088][ C1] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 c7 06 00 00 00 00 41 01 d7 41 ff cd 0f 84 91 00 00 00 45 85 ff 0f 88 97 00 00 00 41 83 ff 01 00 00 00 00 19 f6 45 89 fc f7 d6 44 09 de 45 39 fa b9 ff ff ff
[ 1285.738088][ C1] RSP: 0018:ffff888115ee3120 EFLAGS: 00000297
[ 1285.738088][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 00000000af71c440
[ 1285.738088][ C1] RDX: 0000000000000001 RSI: 0000000000000028 RDI: 0000000000000000
[ 1285.738088][ C1] RBP: ffff888115ee3170 R08: ffff888115ae3860 R09: ffff888115ae3888
[ 1285.738088][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 00000000af71c440
[ 1285.738088][ C1] R13: 000000000000000a R14: 00000000ffffffff R15: 0000000000000000
[ 1285.738088][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 1285.738088][ C1] __msan_memcpy+0x46/0x60
[ 1285.738088][ C1] curve25519_generic+0x3f06/0x23dc0
[ 1285.738088][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1285.738088][ C1] ? wg_noise_handshake_consume_response+0x904/0x1780
[ 1285.738088][ C1] wg_noise_handshake_consume_response+0x933/0x1780
[ 1285.738088][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1285.738088][ C1] wg_packet_handshake_receive_worker+0x8a7/0xd10
[ 1285.738088][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1285.738088][ C1] ? local_bh_enable+0x40/0x40
[ 1285.738088][ C1] process_one_work+0x1219/0x1fe0
[ 1285.738088][ C1] worker_thread+0x10ec/0x2340
[ 1285.738088][ C1] kthread+0x521/0x560
[ 1285.738088][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1285.738088][ C1] ? kthread_blkcg+0x110/0x110
[ 1285.738088][ C1] ret_from_fork+0x1f/0x30
[ 1285.738088][ C1] ---[ end trace 4b028c9d42567c56 ]---
[ 1286.017711][ C1] ------------[ cut here ]------------
[ 1286.023302][ C1] WARNING: CPU: 1 PID: 4673 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1286.026736][ C1] Modules linked in:
[ 1286.026736][ C1] CPU: 1 PID: 4673 Comm: kworker/1:3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1286.026736][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1286.026736][ C1] Workqueue: wg-kex-wg1 wg_packet_handshake_receive_worker
[ 1286.026736][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1286.026736][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1286.026736][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1286.026736][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103011f40
[ 1286.026736][ C1] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001
[ 1286.026736][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1286.026736][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1286.026736][ C1] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fd27b00
[ 1286.026736][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1286.026736][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1286.026736][ C1] CR2: 000000000931d404 CR3: 0000000152b8a000 CR4: 00000000001506e0
[ 1286.026736][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1286.026736][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1286.026736][ C1] Call Trace:
[ 1286.026736][ C1]
[ 1286.026736][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.026736][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1286.026736][ C1] __run_hrtimer+0x48b/0xd20
[ 1286.026736][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1286.026736][ C1] ? hrtimer_init+0x570/0x570
[ 1286.026736][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1286.026736][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1286.026736][ C1]
[ 1286.026736][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1286.026736][ C1] RIP: 0010:kmsan_memcpy_memmove_metadata+0x21f/0x2d0
[ 1286.026736][ C1] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 c7 06 00 00 00 00 41 01 d7 41 ff cd 0f 84 91 00 00 00 45 85 ff 0f 88 97 00 00 00 41 83 ff 01 00 00 00 00 19 f6 45 89 fc f7 d6 44 09 de 45 39 fa b9 ff ff ff
[ 1286.026736][ C1] RSP: 0018:ffff888115ee3120 EFLAGS: 00000297
[ 1286.026736][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 00000000af71c440
[ 1286.026736][ C1] RDX: 0000000000000001 RSI: 0000000000000028 RDI: 0000000000000000
[ 1286.026736][ C1] RBP: ffff888115ee3170 R08: ffff888115ae3860 R09: ffff888115ae3888
[ 1286.026736][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 00000000af71c440
[ 1286.026736][ C1] R13: 000000000000000a R14: 00000000ffffffff R15: 0000000000000000
[ 1286.026736][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 1286.026736][ C1] __msan_memcpy+0x46/0x60
[ 1286.026736][ C1] curve25519_generic+0x3f06/0x23dc0
[ 1286.026736][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1286.026736][ C1] ? wg_noise_handshake_consume_response+0x904/0x1780
[ 1286.026736][ C1] wg_noise_handshake_consume_response+0x933/0x1780
[ 1286.026736][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.026736][ C1] wg_packet_handshake_receive_worker+0x8a7/0xd10
[ 1286.026736][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1286.026736][ C1] ? local_bh_enable+0x40/0x40
[ 1286.026736][ C1] process_one_work+0x1219/0x1fe0
[ 1286.026736][ C1] worker_thread+0x10ec/0x2340
[ 1286.026736][ C1] kthread+0x521/0x560
[ 1286.026736][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1286.026736][ C1] ? kthread_blkcg+0x110/0x110
[ 1286.026736][ C1] ret_from_fork+0x1f/0x30
[ 1286.026736][ C1] ---[ end trace 4b028c9d42567c57 ]---
[ 1286.400289][ C1] ------------[ cut here ]------------
[ 1286.405835][ C1] WARNING: CPU: 1 PID: 4673 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1286.409530][ C1] Modules linked in:
[ 1286.409530][ C1] CPU: 1 PID: 4673 Comm: kworker/1:3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1286.409530][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1286.409530][ C1] Workqueue: wg-kex-wg1 wg_packet_handshake_receive_worker
[ 1286.409530][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1286.409530][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1286.409530][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1286.409530][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103011f40
[ 1286.409530][ C1] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001
[ 1286.409530][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1286.409530][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1286.409530][ C1] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fd27b00
[ 1286.409530][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1286.409530][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1286.409530][ C1] CR2: 000000000931d404 CR3: 0000000152b8a000 CR4: 00000000001506e0
[ 1286.409530][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1286.409530][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1286.409530][ C1] Call Trace:
[ 1286.409530][ C1]
[ 1286.409530][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.409530][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1286.409530][ C1] __run_hrtimer+0x48b/0xd20
[ 1286.409530][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1286.409530][ C1] ? hrtimer_init+0x570/0x570
[ 1286.409530][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1286.409530][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1286.409530][ C1]
[ 1286.409530][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1286.409530][ C1] RIP: 0010:kmsan_memcpy_memmove_metadata+0x21f/0x2d0
[ 1286.409530][ C1] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 c7 06 00 00 00 00 41 01 d7 41 ff cd 0f 84 91 00 00 00 45 85 ff 0f 88 97 00 00 00 41 83 ff 01 00 00 00 00 19 f6 45 89 fc f7 d6 44 09 de 45 39 fa b9 ff ff ff
[ 1286.409530][ C1] RSP: 0018:ffff888115ee3120 EFLAGS: 00000297
[ 1286.409530][ C1] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 00000000af71c440
[ 1286.409530][ C1] RDX: 0000000000000001 RSI: 0000000000000028 RDI: 0000000000000000
[ 1286.409530][ C1] RBP: ffff888115ee3170 R08: ffff888115ae3860 R09: ffff888115ae3888
[ 1286.409530][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 00000000af71c440
[ 1286.409530][ C1] R13: 000000000000000a R14: 00000000ffffffff R15: 0000000000000000
[ 1286.409530][ C1] kmsan_memcpy_metadata+0xb/0x10
[ 1286.409530][ C1] __msan_memcpy+0x46/0x60
[ 1286.409530][ C1] curve25519_generic+0x3f06/0x23dc0
[ 1286.409530][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1286.409530][ C1] ? wg_noise_handshake_consume_response+0x904/0x1780
[ 1286.409530][ C1] wg_noise_handshake_consume_response+0x933/0x1780
[ 1286.409530][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.409530][ C1] wg_packet_handshake_receive_worker+0x8a7/0xd10
[ 1286.409530][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1286.409530][ C1] ? local_bh_enable+0x40/0x40
[ 1286.409530][ C1] process_one_work+0x1219/0x1fe0
[ 1286.409530][ C1] worker_thread+0x10ec/0x2340
[ 1286.409530][ C1] kthread+0x521/0x560
[ 1286.409530][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1286.409530][ C1] ? kthread_blkcg+0x110/0x110
[ 1286.409530][ C1] ret_from_fork+0x1f/0x30
[ 1286.409530][ C1] ---[ end trace 4b028c9d42567c58 ]---
[ 1286.879601][ C1] ------------[ cut here ]------------
[ 1286.879601][ C1] WARNING: CPU: 1 PID: 8205 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1286.890231][ C1] Modules linked in:
[ 1286.890231][ C1] CPU: 1 PID: 8205 Comm: sshd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1286.890231][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1286.890231][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1286.890231][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1286.890231][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1286.890231][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122901f40
[ 1286.890231][ C1] RDX: 0000000080010400 RSI: 000000000000001d RDI: 0000000000000001
[ 1286.890231][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1286.890231][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1286.890231][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1286.890231][ C1] FS: 00007f9158b838c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1286.890231][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1286.890231][ C1] CR2: 00007f9a8954f000 CR3: 000000012280a000 CR4: 00000000001506e0
[ 1286.890231][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1286.890231][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1286.890231][ C1] Call Trace:
[ 1286.890231][ C1]
[ 1286.890231][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.890231][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1286.890231][ C1] __run_hrtimer+0x48b/0xd20
[ 1286.890231][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1286.890231][ C1] ? hrtimer_init+0x570/0x570
[ 1286.890231][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1286.890231][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1286.890231][ C1]
[ 1286.890231][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1286.890231][ C1] RIP: 0010:__msan_chain_origin+0x7c/0xa0
[ 1286.890231][ C1] Code: ff ff 89 c3 e8 25 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 d0 e1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 89 d8 <48> 83 c4 08 5b 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0
[ 1286.890231][ C1] RSP: 0018:ffff8881206864c0 EFLAGS: 00000206
[ 1286.890231][ C1] RAX: 0000000027e000df RBX: 0000000027e000df RCX: 0000000017a400df
[ 1286.890231][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: 0000000007e000df
[ 1286.890231][ C1] RBP: ffff8881206864e0 R08: 0000000000000003 R09: ffff88812068626c
[ 1286.890231][ C1] R10: 000000005cf7ff50 R11: ffffffff8fc00715 R12: ffff888115d55a7e
[ 1286.890231][ C1] R13: ffff888115d55a00 R14: 0000000017a400df R15: 0000000000000246
[ 1286.890231][ C1] ? __do_softirq+0x715/0x715
[ 1286.890231][ C1] __skb_clone+0x8a6/0x9b0
[ 1286.890231][ C1] skb_clone+0x435/0x650
[ 1286.890231][ C1] dev_queue_xmit_nit+0x514/0x1380
[ 1286.890231][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1286.890231][ C1] xmit_one+0x133/0x760
[ 1286.890231][ C1] dev_hard_start_xmit+0x196/0x420
[ 1286.890231][ C1] sch_direct_xmit+0x57c/0x1a60
[ 1286.890231][ C1] __qdisc_run+0x35b/0x490
[ 1286.890231][ C1] __dev_queue_xmit+0x26ad/0x4600
[ 1286.890231][ C1] dev_queue_xmit+0x4b/0x60
[ 1286.890231][ C1] ip_finish_output2+0x2438/0x2930
[ 1286.890231][ C1] ? __msan_get_context_state+0x9/0x20
[ 1286.890231][ C1] ? rcu_read_unlock_strict+0x9/0x10
[ 1286.890231][ C1] ? nf_ct_deliver_cached_events+0x610/0x7e0
[ 1286.890231][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1286.890231][ C1] __ip_finish_output+0x9fd/0x1050
[ 1286.890231][ C1] ip_finish_output+0x329/0x480
[ 1286.890231][ C1] ip_output+0x32e/0x6d0
[ 1286.890231][ C1] ? ip_mc_finish_output+0x770/0x770
[ 1286.890231][ C1] ? ip_finish_output+0x480/0x480
[ 1286.890231][ C1] __ip_queue_xmit+0x1e3d/0x23b0
[ 1286.890231][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1286.890231][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1286.890231][ C1] ? bpf_skops_write_hdr_opt+0x104/0x850
[ 1286.890231][ C1] ip_queue_xmit+0xcc/0xf0
[ 1286.890231][ C1] ? __ip_queue_xmit+0x23b0/0x23b0
[ 1286.890231][ C1] __tcp_transmit_skb+0x4c59/0x5ea0
[ 1286.890231][ C1] tcp_write_xmit+0x5070/0xf260
[ 1286.890231][ C1] ? tcp_sendmsg+0xa0/0x100
[ 1286.890231][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1286.890231][ C1] __tcp_push_pending_frames+0x150/0x5b0
[ 1286.890231][ C1] tcp_push+0x88a/0xa00
[ 1286.890231][ C1] tcp_sendmsg_locked+0x6941/0x7c90
[ 1286.890231][ C1] tcp_sendmsg+0xb2/0x100
[ 1286.890231][ C1] ? tcp_sendmsg_locked+0x7c90/0x7c90
[ 1286.890231][ C1] inet_sendmsg+0x15b/0x1d0
[ 1286.890231][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1286.890231][ C1] sock_write_iter+0x585/0x680
[ 1286.890231][ C1] ? sock_read_iter+0x620/0x620
[ 1286.890231][ C1] vfs_write+0x1083/0x1b00
[ 1286.890231][ C1] ksys_write+0x275/0x500
[ 1286.890231][ C1] __se_sys_write+0x92/0xb0
[ 1286.890231][ C1] __x64_sys_write+0x4a/0x70
[ 1286.890231][ C1] do_syscall_64+0x9f/0x140
[ 1286.890231][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1286.890231][ C1] RIP: 0033:0x7f9156ceb970
[ 1286.890231][ C1] Code: 73 01 c3 48 8b 0d 28 d5 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 99 2d 2c 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 7e 9b 01 00 48 89 04 24
[ 1286.890231][ C1] RSP: 002b:00007fffa8954218 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1286.890231][ C1] RAX: ffffffffffffffda RBX: 0000000000000284 RCX: 00007f9156ceb970
[ 1286.890231][ C1] RDX: 0000000000000284 RSI: 0000564e4e8f7d04 RDI: 0000000000000003
[ 1286.890231][ C1] RBP: 0000564e4e8deed0 R08: 00007fffa89c5080 R09: 0000000000000070
[ 1286.890231][ C1] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1286.890231][ C1] R13: 00007fffa89542af R14: 0000564e4d07bbe7 R15: 0000000000000003
[ 1286.890231][ C1] ---[ end trace 4b028c9d42567c59 ]---
[ 1287.481351][ C1] ------------[ cut here ]------------
[ 1287.486956][ C1] WARNING: CPU: 1 PID: 8205 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1287.490397][ C1] Modules linked in:
[ 1287.490397][ C1] CPU: 1 PID: 8205 Comm: sshd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1287.490397][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1287.490397][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1287.490397][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1287.490397][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1287.490397][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122901f40
[ 1287.490397][ C1] RDX: 0000000080010400 RSI: 0000000000000024 RDI: 0000000000000001
[ 1287.490397][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1287.490397][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1287.490397][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1287.490397][ C1] FS: 00007f9158b838c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1287.490397][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1287.490397][ C1] CR2: 00007f9a8954f000 CR3: 000000012280a000 CR4: 00000000001506e0
[ 1287.490397][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1287.490397][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1287.490397][ C1] Call Trace:
[ 1287.490397][ C1]
[ 1287.490397][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1287.490397][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1287.490397][ C1] __run_hrtimer+0x48b/0xd20
[ 1287.490397][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1287.490397][ C1] ? hrtimer_init+0x570/0x570
[ 1287.490397][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1287.490397][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1287.490397][ C1]
[ 1287.490397][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1287.490397][ C1] RIP: 0010:__msan_chain_origin+0x7c/0xa0
[ 1287.490397][ C1] Code: ff ff 89 c3 e8 25 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 d0 e1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 89 d8 <48> 83 c4 08 5b 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0
[ 1287.490397][ C1] RSP: 0018:ffff8881206864c0 EFLAGS: 00000206
[ 1287.490397][ C1] RAX: 0000000027e000df RBX: 0000000027e000df RCX: 0000000017a400df
[ 1287.490397][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: 0000000007e000df
[ 1287.490397][ C1] RBP: ffff8881206864e0 R08: 0000000000000003 R09: ffff88812068626c
[ 1287.490397][ C1] R10: 000000005cf7ff50 R11: ffffffff8fc00715 R12: ffff888115d55a7e
[ 1287.490397][ C1] R13: ffff888115d55a00 R14: 0000000017a400df R15: 0000000000000246
[ 1287.490397][ C1] ? __do_softirq+0x715/0x715
[ 1287.490397][ C1] __skb_clone+0x8a6/0x9b0
[ 1287.490397][ C1] skb_clone+0x435/0x650
[ 1287.490397][ C1] dev_queue_xmit_nit+0x514/0x1380
[ 1287.490397][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1287.490397][ C1] xmit_one+0x133/0x760
[ 1287.490397][ C1] dev_hard_start_xmit+0x196/0x420
[ 1287.490397][ C1] sch_direct_xmit+0x57c/0x1a60
[ 1287.490397][ C1] __qdisc_run+0x35b/0x490
[ 1287.490397][ C1] __dev_queue_xmit+0x26ad/0x4600
[ 1287.490397][ C1] dev_queue_xmit+0x4b/0x60
[ 1287.490397][ C1] ip_finish_output2+0x2438/0x2930
[ 1287.490397][ C1] ? __msan_get_context_state+0x9/0x20
[ 1287.490397][ C1] ? rcu_read_unlock_strict+0x9/0x10
[ 1287.490397][ C1] ? nf_ct_deliver_cached_events+0x610/0x7e0
[ 1287.490397][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1287.490397][ C1] __ip_finish_output+0x9fd/0x1050
[ 1287.490397][ C1] ip_finish_output+0x329/0x480
[ 1287.490397][ C1] ip_output+0x32e/0x6d0
[ 1287.490397][ C1] ? ip_mc_finish_output+0x770/0x770
[ 1287.490397][ C1] ? ip_finish_output+0x480/0x480
[ 1287.490397][ C1] __ip_queue_xmit+0x1e3d/0x23b0
[ 1287.490397][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1287.490397][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1287.490397][ C1] ? bpf_skops_write_hdr_opt+0x104/0x850
[ 1287.490397][ C1] ip_queue_xmit+0xcc/0xf0
[ 1287.490397][ C1] ? __ip_queue_xmit+0x23b0/0x23b0
[ 1287.490397][ C1] __tcp_transmit_skb+0x4c59/0x5ea0
[ 1287.490397][ C1] tcp_write_xmit+0x5070/0xf260
[ 1287.490397][ C1] ? tcp_sendmsg+0xa0/0x100
[ 1287.490397][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1287.490397][ C1] __tcp_push_pending_frames+0x150/0x5b0
[ 1287.490397][ C1] tcp_push+0x88a/0xa00
[ 1287.490397][ C1] tcp_sendmsg_locked+0x6941/0x7c90
[ 1287.490397][ C1] tcp_sendmsg+0xb2/0x100
[ 1287.490397][ C1] ? tcp_sendmsg_locked+0x7c90/0x7c90
[ 1287.490397][ C1] inet_sendmsg+0x15b/0x1d0
[ 1287.490397][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1287.490397][ C1] sock_write_iter+0x585/0x680
[ 1287.490397][ C1] ? sock_read_iter+0x620/0x620
[ 1287.490397][ C1] vfs_write+0x1083/0x1b00
[ 1287.490397][ C1] ksys_write+0x275/0x500
[ 1287.490397][ C1] __se_sys_write+0x92/0xb0
[ 1287.490397][ C1] __x64_sys_write+0x4a/0x70
[ 1287.490397][ C1] do_syscall_64+0x9f/0x140
[ 1287.490397][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1287.490397][ C1] RIP: 0033:0x7f9156ceb970
[ 1287.490397][ C1] Code: 73 01 c3 48 8b 0d 28 d5 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 99 2d 2c 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 7e 9b 01 00 48 89 04 24
[ 1287.490397][ C1] RSP: 002b:00007fffa8954218 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1287.490397][ C1] RAX: ffffffffffffffda RBX: 0000000000000284 RCX: 00007f9156ceb970
[ 1287.490397][ C1] RDX: 0000000000000284 RSI: 0000564e4e8f7d04 RDI: 0000000000000003
[ 1287.490397][ C1] RBP: 0000564e4e8deed0 R08: 00007fffa89c5080 R09: 0000000000000070
[ 1287.490397][ C1] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1287.490397][ C1] R13: 00007fffa89542af R14: 0000564e4d07bbe7 R15: 0000000000000003
[ 1287.490397][ C1] ---[ end trace 4b028c9d42567c5a ]---
[ 1288.079188][ C1] ------------[ cut here ]------------
[ 1288.084787][ C1] WARNING: CPU: 1 PID: 8205 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1288.088325][ C1] Modules linked in:
[ 1288.088325][ C1] CPU: 1 PID: 8205 Comm: sshd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1288.088325][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.088325][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1288.088325][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1288.088325][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1288.088325][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122901f40
[ 1288.088325][ C1] RDX: 0000000080010400 RSI: 0000000000000024 RDI: 0000000000000001
[ 1288.088325][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1288.088325][ C1] R10: 00000000b56c2fd0 R11: ffff888122901f40 R12: 0000000000000000
[ 1288.088325][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1288.088325][ C1] FS: 00007f9158b838c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1288.088325][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1288.088325][ C1] CR2: 00007f9a8954f000 CR3: 000000012280a000 CR4: 00000000001506e0
[ 1288.088325][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1288.088325][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1288.088325][ C1] Call Trace:
[ 1288.088325][ C1]
[ 1288.088325][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1288.088325][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1288.088325][ C1] __run_hrtimer+0x48b/0xd20
[ 1288.088325][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1288.088325][ C1] ? hrtimer_init+0x570/0x570
[ 1288.088325][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1288.088325][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1288.088325][ C1]
[ 1288.088325][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1288.088325][ C1] RIP: 0010:__msan_chain_origin+0x7c/0xa0
[ 1288.088325][ C1] Code: ff ff 89 c3 e8 25 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 d0 e1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 89 d8 <48> 83 c4 08 5b 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0
[ 1288.088325][ C1] RSP: 0018:ffff8881206864c0 EFLAGS: 00000206
[ 1288.088325][ C1] RAX: 0000000027e000df RBX: 0000000027e000df RCX: 0000000017a400df
[ 1288.088325][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: 0000000007e000df
[ 1288.088325][ C1] RBP: ffff8881206864e0 R08: 0000000000000003 R09: ffff88812068626c
[ 1288.088325][ C1] R10: 000000005cf7ff50 R11: ffffffff8fc00715 R12: ffff888115d55a7e
[ 1288.088325][ C1] R13: ffff888115d55a00 R14: 0000000017a400df R15: 0000000000000246
[ 1288.088325][ C1] ? __do_softirq+0x715/0x715
[ 1288.088325][ C1] __skb_clone+0x8a6/0x9b0
[ 1288.088325][ C1] skb_clone+0x435/0x650
[ 1288.088325][ C1] dev_queue_xmit_nit+0x514/0x1380
[ 1288.088325][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1288.088325][ C1] xmit_one+0x133/0x760
[ 1288.088325][ C1] dev_hard_start_xmit+0x196/0x420
[ 1288.088325][ C1] sch_direct_xmit+0x57c/0x1a60
[ 1288.088325][ C1] __qdisc_run+0x35b/0x490
[ 1288.088325][ C1] __dev_queue_xmit+0x26ad/0x4600
[ 1288.088325][ C1] dev_queue_xmit+0x4b/0x60
[ 1288.088325][ C1] ip_finish_output2+0x2438/0x2930
[ 1288.088325][ C1] ? __msan_get_context_state+0x9/0x20
[ 1288.088325][ C1] ? rcu_read_unlock_strict+0x9/0x10
[ 1288.088325][ C1] ? nf_ct_deliver_cached_events+0x610/0x7e0
[ 1288.088325][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1288.088325][ C1] __ip_finish_output+0x9fd/0x1050
[ 1288.088325][ C1] ip_finish_output+0x329/0x480
[ 1288.088325][ C1] ip_output+0x32e/0x6d0
[ 1288.088325][ C1] ? ip_mc_finish_output+0x770/0x770
[ 1288.088325][ C1] ? ip_finish_output+0x480/0x480
[ 1288.088325][ C1] __ip_queue_xmit+0x1e3d/0x23b0
[ 1288.088325][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1288.088325][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1288.088325][ C1] ? bpf_skops_write_hdr_opt+0x104/0x850
[ 1288.088325][ C1] ip_queue_xmit+0xcc/0xf0
[ 1288.088325][ C1] ? __ip_queue_xmit+0x23b0/0x23b0
[ 1288.088325][ C1] __tcp_transmit_skb+0x4c59/0x5ea0
[ 1288.088325][ C1] tcp_write_xmit+0x5070/0xf260
[ 1288.088325][ C1] ? tcp_sendmsg+0xa0/0x100
[ 1288.088325][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1288.088325][ C1] __tcp_push_pending_frames+0x150/0x5b0
[ 1288.088325][ C1] tcp_push+0x88a/0xa00
[ 1288.088325][ C1] tcp_sendmsg_locked+0x6941/0x7c90
[ 1288.088325][ C1] tcp_sendmsg+0xb2/0x100
[ 1288.088325][ C1] ? tcp_sendmsg_locked+0x7c90/0x7c90
[ 1288.088325][ C1] inet_sendmsg+0x15b/0x1d0
[ 1288.088325][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1288.088325][ C1] sock_write_iter+0x585/0x680
[ 1288.088325][ C1] ? sock_read_iter+0x620/0x620
[ 1288.088325][ C1] vfs_write+0x1083/0x1b00
[ 1288.088325][ C1] ksys_write+0x275/0x500
[ 1288.088325][ C1] __se_sys_write+0x92/0xb0
[ 1288.088325][ C1] __x64_sys_write+0x4a/0x70
[ 1288.088325][ C1] do_syscall_64+0x9f/0x140
[ 1288.088325][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1288.088325][ C1] RIP: 0033:0x7f9156ceb970
[ 1288.088325][ C1] Code: 73 01 c3 48 8b 0d 28 d5 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 99 2d 2c 00 00 75 10 b8 01 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 7e 9b 01 00 48 89 04 24
[ 1288.088325][ C1] RSP: 002b:00007fffa8954218 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1288.088325][ C1] RAX: ffffffffffffffda RBX: 0000000000000284 RCX: 00007f9156ceb970
06:43:43 executing program 4:
perf_event_open(&(0x7f000001d000)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0xc1205531, &(0x7f0000000000))
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x12, 0xffffffffffffffff, 0x0)
[ 1288.088325][ C1] RDX: 0000000000000284 RSI: 0000564e4e8f7d04 RDI: 0000000000000003
[ 1288.088325][ C1] RBP: 0000564e4e8deed0 R08: 00007fffa89c5080 R09: 0000000000000070
[ 1288.088325][ C1] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1288.088325][ C1] R13: 00007fffa89542af R14: 0000564e4d07bbe7 R15: 0000000000000003
[ 1288.088325][ C1] ---[ end trace 4b028c9d42567c5b ]---
[ 1288.777920][ C1] ------------[ cut here ]------------
[ 1288.783577][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1288.792680][ C1] Modules linked in:
[ 1288.792680][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1288.792680][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1288.814176][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1288.814176][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1288.814176][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1288.814176][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1288.814176][ C1] RDX: 0000000000010000 RSI: 000000000000002a RDI: 0000000000000001
[ 1288.814176][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1288.814176][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1288.814176][ C1] R13: 0000000000000000 R14: 000000000000002a R15: ffff88813fd27b00
[ 1288.814176][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1288.814176][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1288.814176][ C1] CR2: 00007f4ebe53e000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1288.814176][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1288.814176][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1288.814176][ C1] Call Trace:
[ 1288.814176][ C1]
[ 1288.814176][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1288.814176][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1288.814176][ C1] __run_hrtimer+0x48b/0xd20
[ 1288.814176][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1288.814176][ C1] ? hrtimer_init+0x570/0x570
[ 1288.814176][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1288.814176][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1288.814176][ C1]
[ 1288.814176][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1288.988166][ C1] RIP: 0010:__msan_memset+0x8b/0xb0
[ 1288.988166][ C1] Code: f0 ff ff e8 c7 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 21 e8 72 e2 0b ff 41 f7 c4 00 02 00 00 74 01 fb 4c 89 f0 <48> 83 c4 08 5b 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90
[ 1289.010950][ C1] RSP: 0018:ffff888115ebfbd8 EFLAGS: 00000206
[ 1289.018095][ C1] RAX: ffff8881199b18d8 RBX: ffff8881199b18d8 RCX: 0000000000000003
[ 1289.018095][ C1] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffff8881199b18d8
[ 1289.018095][ C1] RBP: ffff888115ebfc00 R08: ffffea000000000f R09: ffff88813fffa000
[ 1289.018095][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000246
[ 1289.048156][ C1] R13: ffff8881199b18d8 R14: ffff8881199b18d8 R15: 0000000000000008
[ 1289.048156][ C1] ? __msan_memset+0x7e/0xb0
[ 1289.048156][ C1] __kmalloc+0x35e/0x550
[ 1289.048156][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1289.048156][ C1] ? kzalloc+0x77/0x90
[ 1289.048156][ C1] kzalloc+0x77/0x90
[ 1289.048156][ C1] security_prepare_creds+0xd7/0x560
[ 1289.048156][ C1] prepare_creds+0x7f4/0xb00
[ 1289.048156][ C1] do_faccessat+0x1db/0xfa0
[ 1289.048156][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1289.048156][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1289.048156][ C1] __se_sys_access+0x7d/0x90
[ 1289.048156][ C1] __x64_sys_access+0x3e/0x60
[ 1289.048156][ C1] do_syscall_64+0x9f/0x140
[ 1289.048156][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1289.048156][ C1] RIP: 0033:0x7f4ec21339c7
[ 1289.048156][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1289.048156][ C1] RSP: 002b:00007ffda9800818 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1289.048156][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1289.048156][ C1] RDX: 00007f4ec2ba4a00 RSI: 0000000000000000 RDI: 00005607391549a3
[ 1289.048156][ C1] RBP: 00007ffda9800850 R08: 0000000000000000 R09: 0000000000000000
[ 1289.048156][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1289.048156][ C1] R13: 0000000000000000 R14: 00007ffda9803730 R15: 00007ffda9800d40
[ 1289.048156][ C1] ---[ end trace 4b028c9d42567c5c ]---
[ 1289.212476][ C1] ------------[ cut here ]------------
[ 1289.218114][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1289.221483][ C1] Modules linked in:
[ 1289.221483][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1289.221483][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1289.221483][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1289.258070][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1289.258070][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1289.258070][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1289.288198][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1289.288198][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1289.288198][ C1] R10: 00000000b56c2fd0 R11: ffff888111601f40 R12: 0000000000000000
[ 1289.288198][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1289.288198][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1289.288198][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1289.288198][ C1] CR2: 00007f4ebe53e000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1289.288198][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1289.288198][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1289.288198][ C1] Call Trace:
[ 1289.288198][ C1]
[ 1289.288198][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1289.288198][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1289.288198][ C1] __run_hrtimer+0x48b/0xd20
[ 1289.288198][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1289.288198][ C1] ? hrtimer_init+0x570/0x570
[ 1289.288198][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1289.288198][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1289.288198][ C1]
[ 1289.288198][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1289.288198][ C1] RIP: 0010:__msan_memset+0x8b/0xb0
[ 1289.288198][ C1] Code: f0 ff ff e8 c7 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 21 e8 72 e2 0b ff 41 f7 c4 00 02 00 00 74 01 fb 4c 89 f0 <48> 83 c4 08 5b 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90
[ 1289.288198][ C1] RSP: 0018:ffff888115ebfbd8 EFLAGS: 00000206
[ 1289.288198][ C1] RAX: ffff8881199b18d8 RBX: ffff8881199b18d8 RCX: 0000000000000003
[ 1289.288198][ C1] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffff8881199b18d8
[ 1289.288198][ C1] RBP: ffff888115ebfc00 R08: ffffea000000000f R09: ffff88813fffa000
[ 1289.288198][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000246
[ 1289.288198][ C1] R13: ffff8881199b18d8 R14: ffff8881199b18d8 R15: 0000000000000008
[ 1289.288198][ C1] ? __msan_memset+0x7e/0xb0
[ 1289.288198][ C1] __kmalloc+0x35e/0x550
[ 1289.288198][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1289.288198][ C1] ? kzalloc+0x77/0x90
[ 1289.288198][ C1] kzalloc+0x77/0x90
[ 1289.288198][ C1] security_prepare_creds+0xd7/0x560
[ 1289.288198][ C1] prepare_creds+0x7f4/0xb00
[ 1289.288198][ C1] do_faccessat+0x1db/0xfa0
[ 1289.288198][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1289.288198][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1289.288198][ C1] __se_sys_access+0x7d/0x90
[ 1289.288198][ C1] __x64_sys_access+0x3e/0x60
[ 1289.288198][ C1] do_syscall_64+0x9f/0x140
[ 1289.288198][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1289.288198][ C1] RIP: 0033:0x7f4ec21339c7
[ 1289.288198][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1289.288198][ C1] RSP: 002b:00007ffda9800818 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1289.288198][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1289.288198][ C1] RDX: 00007f4ec2ba4a00 RSI: 0000000000000000 RDI: 00005607391549a3
[ 1289.288198][ C1] RBP: 00007ffda9800850 R08: 0000000000000000 R09: 0000000000000000
[ 1289.288198][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1289.288198][ C1] R13: 0000000000000000 R14: 00007ffda9803730 R15: 00007ffda9800d40
[ 1289.288198][ C1] ---[ end trace 4b028c9d42567c5d ]---
[ 1289.646905][ C1] ------------[ cut here ]------------
[ 1289.652555][ C1] WARNING: CPU: 1 PID: 4686 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1289.655884][ C1] Modules linked in:
[ 1289.655884][ C1] CPU: 1 PID: 4686 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1289.655884][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1289.655884][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1289.655884][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1289.655884][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1289.655884][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111601f40
[ 1289.655884][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1289.655884][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1289.655884][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1289.655884][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1289.655884][ C1] FS: 00007f4ec2e788c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1289.655884][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1289.655884][ C1] CR2: 00007f4ebe53e000 CR3: 0000000115ed4000 CR4: 00000000001506e0
[ 1289.655884][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1289.655884][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1289.798149][ C1] Call Trace:
[ 1289.798149][ C1]
[ 1289.798149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1289.811625][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1289.811625][ C1] __run_hrtimer+0x48b/0xd20
[ 1289.811625][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1289.811625][ C1] ? hrtimer_init+0x570/0x570
[ 1289.811625][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1289.811625][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1289.811625][ C1]
[ 1289.811625][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1289.811625][ C1] RIP: 0010:__msan_memset+0x8b/0xb0
[ 1289.811625][ C1] Code: f0 ff ff e8 c7 eb ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 21 e8 72 e2 0b ff 41 f7 c4 00 02 00 00 74 01 fb 4c 89 f0 <48> 83 c4 08 5b 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90
[ 1289.811625][ C1] RSP: 0018:ffff888115ebfbd8 EFLAGS: 00000206
[ 1289.811625][ C1] RAX: ffff8881199b18d8 RBX: ffff8881199b18d8 RCX: 0000000000000003
[ 1289.811625][ C1] RDX: 0000000000000002 RSI: 0000000000000000 RDI: ffff8881199b18d8
[ 1289.811625][ C1] RBP: ffff888115ebfc00 R08: ffffea000000000f R09: ffff88813fffa000
[ 1289.811625][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000246
[ 1289.811625][ C1] R13: ffff8881199b18d8 R14: ffff8881199b18d8 R15: 0000000000000008
[ 1289.811625][ C1] ? __msan_memset+0x7e/0xb0
[ 1289.811625][ C1] __kmalloc+0x35e/0x550
[ 1289.811625][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1289.811625][ C1] ? kzalloc+0x77/0x90
[ 1289.811625][ C1] kzalloc+0x77/0x90
[ 1289.811625][ C1] security_prepare_creds+0xd7/0x560
[ 1289.811625][ C1] prepare_creds+0x7f4/0xb00
[ 1289.811625][ C1] do_faccessat+0x1db/0xfa0
[ 1289.811625][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1289.968739][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1289.968739][ C1] __se_sys_access+0x7d/0x90
[ 1289.968739][ C1] __x64_sys_access+0x3e/0x60
[ 1289.968739][ C1] do_syscall_64+0x9f/0x140
[ 1289.968739][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1289.968739][ C1] RIP: 0033:0x7f4ec21339c7
[ 1289.968739][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1289.968739][ C1] RSP: 002b:00007ffda9800818 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1289.968739][ C1] RAX: ffffffffffffffda RBX: 00007ffda9803730 RCX: 00007f4ec21339c7
[ 1289.968739][ C1] RDX: 00007f4ec2ba4a00 RSI: 0000000000000000 RDI: 00005607391549a3
[ 1289.968739][ C1] RBP: 00007ffda9800850 R08: 0000000000000000 R09: 0000000000000000
[ 1289.968739][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1289.968739][ C1] R13: 0000000000000000 R14: 00007ffda9803730 R15: 00007ffda9800d40
[ 1289.968739][ C1] ---[ end trace 4b028c9d42567c5e ]---
[ 1290.181415][ C1] ------------[ cut here ]------------
[ 1290.187065][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1290.190433][ C1] Modules linked in:
[ 1290.200939][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1290.208619][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1290.213911][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1290.213911][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1290.213911][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1290.213911][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1290.213911][ C1] RDX: 0000000000010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1290.213911][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1290.213911][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1290.213911][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1290.213911][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1290.213911][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1290.213911][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1290.213911][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1290.213911][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1290.213911][ C1] Call Trace:
[ 1290.213911][ C1]
[ 1290.213911][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1290.213911][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1290.213911][ C1] __run_hrtimer+0x48b/0xd20
[ 1290.213911][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1290.213911][ C1] ? hrtimer_init+0x570/0x570
[ 1290.213911][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1290.213911][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1290.213911][ C1]
[ 1290.213911][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1290.213911][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1290.213911][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1290.213911][ C1] RSP: 0018:ffff88807f11f3b0 EFLAGS: 00000206
[ 1290.213911][ C1] RAX: ffff8880a0118a88 RBX: 0000000000000246 RCX: ffffffff821eea6a
[ 1290.213911][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff88807f11f628
[ 1290.213911][ C1] RBP: ffff88807f11f400 R08: 0000000000000002 R09: ffff88807f11f3d8
[ 1290.448313][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff88807f11f628
[ 1290.448313][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: 00000000069100c6
[ 1290.448313][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.448313][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.448313][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.448313][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1290.448313][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1290.448313][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1290.448313][ C1] copy_page_range+0x1a81/0x2410
[ 1290.448313][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1290.448313][ C1] dup_mmap+0x1674/0x2250
[ 1290.448313][ C1] dup_mm+0x1f0/0x7c0
[ 1290.448313][ C1] copy_process+0x3ec4/0x9b80
[ 1290.448313][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1290.448313][ C1] kernel_clone+0x4ea/0x1350
[ 1290.448313][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1290.448313][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1290.448313][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1290.448313][ C1] __do_fast_syscall_32+0x127/0x180
[ 1290.448313][ C1] do_fast_syscall_32+0x77/0xd0
[ 1290.448313][ C1] do_SYSENTER_32+0x73/0x90
[ 1290.448313][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1290.448313][ C1] RIP: 0023:0xf7f43549
[ 1290.448313][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1290.448313][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1290.448313][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1290.448313][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1290.448313][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1290.448313][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1290.448313][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1290.448313][ C1] ---[ end trace 4b028c9d42567c5f ]---
[ 1290.653600][ C1] ------------[ cut here ]------------
[ 1290.659207][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1290.668175][ C1] Modules linked in:
[ 1290.672392][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1290.672392][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1290.672392][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1290.672392][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1290.672392][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1290.723985][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1290.723985][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1290.723985][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1290.723985][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1290.723985][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1290.723985][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1290.723985][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1290.723985][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1290.723985][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1290.723985][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1290.806953][ C1] Call Trace:
[ 1290.806953][ C1]
[ 1290.806953][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1290.806953][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1290.806953][ C1] __run_hrtimer+0x48b/0xd20
[ 1290.806953][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1290.806953][ C1] ? hrtimer_init+0x570/0x570
[ 1290.806953][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1290.806953][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1290.806953][ C1]
[ 1290.806953][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1290.858654][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1290.858654][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1290.858654][ C1] RSP: 0018:ffff88807f11f3b0 EFLAGS: 00000206
[ 1290.858654][ C1] RAX: ffff8880a0118a88 RBX: 0000000000000246 RCX: ffffffff821eea6a
[ 1290.858654][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff88807f11f628
[ 1290.911464][ C1] RBP: ffff88807f11f400 R08: 0000000000000002 R09: ffff88807f11f3d8
[ 1290.911464][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff88807f11f628
[ 1290.911464][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: 00000000069100c6
[ 1290.911464][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.911464][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.911464][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1290.911464][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1290.911464][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1290.963040][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1290.963040][ C1] copy_page_range+0x1a81/0x2410
[ 1290.963040][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1290.963040][ C1] dup_mmap+0x1674/0x2250
[ 1290.963040][ C1] dup_mm+0x1f0/0x7c0
[ 1290.963040][ C1] copy_process+0x3ec4/0x9b80
[ 1290.963040][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1290.963040][ C1] kernel_clone+0x4ea/0x1350
[ 1290.963040][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1290.963040][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1290.963040][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1290.963040][ C1] __do_fast_syscall_32+0x127/0x180
[ 1290.963040][ C1] do_fast_syscall_32+0x77/0xd0
[ 1291.032675][ C1] do_SYSENTER_32+0x73/0x90
[ 1291.032675][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1291.032675][ C1] RIP: 0023:0xf7f43549
[ 1291.032675][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1291.060210][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1291.060210][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1291.060210][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1291.088761][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1291.088761][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1291.088761][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1291.088761][ C1] ---[ end trace 4b028c9d42567c60 ]---
[ 1291.088761][ C1] ------------[ cut here ]------------
[ 1291.088761][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1291.088761][ C1] Modules linked in:
[ 1291.088761][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1291.148139][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1291.148139][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1291.148139][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1291.178079][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1291.178079][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1291.178079][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1291.208225][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1291.208225][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1291.208225][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1291.238044][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1291.238044][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1291.238044][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1291.238044][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1291.238044][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1291.238044][ C1] Call Trace:
[ 1291.238044][ C1]
[ 1291.238044][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1291.238044][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1291.238044][ C1] __run_hrtimer+0x48b/0xd20
[ 1291.238044][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1291.238044][ C1] ? hrtimer_init+0x570/0x570
[ 1291.238044][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1291.238044][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1291.238044][ C1]
[ 1291.238044][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1291.238044][ C1] RIP: 0010:__msan_poison_alloca+0xe1/0x110
[ 1291.238044][ C1] Code: 03 41 89 c7 e8 20 ea ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 2b e8 cb e0 0b ff f7 c3 00 02 00 00 74 01 fb 4c 89 e7 <44> 89 f6 44 89 fa e8 a4 f3 ff ff 48 8d 65 e0 5b 41 5c 41 5e 41 5f
[ 1291.238044][ C1] RSP: 0018:ffff88807f11f3b0 EFLAGS: 00000206
[ 1291.238044][ C1] RAX: ffff8880a0118a88 RBX: 0000000000000246 RCX: ffffffff821eea6a
[ 1291.238044][ C1] RDX: 0000000000000a20 RSI: 0000000000000000 RDI: ffff88807f11f628
[ 1291.238044][ C1] RBP: ffff88807f11f400 R08: 0000000000000002 R09: ffff88807f11f3d8
[ 1291.238044][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: ffff88807f11f628
[ 1291.238044][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: 00000000069100c6
[ 1291.238044][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1291.238044][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1291.238044][ C1] ? copy_pte_range+0x1a7a/0x50c0
[ 1291.238044][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1291.238044][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1291.238044][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1291.238044][ C1] copy_page_range+0x1a81/0x2410
[ 1291.238044][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1291.238044][ C1] dup_mmap+0x1674/0x2250
[ 1291.238044][ C1] dup_mm+0x1f0/0x7c0
[ 1291.238044][ C1] copy_process+0x3ec4/0x9b80
[ 1291.238044][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1291.238044][ C1] kernel_clone+0x4ea/0x1350
[ 1291.238044][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1291.238044][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1291.238044][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1291.238044][ C1] __do_fast_syscall_32+0x127/0x180
[ 1291.238044][ C1] do_fast_syscall_32+0x77/0xd0
[ 1291.238044][ C1] do_SYSENTER_32+0x73/0x90
[ 1291.238044][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1291.238044][ C1] RIP: 0023:0xf7f43549
[ 1291.238044][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1291.238044][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1291.238044][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1291.238044][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1291.238044][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1291.568169][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1291.568169][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1291.568169][ C1] ---[ end trace 4b028c9d42567c61 ]---
[ 1291.693928][ C1] ------------[ cut here ]------------
[ 1291.693928][ C1] WARNING: CPU: 1 PID: 4155 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1291.693928][ C1] Modules linked in:
[ 1291.693928][ C1] CPU: 1 PID: 4155 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1291.728064][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1291.728064][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1291.728064][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1291.748048][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1291.748048][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1291.778087][ C1] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1291.778087][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1291.778087][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1291.778087][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1291.808519][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1291.808519][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1291.808519][ C1] CR2: 00000000f553ce78 CR3: 000000016cc2e000 CR4: 00000000001506e0
[ 1291.808519][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1291.838123][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1291.838123][ C1] Call Trace:
[ 1291.838123][ C1]
[ 1291.838123][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1291.838123][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1291.838123][ C1] __run_hrtimer+0x48b/0xd20
[ 1291.838123][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1291.838123][ C1] ? hrtimer_init+0x570/0x570
[ 1291.838123][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1291.838123][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1291.838123][ C1]
[ 1291.838123][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1291.838123][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1291.838123][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1291.838123][ C1] RSP: 0018:ffff88815ad937e8 EFLAGS: 00000297
[ 1291.838123][ C1] RAX: 00000000007fffc4 RBX: ffff888112320b98 RCX: 0000000111b20b00
[ 1291.838123][ C1] RDX: 0000000112320b98 RSI: 0000000000000001 RDI: ffff888112320b98
[ 1291.838123][ C1] RBP: ffff88815ad93800 R08: ffffea000000000f R09: ffff88813fffa000
[ 1291.838123][ C1] R10: 0000000001d3e152 R11: ffff8880ba513e80 R12: ffff88815ad93b38
[ 1291.968250][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1291.968250][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1291.968250][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1291.968250][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1291.968250][ C1] find_inode_bit+0x830/0xda0
[ 1291.968250][ C1] __ext4_new_inode+0x2b20/0x9d60
[ 1291.968250][ C1] ext4_mkdir+0x772/0x1800
[ 1291.968250][ C1] ? security_inode_mkdir+0x265/0x290
[ 1291.968250][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1291.968250][ C1] vfs_mkdir+0x452/0x6d0
[ 1291.968250][ C1] do_mkdirat+0x40b/0x740
[ 1291.968250][ C1] __se_sys_mkdir+0x76/0x90
[ 1291.968250][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1291.968250][ C1] __do_fast_syscall_32+0x127/0x180
[ 1291.968250][ C1] do_fast_syscall_32+0x77/0xd0
[ 1291.968250][ C1] do_SYSENTER_32+0x73/0x90
[ 1291.968250][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1291.968250][ C1] RIP: 0023:0xf7f43549
[ 1291.968250][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1291.968250][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1291.968250][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1291.968250][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1291.968250][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1291.968250][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1291.968250][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1291.968250][ C1] ---[ end trace 4b028c9d42567c62 ]---
[ 1292.145508][ C1] ------------[ cut here ]------------
[ 1292.151094][ C1] WARNING: CPU: 1 PID: 4155 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1292.154451][ C1] Modules linked in:
[ 1292.154451][ C1] CPU: 1 PID: 4155 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1292.154451][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1292.154451][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1292.154451][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1292.208354][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1292.208354][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1292.208354][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1292.208354][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1292.208354][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1292.208354][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1292.208354][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1292.208354][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1292.208354][ C1] CR2: 00000000f553ce78 CR3: 000000016cc2e000 CR4: 00000000001506e0
[ 1292.208354][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1292.208354][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1292.208354][ C1] Call Trace:
[ 1292.208354][ C1]
[ 1292.208354][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1292.208354][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1292.208354][ C1] __run_hrtimer+0x48b/0xd20
[ 1292.208354][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1292.208354][ C1] ? hrtimer_init+0x570/0x570
[ 1292.208354][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1292.208354][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1292.208354][ C1]
[ 1292.208354][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1292.208354][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1292.208354][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1292.208354][ C1] RSP: 0018:ffff88815ad937e8 EFLAGS: 00000297
[ 1292.208354][ C1] RAX: 00000000007fffc4 RBX: ffff888112320b98 RCX: 0000000111b20b00
[ 1292.208354][ C1] RDX: 0000000112320b98 RSI: 0000000000000001 RDI: ffff888112320b98
[ 1292.208354][ C1] RBP: ffff88815ad93800 R08: ffffea000000000f R09: ffff88813fffa000
[ 1292.208354][ C1] R10: 0000000001d3e152 R11: ffff8880ba513e80 R12: ffff88815ad93b38
[ 1292.208354][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1292.208354][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1292.208354][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1292.208354][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1292.208354][ C1] find_inode_bit+0x830/0xda0
[ 1292.448572][ C1] __ext4_new_inode+0x2b20/0x9d60
[ 1292.455085][ C1] ext4_mkdir+0x772/0x1800
[ 1292.455085][ C1] ? security_inode_mkdir+0x265/0x290
[ 1292.455085][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1292.455085][ C1] vfs_mkdir+0x452/0x6d0
[ 1292.455085][ C1] do_mkdirat+0x40b/0x740
[ 1292.455085][ C1] __se_sys_mkdir+0x76/0x90
[ 1292.455085][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1292.455085][ C1] __do_fast_syscall_32+0x127/0x180
[ 1292.455085][ C1] do_fast_syscall_32+0x77/0xd0
[ 1292.455085][ C1] do_SYSENTER_32+0x73/0x90
[ 1292.455085][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1292.455085][ C1] RIP: 0023:0xf7f43549
[ 1292.455085][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1292.455085][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1292.455085][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1292.455085][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1292.455085][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1292.455085][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1292.455085][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1292.455085][ C1] ---[ end trace 4b028c9d42567c63 ]---
[ 1292.593817][ C1] ------------[ cut here ]------------
[ 1292.599431][ C1] WARNING: CPU: 1 PID: 4155 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1292.602818][ C1] Modules linked in:
[ 1292.602818][ C1] CPU: 1 PID: 4155 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1292.602818][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1292.602818][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1292.602818][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1292.648140][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1292.648140][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1292.648140][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1292.648140][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1292.648140][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1292.648140][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1292.648140][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553db40
[ 1292.648140][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1292.648140][ C1] CR2: 00000000f553ce78 CR3: 000000016cc2e000 CR4: 00000000001506e0
[ 1292.648140][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1292.648140][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1292.648140][ C1] Call Trace:
[ 1292.648140][ C1]
[ 1292.648140][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1292.648140][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1292.648140][ C1] __run_hrtimer+0x48b/0xd20
[ 1292.648140][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1292.648140][ C1] ? hrtimer_init+0x570/0x570
[ 1292.648140][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1292.648140][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1292.648140][ C1]
[ 1292.648140][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1292.648140][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1292.648140][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1292.648140][ C1] RSP: 0018:ffff88815ad937e8 EFLAGS: 00000297
[ 1292.648140][ C1] RAX: 00000000007fffc4 RBX: ffff888112320b98 RCX: 0000000111b20b00
[ 1292.648140][ C1] RDX: 0000000112320b98 RSI: 0000000000000001 RDI: ffff888112320b98
[ 1292.648140][ C1] RBP: ffff88815ad93800 R08: ffffea000000000f R09: ffff88813fffa000
[ 1292.648140][ C1] R10: 0000000001d3e152 R11: ffff8880ba513e80 R12: ffff88815ad93b38
[ 1292.648140][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1292.648140][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1292.648140][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1292.648140][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1292.648140][ C1] find_inode_bit+0x830/0xda0
[ 1292.648140][ C1] __ext4_new_inode+0x2b20/0x9d60
[ 1292.648140][ C1] ext4_mkdir+0x772/0x1800
[ 1292.648140][ C1] ? security_inode_mkdir+0x265/0x290
[ 1292.648140][ C1] ? ext4_symlink+0x19e0/0x19e0
[ 1292.648140][ C1] vfs_mkdir+0x452/0x6d0
[ 1292.648140][ C1] do_mkdirat+0x40b/0x740
[ 1292.648140][ C1] __se_sys_mkdir+0x76/0x90
[ 1292.648140][ C1] __ia32_sys_mkdir+0x3e/0x60
[ 1292.648140][ C1] __do_fast_syscall_32+0x127/0x180
[ 1292.648140][ C1] do_fast_syscall_32+0x77/0xd0
[ 1292.648140][ C1] do_SYSENTER_32+0x73/0x90
[ 1292.648140][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1292.648140][ C1] RIP: 0023:0xf7f43549
[ 1292.648140][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1292.648140][ C1] RSP: 002b:00000000f553d45c EFLAGS: 00000296 ORIG_RAX: 0000000000000027
[ 1292.648140][ C1] RAX: ffffffffffffffda RBX: 0000000020000100 RCX: 00000000000001ff
[ 1292.648140][ C1] RDX: 000000000816c000 RSI: 0000000020000840 RDI: 00000000f553d4b0
[ 1292.648140][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1292.648140][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1292.648140][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1292.648140][ C1] ---[ end trace 4b028c9d42567c64 ]---
06:43:44 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r0, &(0x7f0000008d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_RINGS_GET(r0, &(0x7f000000bcc0)={0x0, 0x0, &(0x7f000000bc80)={&(0x7f0000000740)=ANY=[@ANYBLOB="b0000000", @ANYRES16, @ANYBLOB="01"], 0xb0}}, 0x0)
06:43:47 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0x0, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:43:48 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(r0)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:43:48 executing program 2:
r0 = open(&(0x7f0000000000)='./bus\x00', 0x141042, 0x0)
unlink(&(0x7f0000000040)='./bus\x00')
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x4052, r0, 0x0)
[ 1293.104456][ T1] systemd[1]: systemd-journald.service: Main process exited, code=killed, status=6/ABRT
[ 1293.139157][ C1] ------------[ cut here ]------------
[ 1293.144755][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1293.148323][ C1] Modules linked in:
[ 1293.148323][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1293.148323][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1293.148323][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1293.148323][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1293.148323][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1293.148323][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1293.148323][ C1] RDX: 0000000080010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1293.148323][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1293.148323][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1293.148323][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1293.148323][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1293.148323][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1293.148323][ C1] CR2: 000000000816c0d0 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1293.148323][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1293.148323][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1293.148323][ C1] Call Trace:
[ 1293.148323][ C1]
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1293.148323][ C1] __run_hrtimer+0x48b/0xd20
[ 1293.148323][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? hrtimer_init+0x570/0x570
[ 1293.148323][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1293.148323][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1293.148323][ C1]
[ 1293.148323][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1293.148323][ C1] RIP: 0010:metadata_is_contiguous+0x31/0x1a0
[ 1293.148323][ C1] Code: 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03 99 90 49 c7 c6 f4 9e 79 90 85 d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 54 01 00 00 <49> 89 f4 48 89 fb 48 8d 44 37 ff 48 31 f8 48 3d 00 10 00 00 0f 82
[ 1293.148323][ C1] RSP: 0018:ffff8880b535f1b8 EFLAGS: 00000202
[ 1293.148323][ C1] RAX: ffffffff90990311 RBX: 0000000000000008 RCX: 0000000126ec5df4
[ 1293.148323][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88812a161f40
[ 1293.148323][ C1] RBP: ffff8880b535f208 R08: ffffea000000000f R09: ffff88813fffa000
[ 1293.148323][ C1] R10: 00000000dda50e36 R11: ffff88812a161f40 R12: 0000000000000000
[ 1293.148323][ C1] R13: ffff88812a1629c8 R14: ffffffff90799ef4 R15: 0000000000000001
[ 1293.148323][ C1] ? kmsan_get_metadata+0x13/0x180
[ 1293.148323][ C1] kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1293.148323][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] mutex_spin_on_owner+0x179/0x440
[ 1293.148323][ C1] __mutex_lock+0x5c8/0x19f0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] __mutex_lock_slowpath+0x2c/0x30
[ 1293.148323][ C1] mutex_lock+0x5d/0x80
[ 1293.148323][ C1] do_ebt_get_ctl+0x533/0x4230
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x29/0xb0
[ 1293.148323][ C1] ? __kernel_text_address+0x171/0x2d0
[ 1293.148323][ C1] ? unwind_get_return_address+0x80/0x120
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? do_ebt_set_ctl+0x2680/0x2680
[ 1293.148323][ C1] nf_getsockopt+0x571/0x5d0
[ 1293.148323][ C1] ip_getsockopt+0x1b95/0x3a80
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1293.148323][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? ip_setsockopt+0x8ab0/0x8ab0
[ 1293.148323][ C1] tcp_getsockopt+0x1de/0x210
[ 1293.148323][ C1] ? tcp_bpf_bypass_getsockopt+0x100/0x100
[ 1293.148323][ C1] sock_common_getsockopt+0x13a/0x170
[ 1293.148323][ C1] ? sock_recv_errqueue+0xa60/0xa60
[ 1293.148323][ C1] __sys_getsockopt+0x68a/0xc10
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] __se_compat_sys_socketcall+0xdbd/0x16b0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1293.148323][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1293.148323][ C1] __do_fast_syscall_32+0x127/0x180
[ 1293.148323][ C1] do_fast_syscall_32+0x77/0xd0
[ 1293.148323][ C1] do_SYSENTER_32+0x73/0x90
[ 1293.148323][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1293.148323][ C1] RIP: 0023:0xf7fe7549
[ 1293.148323][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1293.148323][ C1] RSP: 002b:00000000ff94d300 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1293.148323][ C1] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000ff94d318
[ 1293.148323][ C1] RDX: 00000000ff94d3e0 RSI: 000000000816cd7c RDI: 00000000ff94d9e0
[ 1293.148323][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1293.148323][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1293.148323][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1293.148323][ C1] ---[ end trace 4b028c9d42567c65 ]---
[ 1293.148323][ C1] ------------[ cut here ]------------
[ 1293.148323][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1293.148323][ C1] Modules linked in:
[ 1293.148323][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1293.148323][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1293.148323][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1293.148323][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1293.148323][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1293.148323][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1293.148323][ C1] RDX: 0000000080010000 RSI: 0000000000000029 RDI: 0000000000000001
[ 1293.148323][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1293.148323][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1293.148323][ C1] R13: 0000000000000000 R14: 0000000000000029 R15: ffff88813fd27b00
[ 1293.148323][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1293.148323][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1293.148323][ C1] CR2: 000000000816c0d0 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1293.148323][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1293.148323][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1293.148323][ C1] Call Trace:
[ 1293.148323][ C1]
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1293.148323][ C1] __run_hrtimer+0x48b/0xd20
[ 1293.148323][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? hrtimer_init+0x570/0x570
[ 1293.148323][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1293.148323][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1293.148323][ C1]
[ 1293.148323][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1293.148323][ C1] RIP: 0010:metadata_is_contiguous+0x31/0x1a0
[ 1293.148323][ C1] Code: 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03 99 90 49 c7 c6 f4 9e 79 90 85 d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 54 01 00 00 <49> 89 f4 48 89 fb 48 8d 44 37 ff 48 31 f8 48 3d 00 10 00 00 0f 82
[ 1293.148323][ C1] RSP: 0018:ffff8880b535f1b8 EFLAGS: 00000202
[ 1293.148323][ C1] RAX: ffffffff90990311 RBX: 0000000000000008 RCX: 0000000126ec5df4
[ 1293.148323][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88812a161f40
[ 1293.148323][ C1] RBP: ffff8880b535f208 R08: ffffea000000000f R09: ffff88813fffa000
[ 1293.148323][ C1] R10: 00000000dda50e36 R11: ffff88812a161f40 R12: 0000000000000000
[ 1293.148323][ C1] R13: ffff88812a1629c8 R14: ffffffff90799ef4 R15: 0000000000000001
[ 1293.148323][ C1] ? kmsan_get_metadata+0x13/0x180
[ 1293.148323][ C1] kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1293.148323][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] mutex_spin_on_owner+0x179/0x440
[ 1293.148323][ C1] __mutex_lock+0x5c8/0x19f0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] __mutex_lock_slowpath+0x2c/0x30
[ 1293.148323][ C1] mutex_lock+0x5d/0x80
[ 1293.148323][ C1] do_ebt_get_ctl+0x533/0x4230
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x29/0xb0
[ 1293.148323][ C1] ? __kernel_text_address+0x171/0x2d0
[ 1293.148323][ C1] ? unwind_get_return_address+0x80/0x120
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? do_ebt_set_ctl+0x2680/0x2680
[ 1293.148323][ C1] nf_getsockopt+0x571/0x5d0
[ 1293.148323][ C1] ip_getsockopt+0x1b95/0x3a80
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1293.148323][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? ip_setsockopt+0x8ab0/0x8ab0
[ 1293.148323][ C1] tcp_getsockopt+0x1de/0x210
[ 1293.148323][ C1] ? tcp_bpf_bypass_getsockopt+0x100/0x100
[ 1293.148323][ C1] sock_common_getsockopt+0x13a/0x170
[ 1293.148323][ C1] ? sock_recv_errqueue+0xa60/0xa60
[ 1293.148323][ C1] __sys_getsockopt+0x68a/0xc10
[ 1293.148323][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1293.148323][ C1] __se_compat_sys_socketcall+0xdbd/0x16b0
[ 1293.148323][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1293.148323][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1293.148323][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1293.148323][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1293.148323][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1293.148323][ C1] __do_fast_syscall_32+0x127/0x180
[ 1293.148323][ C1] do_fast_syscall_32+0x77/0xd0
[ 1293.148323][ C1] do_SYSENTER_32+0x73/0x90
[ 1293.148323][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1293.148323][ C1] RIP: 0023:0xf7fe7549
[ 1293.148323][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1293.148323][ C1] RSP: 002b:00000000ff94d300 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1293.148323][ C1] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000ff94d318
[ 1293.148323][ C1] RDX: 00000000ff94d3e0 RSI: 000000000816cd7c RDI: 00000000ff94d9e0
[ 1293.148323][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1293.148323][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1293.148323][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1293.148323][ C1] ---[ end trace 4b028c9d42567c66 ]---
[ 1294.500831][ C1] ------------[ cut here ]------------
[ 1294.506450][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1294.509912][ C1] Modules linked in:
[ 1294.509912][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1294.509912][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1294.509912][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1294.509912][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1294.509912][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1294.509912][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1294.509912][ C1] RDX: 0000000000010000 RSI: 0000000000000029 RDI: 0000000000000001
[ 1294.509912][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1294.509912][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1294.509912][ C1] R13: 0000000000000000 R14: 0000000000000029 R15: ffff88813fd27b00
[ 1294.509912][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1294.509912][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1294.509912][ C1] CR2: 000000000816c0d0 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1294.509912][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1294.509912][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1294.509912][ C1] Call Trace:
[ 1294.509912][ C1]
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1294.509912][ C1] __run_hrtimer+0x48b/0xd20
[ 1294.509912][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? hrtimer_init+0x570/0x570
[ 1294.509912][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1294.509912][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1294.509912][ C1]
[ 1294.509912][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1294.509912][ C1] RIP: 0010:metadata_is_contiguous+0x31/0x1a0
[ 1294.509912][ C1] Code: 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 11 03 99 90 49 c7 c6 f4 9e 79 90 85 d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 54 01 00 00 <49> 89 f4 48 89 fb 48 8d 44 37 ff 48 31 f8 48 3d 00 10 00 00 0f 82
[ 1294.509912][ C1] RSP: 0018:ffff8880b535f1b8 EFLAGS: 00000202
[ 1294.509912][ C1] RAX: ffffffff90990311 RBX: 0000000000000008 RCX: 0000000126ec5df4
[ 1294.509912][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88812a161f40
[ 1294.509912][ C1] RBP: ffff8880b535f208 R08: ffffea000000000f R09: ffff88813fffa000
[ 1294.509912][ C1] R10: 00000000dda50e36 R11: ffff88812a161f40 R12: 0000000000000000
[ 1294.509912][ C1] R13: ffff88812a1629c8 R14: ffffffff90799ef4 R15: 0000000000000001
[ 1294.509912][ C1] ? kmsan_get_metadata+0x13/0x180
[ 1294.509912][ C1] kmsan_get_shadow_origin_ptr+0x61/0xb0
[ 1294.509912][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1294.509912][ C1] mutex_spin_on_owner+0x179/0x440
[ 1294.509912][ C1] __mutex_lock+0x5c8/0x19f0
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1294.509912][ C1] __mutex_lock_slowpath+0x2c/0x30
[ 1294.509912][ C1] mutex_lock+0x5d/0x80
[ 1294.509912][ C1] do_ebt_get_ctl+0x533/0x4230
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x29/0xb0
[ 1294.509912][ C1] ? __kernel_text_address+0x171/0x2d0
[ 1294.509912][ C1] ? unwind_get_return_address+0x80/0x120
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1294.509912][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? do_ebt_set_ctl+0x2680/0x2680
[ 1294.509912][ C1] nf_getsockopt+0x571/0x5d0
[ 1294.509912][ C1] ip_getsockopt+0x1b95/0x3a80
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1294.509912][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1294.509912][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1294.509912][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? ip_setsockopt+0x8ab0/0x8ab0
[ 1294.509912][ C1] tcp_getsockopt+0x1de/0x210
[ 1294.509912][ C1] ? tcp_bpf_bypass_getsockopt+0x100/0x100
[ 1294.509912][ C1] sock_common_getsockopt+0x13a/0x170
[ 1294.509912][ C1] ? sock_recv_errqueue+0xa60/0xa60
[ 1294.509912][ C1] __sys_getsockopt+0x68a/0xc10
[ 1294.509912][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1294.509912][ C1] __se_compat_sys_socketcall+0xdbd/0x16b0
[ 1294.509912][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1294.509912][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1294.509912][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1294.509912][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1294.509912][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1294.509912][ C1] __do_fast_syscall_32+0x127/0x180
[ 1294.509912][ C1] do_fast_syscall_32+0x77/0xd0
[ 1294.509912][ C1] do_SYSENTER_32+0x73/0x90
[ 1294.509912][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1294.509912][ C1] RIP: 0023:0xf7fe7549
[ 1294.509912][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1294.509912][ C1] RSP: 002b:00000000ff94d300 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1294.509912][ C1] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00000000ff94d318
[ 1294.509912][ C1] RDX: 00000000ff94d3e0 RSI: 000000000816cd7c RDI: 00000000ff94d9e0
[ 1294.509912][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1294.509912][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1294.509912][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1294.509912][ C1] ---[ end trace 4b028c9d42567c67 ]---
[ 1295.217940][ C1] ------------[ cut here ]------------
[ 1295.217940][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1295.297028][ C1] Modules linked in:
[ 1295.297028][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1295.308092][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1295.308092][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1295.308092][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1295.308092][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1295.308092][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1295.358061][ C1] RDX: 0000000080010000 RSI: 000000000000002f RDI: 0000000000000001
[ 1295.358061][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1295.358061][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1295.388188][ C1] R13: 0000000000000000 R14: 000000000000002f R15: ffff88813fd27b00
[ 1295.388188][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1295.388188][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1295.388188][ C1] CR2: 0000555daa25b6f8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1295.418057][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1295.418057][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1295.418057][ C1] Call Trace:
[ 1295.418057][ C1]
[ 1295.418057][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.448119][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1295.448119][ C1] __run_hrtimer+0x48b/0xd20
[ 1295.448119][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1295.448119][ C1] ? hrtimer_init+0x570/0x570
[ 1295.448119][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1295.448119][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1295.448119][ C1]
[ 1295.448119][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1295.448119][ C1] RIP: 0010:kmsan_get_metadata+0x14b/0x180
[ 1295.448119][ C1] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00
[ 1295.448119][ C1] RSP: 0018:ffff888101bb7920 EFLAGS: 00000206
[ 1295.448119][ C1] RAX: 0000000000507693 RBX: 0000000000000b08 RCX: ffffea0005076930
[ 1295.448119][ C1] RDX: 0000000101bb7b08 RSI: 0000000000000200 RDI: ffff888101bb7b08
[ 1295.448119][ C1] RBP: ffff888101bb7938 R08: ffffea000000000f R09: ffff88813fffa000
[ 1295.448119][ C1] R10: 0000000000000003 R11: ffff888141688000 R12: 0000000000000000
[ 1295.448119][ C1] R13: ffff888141688a88 R14: 0000000000000001 R15: 0000000000000001
[ 1295.448119][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.448119][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1295.448119][ C1] tomoyo_check_acl+0x1b5/0x5d0
[ 1295.448119][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1295.448119][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1295.448119][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1295.598101][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1295.598101][ C1] security_inode_getattr+0x141/0x280
[ 1295.598101][ C1] vfs_statx+0x29c/0x890
[ 1295.598101][ C1] __se_sys_newfstatat+0x138/0x970
[ 1295.598101][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1295.598101][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.628145][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1295.628145][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.628145][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1295.628145][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1295.628145][ C1] __x64_sys_newfstatat+0x56/0x70
[ 1295.628145][ C1] do_syscall_64+0x9f/0x140
[ 1295.628145][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1295.628145][ C1] RIP: 0033:0x7f31dc09144b
[ 1295.628145][ C1] Code: 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 d0 77 38 48 63 fe 4d 63 d0 48 89 c6 48 89 ca b8 06 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 f3 c3 0f 1f 00 48 8b 15 19 da 2b 00 f7 d8
[ 1295.628145][ C1] RSP: 002b:00007fff4131f478 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 1295.628145][ C1] RAX: ffffffffffffffda RBX: 00007fff4131f800 RCX: 00007f31dc09144b
[ 1295.628145][ C1] RDX: 00007fff4131f490 RSI: 0000555daa2537db RDI: 0000000000000015
[ 1295.628145][ C1] RBP: 0000555daa2537db R08: 0000000000000100 R09: 0000000000008040
[ 1295.628145][ C1] R10: 0000000000000100 R11: 0000000000000246 R12: 00007fff4131f580
[ 1295.628145][ C1] R13: 0000000000000008 R14: 00007fff4131f490 R15: 0000555daa2526b0
[ 1295.628145][ C1] ---[ end trace 4b028c9d42567c68 ]---
[ 1295.751623][ C1] ------------[ cut here ]------------
[ 1295.757233][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1295.760537][ C1] Modules linked in:
[ 1295.760537][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1295.760537][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1295.760537][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1295.760537][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1295.760537][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1295.820011][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1295.820011][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1295.820011][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1295.820011][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1295.820011][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1295.820011][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1295.820011][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1295.820011][ C1] CR2: 0000555daa25b6f8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1295.820011][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1295.820011][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1295.820011][ C1] Call Trace:
[ 1295.820011][ C1]
[ 1295.820011][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.820011][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1295.820011][ C1] __run_hrtimer+0x48b/0xd20
[ 1295.820011][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1295.820011][ C1] ? hrtimer_init+0x570/0x570
[ 1295.820011][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1295.820011][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1295.820011][ C1]
[ 1295.820011][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1295.820011][ C1] RIP: 0010:kmsan_get_metadata+0x14b/0x180
[ 1295.820011][ C1] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00
[ 1295.820011][ C1] RSP: 0018:ffff888101bb7920 EFLAGS: 00000206
[ 1295.820011][ C1] RAX: 0000000000507693 RBX: 0000000000000b08 RCX: ffffea0005076930
[ 1295.820011][ C1] RDX: 0000000101bb7b08 RSI: 0000000000000200 RDI: ffff888101bb7b08
[ 1295.820011][ C1] RBP: ffff888101bb7938 R08: ffffea000000000f R09: ffff88813fffa000
[ 1295.820011][ C1] R10: 0000000000000003 R11: ffff888141688000 R12: 0000000000000000
[ 1295.820011][ C1] R13: ffff888141688a88 R14: 0000000000000001 R15: 0000000000000001
[ 1295.820011][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1295.820011][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1295.820011][ C1] tomoyo_check_acl+0x1b5/0x5d0
[ 1296.052701][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1296.052701][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1296.052701][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1296.052701][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1296.052701][ C1] security_inode_getattr+0x141/0x280
[ 1296.078164][ C1] vfs_statx+0x29c/0x890
[ 1296.078164][ C1] __se_sys_newfstatat+0x138/0x970
[ 1296.078164][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.078164][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.078164][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.078164][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.078164][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.078164][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1296.078164][ C1] __x64_sys_newfstatat+0x56/0x70
[ 1296.078164][ C1] do_syscall_64+0x9f/0x140
[ 1296.078164][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1296.078164][ C1] RIP: 0033:0x7f31dc09144b
[ 1296.078164][ C1] Code: 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 d0 77 38 48 63 fe 4d 63 d0 48 89 c6 48 89 ca b8 06 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 f3 c3 0f 1f 00 48 8b 15 19 da 2b 00 f7 d8
[ 1296.078164][ C1] RSP: 002b:00007fff4131f478 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 1296.078164][ C1] RAX: ffffffffffffffda RBX: 00007fff4131f800 RCX: 00007f31dc09144b
[ 1296.078164][ C1] RDX: 00007fff4131f490 RSI: 0000555daa2537db RDI: 0000000000000015
[ 1296.078164][ C1] RBP: 0000555daa2537db R08: 0000000000000100 R09: 0000000000008040
[ 1296.078164][ C1] R10: 0000000000000100 R11: 0000000000000246 R12: 00007fff4131f580
[ 1296.078164][ C1] R13: 0000000000000008 R14: 00007fff4131f490 R15: 0000555daa2526b0
[ 1296.078164][ C1] ---[ end trace 4b028c9d42567c69 ]---
[ 1296.078164][ C1] ------------[ cut here ]------------
[ 1296.078164][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1296.078164][ C1] Modules linked in:
[ 1296.078164][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1296.078164][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1296.078164][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1296.078164][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1296.289149][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1296.289149][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1296.289149][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1296.289149][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1296.289149][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1296.289149][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1296.289149][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1296.289149][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1296.289149][ C1] CR2: 0000555daa25b6f8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1296.289149][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1296.289149][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1296.289149][ C1] Call Trace:
[ 1296.289149][ C1]
[ 1296.289149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.289149][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1296.289149][ C1] __run_hrtimer+0x48b/0xd20
[ 1296.289149][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1296.289149][ C1] ? hrtimer_init+0x570/0x570
[ 1296.289149][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1296.289149][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1296.289149][ C1]
[ 1296.289149][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1296.289149][ C1] RIP: 0010:kmsan_get_metadata+0x14b/0x180
[ 1296.289149][ C1] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00
[ 1296.289149][ C1] RSP: 0018:ffff888101bb7920 EFLAGS: 00000206
[ 1296.289149][ C1] RAX: 0000000000507693 RBX: 0000000000000b08 RCX: ffffea0005076930
[ 1296.289149][ C1] RDX: 0000000101bb7b08 RSI: 0000000000000200 RDI: ffff888101bb7b08
[ 1296.289149][ C1] RBP: ffff888101bb7938 R08: ffffea000000000f R09: ffff88813fffa000
[ 1296.289149][ C1] R10: 0000000000000003 R11: ffff888141688000 R12: 0000000000000000
[ 1296.289149][ C1] R13: ffff888141688a88 R14: 0000000000000001 R15: 0000000000000001
[ 1296.289149][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.289149][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1296.289149][ C1] tomoyo_check_acl+0x1b5/0x5d0
[ 1296.289149][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1296.529515][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1296.529515][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1296.529515][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1296.529515][ C1] security_inode_getattr+0x141/0x280
[ 1296.529515][ C1] vfs_statx+0x29c/0x890
[ 1296.529515][ C1] __se_sys_newfstatat+0x138/0x970
[ 1296.529515][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.529515][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.529515][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.529515][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.529515][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1296.529515][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1296.529515][ C1] __x64_sys_newfstatat+0x56/0x70
[ 1296.529515][ C1] do_syscall_64+0x9f/0x140
[ 1296.529515][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1296.529515][ C1] RIP: 0033:0x7f31dc09144b
[ 1296.529515][ C1] Code: 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 d0 77 38 48 63 fe 4d 63 d0 48 89 c6 48 89 ca b8 06 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 f3 c3 0f 1f 00 48 8b 15 19 da 2b 00 f7 d8
[ 1296.529515][ C1] RSP: 002b:00007fff4131f478 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[ 1296.529515][ C1] RAX: ffffffffffffffda RBX: 00007fff4131f800 RCX: 00007f31dc09144b
[ 1296.529515][ C1] RDX: 00007fff4131f490 RSI: 0000555daa2537db RDI: 0000000000000015
[ 1296.529515][ C1] RBP: 0000555daa2537db R08: 0000000000000100 R09: 0000000000008040
[ 1296.529515][ C1] R10: 0000000000000100 R11: 0000000000000246 R12: 00007fff4131f580
[ 1296.529515][ C1] R13: 0000000000000008 R14: 00007fff4131f490 R15: 0000555daa2526b0
[ 1296.529515][ C1] ---[ end trace 4b028c9d42567c6a ]---
[ 1296.758367][ T1] systemd[1]: systemd-journald.service: Unit entered failed state.
[ 1296.758367][ T1] systemd[1]: systemd-journald.service: Failed with result 'watchdog'.
[ 1296.758367][ C1] ------------[ cut here ]------------
[ 1296.758367][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1296.758367][ C1] Modules linked in:
[ 1296.758367][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1296.758367][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1296.758367][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1296.758367][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1296.758367][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1296.758367][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1296.758367][ C1] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1296.758367][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1296.758367][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1296.758367][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1296.758367][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1296.758367][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1296.758367][ C1] CR2: 0000555daa119ef8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1296.758367][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1296.758367][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1296.758367][ C1] Call Trace:
[ 1296.758367][ C1]
[ 1296.758367][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1296.758367][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1296.758367][ C1] __run_hrtimer+0x48b/0xd20
[ 1296.758367][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1296.758367][ C1] ? hrtimer_init+0x570/0x570
[ 1296.758367][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1296.758367][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1296.758367][ C1]
[ 1296.758367][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1296.758367][ C1] RIP: 0010:tomoyo_check_path_acl+0x309/0x360
[ 1296.758367][ C1] Code: 4c 89 20 4d 85 e4 75 42 4d 85 e4 0f 95 c0 49 89 5d 00 49 f7 d4 4c 85 e3 0f 94 c1 20 c1 48 85 db 0f 95 c0 41 88 8e 20 03 00 00 <45> 89 be a8 0f 00 00 48 83 c4 48 5b 41 5c 41 5d 41 5e 41 5f 5d c3
[ 1296.758367][ C1] RSP: 0018:ffff888101bb7560 EFLAGS: 00000246
[ 1296.758367][ C1] RAX: ffff8881013b7700 RBX: 0000000000000000 RCX: 00000001017b7700
[ 1296.758367][ C1] RDX: ffff8881017b7710 RSI: 0000000000000200 RDI: ffff888101bb7710
[ 1296.758367][ C1] RBP: ffff888101bb75d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1296.758367][ C1] R10: 0000000000000002 R11: ffff888141688000 R12: ffffffffffffffff
[ 1296.758367][ C1] R13: ffff888101bb7710 R14: ffff888141688a88 R15: 0000000000000000
[ 1296.758367][ C1] tomoyo_check_acl+0x249/0x5d0
[ 1296.758367][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1297.088282][ C1] tomoyo_check_open_permission+0x61f/0xdf0
[ 1297.088282][ C1] tomoyo_file_open+0x24c/0x2d0
[ 1297.088282][ C1] ? tomoyo_file_fcntl+0x3e0/0x3e0
[ 1297.088282][ C1] security_file_open+0xb1/0x1f0
[ 1297.088282][ C1] do_dentry_open+0x4d5/0x1b50
[ 1297.088282][ C1] vfs_open+0xaf/0xe0
[ 1297.088282][ C1] path_openat+0x5731/0x6be0
[ 1297.088282][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1297.088282][ C1] ? __msan_get_context_state+0x9/0x20
[ 1297.088282][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1297.088282][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.088282][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.088282][ C1] do_filp_open+0x2b8/0x710
[ 1297.088282][ C1] do_sys_openat2+0x25f/0x830
[ 1297.088282][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.088282][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1297.088282][ C1] __se_sys_open+0x271/0x2d0
[ 1297.088282][ C1] __x64_sys_open+0x4a/0x70
[ 1297.088282][ C1] do_syscall_64+0x9f/0x140
[ 1297.088282][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1297.088282][ C1] RIP: 0033:0x7f31dc0699b1
[ 1297.088282][ C1] Code: f7 d8 bf ff ff ff ff 64 89 02 eb cb 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 80 3f 00 74 1b be 00 08 09 00 b8 02 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 1f 89 c7 e9 00 ff ff ff 48 8b 05 b1 54 2e 00
[ 1297.088282][ C1] RSP: 002b:00007fff4131eba8 EFLAGS: 00000202 ORIG_RAX: 0000000000000002
[ 1297.088282][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f31dc0699b1
[ 1297.088282][ C1] RDX: 0000555daa1b687f RSI: 0000000000090800 RDI: 0000555daa1b6840
[ 1297.088282][ C1] RBP: 00007fff4131ebe8 R08: 0000000000000000 R09: 0000000000000050
[ 1297.088282][ C1] R10: 00007f31ddac8500 R11: 0000000000000202 R12: 0000555da994f53c
[ 1297.088282][ C1] R13: 0000555daa1c93a0 R14: 00007fff4131ec50 R15: 00007f31dd7c9941
[ 1297.088282][ C1] ---[ end trace 4b028c9d42567c6b ]---
[ 1297.277382][ C1] ------------[ cut here ]------------
[ 1297.283005][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1297.286352][ C1] Modules linked in:
[ 1297.286352][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1297.286352][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1297.286352][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1297.286352][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1297.286352][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1297.286352][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1297.286352][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1297.286352][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1297.286352][ C1] R10: 000000004d1d8650 R11: 00000000bd08a39e R12: 0000000000000000
[ 1297.286352][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1297.286352][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1297.286352][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1297.286352][ C1] CR2: 0000555daa119ef8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1297.286352][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1297.286352][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1297.286352][ C1] Call Trace:
[ 1297.286352][ C1]
[ 1297.286352][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1297.286352][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1297.286352][ C1] __run_hrtimer+0x48b/0xd20
[ 1297.286352][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1297.286352][ C1] ? hrtimer_init+0x570/0x570
[ 1297.286352][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1297.286352][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1297.286352][ C1]
[ 1297.286352][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1297.286352][ C1] RIP: 0010:tomoyo_check_path_acl+0x309/0x360
[ 1297.286352][ C1] Code: 4c 89 20 4d 85 e4 75 42 4d 85 e4 0f 95 c0 49 89 5d 00 49 f7 d4 4c 85 e3 0f 94 c1 20 c1 48 85 db 0f 95 c0 41 88 8e 20 03 00 00 <45> 89 be a8 0f 00 00 48 83 c4 48 5b 41 5c 41 5d 41 5e 41 5f 5d c3
[ 1297.286352][ C1] RSP: 0018:ffff888101bb7560 EFLAGS: 00000246
[ 1297.286352][ C1] RAX: ffff8881013b7700 RBX: 0000000000000000 RCX: 00000001017b7700
[ 1297.286352][ C1] RDX: ffff8881017b7710 RSI: 0000000000000200 RDI: ffff888101bb7710
[ 1297.286352][ C1] RBP: ffff888101bb75d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1297.286352][ C1] R10: 0000000000000002 R11: ffff888141688000 R12: ffffffffffffffff
[ 1297.286352][ C1] R13: ffff888101bb7710 R14: ffff888141688a88 R15: 0000000000000000
[ 1297.286352][ C1] tomoyo_check_acl+0x249/0x5d0
[ 1297.286352][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1297.286352][ C1] tomoyo_check_open_permission+0x61f/0xdf0
[ 1297.286352][ C1] tomoyo_file_open+0x24c/0x2d0
[ 1297.286352][ C1] ? tomoyo_file_fcntl+0x3e0/0x3e0
[ 1297.286352][ C1] security_file_open+0xb1/0x1f0
[ 1297.286352][ C1] do_dentry_open+0x4d5/0x1b50
[ 1297.286352][ C1] vfs_open+0xaf/0xe0
[ 1297.286352][ C1] path_openat+0x5731/0x6be0
[ 1297.286352][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1297.286352][ C1] ? __msan_get_context_state+0x9/0x20
[ 1297.286352][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1297.286352][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.286352][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.286352][ C1] do_filp_open+0x2b8/0x710
[ 1297.286352][ C1] do_sys_openat2+0x25f/0x830
[ 1297.286352][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1297.286352][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1297.286352][ C1] __se_sys_open+0x271/0x2d0
[ 1297.286352][ C1] __x64_sys_open+0x4a/0x70
[ 1297.286352][ C1] do_syscall_64+0x9f/0x140
[ 1297.286352][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1297.286352][ C1] RIP: 0033:0x7f31dc0699b1
[ 1297.286352][ C1] Code: f7 d8 bf ff ff ff ff 64 89 02 eb cb 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 80 3f 00 74 1b be 00 08 09 00 b8 02 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 1f 89 c7 e9 00 ff ff ff 48 8b 05 b1 54 2e 00
[ 1297.286352][ C1] RSP: 002b:00007fff4131eba8 EFLAGS: 00000202 ORIG_RAX: 0000000000000002
[ 1297.286352][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f31dc0699b1
[ 1297.286352][ C1] RDX: 0000555daa1b687f RSI: 0000000000090800 RDI: 0000555daa1b6840
[ 1297.286352][ C1] RBP: 00007fff4131ebe8 R08: 0000000000000000 R09: 0000000000000050
[ 1297.286352][ C1] R10: 00007f31ddac8500 R11: 0000000000000202 R12: 0000555da994f53c
[ 1297.286352][ C1] R13: 0000555daa1c93a0 R14: 00007fff4131ec50 R15: 00007f31dd7c9941
[ 1297.286352][ C1] ---[ end trace 4b028c9d42567c6c ]---
[ 1297.759453][ C1] ------------[ cut here ]------------
[ 1297.765070][ C1] WARNING: CPU: 1 PID: 1 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1297.768455][ C1] Modules linked in:
[ 1297.768455][ C1] CPU: 1 PID: 1 Comm: systemd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1297.768455][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1297.768455][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1297.768455][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1297.768455][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1297.768455][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888141688000
[ 1297.768455][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1297.768455][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1297.768455][ C1] R10: 00000000b56c2fd0 R11: ffff888141688000 R12: 0000000000000000
[ 1297.768455][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1297.768455][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1297.768455][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1297.888228][ C1] CR2: 0000555daa119ef8 CR3: 0000000112349000 CR4: 00000000001506e0
[ 1297.888228][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1297.888228][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1297.888228][ C1] Call Trace:
[ 1297.888228][ C1]
[ 1297.888228][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1297.888228][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1297.888228][ C1] __run_hrtimer+0x48b/0xd20
[ 1297.888228][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1297.888228][ C1] ? hrtimer_init+0x570/0x570
[ 1297.888228][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1297.888228][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1297.888228][ C1]
[ 1297.888228][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1297.888228][ C1] RIP: 0010:tomoyo_check_path_acl+0x309/0x360
[ 1297.888228][ C1] Code: 4c 89 20 4d 85 e4 75 42 4d 85 e4 0f 95 c0 49 89 5d 00 49 f7 d4 4c 85 e3 0f 94 c1 20 c1 48 85 db 0f 95 c0 41 88 8e 20 03 00 00 <45> 89 be a8 0f 00 00 48 83 c4 48 5b 41 5c 41 5d 41 5e 41 5f 5d c3
[ 1297.888228][ C1] RSP: 0018:ffff888101bb7560 EFLAGS: 00000246
[ 1297.888228][ C1] RAX: ffff8881013b7700 RBX: 0000000000000000 RCX: 00000001017b7700
[ 1297.888228][ C1] RDX: ffff8881017b7710 RSI: 0000000000000200 RDI: ffff888101bb7710
[ 1297.888228][ C1] RBP: ffff888101bb75d0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1297.888228][ C1] R10: 0000000000000002 R11: ffff888141688000 R12: ffffffffffffffff
[ 1298.029104][ C1] R13: ffff888101bb7710 R14: ffff888141688a88 R15: 0000000000000000
[ 1298.029104][ C1] tomoyo_check_acl+0x249/0x5d0
[ 1298.029104][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1298.029104][ C1] tomoyo_check_open_permission+0x61f/0xdf0
[ 1298.029104][ C1] tomoyo_file_open+0x24c/0x2d0
[ 1298.029104][ C1] ? tomoyo_file_fcntl+0x3e0/0x3e0
[ 1298.029104][ C1] security_file_open+0xb1/0x1f0
[ 1298.029104][ C1] do_dentry_open+0x4d5/0x1b50
[ 1298.029104][ C1] vfs_open+0xaf/0xe0
[ 1298.029104][ C1] path_openat+0x5731/0x6be0
[ 1298.029104][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1298.029104][ C1] ? __msan_get_context_state+0x9/0x20
[ 1298.029104][ C1] ? memcg_slab_post_alloc_hook+0x41/0xe50
[ 1298.029104][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1298.029104][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1298.029104][ C1] do_filp_open+0x2b8/0x710
[ 1298.029104][ C1] do_sys_openat2+0x25f/0x830
[ 1298.029104][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1298.029104][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1298.029104][ C1] __se_sys_open+0x271/0x2d0
[ 1298.029104][ C1] __x64_sys_open+0x4a/0x70
[ 1298.029104][ C1] do_syscall_64+0x9f/0x140
[ 1298.029104][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1298.029104][ C1] RIP: 0033:0x7f31dc0699b1
[ 1298.029104][ C1] Code: f7 d8 bf ff ff ff ff 64 89 02 eb cb 0f 1f 00 66 2e 0f 1f 84 00 00 00 00 00 80 3f 00 74 1b be 00 08 09 00 b8 02 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 1f 89 c7 e9 00 ff ff ff 48 8b 05 b1 54 2e 00
[ 1298.178191][ C1] RSP: 002b:00007fff4131eba8 EFLAGS: 00000202 ORIG_RAX: 0000000000000002
[ 1298.178191][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f31dc0699b1
[ 1298.178191][ C1] RDX: 0000555daa1b687f RSI: 0000000000090800 RDI: 0000555daa1b6840
[ 1298.178191][ C1] RBP: 00007fff4131ebe8 R08: 0000000000000000 R09: 0000000000000050
06:43:54 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x21000000, &(0x7f0000000840)={[{@grpid}]})
[ 1298.178191][ C1] R10: 00007f31ddac8500 R11: 0000000000000202 R12: 0000555da994f53c
[ 1298.178191][ C1] R13: 0000555daa1c93a0 R14: 00007fff4131ec50 R15: 00007f31dd7c9941
[ 1298.178191][ C1] ---[ end trace 4b028c9d42567c6d ]---
[ 1298.341315][ C1] ------------[ cut here ]------------
[ 1298.347063][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1298.350346][ C1] Modules linked in:
[ 1298.350346][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1298.350346][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1298.350346][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1298.350346][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1298.350346][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1298.350346][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1298.350346][ C1] RDX: 0000000000010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1298.350346][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1298.350346][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1298.350346][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1298.350346][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1298.350346][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1298.350346][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1298.350346][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1298.350346][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1298.350346][ C1] Call Trace:
[ 1298.350346][ C1]
[ 1298.350346][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1298.350346][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1298.350346][ C1] __run_hrtimer+0x48b/0xd20
[ 1298.350346][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1298.350346][ C1] ? hrtimer_init+0x570/0x570
[ 1298.350346][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1298.350346][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1298.350346][ C1]
[ 1298.350346][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1298.350346][ C1] RIP: 0010:copy_pte_range+0x172b/0x50c0
[ 1298.350346][ C1] Code: c3 01 0f 84 d1 0b 00 00 48 85 c9 0f 85 d6 0b 00 00 48 8b 7c 24 08 4c 8b 3f e8 b1 38 20 00 48 8b 18 44 8b 32 81 e3 00 00 08 00 <4d> 89 fd 49 c1 e5 2c 49 c1 fd 3f 41 81 e7 00 00 08 00 48 8b 04 24
[ 1298.350346][ C1] RSP: 0018:ffff88807f11f410 EFLAGS: 00000246
[ 1298.350346][ C1] RAX: ffffffff92457000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1298.350346][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00035156f0
[ 1298.350346][ C1] RBP: ffff88807f11f678 R08: ffffffff821ee6c1 R09: ffff88813fffa000
[ 1298.350346][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1298.350346][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00fff00000000000
[ 1298.350346][ C1] ? copy_pte_range+0x16d1/0x50c0
[ 1298.350346][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1298.350346][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1298.350346][ C1] copy_page_range+0x1a81/0x2410
[ 1298.350346][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1298.350346][ C1] dup_mmap+0x1674/0x2250
[ 1298.350346][ C1] dup_mm+0x1f0/0x7c0
[ 1298.350346][ C1] copy_process+0x3ec4/0x9b80
[ 1298.350346][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1298.350346][ C1] kernel_clone+0x4ea/0x1350
[ 1298.350346][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1298.350346][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1298.350346][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1298.350346][ C1] __do_fast_syscall_32+0x127/0x180
[ 1298.350346][ C1] do_fast_syscall_32+0x77/0xd0
[ 1298.350346][ C1] do_SYSENTER_32+0x73/0x90
[ 1298.350346][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1298.350346][ C1] RIP: 0023:0xf7f43549
[ 1298.350346][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1298.350346][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1298.350346][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1298.350346][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1298.350346][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1298.350346][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1298.350346][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1298.350346][ C1] ---[ end trace 4b028c9d42567c6e ]---
[ 1298.795999][ C1] ------------[ cut here ]------------
[ 1298.801580][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1298.805084][ C1] Modules linked in:
[ 1298.805084][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1298.805084][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1298.805084][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1298.805084][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1298.805084][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1298.805084][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1298.805084][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1298.805084][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1298.805084][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1298.805084][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1298.805084][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1298.805084][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1298.805084][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1298.805084][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1298.805084][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1298.805084][ C1] Call Trace:
[ 1298.805084][ C1]
[ 1298.805084][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1298.805084][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1298.805084][ C1] __run_hrtimer+0x48b/0xd20
[ 1298.805084][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1298.805084][ C1] ? hrtimer_init+0x570/0x570
[ 1298.805084][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1298.805084][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1298.805084][ C1]
[ 1298.805084][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1298.805084][ C1] RIP: 0010:copy_pte_range+0x172b/0x50c0
[ 1298.805084][ C1] Code: c3 01 0f 84 d1 0b 00 00 48 85 c9 0f 85 d6 0b 00 00 48 8b 7c 24 08 4c 8b 3f e8 b1 38 20 00 48 8b 18 44 8b 32 81 e3 00 00 08 00 <4d> 89 fd 49 c1 e5 2c 49 c1 fd 3f 41 81 e7 00 00 08 00 48 8b 04 24
[ 1298.805084][ C1] RSP: 0018:ffff88807f11f410 EFLAGS: 00000246
[ 1298.805084][ C1] RAX: ffffffff92457000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1298.805084][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00035156f0
[ 1298.805084][ C1] RBP: ffff88807f11f678 R08: ffffffff821ee6c1 R09: ffff88813fffa000
[ 1298.805084][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1298.805084][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00fff00000000000
[ 1298.805084][ C1] ? copy_pte_range+0x16d1/0x50c0
[ 1298.805084][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1298.805084][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1298.805084][ C1] copy_page_range+0x1a81/0x2410
[ 1298.805084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1298.805084][ C1] dup_mmap+0x1674/0x2250
[ 1298.805084][ C1] dup_mm+0x1f0/0x7c0
[ 1298.805084][ C1] copy_process+0x3ec4/0x9b80
[ 1298.805084][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1298.805084][ C1] kernel_clone+0x4ea/0x1350
[ 1298.805084][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1298.805084][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1298.805084][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1298.805084][ C1] __do_fast_syscall_32+0x127/0x180
[ 1298.805084][ C1] do_fast_syscall_32+0x77/0xd0
[ 1298.805084][ C1] do_SYSENTER_32+0x73/0x90
[ 1298.805084][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1298.805084][ C1] RIP: 0023:0xf7f43549
[ 1298.805084][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1298.805084][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1298.805084][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1298.805084][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1298.805084][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1298.805084][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1298.805084][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1298.805084][ C1] ---[ end trace 4b028c9d42567c6f ]---
[ 1299.248717][ C1] ------------[ cut here ]------------
[ 1299.254302][ C1] WARNING: CPU: 1 PID: 2613 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1299.257815][ C1] Modules linked in:
[ 1299.257815][ C1] CPU: 1 PID: 2613 Comm: syz-executor.0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1299.257815][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1299.257815][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1299.257815][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1299.257815][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1299.257815][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0118000
[ 1299.257815][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1299.257815][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1299.257815][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1299.257815][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1299.257815][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000a393380
[ 1299.257815][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1299.257815][ C1] CR2: 00000000090d52c5 CR3: 000000007e7e4000 CR4: 00000000001506e0
[ 1299.257815][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1299.257815][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1299.257815][ C1] Call Trace:
[ 1299.257815][ C1]
[ 1299.257815][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.257815][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1299.257815][ C1] __run_hrtimer+0x48b/0xd20
[ 1299.257815][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1299.257815][ C1] ? hrtimer_init+0x570/0x570
[ 1299.257815][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1299.257815][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1299.257815][ C1]
[ 1299.257815][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1299.257815][ C1] RIP: 0010:copy_pte_range+0x172b/0x50c0
[ 1299.257815][ C1] Code: c3 01 0f 84 d1 0b 00 00 48 85 c9 0f 85 d6 0b 00 00 48 8b 7c 24 08 4c 8b 3f e8 b1 38 20 00 48 8b 18 44 8b 32 81 e3 00 00 08 00 <4d> 89 fd 49 c1 e5 2c 49 c1 fd 3f 41 81 e7 00 00 08 00 48 8b 04 24
[ 1299.257815][ C1] RSP: 0018:ffff88807f11f410 EFLAGS: 00000246
[ 1299.257815][ C1] RAX: ffffffff92457000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1299.257815][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00035156f0
[ 1299.257815][ C1] RBP: ffff88807f11f678 R08: ffffffff821ee6c1 R09: ffff88813fffa000
[ 1299.257815][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1299.257815][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 00fff00000000000
[ 1299.257815][ C1] ? copy_pte_range+0x16d1/0x50c0
[ 1299.257815][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1299.257815][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.257815][ C1] copy_page_range+0x1a81/0x2410
[ 1299.257815][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.257815][ C1] dup_mmap+0x1674/0x2250
[ 1299.257815][ C1] dup_mm+0x1f0/0x7c0
[ 1299.257815][ C1] copy_process+0x3ec4/0x9b80
[ 1299.257815][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1299.257815][ C1] kernel_clone+0x4ea/0x1350
[ 1299.257815][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1299.257815][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1299.257815][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1299.257815][ C1] __do_fast_syscall_32+0x127/0x180
[ 1299.257815][ C1] do_fast_syscall_32+0x77/0xd0
[ 1299.257815][ C1] do_SYSENTER_32+0x73/0x90
[ 1299.257815][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1299.257815][ C1] RIP: 0023:0xf7f43549
[ 1299.257815][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1299.257815][ C1] RSP: 002b:00000000ffafd2a0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1299.257815][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1299.257815][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000a3933e8
[ 1299.257815][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1299.257815][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1299.257815][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1299.257815][ C1] ---[ end trace 4b028c9d42567c70 ]---
[ 1299.800539][ C1] ------------[ cut here ]------------
[ 1299.806205][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1299.809494][ C1] Modules linked in:
[ 1299.809494][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1299.809494][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1299.809494][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1299.809494][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1299.848081][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1299.848081][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1299.848081][ C1] RDX: 0000000000010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1299.848081][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1299.848081][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1299.848081][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1299.848081][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1299.848081][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1299.848081][ C1] CR2: 00000000090d52c5 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1299.848081][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1299.848081][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1299.848081][ C1] Call Trace:
[ 1299.848081][ C1]
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1299.848081][ C1] __run_hrtimer+0x48b/0xd20
[ 1299.848081][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? hrtimer_init+0x570/0x570
[ 1299.848081][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1299.848081][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1299.848081][ C1]
[ 1299.848081][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1299.848081][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1299.848081][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1299.848081][ C1] RSP: 0018:ffff888127143990 EFLAGS: 00000297
[ 1299.848081][ C1] RAX: 00000000007fffc4 RBX: ffff888127153a58 RCX: 0000000000000000
[ 1299.848081][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888127153a58
[ 1299.848081][ C1] RBP: ffff8881271439a8 R08: ffffffff81a611a8 R09: ffff88813fffa000
[ 1299.848081][ C1] R10: 0000000000000000 R11: ffff888111570000 R12: ffff888122bc6200
[ 1299.848081][ C1] R13: 00000000000000b0 R14: 0000000000000000 R15: 0000000000000001
[ 1299.848081][ C1] ? futex_wake+0x6e8/0xc80
[ 1299.848081][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1299.848081][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1299.848081][ C1] futex_wake+0x733/0xc80
[ 1299.848081][ C1] do_futex+0x1c67/0x5d40
[ 1299.848081][ C1] ? __perf_event_task_sched_out+0x2e40/0x2f80
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1299.848081][ C1] ? __perf_event_task_sched_in+0xbc7/0xdb0
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1299.848081][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1299.848081][ C1] __se_sys_futex+0x5cf/0xba0
[ 1299.848081][ C1] __x64_sys_futex+0x6e/0x90
[ 1299.848081][ C1] do_syscall_64+0x9f/0x140
[ 1299.848081][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1299.848081][ C1] RIP: 0033:0x7f298ab4201a
[ 1299.848081][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1299.848081][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1299.848081][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1299.848081][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1299.848081][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1299.848081][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1299.848081][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1299.848081][ C1] ---[ end trace 4b028c9d42567c71 ]---
[ 1299.848081][ C1] ------------[ cut here ]------------
[ 1299.848081][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1299.848081][ C1] Modules linked in:
[ 1299.848081][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1299.848081][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1299.848081][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1299.848081][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1299.848081][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1299.848081][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1299.848081][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1299.848081][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1299.848081][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1299.848081][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1299.848081][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1299.848081][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1299.848081][ C1] CR2: 00000000090d52c5 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1299.848081][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1299.848081][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1299.848081][ C1] Call Trace:
[ 1299.848081][ C1]
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1299.848081][ C1] __run_hrtimer+0x48b/0xd20
[ 1299.848081][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? hrtimer_init+0x570/0x570
[ 1299.848081][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1299.848081][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1299.848081][ C1]
[ 1299.848081][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1299.848081][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1299.848081][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1299.848081][ C1] RSP: 0018:ffff888127143990 EFLAGS: 00000297
[ 1299.848081][ C1] RAX: 00000000007fffc4 RBX: ffff888127153a58 RCX: 0000000000000000
[ 1299.848081][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888127153a58
[ 1299.848081][ C1] RBP: ffff8881271439a8 R08: ffffffff81a611a8 R09: ffff88813fffa000
[ 1299.848081][ C1] R10: 0000000000000000 R11: ffff888111570000 R12: ffff888122bc6200
[ 1299.848081][ C1] R13: 00000000000000b0 R14: 0000000000000000 R15: 0000000000000001
[ 1299.848081][ C1] ? futex_wake+0x6e8/0xc80
[ 1299.848081][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1299.848081][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1299.848081][ C1] futex_wake+0x733/0xc80
[ 1299.848081][ C1] do_futex+0x1c67/0x5d40
[ 1299.848081][ C1] ? __perf_event_task_sched_out+0x2e40/0x2f80
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1299.848081][ C1] ? __perf_event_task_sched_in+0xbc7/0xdb0
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1299.848081][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1299.848081][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1299.848081][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1299.848081][ C1] __se_sys_futex+0x5cf/0xba0
[ 1299.848081][ C1] __x64_sys_futex+0x6e/0x90
[ 1299.848081][ C1] do_syscall_64+0x9f/0x140
[ 1299.848081][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1299.848081][ C1] RIP: 0033:0x7f298ab4201a
[ 1299.848081][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1299.848081][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1299.848081][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1299.848081][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1299.848081][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1299.848081][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1299.848081][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1299.848081][ C1] ---[ end trace 4b028c9d42567c72 ]---
[ 1300.785399][ C1] ------------[ cut here ]------------
[ 1300.790973][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1300.794440][ C1] Modules linked in:
[ 1300.794440][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1300.794440][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1300.794440][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1300.794440][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1300.794440][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1300.794440][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1300.794440][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1300.794440][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1300.794440][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1300.794440][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1300.794440][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1300.794440][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1300.794440][ C1] CR2: 00000000090d52c5 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1300.794440][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1300.794440][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1300.794440][ C1] Call Trace:
[ 1300.794440][ C1]
[ 1300.794440][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1300.794440][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1300.794440][ C1] __run_hrtimer+0x48b/0xd20
[ 1300.794440][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? hrtimer_init+0x570/0x570
[ 1300.794440][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1300.794440][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1300.794440][ C1]
[ 1300.794440][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1300.794440][ C1] RIP: 0010:kmsan_get_metadata+0x111/0x180
[ 1300.794440][ C1] Code: 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40
[ 1300.794440][ C1] RSP: 0018:ffff888127143990 EFLAGS: 00000297
[ 1300.794440][ C1] RAX: 00000000007fffc4 RBX: ffff888127153a58 RCX: 0000000000000000
[ 1300.794440][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888127153a58
[ 1300.794440][ C1] RBP: ffff8881271439a8 R08: ffffffff81a611a8 R09: ffff88813fffa000
[ 1300.794440][ C1] R10: 0000000000000000 R11: ffff888111570000 R12: ffff888122bc6200
[ 1300.794440][ C1] R13: 00000000000000b0 R14: 0000000000000000 R15: 0000000000000001
[ 1300.794440][ C1] ? futex_wake+0x6e8/0xc80
[ 1300.794440][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1300.794440][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1300.794440][ C1] futex_wake+0x733/0xc80
[ 1300.794440][ C1] do_futex+0x1c67/0x5d40
[ 1300.794440][ C1] ? __perf_event_task_sched_out+0x2e40/0x2f80
[ 1300.794440][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1300.794440][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1300.794440][ C1] ? __perf_event_task_sched_in+0xbc7/0xdb0
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1300.794440][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1300.794440][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1300.794440][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1300.794440][ C1] __se_sys_futex+0x5cf/0xba0
[ 1300.794440][ C1] __x64_sys_futex+0x6e/0x90
[ 1300.794440][ C1] do_syscall_64+0x9f/0x140
[ 1300.794440][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1300.794440][ C1] RIP: 0033:0x7f298ab4201a
[ 1300.794440][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1300.794440][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1300.794440][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1300.794440][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1300.794440][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1300.794440][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1300.794440][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1300.794440][ C1] ---[ end trace 4b028c9d42567c73 ]---
06:43:57 executing program 4:
r0 = syz_open_dev$usbmon(&(0x7f0000006740), 0x0, 0x0)
ioctl$MON_IOCT_RING_SIZE(r0, 0x5452, 0x4fd000)
[ 1301.377865][ C1] ------------[ cut here ]------------
[ 1301.383541][ C1] WARNING: CPU: 1 PID: 4163 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1301.386895][ C1] Modules linked in:
[ 1301.386895][ C1] CPU: 1 PID: 4163 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1301.408054][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1301.408054][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1301.408054][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1301.408054][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1301.408054][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88809e930000
[ 1301.408054][ C1] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1301.408054][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1301.408054][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1301.408054][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1301.488146][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1301.488146][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1301.488146][ C1] CR2: 00000000090d52c5 CR3: 0000000115e81000 CR4: 00000000001506e0
[ 1301.488146][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1301.488146][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1301.488146][ C1] Call Trace:
[ 1301.488146][ C1]
[ 1301.488146][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1301.488146][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1301.488146][ C1] __run_hrtimer+0x48b/0xd20
[ 1301.488146][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1301.488146][ C1] ? hrtimer_init+0x570/0x570
[ 1301.488146][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1301.488146][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1301.488146][ C1]
[ 1301.488146][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1301.488146][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1301.488146][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1301.488146][ C1] RSP: 0018:ffff888127363448 EFLAGS: 00000286
[ 1301.488146][ C1] RAX: ffff88809e930a88 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1301.488146][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88815591c200
[ 1301.488146][ C1] RBP: ffff888127363460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1301.638105][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1301.638105][ C1] R13: 0000000000000000 R14: ffff88815591c200 R15: 0000000000000246
[ 1301.638105][ C1] ? __do_softirq+0x715/0x715
[ 1301.638105][ C1] kmem_cache_free+0x30d/0xf10
[ 1301.668116][ C1] ? __kfree_skb+0x284/0x320
[ 1301.668116][ C1] __kfree_skb+0x284/0x320
[ 1301.668116][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1301.668116][ C1] kfree_skb+0xd5/0x300
[ 1301.668116][ C1] sctp_ulpevent_free+0x429/0x510
[ 1301.668116][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1301.698105][ C1] sctp_close+0x143/0x1060
[ 1301.698105][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1301.698105][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1301.698105][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1301.698105][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1301.698105][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1301.698105][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1301.698105][ C1] inet_release+0x30c/0x390
[ 1301.698105][ C1] inet6_release+0xaf/0x100
[ 1301.698105][ C1] sock_close+0x150/0x450
[ 1301.698105][ C1] ? __inet6_bind+0x2350/0x2350
[ 1301.698105][ C1] ? sock_mmap+0x120/0x120
[ 1301.698105][ C1] __fput+0x6bd/0xf00
[ 1301.698105][ C1] ____fput+0x37/0x40
[ 1301.698105][ C1] ? fput_many+0x360/0x360
[ 1301.698105][ C1] task_work_run+0x140/0x280
[ 1301.698105][ C1] get_signal+0x37d2/0x39e0
[ 1301.698105][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1301.698105][ C1] ? kick_process+0x47/0x180
[ 1301.698105][ C1] ? task_work_add+0x3be/0x4a0
[ 1301.698105][ C1] ? fput+0x2e4/0x320
[ 1301.698105][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1301.698105][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1301.698105][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1301.698105][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1301.698105][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1301.698105][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1301.698105][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1301.698105][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1301.851624][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1301.851624][ C1] do_fast_syscall_32+0x77/0xd0
[ 1301.851624][ C1] do_SYSENTER_32+0x73/0x90
[ 1301.851624][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1301.851624][ C1] RIP: 0023:0xf7fac549
[ 1301.851624][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1301.851624][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1301.851624][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1301.851624][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1301.851624][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1301.851624][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1301.851624][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1301.851624][ C1] ---[ end trace 4b028c9d42567c74 ]---
[ 1301.958407][ C1] ------------[ cut here ]------------
[ 1301.964055][ C1] WARNING: CPU: 1 PID: 4163 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1301.967383][ C1] Modules linked in:
[ 1301.967383][ C1] CPU: 1 PID: 4163 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1301.967383][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1301.967383][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1301.967383][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1301.967383][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1301.967383][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88809e930000
[ 1301.967383][ C1] RDX: 0000000000010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1301.967383][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1301.967383][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1301.967383][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1301.967383][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1301.967383][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1301.967383][ C1] CR2: 00000000090d52c5 CR3: 0000000115e81000 CR4: 00000000001506e0
[ 1301.967383][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1301.967383][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1301.967383][ C1] Call Trace:
[ 1301.967383][ C1]
[ 1301.967383][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1301.967383][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1301.967383][ C1] __run_hrtimer+0x48b/0xd20
[ 1301.967383][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1301.967383][ C1] ? hrtimer_init+0x570/0x570
[ 1301.967383][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1301.967383][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1301.967383][ C1]
[ 1301.967383][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1301.967383][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1301.967383][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1301.967383][ C1] RSP: 0018:ffff888127363448 EFLAGS: 00000286
[ 1301.967383][ C1] RAX: ffff88809e930a88 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1301.967383][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88815591c200
[ 1301.967383][ C1] RBP: ffff888127363460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1301.967383][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1301.967383][ C1] R13: 0000000000000000 R14: ffff88815591c200 R15: 0000000000000246
[ 1301.967383][ C1] ? __do_softirq+0x715/0x715
[ 1301.967383][ C1] kmem_cache_free+0x30d/0xf10
[ 1301.967383][ C1] ? __kfree_skb+0x284/0x320
[ 1301.967383][ C1] __kfree_skb+0x284/0x320
[ 1301.967383][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1301.967383][ C1] kfree_skb+0xd5/0x300
[ 1301.967383][ C1] sctp_ulpevent_free+0x429/0x510
[ 1301.967383][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1301.967383][ C1] sctp_close+0x143/0x1060
[ 1301.967383][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.288581][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1302.288581][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1302.299133][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1302.299133][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.299133][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1302.299133][ C1] inet_release+0x30c/0x390
[ 1302.299133][ C1] inet6_release+0xaf/0x100
[ 1302.299133][ C1] sock_close+0x150/0x450
[ 1302.299133][ C1] ? __inet6_bind+0x2350/0x2350
[ 1302.299133][ C1] ? sock_mmap+0x120/0x120
[ 1302.299133][ C1] __fput+0x6bd/0xf00
[ 1302.299133][ C1] ____fput+0x37/0x40
[ 1302.299133][ C1] ? fput_many+0x360/0x360
[ 1302.299133][ C1] task_work_run+0x140/0x280
[ 1302.299133][ C1] get_signal+0x37d2/0x39e0
[ 1302.299133][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1302.299133][ C1] ? kick_process+0x47/0x180
[ 1302.299133][ C1] ? task_work_add+0x3be/0x4a0
[ 1302.299133][ C1] ? fput+0x2e4/0x320
[ 1302.299133][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.299133][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1302.299133][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1302.299133][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1302.299133][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1302.299133][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.299133][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1302.299133][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1302.299133][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1302.299133][ C1] do_fast_syscall_32+0x77/0xd0
[ 1302.299133][ C1] do_SYSENTER_32+0x73/0x90
[ 1302.299133][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1302.299133][ C1] RIP: 0023:0xf7fac549
[ 1302.299133][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1302.299133][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1302.299133][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1302.299133][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1302.299133][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1302.299133][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1302.299133][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1302.528489][ C1] ---[ end trace 4b028c9d42567c75 ]---
[ 1302.537802][ C1] ------------[ cut here ]------------
[ 1302.543429][ C1] WARNING: CPU: 1 PID: 4163 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1302.546784][ C1] Modules linked in:
[ 1302.546784][ C1] CPU: 1 PID: 4163 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1302.546784][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1302.546784][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1302.546784][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1302.546784][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1302.546784][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88809e930000
[ 1302.546784][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1302.546784][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1302.546784][ C1] R10: 00000000b56c2fd0 R11: ffff88809e930000 R12: 0000000000000000
[ 1302.546784][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1302.546784][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1302.546784][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1302.546784][ C1] CR2: 00000000090d52c5 CR3: 0000000115e81000 CR4: 00000000001506e0
[ 1302.546784][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1302.546784][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1302.688276][ C1] Call Trace:
[ 1302.688276][ C1]
[ 1302.688276][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1302.688276][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1302.688276][ C1] __run_hrtimer+0x48b/0xd20
[ 1302.688276][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1302.688276][ C1] ? hrtimer_init+0x570/0x570
[ 1302.688276][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1302.688276][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1302.734826][ T1] systemd[1]: systemd-journald.service: Service has no hold-off time, scheduling restart.
[ 1302.688276][ C1]
[ 1302.688276][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1302.688276][ C1] RIP: 0010:kmsan_slab_free+0x9e/0xc0
[ 1302.688276][ C1] Code: ff ff e8 25 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 d0 da 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 44 f4 25
[ 1302.688276][ C1] RSP: 0018:ffff888127363448 EFLAGS: 00000286
[ 1302.688276][ C1] RAX: ffff88809e930a88 RBX: ffff88810249d300 RCX: 000000000000003b
[ 1302.688276][ C1] RDX: 000000000000003a RSI: 0000000000000000 RDI: ffff88815591c200
[ 1302.688276][ C1] RBP: ffff888127363460 R08: ffffea000000000f R09: ffff88813fffa000
[ 1302.688276][ C1] R10: 00000000e5a62dba R11: ffffffff8fc00715 R12: 0000000000000000
[ 1302.688276][ C1] R13: 0000000000000000 R14: ffff88815591c200 R15: 0000000000000246
[ 1302.688276][ C1] ? __do_softirq+0x715/0x715
[ 1302.688276][ C1] kmem_cache_free+0x30d/0xf10
[ 1302.688276][ C1] ? __kfree_skb+0x284/0x320
[ 1302.688276][ C1] __kfree_skb+0x284/0x320
[ 1302.688276][ C1] ? sctp_ulpevent_free+0x429/0x510
[ 1302.688276][ C1] kfree_skb+0xd5/0x300
[ 1302.688276][ C1] sctp_ulpevent_free+0x429/0x510
[ 1302.688276][ C1] sctp_queue_purge_ulpevents+0x164/0x240
[ 1302.688276][ C1] sctp_close+0x143/0x1060
[ 1302.688276][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.688276][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1302.688276][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1302.688276][ C1] ? sctp_wait_for_connect+0x925/0x9d0
[ 1302.688276][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.688276][ C1] ? sctp_destruct_sock+0xa0/0xa0
[ 1302.688276][ C1] inet_release+0x30c/0x390
[ 1302.688276][ C1] inet6_release+0xaf/0x100
[ 1302.688276][ C1] sock_close+0x150/0x450
[ 1302.688276][ C1] ? __inet6_bind+0x2350/0x2350
[ 1302.688276][ C1] ? sock_mmap+0x120/0x120
[ 1302.688276][ C1] __fput+0x6bd/0xf00
[ 1302.688276][ C1] ____fput+0x37/0x40
[ 1302.688276][ C1] ? fput_many+0x360/0x360
[ 1302.688276][ C1] task_work_run+0x140/0x280
[ 1302.688276][ C1] get_signal+0x37d2/0x39e0
[ 1302.688276][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1302.688276][ C1] ? kick_process+0x47/0x180
[ 1302.688276][ C1] ? task_work_add+0x3be/0x4a0
[ 1302.688276][ C1] ? fput+0x2e4/0x320
[ 1302.688276][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.980548][ T1] systemd[1]: Stopped Flush Journal to Persistent Storage.
[ 1302.688276][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1302.688276][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1302.688276][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1303.003727][ T1] systemd[1]: Stopping Flush Journal to Persistent Storage...
[ 1302.688276][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1302.688276][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1302.688276][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1302.688276][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1302.688276][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1302.688276][ C1] do_fast_syscall_32+0x77/0xd0
[ 1302.688276][ C1] do_SYSENTER_32+0x73/0x90
[ 1303.051282][ T1] systemd[1]: Stopped Journal Service.
[ 1302.688276][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1302.688276][ C1] RIP: 0023:0xf7fac549
[ 1302.688276][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1303.088487][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1303.088487][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1303.088487][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1303.088487][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1303.088487][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1303.088487][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1303.088487][ C1] ---[ end trace 4b028c9d42567c76 ]---
[ 1303.247302][ C1] ------------[ cut here ]------------
[ 1303.252943][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1303.263884][ C1] Modules linked in:
[ 1303.266908][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1303.266908][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1303.286696][ T1] systemd[1]: Starting Journal Service...
[ 1303.266908][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1303.266908][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1303.266908][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1303.266908][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1303.266908][ C1] RDX: 0000000000010000 RSI: 000000000000002b RDI: 0000000000000001
[ 1303.266908][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1303.266908][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1303.266908][ C1] R13: 0000000000000000 R14: 000000000000002b R15: ffff88813fd27b00
[ 1303.266908][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1303.266908][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1303.266908][ C1] CR2: 00007f298408d148 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1303.266908][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1303.266908][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1303.266908][ C1] Call Trace:
[ 1303.266908][ C1]
[ 1303.266908][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.266908][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1303.266908][ C1] __run_hrtimer+0x48b/0xd20
[ 1303.266908][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1303.266908][ C1] ? hrtimer_init+0x570/0x570
[ 1303.266908][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1303.266908][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1303.266908][ C1]
[ 1303.266908][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1303.266908][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1303.266908][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1303.266908][ C1] RSP: 0018:ffff8881271438a8 EFLAGS: 00000206
[ 1303.266908][ C1] RAX: ffff888122104674 RBX: 0000000000000000 RCX: 0000000122504674
[ 1303.498101][ C1] RDX: ffff888122504674 RSI: 0000000000000240 RDI: ffff888122904674
[ 1303.498101][ C1] RBP: ffff8881271438c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1303.498101][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888122904674
[ 1303.498101][ C1] R13: ffff88813fd95840 R14: 0000000000000000 R15: 0000000000000200
[ 1303.528170][ C1] try_to_wake_up+0xadf/0x1540
[ 1303.528170][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.528170][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1303.528170][ C1] ? wake_q_add_safe+0xb4/0x1e0
[ 1303.528170][ C1] wake_up_process+0x34/0x40
[ 1303.528170][ C1] wake_up_q+0x5f/0x90
[ 1303.528170][ C1] futex_wake+0xc25/0xc80
[ 1303.528170][ C1] do_futex+0x1c67/0x5d40
[ 1303.528170][ C1] ? tracing_record_taskinfo_sched_switch+0x28a/0x1570
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.528170][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.528170][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1303.528170][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1303.528170][ C1] __se_sys_futex+0x5cf/0xba0
[ 1303.528170][ C1] __x64_sys_futex+0x6e/0x90
[ 1303.528170][ C1] do_syscall_64+0x9f/0x140
[ 1303.528170][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1303.528170][ C1] RIP: 0033:0x7f298ab4201a
[ 1303.528170][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1303.528170][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1303.528170][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1303.528170][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1303.528170][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1303.528170][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1303.528170][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1303.528170][ C1] ---[ end trace 4b028c9d42567c77 ]---
[ 1303.747621][ C1] ------------[ cut here ]------------
[ 1303.753230][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1303.756642][ C1] Modules linked in:
[ 1303.756642][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1303.756642][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1303.756642][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1303.756642][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1303.756642][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1303.756642][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1303.756642][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1303.756642][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1303.756642][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1303.756642][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1303.756642][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1303.756642][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1303.756642][ C1] CR2: 00007f298408d148 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1303.756642][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1303.889093][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1303.889093][ C1] Call Trace:
[ 1303.889093][ C1]
[ 1303.889093][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.889093][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1303.889093][ C1] __run_hrtimer+0x48b/0xd20
[ 1303.889093][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1303.889093][ C1] ? hrtimer_init+0x570/0x570
[ 1303.889093][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1303.889093][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1303.889093][ C1]
[ 1303.889093][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1303.889093][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1303.889093][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1303.889093][ C1] RSP: 0018:ffff8881271438a8 EFLAGS: 00000206
[ 1303.889093][ C1] RAX: ffff888122104674 RBX: 0000000000000000 RCX: 0000000122504674
[ 1303.889093][ C1] RDX: ffff888122504674 RSI: 0000000000000240 RDI: ffff888122904674
[ 1303.889093][ C1] RBP: ffff8881271438c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1303.889093][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888122904674
[ 1303.889093][ C1] R13: ffff88813fd95840 R14: 0000000000000000 R15: 0000000000000200
[ 1303.889093][ C1] try_to_wake_up+0xadf/0x1540
[ 1303.889093][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.889093][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1303.889093][ C1] ? wake_q_add_safe+0xb4/0x1e0
[ 1303.889093][ C1] wake_up_process+0x34/0x40
[ 1303.889093][ C1] wake_up_q+0x5f/0x90
[ 1303.889093][ C1] futex_wake+0xc25/0xc80
[ 1303.889093][ C1] do_futex+0x1c67/0x5d40
[ 1303.889093][ C1] ? tracing_record_taskinfo_sched_switch+0x28a/0x1570
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1303.889093][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1303.889093][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1303.889093][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1303.889093][ C1] __se_sys_futex+0x5cf/0xba0
[ 1303.889093][ C1] __x64_sys_futex+0x6e/0x90
[ 1303.889093][ C1] do_syscall_64+0x9f/0x140
[ 1303.889093][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1303.889093][ C1] RIP: 0033:0x7f298ab4201a
[ 1303.889093][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1303.889093][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1303.889093][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1303.889093][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1303.889093][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1303.889093][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1303.889093][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1303.889093][ C1] ---[ end trace 4b028c9d42567c78 ]---
[ 1304.239652][ C1] ------------[ cut here ]------------
[ 1304.245223][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1304.248777][ C1] Modules linked in:
[ 1304.248777][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1304.248777][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1304.248777][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1304.248777][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1304.248777][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1304.248777][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1304.248777][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1304.248777][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1304.248777][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1304.248777][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1304.248777][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1304.248777][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1304.248777][ C1] CR2: 00007f298408d148 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1304.248777][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1304.248777][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1304.248777][ C1] Call Trace:
[ 1304.248777][ C1]
[ 1304.248777][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1304.248777][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1304.248777][ C1] __run_hrtimer+0x48b/0xd20
[ 1304.248777][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1304.248777][ C1] ? hrtimer_init+0x570/0x570
[ 1304.248777][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1304.248777][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1304.248777][ C1]
[ 1304.248777][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1304.248777][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1304.248777][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1304.248777][ C1] RSP: 0018:ffff8881271438a8 EFLAGS: 00000206
[ 1304.248777][ C1] RAX: ffff888122104674 RBX: 0000000000000000 RCX: 0000000122504674
[ 1304.248777][ C1] RDX: ffff888122504674 RSI: 0000000000000240 RDI: ffff888122904674
[ 1304.248777][ C1] RBP: ffff8881271438c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1304.248777][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff888122904674
[ 1304.248777][ C1] R13: ffff88813fd95840 R14: 0000000000000000 R15: 0000000000000200
[ 1304.248777][ C1] try_to_wake_up+0xadf/0x1540
[ 1304.248777][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1304.248777][ C1] ? __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1304.248777][ C1] ? wake_q_add_safe+0xb4/0x1e0
[ 1304.248777][ C1] wake_up_process+0x34/0x40
[ 1304.248777][ C1] wake_up_q+0x5f/0x90
[ 1304.248777][ C1] futex_wake+0xc25/0xc80
[ 1304.248777][ C1] do_futex+0x1c67/0x5d40
[ 1304.248777][ C1] ? tracing_record_taskinfo_sched_switch+0x28a/0x1570
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1304.248777][ C1] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1304.248777][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1304.248777][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1304.248777][ C1] __se_sys_futex+0x5cf/0xba0
[ 1304.248777][ C1] __x64_sys_futex+0x6e/0x90
[ 1304.248777][ C1] do_syscall_64+0x9f/0x140
[ 1304.248777][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1304.248777][ C1] RIP: 0033:0x7f298ab4201a
[ 1304.248777][ C1] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89
[ 1304.248777][ C1] RSP: 002b:00007f29884de370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca
[ 1304.248777][ C1] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f298ab4201a
[ 1304.248777][ C1] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 0000557981bb20b0
[ 1304.248777][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001
[ 1304.248777][ C1] R10: 0000000000000001 R11: 0000000000000206 R12: 000055798009f520
[ 1304.248777][ C1] R13: 0000557981bb1e80 R14: 000055797fe71770 R15: 0000557981bb1d70
[ 1304.248777][ C1] ---[ end trace 4b028c9d42567c79 ]---
06:44:01 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x0, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1304.831111][ C1] ------------[ cut here ]------------
[ 1304.836847][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1304.840037][ C1] Modules linked in:
[ 1304.840037][ C1] CPU: 1 PID: 4168 Comm: (journald) Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1304.840037][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1304.868276][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1304.868276][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1304.868276][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1304.868276][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1304.868276][ C1] RDX: 0000000000010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1304.868276][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1304.868276][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1304.868276][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1304.868276][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1304.868276][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1304.868276][ C1] CR2: 0000555daa258018 CR3: 0000000178f55000 CR4: 00000000001506e0
[ 1304.868276][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1304.868276][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1304.868276][ C1] Call Trace:
[ 1304.868276][ C1]
[ 1304.868276][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1304.868276][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1304.868276][ C1] __run_hrtimer+0x48b/0xd20
[ 1304.868276][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1304.868276][ C1] ? hrtimer_init+0x570/0x570
[ 1304.868276][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1304.868276][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1304.868276][ C1]
[ 1304.868276][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1304.868276][ C1] RIP: 0010:do_seccomp+0x1a02/0x3c40
[ 1304.868276][ C1] Code: 1f e8 52 79 82 00 8b 3a 48 8b 00 48 85 c0 0f 85 ab 01 00 00 48 89 df e8 9c 78 82 00 c6 00 00 c6 03 00 fb 80 bd 58 ff ff ff 00 <0f> 85 99 01 00 00 48 83 bd f8 fe ff ff 00 0f 85 a1 01 00 00 e8 45
[ 1304.868276][ C1] RSP: 0018:ffff888158883d70 EFLAGS: 00000246
[ 1304.868276][ C1] RAX: ffff8880a114f380 RBX: ffff8880a194f380 RCX: 00000000a154f380
[ 1304.868276][ C1] RDX: ffff8880a154f380 RSI: 0000000000000140 RDI: ffff8880a194f380
[ 1304.868276][ C1] RBP: ffff888158883ea0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1304.868276][ C1] R10: 0000000000000008 R11: ffff8880ba513e80 R12: 0000000000000000
[ 1304.868276][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1304.868276][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1304.868276][ C1] __se_sys_seccomp+0x92/0xb0
[ 1304.868276][ C1] __x64_sys_seccomp+0x4a/0x70
[ 1304.868276][ C1] do_syscall_64+0x9f/0x140
[ 1304.868276][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1304.868276][ C1] RIP: 0033:0x7f31dc09a469
[ 1304.868276][ C1] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d ff 49 2b 00 f7 d8 64 89 01 48
[ 1304.868276][ C1] RSP: 002b:00007fff4131f668 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1304.868276][ C1] RAX: ffffffffffffffda RBX: 0000555daa173de0 RCX: 00007f31dc09a469
[ 1304.868276][ C1] RDX: 0000555daa173de0 RSI: 0000000000000000 RDI: 0000000000000001
[ 1304.868276][ C1] RBP: 0000555daa172670 R08: 0000000000000000 R09: 0000000000000000
[ 1304.868276][ C1] R10: 0000555daa1c7dc0 R11: 0000000000000246 R12: 0000000040000003
[ 1304.868276][ C1] R13: 00007f31dd7e9230 R14: 00007fff4131f698 R15: 00007f31dd7d9098
[ 1304.868276][ C1] ---[ end trace 4b028c9d42567c7a ]---
[ 1305.217045][ C1] ------------[ cut here ]------------
[ 1305.222586][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1305.226286][ C1] Modules linked in:
[ 1305.226286][ C1] CPU: 1 PID: 4168 Comm: (journald) Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1305.226286][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1305.226286][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1305.226286][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1305.226286][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1305.226286][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1305.226286][ C1] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001
[ 1305.226286][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1305.226286][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1305.226286][ C1] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fd27b00
[ 1305.226286][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1305.226286][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1305.226286][ C1] CR2: 0000555daa258018 CR3: 0000000178f55000 CR4: 00000000001506e0
[ 1305.226286][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1305.226286][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1305.226286][ C1] Call Trace:
[ 1305.226286][ C1]
[ 1305.226286][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1305.226286][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1305.226286][ C1] __run_hrtimer+0x48b/0xd20
[ 1305.226286][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1305.226286][ C1] ? hrtimer_init+0x570/0x570
[ 1305.226286][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1305.226286][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1305.226286][ C1]
[ 1305.226286][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1305.226286][ C1] RIP: 0010:do_seccomp+0x1a02/0x3c40
[ 1305.226286][ C1] Code: 1f e8 52 79 82 00 8b 3a 48 8b 00 48 85 c0 0f 85 ab 01 00 00 48 89 df e8 9c 78 82 00 c6 00 00 c6 03 00 fb 80 bd 58 ff ff ff 00 <0f> 85 99 01 00 00 48 83 bd f8 fe ff ff 00 0f 85 a1 01 00 00 e8 45
[ 1305.226286][ C1] RSP: 0018:ffff888158883d70 EFLAGS: 00000246
[ 1305.226286][ C1] RAX: ffff8880a114f380 RBX: ffff8880a194f380 RCX: 00000000a154f380
[ 1305.226286][ C1] RDX: ffff8880a154f380 RSI: 0000000000000140 RDI: ffff8880a194f380
[ 1305.226286][ C1] RBP: ffff888158883ea0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1305.226286][ C1] R10: 0000000000000008 R11: ffff8880ba513e80 R12: 0000000000000000
[ 1305.226286][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1305.226286][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1305.226286][ C1] __se_sys_seccomp+0x92/0xb0
[ 1305.226286][ C1] __x64_sys_seccomp+0x4a/0x70
[ 1305.226286][ C1] do_syscall_64+0x9f/0x140
[ 1305.226286][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1305.226286][ C1] RIP: 0033:0x7f31dc09a469
[ 1305.226286][ C1] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d ff 49 2b 00 f7 d8 64 89 01 48
[ 1305.226286][ C1] RSP: 002b:00007fff4131f668 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1305.226286][ C1] RAX: ffffffffffffffda RBX: 0000555daa173de0 RCX: 00007f31dc09a469
[ 1305.226286][ C1] RDX: 0000555daa173de0 RSI: 0000000000000000 RDI: 0000000000000001
[ 1305.226286][ C1] RBP: 0000555daa172670 R08: 0000000000000000 R09: 0000000000000000
[ 1305.226286][ C1] R10: 0000555daa1c7dc0 R11: 0000000000000246 R12: 0000000040000003
[ 1305.226286][ C1] R13: 00007f31dd7e9230 R14: 00007fff4131f698 R15: 00007f31dd7d9098
[ 1305.226286][ C1] ---[ end trace 4b028c9d42567c7b ]---
[ 1305.602410][ C1] ------------[ cut here ]------------
[ 1305.607957][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1305.611661][ C1] Modules linked in:
[ 1305.611661][ C1] CPU: 1 PID: 4168 Comm: (journald) Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1305.611661][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1305.611661][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1305.611661][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1305.611661][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1305.611661][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1305.611661][ C1] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001
[ 1305.611661][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1305.611661][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1305.611661][ C1] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fd27b00
[ 1305.611661][ C1] FS: 00007f31ddac8500(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1305.611661][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1305.611661][ C1] CR2: 0000555daa258018 CR3: 0000000178f55000 CR4: 00000000001506e0
[ 1305.611661][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1305.611661][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1305.611661][ C1] Call Trace:
[ 1305.611661][ C1]
[ 1305.611661][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1305.611661][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1305.611661][ C1] __run_hrtimer+0x48b/0xd20
[ 1305.611661][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1305.611661][ C1] ? hrtimer_init+0x570/0x570
[ 1305.611661][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1305.611661][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1305.611661][ C1]
[ 1305.611661][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1305.611661][ C1] RIP: 0010:do_seccomp+0x1a02/0x3c40
[ 1305.611661][ C1] Code: 1f e8 52 79 82 00 8b 3a 48 8b 00 48 85 c0 0f 85 ab 01 00 00 48 89 df e8 9c 78 82 00 c6 00 00 c6 03 00 fb 80 bd 58 ff ff ff 00 <0f> 85 99 01 00 00 48 83 bd f8 fe ff ff 00 0f 85 a1 01 00 00 e8 45
[ 1305.611661][ C1] RSP: 0018:ffff888158883d70 EFLAGS: 00000246
[ 1305.611661][ C1] RAX: ffff8880a114f380 RBX: ffff8880a194f380 RCX: 00000000a154f380
[ 1305.611661][ C1] RDX: ffff8880a154f380 RSI: 0000000000000140 RDI: ffff8880a194f380
[ 1305.611661][ C1] RBP: ffff888158883ea0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1305.611661][ C1] R10: 0000000000000008 R11: ffff8880ba513e80 R12: 0000000000000000
[ 1305.611661][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1305.611661][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1305.611661][ C1] __se_sys_seccomp+0x92/0xb0
[ 1305.611661][ C1] __x64_sys_seccomp+0x4a/0x70
[ 1305.611661][ C1] do_syscall_64+0x9f/0x140
[ 1305.611661][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1305.611661][ C1] RIP: 0033:0x7f31dc09a469
[ 1305.611661][ C1] Code: 00 f3 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d ff 49 2b 00 f7 d8 64 89 01 48
[ 1305.611661][ C1] RSP: 002b:00007fff4131f668 EFLAGS: 00000246 ORIG_RAX: 000000000000013d
[ 1305.611661][ C1] RAX: ffffffffffffffda RBX: 0000555daa173de0 RCX: 00007f31dc09a469
[ 1305.611661][ C1] RDX: 0000555daa173de0 RSI: 0000000000000000 RDI: 0000000000000001
[ 1305.611661][ C1] RBP: 0000555daa172670 R08: 0000000000000000 R09: 0000000000000000
[ 1305.611661][ C1] R10: 0000555daa1c7dc0 R11: 0000000000000246 R12: 0000000040000003
[ 1305.611661][ C1] R13: 00007f31dd7e9230 R14: 00007fff4131f698 R15: 00007f31dd7d9098
[ 1305.611661][ C1] ---[ end trace 4b028c9d42567c7c ]---
[ 1306.068827][ C1] ------------[ cut here ]------------
[ 1306.088793][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1306.088793][ C1] Modules linked in:
[ 1306.088793][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1306.088793][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1306.088793][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1306.088793][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1306.088793][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1306.088793][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1306.088793][ C1] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1306.088793][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1306.088793][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1306.088793][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1306.088793][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1306.088793][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1306.088793][ C1] CR2: 000000000816e834 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1306.088793][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1306.088793][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1306.088793][ C1] Call Trace:
[ 1306.088793][ C1]
[ 1306.088793][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.088793][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1306.258098][ C1] __run_hrtimer+0x48b/0xd20
[ 1306.258098][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1306.258098][ C1] ? hrtimer_init+0x570/0x570
[ 1306.277117][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1306.277117][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1306.277117][ C1]
[ 1306.277117][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1306.277117][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1306.277117][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1306.317314][ C1] RSP: 0018:ffff8880ab67b0a8 EFLAGS: 00000206
06:44:02 executing program 2:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x2a, 0x0, 0x0)
[ 1306.317314][ C1] RAX: ffff888237a47ac8 RBX: ffff888104a32a88 RCX: 0000000226440ac8
[ 1306.317314][ C1] RDX: ffff888226440ac8 RSI: 0000000000000020 RDI: ffffffff9244eac8
[ 1306.317314][ C1] RBP: ffff8880ab67b0c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1306.353975][ C1] R10: 00000000bd0054cc R11: 0000000000000000 R12: ffffffff9244eac8
[ 1306.353975][ C1] R13: ffff8881228a8a88 R14: 0000000000000000 R15: 0000000000000200
[ 1306.353975][ C1] pcpu_alloc+0x1dc0/0x3d30
[ 1306.353975][ C1] __alloc_percpu+0x7a/0x90
[ 1306.353975][ C1] xt_percpu_counter_alloc+0x28a/0x400
[ 1306.353975][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.353975][ C1] translate_table+0x25c2/0x3d90
[ 1306.353975][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.353975][ C1] do_ip6t_set_ctl+0x449f/0x5680
[ 1306.353975][ C1] ? cleanup_entry+0x5f0/0x5f0
[ 1306.353975][ C1] nf_setsockopt+0x59e/0x600
[ 1306.353975][ C1] ipv6_setsockopt+0x9963/0xaf30
[ 1306.353975][ C1] ? ipv6_getsockopt+0x1f70/0x4f00
[ 1306.353975][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.353975][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.353975][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.353975][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1306.353975][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1306.353975][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.353975][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.353975][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.474390][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.474390][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1306.474390][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.474390][ C1] ? ipv6_update_options+0x5d0/0x5d0
[ 1306.474390][ C1] tcp_setsockopt+0x239/0x270
[ 1306.498045][ C1] ? tcp_set_window_clamp+0x210/0x210
[ 1306.498045][ C1] sock_common_setsockopt+0x16c/0x1b0
[ 1306.498045][ C1] __sys_setsockopt+0x94c/0xd80
[ 1306.498045][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.498045][ C1] ? sock_common_recvmsg+0x2a0/0x2a0
[ 1306.528294][ C1] __se_compat_sys_socketcall+0xcc2/0x16b0
[ 1306.528294][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.528294][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.528294][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.528294][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1306.528294][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1306.528294][ C1] __do_fast_syscall_32+0x127/0x180
[ 1306.528294][ C1] do_fast_syscall_32+0x77/0xd0
[ 1306.528294][ C1] do_SYSENTER_32+0x73/0x90
[ 1306.528294][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1306.528294][ C1] RIP: 0023:0xf7f41549
[ 1306.528294][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1306.528294][ C1] RSP: 002b:00000000ffcb49d0 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1306.528294][ C1] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 00000000ffcb49e8
[ 1306.528294][ C1] RDX: 00000000ffcb4b70 RSI: 00000000ffcb4a58 RDI: 00000000ffcb4aac
[ 1306.528294][ C1] RBP: 000000000816ee3c R08: 0000000000000000 R09: 0000000000000000
[ 1306.528294][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1306.528294][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1306.528294][ C1] ---[ end trace 4b028c9d42567c7d ]---
[ 1306.668851][ C1] ------------[ cut here ]------------
[ 1306.674487][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1306.677782][ C1] Modules linked in:
[ 1306.677782][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1306.677782][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1306.677782][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1306.677782][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1306.677782][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1306.677782][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1306.677782][ C1] RDX: 0000000000010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1306.677782][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1306.677782][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1306.677782][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1306.677782][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1306.677782][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1306.677782][ C1] CR2: 000000000816e834 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1306.677782][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1306.677782][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1306.677782][ C1] Call Trace:
[ 1306.677782][ C1]
[ 1306.677782][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.677782][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1306.677782][ C1] __run_hrtimer+0x48b/0xd20
[ 1306.677782][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1306.677782][ C1] ? hrtimer_init+0x570/0x570
[ 1306.677782][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1306.677782][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1306.677782][ C1]
[ 1306.677782][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1306.677782][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1306.677782][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1306.888084][ C1] RSP: 0018:ffff8880ab67b0a8 EFLAGS: 00000206
[ 1306.888084][ C1] RAX: ffff888237a47ac8 RBX: ffff888104a32a88 RCX: 0000000226440ac8
[ 1306.888084][ C1] RDX: ffff888226440ac8 RSI: 0000000000000020 RDI: ffffffff9244eac8
[ 1306.888084][ C1] RBP: ffff8880ab67b0c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1306.888084][ C1] R10: 00000000bd0054cc R11: 0000000000000000 R12: ffffffff9244eac8
[ 1306.888084][ C1] R13: ffff8881228a8a88 R14: 0000000000000000 R15: 0000000000000200
[ 1306.888084][ C1] pcpu_alloc+0x1dc0/0x3d30
[ 1306.888084][ C1] __alloc_percpu+0x7a/0x90
[ 1306.888084][ C1] xt_percpu_counter_alloc+0x28a/0x400
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] translate_table+0x25c2/0x3d90
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] do_ip6t_set_ctl+0x449f/0x5680
[ 1306.888084][ C1] ? cleanup_entry+0x5f0/0x5f0
[ 1306.888084][ C1] nf_setsockopt+0x59e/0x600
[ 1306.888084][ C1] ipv6_setsockopt+0x9963/0xaf30
[ 1306.888084][ C1] ? ipv6_getsockopt+0x1f70/0x4f00
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.888084][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.888084][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1306.888084][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.888084][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.888084][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? ipv6_update_options+0x5d0/0x5d0
[ 1306.888084][ C1] tcp_setsockopt+0x239/0x270
[ 1306.888084][ C1] ? tcp_set_window_clamp+0x210/0x210
[ 1306.888084][ C1] sock_common_setsockopt+0x16c/0x1b0
[ 1306.888084][ C1] __sys_setsockopt+0x94c/0xd80
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? sock_common_recvmsg+0x2a0/0x2a0
[ 1306.888084][ C1] __se_compat_sys_socketcall+0xcc2/0x16b0
[ 1306.888084][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1306.888084][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1306.888084][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1306.888084][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1306.888084][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1306.888084][ C1] __do_fast_syscall_32+0x127/0x180
[ 1306.888084][ C1] do_fast_syscall_32+0x77/0xd0
[ 1306.888084][ C1] do_SYSENTER_32+0x73/0x90
[ 1306.888084][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1307.168100][ C1] RIP: 0023:0xf7f41549
[ 1307.168100][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1307.168100][ C1] RSP: 002b:00000000ffcb49d0 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1307.168100][ C1] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 00000000ffcb49e8
[ 1307.168100][ C1] RDX: 00000000ffcb4b70 RSI: 00000000ffcb4a58 RDI: 00000000ffcb4aac
[ 1307.168100][ C1] RBP: 000000000816ee3c R08: 0000000000000000 R09: 0000000000000000
[ 1307.168100][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1307.168100][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1307.168100][ C1] ---[ end trace 4b028c9d42567c7e ]---
[ 1307.249188][ C1] ------------[ cut here ]------------
[ 1307.254821][ C1] WARNING: CPU: 1 PID: 2318 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1307.258162][ C1] Modules linked in:
[ 1307.258162][ C1] CPU: 1 PID: 2318 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1307.258162][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1307.258162][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1307.258162][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1307.258162][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1307.258162][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881228a8000
[ 1307.258162][ C1] RDX: 0000000000010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1307.258162][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1307.258162][ C1] R10: 00000000b56c2fd0 R11: ffff8881228a8000 R12: 0000000000000000
[ 1307.258162][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1307.258162][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000aea4380
[ 1307.258162][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1307.258162][ C1] CR2: 000000000816e834 CR3: 00000000ab659000 CR4: 00000000001506e0
[ 1307.258162][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1307.258162][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1307.258162][ C1] Call Trace:
[ 1307.258162][ C1]
[ 1307.258162][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1307.258162][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1307.258162][ C1] __run_hrtimer+0x48b/0xd20
[ 1307.258162][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1307.258162][ C1] ? hrtimer_init+0x570/0x570
[ 1307.258162][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1307.258162][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1307.258162][ C1]
[ 1307.258162][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1307.258162][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80
[ 1307.258162][ C1] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 ca b6 f2 eb be 44 89 f7 e8 17 ca b6
[ 1307.258162][ C1] RSP: 0018:ffff8880ab67b0a8 EFLAGS: 00000206
[ 1307.258162][ C1] RAX: ffff888237a47ac8 RBX: ffff888104a32a88 RCX: 0000000226440ac8
[ 1307.258162][ C1] RDX: ffff888226440ac8 RSI: 0000000000000020 RDI: ffffffff9244eac8
[ 1307.258162][ C1] RBP: ffff8880ab67b0c0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1307.258162][ C1] R10: 00000000bd0054cc R11: 0000000000000000 R12: ffffffff9244eac8
[ 1307.258162][ C1] R13: ffff8881228a8a88 R14: 0000000000000000 R15: 0000000000000200
[ 1307.258162][ C1] pcpu_alloc+0x1dc0/0x3d30
[ 1307.258162][ C1] __alloc_percpu+0x7a/0x90
[ 1307.258162][ C1] xt_percpu_counter_alloc+0x28a/0x400
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] translate_table+0x25c2/0x3d90
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] do_ip6t_set_ctl+0x449f/0x5680
[ 1307.258162][ C1] ? cleanup_entry+0x5f0/0x5f0
[ 1307.258162][ C1] nf_setsockopt+0x59e/0x600
[ 1307.258162][ C1] ipv6_setsockopt+0x9963/0xaf30
[ 1307.258162][ C1] ? ipv6_getsockopt+0x1f70/0x4f00
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1307.258162][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1307.258162][ C1] ? aa_label_sk_perm+0x822/0x980
[ 1307.258162][ C1] ? ptep_set_access_flags+0x1ca/0x2a0
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1307.258162][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1307.258162][ C1] ? aa_sk_perm+0x9a5/0xed0
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? ipv6_update_options+0x5d0/0x5d0
[ 1307.258162][ C1] tcp_setsockopt+0x239/0x270
[ 1307.258162][ C1] ? tcp_set_window_clamp+0x210/0x210
[ 1307.258162][ C1] sock_common_setsockopt+0x16c/0x1b0
[ 1307.258162][ C1] __sys_setsockopt+0x94c/0xd80
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? sock_common_recvmsg+0x2a0/0x2a0
[ 1307.258162][ C1] __se_compat_sys_socketcall+0xcc2/0x16b0
[ 1307.258162][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1307.258162][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1307.258162][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1307.258162][ C1] ? syscall_enter_from_user_mode_work+0x56/0x100
[ 1307.258162][ C1] __ia32_compat_sys_socketcall+0x3e/0x60
[ 1307.258162][ C1] __do_fast_syscall_32+0x127/0x180
[ 1307.258162][ C1] do_fast_syscall_32+0x77/0xd0
[ 1307.258162][ C1] do_SYSENTER_32+0x73/0x90
[ 1307.258162][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1307.258162][ C1] RIP: 0023:0xf7f41549
[ 1307.258162][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1307.258162][ C1] RSP: 002b:00000000ffcb49d0 EFLAGS: 00000282 ORIG_RAX: 0000000000000066
[ 1307.258162][ C1] RAX: ffffffffffffffda RBX: 000000000000000e RCX: 00000000ffcb49e8
[ 1307.258162][ C1] RDX: 00000000ffcb4b70 RSI: 00000000ffcb4a58 RDI: 00000000ffcb4aac
[ 1307.258162][ C1] RBP: 000000000816ee3c R08: 0000000000000000 R09: 0000000000000000
[ 1307.258162][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1307.808055][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1307.808055][ C1] ---[ end trace 4b028c9d42567c7f ]---
[ 1307.910831][ C1] ------------[ cut here ]------------
[ 1307.910831][ C1] WARNING: CPU: 1 PID: 4178 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1307.910831][ C1] Modules linked in:
[ 1307.910831][ C1] CPU: 1 PID: 4178 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1307.910831][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1307.910831][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1307.910831][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1307.910831][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1307.910831][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1307.910831][ C1] RDX: 0000000080010000 RSI: 0000000000000029 RDI: 0000000000000001
[ 1307.910831][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1307.910831][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1307.910831][ C1] R13: 0000000000000000 R14: 0000000000000029 R15: ffff88813fd27b00
[ 1307.910831][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1307.910831][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1307.910831][ C1] CR2: 00000000f553e000 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1307.910831][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1307.910831][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1307.910831][ C1] Call Trace:
[ 1307.910831][ C1]
[ 1307.910831][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1307.910831][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1307.910831][ C1] __run_hrtimer+0x48b/0xd20
[ 1307.910831][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1307.910831][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.118047][ C1] ? hrtimer_init+0x570/0x570
[ 1308.118047][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1308.118047][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1308.118047][ C1]
[ 1308.118047][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1308.118047][ C1] RIP: 0010:zap_pte_range+0x12b7/0x3cb0
[ 1308.148020][ C1] Code: b8 90 0c 00 00 4c 89 e7 4c 8b 64 24 50 4c 89 e6 e8 de 02 9d ff 48 89 d8 4c 09 f0 4d 85 f6 44 89 f9 41 0f 44 cd 48 8b 74 24 70 <48> 89 f2 4c 31 e2 48 09 c2 4c 39 e6 49 0f 46 de 45 0f 46 ef 49 89
[ 1308.148020][ C1] RSP: 0018:ffff8881687b3230 EFLAGS: 00000246
[ 1308.148020][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1308.148020][ C1] RDX: ffff8880a1a43e80 RSI: ffffffffffffffff RDI: ffffffffffffffff
[ 1308.148020][ C1] RBP: ffff8881687b3430 R08: ffffffff821f3352 R09: ffff88813fffa000
[ 1308.148020][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: 00000000f6e04000
[ 1308.148020][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.148020][ C1] ? zap_pte_range+0x12a2/0x3cb0
[ 1308.148020][ C1] ? free_unref_page_commit+0x330/0x750
[ 1308.148020][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.148020][ C1] unmap_page_range+0x1154/0x1440
[ 1308.148020][ C1] unmap_single_vma+0x56b/0x750
[ 1308.148020][ C1] unmap_vmas+0x3c8/0x500
[ 1308.148020][ C1] exit_mmap+0x5f1/0xb80
[ 1308.148020][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.148020][ C1] __mmput+0x1b7/0x630
[ 1308.148020][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.148020][ C1] mmput+0x8c/0xb0
[ 1308.148020][ C1] exit_mm+0x7a9/0x9a0
[ 1308.148020][ C1] do_exit+0xdbb/0x3c20
[ 1308.148020][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.148020][ C1] do_group_exit+0x1e1/0x3c0
[ 1308.148020][ C1] get_signal+0x2e5f/0x39e0
[ 1308.148020][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1308.148020][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1308.148020][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1308.148020][ C1] ? __schedule+0x54b/0x5c0
[ 1308.148020][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.148020][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.148020][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.148020][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1308.148020][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1308.148020][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1308.148020][ C1] do_fast_syscall_32+0x77/0xd0
[ 1308.148020][ C1] do_SYSENTER_32+0x73/0x90
[ 1308.148020][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1308.148020][ C1] RIP: 0023:0xf7f45549
[ 1308.148020][ C1] Code: Unable to access opcode bytes at RIP 0xf7f4551f.
[ 1308.148020][ C1] RSP: 002b:00000000f553f68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[ 1308.148020][ C1] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081
[ 1308.148020][ C1] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000
[ 1308.148020][ C1] RBP: 00000000080525a9 R08: 0000000000000000 R09: 0000000000000000
[ 1308.148020][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1308.148020][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.148020][ C1] ---[ end trace 4b028c9d42567c80 ]---
[ 1308.440356][ C1] ------------[ cut here ]------------
[ 1308.445993][ C1] WARNING: CPU: 1 PID: 4178 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1308.454085][ T3128] ieee802154 phy0 wpan0: encryption failed: -22
[ 1308.449242][ C1] Modules linked in:
[ 1308.449242][ C1] CPU: 1 PID: 4178 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1308.449242][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1308.463950][ T3128] ieee802154 phy1 wpan1: encryption failed: -22
[ 1308.449242][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1308.449242][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1308.449242][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1308.449242][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1308.528706][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1308.528706][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1308.528706][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1308.528706][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1308.528706][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1308.528706][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1308.528706][ C1] CR2: 00000000f553e000 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1308.528706][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1308.528706][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1308.528706][ C1] Call Trace:
[ 1308.528706][ C1]
[ 1308.528706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.528706][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1308.528706][ C1] __run_hrtimer+0x48b/0xd20
[ 1308.528706][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1308.528706][ C1] ? hrtimer_init+0x570/0x570
[ 1308.528706][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1308.528706][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1308.528706][ C1]
[ 1308.528706][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1308.528706][ C1] RIP: 0010:zap_pte_range+0x12b7/0x3cb0
[ 1308.528706][ C1] Code: b8 90 0c 00 00 4c 89 e7 4c 8b 64 24 50 4c 89 e6 e8 de 02 9d ff 48 89 d8 4c 09 f0 4d 85 f6 44 89 f9 41 0f 44 cd 48 8b 74 24 70 <48> 89 f2 4c 31 e2 48 09 c2 4c 39 e6 49 0f 46 de 45 0f 46 ef 49 89
[ 1308.528706][ C1] RSP: 0018:ffff8881687b3230 EFLAGS: 00000246
[ 1308.528706][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1308.528706][ C1] RDX: ffff8880a1a43e80 RSI: ffffffffffffffff RDI: ffffffffffffffff
[ 1308.528706][ C1] RBP: ffff8881687b3430 R08: ffffffff821f3352 R09: ffff88813fffa000
[ 1308.528706][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: 00000000f6e04000
[ 1308.528706][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.528706][ C1] ? zap_pte_range+0x12a2/0x3cb0
[ 1308.528706][ C1] ? free_unref_page_commit+0x330/0x750
[ 1308.528706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.528706][ C1] unmap_page_range+0x1154/0x1440
[ 1308.528706][ C1] unmap_single_vma+0x56b/0x750
[ 1308.528706][ C1] unmap_vmas+0x3c8/0x500
[ 1308.528706][ C1] exit_mmap+0x5f1/0xb80
[ 1308.528706][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.528706][ C1] __mmput+0x1b7/0x630
[ 1308.528706][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.528706][ C1] mmput+0x8c/0xb0
[ 1308.528706][ C1] exit_mm+0x7a9/0x9a0
[ 1308.528706][ C1] do_exit+0xdbb/0x3c20
[ 1308.528706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.528706][ C1] do_group_exit+0x1e1/0x3c0
[ 1308.528706][ C1] get_signal+0x2e5f/0x39e0
[ 1308.528706][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1308.528706][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1308.528706][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1308.528706][ C1] ? __schedule+0x54b/0x5c0
[ 1308.528706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.528706][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.528706][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.528706][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1308.528706][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1308.528706][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1308.528706][ C1] do_fast_syscall_32+0x77/0xd0
[ 1308.528706][ C1] do_SYSENTER_32+0x73/0x90
[ 1308.528706][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1308.528706][ C1] RIP: 0023:0xf7f45549
[ 1308.528706][ C1] Code: Unable to access opcode bytes at RIP 0xf7f4551f.
[ 1308.528706][ C1] RSP: 002b:00000000f553f68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[ 1308.528706][ C1] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081
[ 1308.528706][ C1] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000
[ 1308.528706][ C1] RBP: 00000000080525a9 R08: 0000000000000000 R09: 0000000000000000
[ 1308.528706][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1308.528706][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.528706][ C1] ---[ end trace 4b028c9d42567c81 ]---
[ 1308.958020][ C1] ------------[ cut here ]------------
[ 1308.963646][ C1] WARNING: CPU: 1 PID: 4178 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1308.966961][ C1] Modules linked in:
[ 1308.966961][ C1] CPU: 1 PID: 4178 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1308.966961][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1308.966961][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1308.966961][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1308.966961][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1308.966961][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1308.966961][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1308.966961][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1308.966961][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1308.966961][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1308.966961][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1308.966961][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1308.966961][ C1] CR2: 00000000f553e000 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1308.966961][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1308.966961][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1308.966961][ C1] Call Trace:
[ 1308.966961][ C1]
[ 1308.966961][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.966961][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1308.966961][ C1] __run_hrtimer+0x48b/0xd20
[ 1308.966961][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1308.966961][ C1] ? hrtimer_init+0x570/0x570
[ 1308.966961][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1308.966961][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1308.966961][ C1]
[ 1308.966961][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1308.966961][ C1] RIP: 0010:zap_pte_range+0x12b7/0x3cb0
[ 1308.966961][ C1] Code: b8 90 0c 00 00 4c 89 e7 4c 8b 64 24 50 4c 89 e6 e8 de 02 9d ff 48 89 d8 4c 09 f0 4d 85 f6 44 89 f9 41 0f 44 cd 48 8b 74 24 70 <48> 89 f2 4c 31 e2 48 09 c2 4c 39 e6 49 0f 46 de 45 0f 46 ef 49 89
[ 1308.966961][ C1] RSP: 0018:ffff8881687b3230 EFLAGS: 00000246
[ 1308.966961][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 1308.966961][ C1] RDX: ffff8880a1a43e80 RSI: ffffffffffffffff RDI: ffffffffffffffff
[ 1308.966961][ C1] RBP: ffff8881687b3430 R08: ffffffff821f3352 R09: ffff88813fffa000
[ 1308.966961][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: 00000000f6e04000
[ 1308.966961][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.966961][ C1] ? zap_pte_range+0x12a2/0x3cb0
[ 1308.966961][ C1] ? free_unref_page_commit+0x330/0x750
[ 1308.966961][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.966961][ C1] unmap_page_range+0x1154/0x1440
[ 1308.966961][ C1] unmap_single_vma+0x56b/0x750
[ 1308.966961][ C1] unmap_vmas+0x3c8/0x500
[ 1308.966961][ C1] exit_mmap+0x5f1/0xb80
[ 1308.966961][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.966961][ C1] __mmput+0x1b7/0x630
[ 1308.966961][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1308.966961][ C1] mmput+0x8c/0xb0
[ 1308.966961][ C1] exit_mm+0x7a9/0x9a0
[ 1308.966961][ C1] do_exit+0xdbb/0x3c20
[ 1308.966961][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.966961][ C1] do_group_exit+0x1e1/0x3c0
[ 1308.966961][ C1] get_signal+0x2e5f/0x39e0
[ 1308.966961][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1308.966961][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1308.966961][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1308.966961][ C1] ? __schedule+0x54b/0x5c0
[ 1308.966961][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.966961][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1308.966961][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1308.966961][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1308.966961][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1308.966961][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1308.966961][ C1] do_fast_syscall_32+0x77/0xd0
[ 1308.966961][ C1] do_SYSENTER_32+0x73/0x90
[ 1308.966961][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1308.966961][ C1] RIP: 0023:0xf7f45549
[ 1308.966961][ C1] Code: Unable to access opcode bytes at RIP 0xf7f4551f.
[ 1308.966961][ C1] RSP: 002b:00000000f553f68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0
[ 1308.966961][ C1] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081
[ 1308.966961][ C1] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000
[ 1308.966961][ C1] RBP: 00000000080525a9 R08: 0000000000000000 R09: 0000000000000000
[ 1308.966961][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1308.966961][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1308.966961][ C1] ---[ end trace 4b028c9d42567c82 ]---
[ 1309.559132][ C1] ------------[ cut here ]------------
[ 1309.564777][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1309.568098][ C1] Modules linked in:
[ 1309.568098][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1309.568098][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1309.568098][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1309.606061][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1309.606061][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1309.606061][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1309.606061][ C1] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1309.606061][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
06:44:05 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$tipc(&(0x7f0000000780), r0)
06:44:05 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x22000000, &(0x7f0000000840)={[{@grpid}]})
[ 1309.606061][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1309.606061][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1309.606061][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1309.606061][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1309.606061][ C1] CR2: 00007f2984009100 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1309.606061][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1309.606061][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1309.606061][ C1] Call Trace:
[ 1309.606061][ C1]
[ 1309.606061][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1309.606061][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1309.606061][ C1] __run_hrtimer+0x48b/0xd20
[ 1309.606061][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1309.738215][ C1] ? hrtimer_init+0x570/0x570
[ 1309.738215][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1309.738215][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1309.738215][ C1]
[ 1309.738215][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1309.738215][ C1] RIP: 0010:do_syslog+0x2c91/0x30b0
[ 1309.738215][ C1] Code: 05 8c a9 b5 10 44 8b 7c 24 28 48 c7 c7 14 52 40 92 e8 13 76 b0 00 c6 00 00 c6 05 fd a8 b1 10 00 e8 14 12 01 00 fb 48 8b 04 24 <48> c7 00 00 00 00 00 4c 89 60 08 44 89 b8 90 0c 00 00 31 ff 48 89
[ 1309.738215][ C1] RSP: 0018:ffff8881271439d0 EFLAGS: 00000246
[ 1309.738215][ C1] RAX: ffff888111570a88 RBX: 000000000000002f RCX: ffff888111570000
[ 1309.738215][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1309.738215][ C1] RBP: ffff888127143bc8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1309.738215][ C1] R10: 0000000000000006 R11: 00000000ffffffff R12: 0000000000000000
[ 1309.738215][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1309.738215][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1309.738215][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1309.738215][ C1] kmsg_read+0x18b/0x1f0
[ 1309.738215][ C1] ? kmsg_open+0x50/0x50
[ 1309.738215][ C1] proc_reg_read+0x2d2/0x570
[ 1309.738215][ C1] ? proc_reg_get_unmapped_area+0x6b0/0x6b0
[ 1309.738215][ C1] vfs_read+0x533/0x15a0
[ 1309.738215][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1309.738215][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1309.888180][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1309.888815][ C1] ksys_read+0x275/0x500
[ 1309.888815][ C1] __se_sys_read+0x92/0xb0
[ 1309.888815][ C1] __x64_sys_read+0x4a/0x70
[ 1309.888815][ C1] do_syscall_64+0x9f/0x140
[ 1309.888815][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1309.918077][ C1] RIP: 0033:0x7f298ab4222d
[ 1309.918077][ C1] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1309.918077][ C1] RSP: 002b:00007f29884de580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000
[ 1309.948076][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f298ab4222d
[ 1309.948076][ C1] RDX: 0000000000001fa0 RSI: 00007f29884deda0 RDI: 0000000000000004
[ 1309.948076][ C1] RBP: 0000557981bb59d0 R08: 0000000000000000 R09: 0000000000000000
[ 1309.948076][ C1] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f29884deda0
[ 1309.948076][ C1] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f29884e0d3f
[ 1309.948076][ C1] ---[ end trace 4b028c9d42567c83 ]---
[ 1309.999075][ C1] ------------[ cut here ]------------
[ 1310.004650][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1310.008203][ C1] Modules linked in:
[ 1310.008203][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1310.008203][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1310.008203][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1310.008203][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1310.008203][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1310.008203][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1310.008203][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1310.008203][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1310.008203][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1310.008203][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1310.008203][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1310.008203][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1310.008203][ C1] CR2: 00007f2984009100 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1310.008203][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1310.008203][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1310.008203][ C1] Call Trace:
[ 1310.008203][ C1]
[ 1310.008203][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1310.008203][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1310.008203][ C1] __run_hrtimer+0x48b/0xd20
[ 1310.008203][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1310.008203][ C1] ? hrtimer_init+0x570/0x570
[ 1310.008203][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1310.008203][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1310.008203][ C1]
[ 1310.008203][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1310.008203][ C1] RIP: 0010:do_syslog+0x2c91/0x30b0
[ 1310.008203][ C1] Code: 05 8c a9 b5 10 44 8b 7c 24 28 48 c7 c7 14 52 40 92 e8 13 76 b0 00 c6 00 00 c6 05 fd a8 b1 10 00 e8 14 12 01 00 fb 48 8b 04 24 <48> c7 00 00 00 00 00 4c 89 60 08 44 89 b8 90 0c 00 00 31 ff 48 89
[ 1310.008203][ C1] RSP: 0018:ffff8881271439d0 EFLAGS: 00000246
[ 1310.008203][ C1] RAX: ffff888111570a88 RBX: 000000000000002f RCX: ffff888111570000
[ 1310.008203][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1310.008203][ C1] RBP: ffff888127143bc8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1310.008203][ C1] R10: 0000000000000006 R11: 00000000ffffffff R12: 0000000000000000
[ 1310.008203][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1310.008203][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1310.008203][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1310.008203][ C1] kmsg_read+0x18b/0x1f0
[ 1310.008203][ C1] ? kmsg_open+0x50/0x50
[ 1310.008203][ C1] proc_reg_read+0x2d2/0x570
[ 1310.008203][ C1] ? proc_reg_get_unmapped_area+0x6b0/0x6b0
[ 1310.008203][ C1] vfs_read+0x533/0x15a0
[ 1310.008203][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1310.008203][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1310.008203][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1310.008203][ C1] ksys_read+0x275/0x500
[ 1310.008203][ C1] __se_sys_read+0x92/0xb0
[ 1310.008203][ C1] __x64_sys_read+0x4a/0x70
[ 1310.008203][ C1] do_syscall_64+0x9f/0x140
[ 1310.008203][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1310.008203][ C1] RIP: 0033:0x7f298ab4222d
[ 1310.008203][ C1] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1310.008203][ C1] RSP: 002b:00007f29884de580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000
[ 1310.008203][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f298ab4222d
[ 1310.008203][ C1] RDX: 0000000000001fa0 RSI: 00007f29884deda0 RDI: 0000000000000004
[ 1310.008203][ C1] RBP: 0000557981bb59d0 R08: 0000000000000000 R09: 0000000000000000
[ 1310.008203][ C1] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f29884deda0
[ 1310.008203][ C1] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f29884e0d3f
[ 1310.008203][ C1] ---[ end trace 4b028c9d42567c84 ]---
[ 1310.008203][ C1] ------------[ cut here ]------------
[ 1310.008203][ C1] WARNING: CPU: 1 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1310.008203][ C1] Modules linked in:
[ 1310.008203][ C1] CPU: 1 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1310.008203][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1310.008203][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1310.008203][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1310.008203][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1310.008203][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111570000
[ 1310.008203][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1310.008203][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1310.008203][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1310.008203][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1310.008203][ C1] FS: 00007f29884ff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1310.008203][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1310.008203][ C1] CR2: 00007f2984009100 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1310.008203][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1310.008203][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1310.008203][ C1] Call Trace:
[ 1310.008203][ C1]
[ 1310.008203][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1310.008203][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1310.008203][ C1] __run_hrtimer+0x48b/0xd20
[ 1310.008203][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1310.008203][ C1] ? hrtimer_init+0x570/0x570
[ 1310.008203][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1310.008203][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1310.008203][ C1]
[ 1310.008203][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1310.008203][ C1] RIP: 0010:do_syslog+0x2c91/0x30b0
[ 1310.008203][ C1] Code: 05 8c a9 b5 10 44 8b 7c 24 28 48 c7 c7 14 52 40 92 e8 13 76 b0 00 c6 00 00 c6 05 fd a8 b1 10 00 e8 14 12 01 00 fb 48 8b 04 24 <48> c7 00 00 00 00 00 4c 89 60 08 44 89 b8 90 0c 00 00 31 ff 48 89
[ 1310.008203][ C1] RSP: 0018:ffff8881271439d0 EFLAGS: 00000246
[ 1310.008203][ C1] RAX: ffff888111570a88 RBX: 000000000000002f RCX: ffff888111570000
[ 1310.008203][ C1] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420
[ 1310.008203][ C1] RBP: ffff888127143bc8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1310.008203][ C1] R10: 0000000000000006 R11: 00000000ffffffff R12: 0000000000000000
[ 1310.008203][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1310.008203][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1310.008203][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1310.008203][ C1] kmsg_read+0x18b/0x1f0
[ 1310.008203][ C1] ? kmsg_open+0x50/0x50
[ 1310.008203][ C1] proc_reg_read+0x2d2/0x570
[ 1310.008203][ C1] ? proc_reg_get_unmapped_area+0x6b0/0x6b0
[ 1310.008203][ C1] vfs_read+0x533/0x15a0
[ 1310.008203][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1310.008203][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1310.008203][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1310.008203][ C1] ksys_read+0x275/0x500
[ 1310.008203][ C1] __se_sys_read+0x92/0xb0
[ 1310.008203][ C1] __x64_sys_read+0x4a/0x70
[ 1310.008203][ C1] do_syscall_64+0x9f/0x140
[ 1310.008203][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1310.008203][ C1] RIP: 0033:0x7f298ab4222d
[ 1310.008203][ C1] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1310.008203][ C1] RSP: 002b:00007f29884de580 EFLAGS: 00000293 ORIG_RAX: 0000000000000000
[ 1310.008203][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f298ab4222d
[ 1310.008203][ C1] RDX: 0000000000001fa0 RSI: 00007f29884deda0 RDI: 0000000000000004
[ 1310.008203][ C1] RBP: 0000557981bb59d0 R08: 0000000000000000 R09: 0000000000000000
[ 1310.008203][ C1] R10: 2ce33e6c02ce33e7 R11: 0000000000000293 R12: 00007f29884deda0
[ 1310.008203][ C1] R13: 0000000000001fa0 R14: 0000000000001f9f R15: 00007f29884e0d3f
[ 1310.008203][ C1] ---[ end trace 4b028c9d42567c85 ]---
[ 1310.968852][ C1] ------------[ cut here ]------------
[ 1310.968852][ C1] WARNING: CPU: 1 PID: 4195 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1310.968852][ C1] Modules linked in:
[ 1310.968852][ C1] CPU: 1 PID: 4195 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1310.968852][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1311.008098][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1311.008098][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1311.008098][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1311.008098][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1311.008098][ C1] RDX: 0000000080010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1311.008098][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1311.008098][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1311.008098][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1311.008098][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553bb40
[ 1311.008098][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1311.008098][ C1] CR2: 000000000aea4404 CR3: 0000000114512000 CR4: 00000000001506e0
[ 1311.008098][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1311.008098][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1311.008098][ C1] Call Trace:
[ 1311.008098][ C1]
[ 1311.008098][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1311.008098][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1311.008098][ C1] __run_hrtimer+0x48b/0xd20
[ 1311.008098][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1311.008098][ C1] ? hrtimer_init+0x570/0x570
[ 1311.008098][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1311.008098][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1311.008098][ C1]
[ 1311.008098][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1311.008098][ C1] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0
[ 1311.008098][ C1] Code: ff ff e8 e1 d8 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 8c cf 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 00 e9 25
[ 1311.008098][ C1] RSP: 0018:ffff88816cc778a0 EFLAGS: 00000296
[ 1311.008098][ C1] RAX: ffff8880ac0c4908 RBX: ffff88815ba36000 RCX: 0000000000000401
[ 1311.008098][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88815ba36000
[ 1311.008098][ C1] RBP: ffff88816cc778b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1311.008098][ C1] R10: 000000009139edcd R11: ffffffff8fe59af0 R12: 0000000000000001
[ 1311.008098][ C1] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246
[ 1311.008098][ C1] clear_page+0x34/0x40
[ 1311.008098][ C1] get_page_from_freelist+0x15d7/0x26d0
[ 1311.008098][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1311.008098][ C1] alloc_pages_current+0x7b6/0xb60
[ 1311.008098][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1311.008098][ C1] ? security_capable+0x1dd/0x230
[ 1311.008098][ C1] __get_free_pages+0x33/0xc0
[ 1311.008098][ C1] io_uring_create+0x1d42/0x4eb0
[ 1311.008098][ C1] __se_sys_io_uring_setup+0x2e2/0x350
[ 1311.008098][ C1] __ia32_sys_io_uring_setup+0x3e/0x60
[ 1311.008098][ C1] __do_fast_syscall_32+0x127/0x180
[ 1311.008098][ C1] do_fast_syscall_32+0x77/0xd0
[ 1311.008098][ C1] do_SYSENTER_32+0x73/0x90
[ 1311.008098][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1311.008098][ C1] RIP: 0023:0xf7f41549
[ 1311.008098][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1311.008098][ C1] RSP: 002b:00000000f553b5ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9
[ 1311.008098][ C1] RAX: ffffffffffffffda RBX: 00000000000070c4 RCX: 00000000200023c0
[ 1311.008098][ C1] RDX: 00000000f553b670 RSI: 000000000816c000 RDI: 0000000020935000
[ 1311.008098][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1311.008098][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1311.008098][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1311.008098][ C1] ---[ end trace 4b028c9d42567c86 ]---
[ 1311.409219][ C1] ------------[ cut here ]------------
[ 1311.414804][ C1] WARNING: CPU: 1 PID: 4195 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1311.418320][ C1] Modules linked in:
[ 1311.418320][ C1] CPU: 1 PID: 4195 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1311.418320][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1311.418320][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1311.418320][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1311.418320][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1311.418320][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1311.418320][ C1] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1311.418320][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1311.418320][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1311.418320][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1311.418320][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553bb40
[ 1311.418320][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1311.418320][ C1] CR2: 000000000aea4404 CR3: 0000000114512000 CR4: 00000000001506e0
[ 1311.418320][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1311.418320][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1311.418320][ C1] Call Trace:
[ 1311.418320][ C1]
[ 1311.418320][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1311.418320][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1311.418320][ C1] __run_hrtimer+0x48b/0xd20
[ 1311.418320][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1311.418320][ C1] ? hrtimer_init+0x570/0x570
[ 1311.418320][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1311.418320][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1311.418320][ C1]
[ 1311.418320][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1311.418320][ C1] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0
[ 1311.418320][ C1] Code: ff ff e8 e1 d8 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 8c cf 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 00 e9 25
[ 1311.418320][ C1] RSP: 0018:ffff88816cc778a0 EFLAGS: 00000296
[ 1311.418320][ C1] RAX: ffff8880ac0c4908 RBX: ffff88815ba36000 RCX: 0000000000000401
[ 1311.418320][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88815ba36000
[ 1311.418320][ C1] RBP: ffff88816cc778b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1311.418320][ C1] R10: 000000009139edcd R11: ffffffff8fe59af0 R12: 0000000000000001
[ 1311.418320][ C1] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246
[ 1311.418320][ C1] clear_page+0x34/0x40
[ 1311.418320][ C1] get_page_from_freelist+0x15d7/0x26d0
[ 1311.418320][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1311.418320][ C1] alloc_pages_current+0x7b6/0xb60
[ 1311.418320][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1311.418320][ C1] ? security_capable+0x1dd/0x230
[ 1311.418320][ C1] __get_free_pages+0x33/0xc0
[ 1311.418320][ C1] io_uring_create+0x1d42/0x4eb0
[ 1311.418320][ C1] __se_sys_io_uring_setup+0x2e2/0x350
[ 1311.418320][ C1] __ia32_sys_io_uring_setup+0x3e/0x60
[ 1311.418320][ C1] __do_fast_syscall_32+0x127/0x180
[ 1311.418320][ C1] do_fast_syscall_32+0x77/0xd0
[ 1311.418320][ C1] do_SYSENTER_32+0x73/0x90
[ 1311.418320][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1311.418320][ C1] RIP: 0023:0xf7f41549
[ 1311.418320][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1311.418320][ C1] RSP: 002b:00000000f553b5ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9
[ 1311.418320][ C1] RAX: ffffffffffffffda RBX: 00000000000070c4 RCX: 00000000200023c0
[ 1311.418320][ C1] RDX: 00000000f553b670 RSI: 000000000816c000 RDI: 0000000020935000
[ 1311.418320][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1311.418320][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1311.418320][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1311.418320][ C1] ---[ end trace 4b028c9d42567c87 ]---
[ 1311.845042][ C1] ------------[ cut here ]------------
[ 1311.850613][ C1] WARNING: CPU: 1 PID: 4195 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1311.854155][ C1] Modules linked in:
[ 1311.854155][ C1] CPU: 1 PID: 4195 Comm: syz-executor.3 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1311.854155][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1311.854155][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1311.854155][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1311.854155][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1311.854155][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ac0c3e80
[ 1311.854155][ C1] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1311.854155][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1311.854155][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1311.854155][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1311.854155][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f553bb40
[ 1311.854155][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1311.854155][ C1] CR2: 000000000aea4404 CR3: 0000000114512000 CR4: 00000000001506e0
[ 1311.854155][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1311.854155][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1311.854155][ C1] Call Trace:
[ 1311.854155][ C1]
[ 1311.854155][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1311.854155][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1311.854155][ C1] __run_hrtimer+0x48b/0xd20
[ 1311.854155][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1311.854155][ C1] ? hrtimer_init+0x570/0x570
[ 1311.854155][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1311.854155][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1311.854155][ C1]
[ 1311.854155][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1311.854155][ C1] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0
[ 1311.854155][ C1] Code: ff ff e8 e1 d8 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 8c cf 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 00 e9 25
[ 1311.854155][ C1] RSP: 0018:ffff88816cc778a0 EFLAGS: 00000296
[ 1311.854155][ C1] RAX: ffff8880ac0c4908 RBX: ffff88815ba36000 RCX: 0000000000000401
[ 1311.854155][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88815ba36000
[ 1311.854155][ C1] RBP: ffff88816cc778b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1311.854155][ C1] R10: 000000009139edcd R11: ffffffff8fe59af0 R12: 0000000000000001
[ 1311.854155][ C1] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246
[ 1311.854155][ C1] clear_page+0x34/0x40
[ 1311.854155][ C1] get_page_from_freelist+0x15d7/0x26d0
[ 1311.854155][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1311.854155][ C1] alloc_pages_current+0x7b6/0xb60
[ 1311.854155][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1311.854155][ C1] ? security_capable+0x1dd/0x230
[ 1311.854155][ C1] __get_free_pages+0x33/0xc0
[ 1311.854155][ C1] io_uring_create+0x1d42/0x4eb0
[ 1311.854155][ C1] __se_sys_io_uring_setup+0x2e2/0x350
[ 1311.854155][ C1] __ia32_sys_io_uring_setup+0x3e/0x60
[ 1311.854155][ C1] __do_fast_syscall_32+0x127/0x180
[ 1311.854155][ C1] do_fast_syscall_32+0x77/0xd0
[ 1311.854155][ C1] do_SYSENTER_32+0x73/0x90
[ 1311.854155][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1311.854155][ C1] RIP: 0023:0xf7f41549
[ 1311.854155][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1311.854155][ C1] RSP: 002b:00000000f553b5ac EFLAGS: 00000282 ORIG_RAX: 00000000000001a9
[ 1311.854155][ C1] RAX: ffffffffffffffda RBX: 00000000000070c4 RCX: 00000000200023c0
[ 1311.854155][ C1] RDX: 00000000f553b670 RSI: 000000000816c000 RDI: 0000000020935000
[ 1311.854155][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1311.854155][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1311.854155][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1311.854155][ C1] ---[ end trace 4b028c9d42567c88 ]---
[ 1312.381175][ C1] ------------[ cut here ]------------
[ 1312.386793][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1312.390247][ C1] Modules linked in:
[ 1312.390247][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1312.390247][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1312.390247][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1312.390247][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1312.390247][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1312.390247][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1312.390247][ C1] RDX: 0000000000010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1312.390247][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1312.390247][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1312.390247][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1312.390247][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1312.390247][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1312.390247][ C1] CR2: 00007f6c19067910 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1312.390247][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1312.390247][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1312.390247][ C1] Call Trace:
[ 1312.390247][ C1]
[ 1312.390247][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.390247][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1312.390247][ C1] __run_hrtimer+0x48b/0xd20
[ 1312.390247][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1312.390247][ C1] ? hrtimer_init+0x570/0x570
[ 1312.390247][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1312.390247][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1312.390247][ C1]
[ 1312.390247][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1312.390247][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0xb/0x30
[ 1312.390247][ C1] Code: c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 <3d> c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f
[ 1312.390247][ C1] RSP: 0018:ffff888158883ad0 EFLAGS: 00000a06
[ 1312.390247][ C1] RAX: 0000000000ffffc9 RBX: ffffc90005e94030 RCX: ffff8880ba513e01
[ 1312.390247][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc90005e94030
[ 1312.390247][ C1] RBP: ffff888158883ad0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1312.390247][ C1] R10: 00000000c279eeb8 R11: ffff8880ba513e80 R12: ffffc90005e94030
[ 1312.390247][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1312.390247][ C1] kmsan_get_metadata+0x4f/0x180
[ 1312.390247][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1312.390247][ C1] ? ___bpf_prog_run+0xb950/0xb950
[ 1312.390247][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1312.390247][ C1] seccomp_run_filters+0x259/0x800
[ 1312.390247][ C1] __seccomp_filter+0x4bf/0x2fa0
[ 1312.390247][ C1] ? up_write+0x62/0x220
[ 1312.390247][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1312.390247][ C1] __secure_computing+0x2f1/0x4c0
[ 1312.390247][ C1] syscall_trace_enter+0x31e/0x840
[ 1312.390247][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.390247][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1312.390247][ C1] do_syscall_64+0x4b/0x140
[ 1312.390247][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1312.390247][ C1] RIP: 0033:0x7f6c19c7530a
[ 1312.390247][ C1] Code: 89 f5 41 54 49 89 fc 55 53 74 35 49 63 e8 48 63 da 4d 89 f9 49 89 e8 4d 63 d6 48 89 da 4c 89 ee 4c 89 e7 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 4e 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00
[ 1312.390247][ C1] RSP: 002b:00007ffe53affa18 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1312.390247][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6c19c7530a
[ 1312.390247][ C1] RDX: 0000000000000003 RSI: 0000000000002000 RDI: 00007f6c1904f000
[ 1312.390247][ C1] RBP: 000000000000000b R08: 000000000000000b R09: 0000000000004000
[ 1312.390247][ C1] R10: 0000000000000812 R11: 0000000000000206 R12: 00007f6c1904f000
[ 1312.390247][ C1] R13: 0000000000002000 R14: 0000000000000812 R15: 0000000000004000
[ 1312.390247][ C1] ---[ end trace 4b028c9d42567c89 ]---
[ 1312.818780][ C1] ------------[ cut here ]------------
[ 1312.824353][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1312.827970][ C1] Modules linked in:
[ 1312.827970][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1312.827970][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1312.827970][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1312.827970][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1312.827970][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1312.827970][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1312.827970][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1312.827970][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1312.827970][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1312.827970][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1312.827970][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1312.827970][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1312.827970][ C1] CR2: 00007f6c19067910 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1312.827970][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1312.827970][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1312.827970][ C1] Call Trace:
[ 1312.827970][ C1]
[ 1312.827970][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.827970][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1312.827970][ C1] __run_hrtimer+0x48b/0xd20
[ 1312.827970][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1312.827970][ C1] ? hrtimer_init+0x570/0x570
[ 1312.827970][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1312.827970][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1312.827970][ C1]
[ 1312.827970][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1312.827970][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0xb/0x30
[ 1312.827970][ C1] Code: c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 <3d> c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f
[ 1312.827970][ C1] RSP: 0018:ffff888158883ad0 EFLAGS: 00000a06
[ 1312.827970][ C1] RAX: 0000000000ffffc9 RBX: ffffc90005e94030 RCX: ffff8880ba513e01
[ 1312.827970][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc90005e94030
[ 1312.827970][ C1] RBP: ffff888158883ad0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1312.827970][ C1] R10: 00000000c279eeb8 R11: ffff8880ba513e80 R12: ffffc90005e94030
[ 1312.827970][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1312.827970][ C1] kmsan_get_metadata+0x4f/0x180
[ 1312.827970][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1312.827970][ C1] ? ___bpf_prog_run+0xb950/0xb950
[ 1312.827970][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1312.827970][ C1] seccomp_run_filters+0x259/0x800
[ 1312.827970][ C1] __seccomp_filter+0x4bf/0x2fa0
[ 1312.827970][ C1] ? up_write+0x62/0x220
[ 1312.827970][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1312.827970][ C1] __secure_computing+0x2f1/0x4c0
[ 1312.827970][ C1] syscall_trace_enter+0x31e/0x840
[ 1312.827970][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.827970][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1312.827970][ C1] do_syscall_64+0x4b/0x140
[ 1312.827970][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1312.827970][ C1] RIP: 0033:0x7f6c19c7530a
[ 1312.827970][ C1] Code: 89 f5 41 54 49 89 fc 55 53 74 35 49 63 e8 48 63 da 4d 89 f9 49 89 e8 4d 63 d6 48 89 da 4c 89 ee 4c 89 e7 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 4e 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00
[ 1312.827970][ C1] RSP: 002b:00007ffe53affa18 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1312.827970][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6c19c7530a
[ 1312.827970][ C1] RDX: 0000000000000003 RSI: 0000000000002000 RDI: 00007f6c1904f000
[ 1312.827970][ C1] RBP: 000000000000000b R08: 000000000000000b R09: 0000000000004000
[ 1312.827970][ C1] R10: 0000000000000812 R11: 0000000000000206 R12: 00007f6c1904f000
[ 1312.827970][ C1] R13: 0000000000002000 R14: 0000000000000812 R15: 0000000000004000
[ 1312.827970][ C1] ---[ end trace 4b028c9d42567c8a ]---
[ 1312.827970][ C1] ------------[ cut here ]------------
[ 1312.827970][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1312.827970][ C1] Modules linked in:
[ 1312.827970][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1312.827970][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1312.827970][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1312.827970][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1312.827970][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1312.827970][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1312.827970][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1312.827970][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1312.827970][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1312.827970][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1312.827970][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1312.827970][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1312.827970][ C1] CR2: 00007f6c19067910 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1312.827970][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1312.827970][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1312.827970][ C1] Call Trace:
[ 1312.827970][ C1]
[ 1312.827970][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.827970][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1312.827970][ C1] __run_hrtimer+0x48b/0xd20
[ 1312.827970][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1312.827970][ C1] ? hrtimer_init+0x570/0x570
[ 1312.827970][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1312.827970][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1312.827970][ C1]
[ 1312.827970][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1312.827970][ C1] RIP: 0010:kmsan_internal_is_vmalloc_addr+0xb/0x30
[ 1312.827970][ C1] Code: c1 e9 09 83 e1 3f 48 0f a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 <3d> c8 ff ff 00 0f 97 c1 48 b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f
[ 1312.827970][ C1] RSP: 0018:ffff888158883ad0 EFLAGS: 00000a06
[ 1312.827970][ C1] RAX: 0000000000ffffc9 RBX: ffffc90005e94030 RCX: ffff8880ba513e01
[ 1312.827970][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc90005e94030
[ 1312.827970][ C1] RBP: ffff888158883ad0 R08: ffffea000000000f R09: ffff88813fffa000
[ 1312.827970][ C1] R10: 00000000c279eeb8 R11: ffff8880ba513e80 R12: ffffc90005e94030
[ 1312.827970][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1312.827970][ C1] kmsan_get_metadata+0x4f/0x180
[ 1312.827970][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1312.827970][ C1] ? ___bpf_prog_run+0xb950/0xb950
[ 1312.827970][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1312.827970][ C1] seccomp_run_filters+0x259/0x800
[ 1312.827970][ C1] __seccomp_filter+0x4bf/0x2fa0
[ 1312.827970][ C1] ? up_write+0x62/0x220
[ 1312.827970][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1312.827970][ C1] __secure_computing+0x2f1/0x4c0
[ 1312.827970][ C1] syscall_trace_enter+0x31e/0x840
[ 1312.827970][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1312.827970][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1312.827970][ C1] do_syscall_64+0x4b/0x140
[ 1312.827970][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1312.827970][ C1] RIP: 0033:0x7f6c19c7530a
[ 1312.827970][ C1] Code: 89 f5 41 54 49 89 fc 55 53 74 35 49 63 e8 48 63 da 4d 89 f9 49 89 e8 4d 63 d6 48 89 da 4c 89 ee 4c 89 e7 b8 09 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 4e 5b 5d 41 5c 41 5d 41 5e 41 5f c3 0f 1f 00
[ 1312.827970][ C1] RSP: 002b:00007ffe53affa18 EFLAGS: 00000206 ORIG_RAX: 0000000000000009
[ 1312.827970][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f6c19c7530a
[ 1312.827970][ C1] RDX: 0000000000000003 RSI: 0000000000002000 RDI: 00007f6c1904f000
[ 1312.827970][ C1] RBP: 000000000000000b R08: 000000000000000b R09: 0000000000004000
[ 1312.827970][ C1] R10: 0000000000000812 R11: 0000000000000206 R12: 00007f6c1904f000
[ 1312.827970][ C1] R13: 0000000000002000 R14: 0000000000000812 R15: 0000000000004000
[ 1312.827970][ C1] ---[ end trace 4b028c9d42567c8b ]---
[ 1313.785405][ C1] ------------[ cut here ]------------
[ 1313.785405][ C1] WARNING: CPU: 1 PID: 4201 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1313.785405][ C1] Modules linked in:
[ 1313.785405][ C1] CPU: 1 PID: 4201 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1313.785405][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1313.785405][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1313.785405][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1313.848015][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1313.848015][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0dc8000
[ 1313.848015][ C1] RDX: 0000000080010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1313.848015][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1313.848015][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1313.848015][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1313.848015][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1313.848015][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1313.848015][ C1] CR2: 000000000810e9a1 CR3: 0000000170b9a000 CR4: 00000000001506e0
[ 1313.848015][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1313.848015][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1313.848015][ C1] Call Trace:
[ 1313.848015][ C1]
[ 1313.848015][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1313.848015][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1313.848015][ C1] __run_hrtimer+0x48b/0xd20
[ 1313.848015][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1313.848015][ C1] ? hrtimer_init+0x570/0x570
[ 1313.848015][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1313.848015][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1313.848015][ C1]
[ 1313.848015][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1313.848015][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1b/0x20
[ 1313.848015][ C1] Code: 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 5d 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 58
[ 1313.848015][ C1] RSP: 0018:ffff888178f5f9b8 EFLAGS: 00000246
[ 1313.848015][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880a18f2498 RCX: ffff8880a0dc8000
[ 1313.848015][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880a18f2498
[ 1313.848015][ C1] RBP: ffff888178f5f9d8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1313.848015][ C1] R10: 0000000000000002 R11: ffff8880a0dc8000 R12: ffff8880a3028d00
[ 1313.848015][ C1] R13: ffff8880a0dc8a88 R14: 0000000000000000 R15: 0000000000000000
[ 1313.848015][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1313.848015][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1313.848015][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1313.848015][ C1] tomoyo_check_acl+0x119/0x5d0
[ 1313.848015][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1313.848015][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1313.848015][ C1] tomoyo_path_symlink+0xfc/0x190
[ 1313.848015][ C1] ? tomoyo_path_rmdir+0x170/0x170
[ 1313.848015][ C1] security_path_symlink+0x19b/0x2e0
[ 1313.848015][ C1] do_symlinkat+0x281/0x980
[ 1313.848015][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1313.848015][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1313.848015][ C1] __se_sys_symlink+0x74/0x90
[ 1313.848015][ C1] __ia32_sys_symlink+0x3e/0x60
[ 1313.848015][ C1] __do_fast_syscall_32+0x127/0x180
[ 1313.848015][ C1] do_fast_syscall_32+0x77/0xd0
[ 1313.848015][ C1] do_SYSENTER_32+0x73/0x90
[ 1313.848015][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1313.848015][ C1] RIP: 0023:0xf7fac549
[ 1313.848015][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1313.848015][ C1] RSP: 002b:00000000ff8bfcdc EFLAGS: 00000282 ORIG_RAX: 0000000000000053
[ 1313.848015][ C1] RAX: ffffffffffffffda RBX: 00000000ff8bfdc4 RCX: 00000000080eaee4
[ 1313.848015][ C1] RDX: 000000000816c000 RSI: 00000000ff8bfdc4 RDI: 000000000816c000
[ 1313.848015][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1313.848015][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1313.848015][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1313.848015][ C1] ---[ end trace 4b028c9d42567c8c ]---
[ 1314.252058][ C1] ------------[ cut here ]------------
[ 1314.257632][ C1] WARNING: CPU: 1 PID: 4201 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1314.261149][ C1] Modules linked in:
[ 1314.261149][ C1] CPU: 1 PID: 4201 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1314.261149][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1314.261149][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1314.261149][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1314.261149][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1314.261149][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0dc8000
[ 1314.261149][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1314.261149][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1314.261149][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1314.261149][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1314.261149][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1314.261149][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1314.261149][ C1] CR2: 000000000810e9a1 CR3: 0000000170b9a000 CR4: 00000000001506e0
[ 1314.261149][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1314.261149][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1314.261149][ C1] Call Trace:
[ 1314.261149][ C1]
[ 1314.261149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1314.261149][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1314.261149][ C1] __run_hrtimer+0x48b/0xd20
[ 1314.261149][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1314.261149][ C1] ? hrtimer_init+0x570/0x570
[ 1314.261149][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1314.261149][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1314.261149][ C1]
[ 1314.261149][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1314.261149][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1b/0x20
[ 1314.261149][ C1] Code: 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 5d 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 58
[ 1314.261149][ C1] RSP: 0018:ffff888178f5f9b8 EFLAGS: 00000246
[ 1314.261149][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880a18f2498 RCX: ffff8880a0dc8000
[ 1314.261149][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880a18f2498
[ 1314.261149][ C1] RBP: ffff888178f5f9d8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1314.261149][ C1] R10: 0000000000000002 R11: ffff8880a0dc8000 R12: ffff8880a3028d00
[ 1314.261149][ C1] R13: ffff8880a0dc8a88 R14: 0000000000000000 R15: 0000000000000000
[ 1314.261149][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1314.261149][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1314.261149][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1314.261149][ C1] tomoyo_check_acl+0x119/0x5d0
[ 1314.261149][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1314.261149][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1314.261149][ C1] tomoyo_path_symlink+0xfc/0x190
[ 1314.261149][ C1] ? tomoyo_path_rmdir+0x170/0x170
[ 1314.261149][ C1] security_path_symlink+0x19b/0x2e0
[ 1314.261149][ C1] do_symlinkat+0x281/0x980
[ 1314.261149][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1314.261149][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1314.261149][ C1] __se_sys_symlink+0x74/0x90
[ 1314.261149][ C1] __ia32_sys_symlink+0x3e/0x60
[ 1314.261149][ C1] __do_fast_syscall_32+0x127/0x180
[ 1314.261149][ C1] do_fast_syscall_32+0x77/0xd0
[ 1314.261149][ C1] do_SYSENTER_32+0x73/0x90
[ 1314.261149][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1314.261149][ C1] RIP: 0023:0xf7fac549
[ 1314.261149][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1314.261149][ C1] RSP: 002b:00000000ff8bfcdc EFLAGS: 00000282 ORIG_RAX: 0000000000000053
[ 1314.261149][ C1] RAX: ffffffffffffffda RBX: 00000000ff8bfdc4 RCX: 00000000080eaee4
[ 1314.261149][ C1] RDX: 000000000816c000 RSI: 00000000ff8bfdc4 RDI: 000000000816c000
[ 1314.261149][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1314.261149][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1314.261149][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1314.261149][ C1] ---[ end trace 4b028c9d42567c8d ]---
[ 1314.261149][ C1] ------------[ cut here ]------------
[ 1314.261149][ C1] WARNING: CPU: 1 PID: 4201 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1314.261149][ C1] Modules linked in:
[ 1314.261149][ C1] CPU: 1 PID: 4201 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1314.261149][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1314.261149][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1314.261149][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1314.261149][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1314.261149][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a0dc8000
[ 1314.261149][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1314.261149][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1314.261149][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1314.261149][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1314.261149][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1314.261149][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1314.261149][ C1] CR2: 000000000810e9a1 CR3: 0000000170b9a000 CR4: 00000000001506e0
[ 1314.261149][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1314.261149][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1314.261149][ C1] Call Trace:
[ 1314.261149][ C1]
[ 1314.261149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1314.261149][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1314.261149][ C1] __run_hrtimer+0x48b/0xd20
[ 1314.261149][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1314.261149][ C1] ? hrtimer_init+0x570/0x570
[ 1314.261149][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1314.261149][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1314.261149][ C1]
[ 1314.261149][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1314.261149][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1b/0x20
[ 1314.261149][ C1] Code: 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 5d 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 58
[ 1314.261149][ C1] RSP: 0018:ffff888178f5f9b8 EFLAGS: 00000246
[ 1314.261149][ C1] RAX: ffffd0ffffffff00 RBX: ffff8880a18f2498 RCX: ffff8880a0dc8000
[ 1314.261149][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880a18f2498
[ 1314.261149][ C1] RBP: ffff888178f5f9d8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1314.261149][ C1] R10: 0000000000000002 R11: ffff8880a0dc8000 R12: ffff8880a3028d00
[ 1314.261149][ C1] R13: ffff8880a0dc8a88 R14: 0000000000000000 R15: 0000000000000000
[ 1314.261149][ C1] ? kmsan_get_metadata+0x35/0x180
[ 1314.261149][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1314.261149][ C1] __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1314.261149][ C1] tomoyo_check_acl+0x119/0x5d0
[ 1314.261149][ C1] ? tomoyo_execute_permission+0x5e0/0x5e0
[ 1314.261149][ C1] tomoyo_path_perm+0x82f/0xc50
[ 1314.261149][ C1] tomoyo_path_symlink+0xfc/0x190
[ 1314.261149][ C1] ? tomoyo_path_rmdir+0x170/0x170
[ 1314.261149][ C1] security_path_symlink+0x19b/0x2e0
[ 1314.261149][ C1] do_symlinkat+0x281/0x980
[ 1314.261149][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1314.261149][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1314.261149][ C1] __se_sys_symlink+0x74/0x90
[ 1314.261149][ C1] __ia32_sys_symlink+0x3e/0x60
[ 1314.261149][ C1] __do_fast_syscall_32+0x127/0x180
[ 1314.261149][ C1] do_fast_syscall_32+0x77/0xd0
[ 1314.261149][ C1] do_SYSENTER_32+0x73/0x90
[ 1314.261149][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1314.261149][ C1] RIP: 0023:0xf7fac549
[ 1314.261149][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1314.261149][ C1] RSP: 002b:00000000ff8bfcdc EFLAGS: 00000282 ORIG_RAX: 0000000000000053
[ 1314.261149][ C1] RAX: ffffffffffffffda RBX: 00000000ff8bfdc4 RCX: 00000000080eaee4
[ 1314.261149][ C1] RDX: 000000000816c000 RSI: 00000000ff8bfdc4 RDI: 000000000816c000
[ 1314.261149][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1314.261149][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1314.261149][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1314.261149][ C1] ---[ end trace 4b028c9d42567c8e ]---
[ 1315.258799][ C1] ------------[ cut here ]------------
[ 1315.258799][ C1] WARNING: CPU: 1 PID: 4200 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1315.276173][ C1] Modules linked in:
[ 1315.276173][ C1] CPU: 1 PID: 4200 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1315.276173][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1315.308082][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1315.308082][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1315.308082][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1315.308082][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103121f40
[ 1315.308082][ C1] RDX: 0000000080010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1315.308082][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1315.308082][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1315.308082][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1315.308082][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1315.308082][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1315.308082][ C1] CR2: 0000000008171088 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1315.308082][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1315.308082][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1315.308082][ C1] Call Trace:
[ 1315.308082][ C1]
[ 1315.308082][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1315.308082][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1315.308082][ C1] __run_hrtimer+0x48b/0xd20
[ 1315.308082][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1315.308082][ C1] ? hrtimer_init+0x570/0x570
[ 1315.308082][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1315.308082][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1315.308082][ C1]
[ 1315.308082][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1315.308082][ C1] RIP: 0010:release_pages+0x3db/0x22f0
[ 1315.308082][ C1] Code: a0 4c 8b 37 49 bc 00 00 00 00 00 00 80 03 4d 21 e6 e8 b9 b4 36 00 44 8b 3a 48 8b 18 4c 21 e3 48 8b 45 98 48 c7 00 00 00 00 00 <48> 89 58 08 44 89 b8 90 0c 00 00 49 bc 00 00 00 00 00 00 00 02 4c
[ 1315.308082][ C1] RSP: 0018:ffff8881594c6f80 EFLAGS: 00000246
[ 1315.308082][ C1] RAX: ffff8881031229c8 RBX: 0000000000000000 RCX: 000000023f36ea2e
[ 1315.308082][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00039f9680
[ 1315.308082][ C1] RBP: ffff8881594c7090 R08: ffffea000000000f R09: ffff88813fffa000
[ 1315.308082][ C1] R10: 000000008d7a50a0 R11: 0000000000000000 R12: 0380000000000000
[ 1315.308082][ C1] R13: dead0000000000ff R14: 0080000000000000 R15: 0000000000000000
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1315.308082][ C1] ? lru_add_drain_cpu+0x5d9/0x630
[ 1315.308082][ C1] free_pages_and_swap_cache+0x623/0x650
[ 1315.308082][ C1] tlb_flush_mmu+0x90c/0xa90
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] zap_pte_range+0x3aab/0x3cb0
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1315.308082][ C1] unmap_page_range+0x1154/0x1440
[ 1315.308082][ C1] unmap_single_vma+0x56b/0x750
[ 1315.308082][ C1] unmap_vmas+0x3c8/0x500
[ 1315.308082][ C1] exit_mmap+0x5f1/0xb80
[ 1315.308082][ C1] ? exit_aio+0x83/0x460
[ 1315.308082][ C1] __mmput+0x1b7/0x630
[ 1315.308082][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1315.308082][ C1] mmput+0x8c/0xb0
[ 1315.308082][ C1] exit_mm+0x7a9/0x9a0
[ 1315.308082][ C1] do_exit+0xdbb/0x3c20
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] do_group_exit+0x1e1/0x3c0
[ 1315.308082][ C1] get_signal+0x2e5f/0x39e0
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] ? kmsan_internal_check_memory+0xb3/0x500
[ 1315.308082][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1315.308082][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1315.308082][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.308082][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1315.308082][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1315.308082][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1315.308082][ C1] do_fast_syscall_32+0x77/0xd0
[ 1315.308082][ C1] do_SYSENTER_32+0x73/0x90
[ 1315.308082][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1315.308082][ C1] RIP: 0023:0xf7ff5549
[ 1315.308082][ C1] Code: Unable to access opcode bytes at RIP 0xf7ff551f.
[ 1315.308082][ C1] RSP: 002b:00000000f55ef67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[ 1315.308082][ C1] RAX: 0000000000000000 RBX: 000000000819afc8 RCX: 0000000000000080
[ 1315.308082][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc
[ 1315.308082][ C1] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[ 1315.308082][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1315.308082][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1315.308082][ C1] ---[ end trace 4b028c9d42567c8f ]---
[ 1315.811513][ C1] ------------[ cut here ]------------
[ 1315.817099][ C1] WARNING: CPU: 1 PID: 4200 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1315.820598][ C1] Modules linked in:
[ 1315.820598][ C1] CPU: 1 PID: 4200 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1315.820598][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1315.820598][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1315.820598][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1315.820598][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1315.820598][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103121f40
[ 1315.820598][ C1] RDX: 0000000080010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1315.820598][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1315.820598][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1315.820598][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1315.820598][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1315.820598][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1315.820598][ C1] CR2: 0000000008171088 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1315.820598][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1315.820598][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1315.820598][ C1] Call Trace:
[ 1315.820598][ C1]
[ 1315.820598][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1315.820598][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1315.820598][ C1] __run_hrtimer+0x48b/0xd20
[ 1315.820598][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1315.820598][ C1] ? hrtimer_init+0x570/0x570
[ 1315.820598][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1315.820598][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1315.820598][ C1]
[ 1315.820598][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1315.820598][ C1] RIP: 0010:release_pages+0x3db/0x22f0
[ 1315.820598][ C1] Code: a0 4c 8b 37 49 bc 00 00 00 00 00 00 80 03 4d 21 e6 e8 b9 b4 36 00 44 8b 3a 48 8b 18 4c 21 e3 48 8b 45 98 48 c7 00 00 00 00 00 <48> 89 58 08 44 89 b8 90 0c 00 00 49 bc 00 00 00 00 00 00 00 02 4c
[ 1315.820598][ C1] RSP: 0018:ffff8881594c6f80 EFLAGS: 00000246
[ 1315.820598][ C1] RAX: ffff8881031229c8 RBX: 0000000000000000 RCX: 000000023f36ea2e
[ 1315.820598][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00039f9680
[ 1315.820598][ C1] RBP: ffff8881594c7090 R08: ffffea000000000f R09: ffff88813fffa000
[ 1315.820598][ C1] R10: 000000008d7a50a0 R11: 0000000000000000 R12: 0380000000000000
[ 1315.820598][ C1] R13: dead0000000000ff R14: 0080000000000000 R15: 0000000000000000
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1315.820598][ C1] ? lru_add_drain_cpu+0x5d9/0x630
[ 1315.820598][ C1] free_pages_and_swap_cache+0x623/0x650
[ 1315.820598][ C1] tlb_flush_mmu+0x90c/0xa90
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] zap_pte_range+0x3aab/0x3cb0
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1315.820598][ C1] unmap_page_range+0x1154/0x1440
[ 1315.820598][ C1] unmap_single_vma+0x56b/0x750
[ 1315.820598][ C1] unmap_vmas+0x3c8/0x500
[ 1315.820598][ C1] exit_mmap+0x5f1/0xb80
[ 1315.820598][ C1] ? exit_aio+0x83/0x460
[ 1315.820598][ C1] __mmput+0x1b7/0x630
[ 1315.820598][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1315.820598][ C1] mmput+0x8c/0xb0
[ 1315.820598][ C1] exit_mm+0x7a9/0x9a0
[ 1315.820598][ C1] do_exit+0xdbb/0x3c20
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] do_group_exit+0x1e1/0x3c0
[ 1315.820598][ C1] get_signal+0x2e5f/0x39e0
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] ? kmsan_internal_check_memory+0xb3/0x500
[ 1315.820598][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1315.820598][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1315.820598][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1315.820598][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1315.820598][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1315.820598][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1315.820598][ C1] do_fast_syscall_32+0x77/0xd0
[ 1315.820598][ C1] do_SYSENTER_32+0x73/0x90
[ 1315.820598][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1315.820598][ C1] RIP: 0023:0xf7ff5549
[ 1315.820598][ C1] Code: Unable to access opcode bytes at RIP 0xf7ff551f.
[ 1315.820598][ C1] RSP: 002b:00000000f55ef67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[ 1315.820598][ C1] RAX: 0000000000000000 RBX: 000000000819afc8 RCX: 0000000000000080
[ 1315.820598][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc
[ 1315.820598][ C1] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[ 1315.820598][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1315.820598][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1315.820598][ C1] ---[ end trace 4b028c9d42567c90 ]---
[ 1316.354404][ C1] ------------[ cut here ]------------
[ 1316.359984][ C1] WARNING: CPU: 1 PID: 4200 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1316.363594][ C1] Modules linked in:
[ 1316.363594][ C1] CPU: 1 PID: 4200 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1316.363594][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1316.363594][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1316.363594][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1316.363594][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1316.363594][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888103121f40
[ 1316.363594][ C1] RDX: 0000000080010000 RSI: 0000000000000020 RDI: 0000000000000001
[ 1316.363594][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1316.363594][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1316.363594][ C1] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fd27b00
[ 1316.363594][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1316.363594][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1316.363594][ C1] CR2: 0000000008171088 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1316.363594][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1316.363594][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1316.363594][ C1] Call Trace:
[ 1316.363594][ C1]
[ 1316.363594][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1316.363594][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1316.363594][ C1] __run_hrtimer+0x48b/0xd20
[ 1316.363594][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1316.363594][ C1] ? hrtimer_init+0x570/0x570
[ 1316.363594][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1316.363594][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1316.363594][ C1]
[ 1316.363594][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1316.363594][ C1] RIP: 0010:release_pages+0x3db/0x22f0
[ 1316.363594][ C1] Code: a0 4c 8b 37 49 bc 00 00 00 00 00 00 80 03 4d 21 e6 e8 b9 b4 36 00 44 8b 3a 48 8b 18 4c 21 e3 48 8b 45 98 48 c7 00 00 00 00 00 <48> 89 58 08 44 89 b8 90 0c 00 00 49 bc 00 00 00 00 00 00 00 02 4c
[ 1316.363594][ C1] RSP: 0018:ffff8881594c6f80 EFLAGS: 00000246
[ 1316.363594][ C1] RAX: ffff8881031229c8 RBX: 0000000000000000 RCX: 000000023f36ea2e
[ 1316.363594][ C1] RDX: ffffffff92457000 RSI: 0000000000000001 RDI: ffffea00039f9680
[ 1316.363594][ C1] RBP: ffff8881594c7090 R08: ffffea000000000f R09: ffff88813fffa000
[ 1316.363594][ C1] R10: 000000008d7a50a0 R11: 0000000000000000 R12: 0380000000000000
[ 1316.363594][ C1] R13: dead0000000000ff R14: 0080000000000000 R15: 0000000000000000
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? __msan_metadata_ptr_for_load_1+0x10/0x20
[ 1316.363594][ C1] ? lru_add_drain_cpu+0x5d9/0x630
[ 1316.363594][ C1] free_pages_and_swap_cache+0x623/0x650
[ 1316.363594][ C1] tlb_flush_mmu+0x90c/0xa90
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] zap_pte_range+0x3aab/0x3cb0
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1316.363594][ C1] unmap_page_range+0x1154/0x1440
[ 1316.363594][ C1] unmap_single_vma+0x56b/0x750
[ 1316.363594][ C1] unmap_vmas+0x3c8/0x500
[ 1316.363594][ C1] exit_mmap+0x5f1/0xb80
[ 1316.363594][ C1] ? exit_aio+0x83/0x460
[ 1316.363594][ C1] __mmput+0x1b7/0x630
[ 1316.363594][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1316.363594][ C1] mmput+0x8c/0xb0
[ 1316.363594][ C1] exit_mm+0x7a9/0x9a0
[ 1316.363594][ C1] do_exit+0xdbb/0x3c20
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] do_group_exit+0x1e1/0x3c0
[ 1316.363594][ C1] get_signal+0x2e5f/0x39e0
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] ? kmsan_internal_check_memory+0xb3/0x500
[ 1316.363594][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1316.363594][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1316.363594][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1316.363594][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1316.363594][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1316.363594][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1316.363594][ C1] do_fast_syscall_32+0x77/0xd0
[ 1316.363594][ C1] do_SYSENTER_32+0x73/0x90
[ 1316.363594][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1316.363594][ C1] RIP: 0023:0xf7ff5549
[ 1316.363594][ C1] Code: Unable to access opcode bytes at RIP 0xf7ff551f.
[ 1316.363594][ C1] RSP: 002b:00000000f55ef67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0
[ 1316.363594][ C1] RAX: 0000000000000000 RBX: 000000000819afc8 RCX: 0000000000000080
[ 1316.363594][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc
[ 1316.363594][ C1] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[ 1316.363594][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1316.363594][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1316.363594][ C1] ---[ end trace 4b028c9d42567c91 ]---
06:44:13 executing program 4:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0xcc, 0x0, 0x0)
06:44:13 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(r0)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1316.980673][ C1] ------------[ cut here ]------------
[ 1316.980673][ C1] WARNING: CPU: 1 PID: 4690 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1316.980673][ C1] Modules linked in:
[ 1316.980673][ C1] CPU: 1 PID: 4690 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1316.980673][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1316.980673][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1316.980673][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1317.048221][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1317.048221][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111605dc0
[ 1317.048221][ C1] RDX: 0000000080010000 RSI: 0000000000000027 RDI: 0000000000000001
[ 1317.048221][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1317.048221][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1317.048221][ C1] R13: 0000000000000000 R14: 0000000000000027 R15: ffff88813fd27b00
[ 1317.048221][ C1] FS: 00007fee1ae688c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1317.048221][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1317.048221][ C1] CR2: 00007f9a8a94f000 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1317.048221][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1317.048221][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1317.048221][ C1] Call Trace:
[ 1317.048221][ C1]
[ 1317.048221][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.048221][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1317.048221][ C1] __run_hrtimer+0x48b/0xd20
[ 1317.048221][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1317.048221][ C1] ? hrtimer_init+0x570/0x570
[ 1317.048221][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1317.048221][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1317.048221][ C1]
[ 1317.048221][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1317.048221][ C1] RIP: 0010:kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1317.048221][ C1] Code: 45 d8 48 89 da 48 89 d8 5b 41 5e 41 5f 5d c3 4c 89 f7 48 89 de 31 d2 e8 4f d4 ff ff 84 c0 74 43 4c 89 f7 31 f6 e8 41 00 00 00 <48> 85 c0 74 be 48 89 c3 4c 89 f7 be 01 00 00 00 e8 2c 00 00 00 48
[ 1317.048221][ C1] RSP: 0018:ffff888115f93990 EFLAGS: 00000286
[ 1317.048221][ C1] RAX: ffff8880bb432528 RBX: 0000000000000004 RCX: 00000000bb432528
[ 1317.048221][ C1] RDX: 0000000100032528 RSI: 0000000000000200 RDI: ffff888100032528
[ 1317.048221][ C1] RBP: ffff888115f939a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1317.048221][ C1] R10: 000000001a657855 R11: ffffffff8fc00715 R12: 0000000006bf0004
[ 1317.048221][ C1] R13: 0000000000000000 R14: ffff888100032528 R15: 0000000000000000
[ 1317.048221][ C1] ? __do_softirq+0x715/0x715
[ 1317.048221][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1317.048221][ C1] kfree+0x3e7/0x11f0
[ 1317.048221][ C1] ? tomoyo_path_perm+0xa8d/0xc50
[ 1317.048221][ C1] tomoyo_path_perm+0xa8d/0xc50
[ 1317.048221][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1317.048221][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1317.048221][ C1] security_inode_getattr+0x141/0x280
[ 1317.048221][ C1] __se_sys_newfstat+0x11c/0xaf0
[ 1317.048221][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1317.048221][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1317.048221][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.048221][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1317.048221][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1317.048221][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.048221][ C1] __x64_sys_newfstat+0x3e/0x60
[ 1317.048221][ C1] do_syscall_64+0x9f/0x140
[ 1317.048221][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1317.048221][ C1] RIP: 0033:0x7fee19cda2e2
[ 1317.048221][ C1] Code: 48 8b 05 b9 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 77 33 48 63 fe b8 05 00 00 00 48 89 d6 0f 05 <48> 3d 00 f0 ff ff 77 06 f3 c3 0f 1f 40 00 48 8b 15 81 db 2b 00 f7
[ 1317.048221][ C1] RSP: 002b:00007ffc23f311c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[ 1317.048221][ C1] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00007fee19cda2e2
[ 1317.048221][ C1] RDX: 00007ffc23f311d0 RSI: 00007ffc23f311d0 RDI: 0000000000000011
[ 1317.048221][ C1] RBP: 00007fee1ae68710 R08: 0000555d210c6460 R09: 0000000000001010
[ 1317.048221][ C1] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000
[ 1317.048221][ C1] R13: 0000555d211890a0 R14: 00000000000000fd R15: 0000555d211890a0
[ 1317.048221][ C1] ---[ end trace 4b028c9d42567c92 ]---
[ 1317.455364][ C1] ------------[ cut here ]------------
[ 1317.460937][ C1] WARNING: CPU: 1 PID: 4690 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1317.464546][ C1] Modules linked in:
[ 1317.464546][ C1] CPU: 1 PID: 4690 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1317.464546][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1317.464546][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1317.464546][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1317.464546][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1317.464546][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111605dc0
[ 1317.464546][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1317.464546][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1317.464546][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1317.464546][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1317.464546][ C1] FS: 00007fee1ae688c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1317.464546][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1317.464546][ C1] CR2: 00007f9a8a94f000 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1317.464546][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1317.464546][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1317.464546][ C1] Call Trace:
[ 1317.464546][ C1]
[ 1317.464546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.464546][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1317.464546][ C1] __run_hrtimer+0x48b/0xd20
[ 1317.464546][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1317.464546][ C1] ? hrtimer_init+0x570/0x570
[ 1317.464546][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1317.464546][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1317.464546][ C1]
[ 1317.464546][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1317.464546][ C1] RIP: 0010:kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1317.464546][ C1] Code: 45 d8 48 89 da 48 89 d8 5b 41 5e 41 5f 5d c3 4c 89 f7 48 89 de 31 d2 e8 4f d4 ff ff 84 c0 74 43 4c 89 f7 31 f6 e8 41 00 00 00 <48> 85 c0 74 be 48 89 c3 4c 89 f7 be 01 00 00 00 e8 2c 00 00 00 48
[ 1317.464546][ C1] RSP: 0018:ffff888115f93990 EFLAGS: 00000286
[ 1317.464546][ C1] RAX: ffff8880bb432528 RBX: 0000000000000004 RCX: 00000000bb432528
[ 1317.464546][ C1] RDX: 0000000100032528 RSI: 0000000000000200 RDI: ffff888100032528
[ 1317.464546][ C1] RBP: ffff888115f939a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1317.464546][ C1] R10: 000000001a657855 R11: ffffffff8fc00715 R12: 0000000006bf0004
[ 1317.464546][ C1] R13: 0000000000000000 R14: ffff888100032528 R15: 0000000000000000
[ 1317.464546][ C1] ? __do_softirq+0x715/0x715
[ 1317.464546][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1317.464546][ C1] kfree+0x3e7/0x11f0
[ 1317.464546][ C1] ? tomoyo_path_perm+0xa8d/0xc50
[ 1317.464546][ C1] tomoyo_path_perm+0xa8d/0xc50
[ 1317.464546][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1317.464546][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1317.464546][ C1] security_inode_getattr+0x141/0x280
[ 1317.464546][ C1] __se_sys_newfstat+0x11c/0xaf0
[ 1317.464546][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1317.464546][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1317.464546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.464546][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1317.464546][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1317.464546][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.464546][ C1] __x64_sys_newfstat+0x3e/0x60
[ 1317.464546][ C1] do_syscall_64+0x9f/0x140
[ 1317.464546][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1317.464546][ C1] RIP: 0033:0x7fee19cda2e2
[ 1317.464546][ C1] Code: 48 8b 05 b9 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 77 33 48 63 fe b8 05 00 00 00 48 89 d6 0f 05 <48> 3d 00 f0 ff ff 77 06 f3 c3 0f 1f 40 00 48 8b 15 81 db 2b 00 f7
[ 1317.464546][ C1] RSP: 002b:00007ffc23f311c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[ 1317.464546][ C1] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00007fee19cda2e2
[ 1317.464546][ C1] RDX: 00007ffc23f311d0 RSI: 00007ffc23f311d0 RDI: 0000000000000011
[ 1317.464546][ C1] RBP: 00007fee1ae68710 R08: 0000555d210c6460 R09: 0000000000001010
[ 1317.464546][ C1] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000
[ 1317.464546][ C1] R13: 0000555d211890a0 R14: 00000000000000fd R15: 0000555d211890a0
[ 1317.464546][ C1] ---[ end trace 4b028c9d42567c93 ]---
[ 1317.913659][ C1] ------------[ cut here ]------------
[ 1317.919212][ C1] WARNING: CPU: 1 PID: 4690 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1317.922845][ C1] Modules linked in:
[ 1317.922845][ C1] CPU: 1 PID: 4690 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1317.922845][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1317.922845][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1317.922845][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1317.922845][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1317.922845][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888111605dc0
[ 1317.922845][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1317.922845][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1317.922845][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1317.922845][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1317.922845][ C1] FS: 00007fee1ae688c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1317.922845][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1317.922845][ C1] CR2: 00007f9a8a94f000 CR3: 0000000115f4c000 CR4: 00000000001506e0
[ 1317.922845][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1317.922845][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1317.922845][ C1] Call Trace:
[ 1317.922845][ C1]
[ 1317.922845][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.922845][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1317.922845][ C1] __run_hrtimer+0x48b/0xd20
[ 1317.922845][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1317.922845][ C1] ? hrtimer_init+0x570/0x570
[ 1317.922845][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1317.922845][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1317.922845][ C1]
[ 1317.922845][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1317.922845][ C1] RIP: 0010:kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1317.922845][ C1] Code: 45 d8 48 89 da 48 89 d8 5b 41 5e 41 5f 5d c3 4c 89 f7 48 89 de 31 d2 e8 4f d4 ff ff 84 c0 74 43 4c 89 f7 31 f6 e8 41 00 00 00 <48> 85 c0 74 be 48 89 c3 4c 89 f7 be 01 00 00 00 e8 2c 00 00 00 48
[ 1317.922845][ C1] RSP: 0018:ffff888115f93990 EFLAGS: 00000286
[ 1317.922845][ C1] RAX: ffff8880bb432528 RBX: 0000000000000004 RCX: 00000000bb432528
[ 1317.922845][ C1] RDX: 0000000100032528 RSI: 0000000000000200 RDI: ffff888100032528
[ 1317.922845][ C1] RBP: ffff888115f939a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1317.922845][ C1] R10: 000000001a657855 R11: ffffffff8fc00715 R12: 0000000006bf0004
[ 1317.922845][ C1] R13: 0000000000000000 R14: ffff888100032528 R15: 0000000000000000
[ 1317.922845][ C1] ? __do_softirq+0x715/0x715
[ 1317.922845][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1317.922845][ C1] kfree+0x3e7/0x11f0
[ 1317.922845][ C1] ? tomoyo_path_perm+0xa8d/0xc50
[ 1317.922845][ C1] tomoyo_path_perm+0xa8d/0xc50
[ 1317.922845][ C1] tomoyo_inode_getattr+0x54/0x60
[ 1317.922845][ C1] ? tomoyo_path_rename+0x260/0x260
[ 1317.922845][ C1] security_inode_getattr+0x141/0x280
[ 1317.922845][ C1] __se_sys_newfstat+0x11c/0xaf0
[ 1317.922845][ C1] ? __secure_computing+0x2f1/0x4c0
[ 1317.922845][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1317.922845][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.922845][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1317.922845][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1317.922845][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1317.922845][ C1] __x64_sys_newfstat+0x3e/0x60
[ 1317.922845][ C1] do_syscall_64+0x9f/0x140
[ 1317.922845][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1317.922845][ C1] RIP: 0033:0x7fee19cda2e2
[ 1317.922845][ C1] Code: 48 8b 05 b9 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 77 33 48 63 fe b8 05 00 00 00 48 89 d6 0f 05 <48> 3d 00 f0 ff ff 77 06 f3 c3 0f 1f 40 00 48 8b 15 81 db 2b 00 f7
[ 1317.922845][ C1] RSP: 002b:00007ffc23f311c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000005
[ 1317.922845][ C1] RAX: ffffffffffffffda RBX: 0000000000000011 RCX: 00007fee19cda2e2
[ 1317.922845][ C1] RDX: 00007ffc23f311d0 RSI: 00007ffc23f311d0 RDI: 0000000000000011
[ 1317.922845][ C1] RBP: 00007fee1ae68710 R08: 0000555d210c6460 R09: 0000000000001010
[ 1317.922845][ C1] R10: 0000000000000020 R11: 0000000000000246 R12: 0000000000000000
[ 1317.922845][ C1] R13: 0000555d211890a0 R14: 00000000000000fd R15: 0000555d211890a0
[ 1317.922845][ C1] ---[ end trace 4b028c9d42567c94 ]---
[ 1318.472047][ C1] ------------[ cut here ]------------
[ 1318.477648][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1318.481101][ C1] Modules linked in:
[ 1318.481101][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1318.481101][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1318.506575][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1318.506575][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1318.506575][ C1] RSP: 0000:ffff888127153be8 EFLAGS: 00010046
[ 1318.506575][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1318.548072][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1318.548072][ C1] RBP: ffff888127153c68 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1318.548072][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1318.548072][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1318.548072][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1318.548072][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1318.548072][ C1] CR2: 00007f298b128000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1318.548072][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1318.548072][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1318.548072][ C1] Call Trace:
[ 1318.548072][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1318.548072][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1318.548072][ C1] __run_hrtimer+0x48b/0xd20
[ 1318.548072][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1318.548072][ C1] ? hrtimer_init+0x570/0x570
[ 1318.548072][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1318.548072][ C1] ? asm_sysvec_apic_timer_interrupt+0xa/0x20
[ 1318.548072][ C1] sysvec_apic_timer_interrupt+0x6a/0xf0
[ 1318.548072][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1318.548072][ C1] RIP: 0033:0x55797fe20048
[ 1318.548072][ C1] Code: d6 3e ff ff 48 8b 83 a0 00 00 00 e9 ab fd ff ff 66 90 48 8d 6f 18 89 74 24 0c 48 89 ef e8 a8 41 ff ff 48 83 bb 98 00 00 00 00 <8b> 74 24 0c 0f 84 c6 00 00 00 48 89 ef e8 9e 3e ff ff 48 8b 83 98
[ 1318.548072][ C1] RSP: 002b:00007f2983ffe7e0 EFLAGS: 00000246
[ 1318.548072][ C1] RAX: 0000000000000000 RBX: 00007f29840aa450 RCX: 0000000000000000
[ 1318.548072][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 1318.548072][ C1] RBP: 00007f29840aa468 R08: 00007f29840aa468 R09: 0000000000000000
[ 1318.548072][ C1] R10: 0000557980097280 R11: 0000000000000000 R12: 00007f29840aa450
[ 1318.548072][ C1] R13: 0000000000000000 R14: 00007f29840aa450 R15: 00007f29780138c0
[ 1318.548072][ C1] ---[ end trace 4b028c9d42567c95 ]---
[ 1318.757830][ C1] ------------[ cut here ]------------
[ 1318.763374][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1318.767090][ C1] Modules linked in:
[ 1318.767090][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1318.767090][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1318.767090][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1318.767090][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1318.767090][ C1] RSP: 0000:ffff888127153be8 EFLAGS: 00010046
[ 1318.767090][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1318.767090][ C1] RDX: 0000000000010000 RSI: 0000000000000011 RDI: 0000000000000001
[ 1318.767090][ C1] RBP: ffff888127153c68 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1318.767090][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1318.767090][ C1] R13: 0000000000000000 R14: 0000000000000011 R15: ffff88813fd27b00
[ 1318.767090][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1318.767090][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1318.767090][ C1] CR2: 00007f298b128000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1318.767090][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1318.767090][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1318.767090][ C1] Call Trace:
[ 1318.767090][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1318.767090][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1318.767090][ C1] __run_hrtimer+0x48b/0xd20
[ 1318.767090][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1318.767090][ C1] ? hrtimer_init+0x570/0x570
[ 1318.767090][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1318.767090][ C1] ? asm_sysvec_apic_timer_interrupt+0xa/0x20
[ 1318.767090][ C1] sysvec_apic_timer_interrupt+0x6a/0xf0
[ 1318.767090][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1318.767090][ C1] RIP: 0033:0x55797fe20048
[ 1318.767090][ C1] Code: d6 3e ff ff 48 8b 83 a0 00 00 00 e9 ab fd ff ff 66 90 48 8d 6f 18 89 74 24 0c 48 89 ef e8 a8 41 ff ff 48 83 bb 98 00 00 00 00 <8b> 74 24 0c 0f 84 c6 00 00 00 48 89 ef e8 9e 3e ff ff 48 8b 83 98
[ 1318.767090][ C1] RSP: 002b:00007f2983ffe7e0 EFLAGS: 00000246
[ 1318.767090][ C1] RAX: 0000000000000000 RBX: 00007f29840aa450 RCX: 0000000000000000
[ 1318.767090][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 1318.767090][ C1] RBP: 00007f29840aa468 R08: 00007f29840aa468 R09: 0000000000000000
[ 1318.767090][ C1] R10: 0000557980097280 R11: 0000000000000000 R12: 00007f29840aa450
[ 1318.767090][ C1] R13: 0000000000000000 R14: 00007f29840aa450 R15: 00007f29780138c0
[ 1318.767090][ C1] ---[ end trace 4b028c9d42567c96 ]---
[ 1319.043076][ C1] ------------[ cut here ]------------
[ 1319.048647][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1319.052221][ C1] Modules linked in:
[ 1319.052221][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1319.052221][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1319.052221][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1319.052221][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1319.052221][ C1] RSP: 0000:ffff888127153be8 EFLAGS: 00010046
[ 1319.052221][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1319.052221][ C1] RDX: 0000000000010000 RSI: 0000000000000011 RDI: 0000000000000001
[ 1319.052221][ C1] RBP: ffff888127153c68 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1319.052221][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1319.052221][ C1] R13: 0000000000000000 R14: 0000000000000011 R15: ffff88813fd27b00
[ 1319.052221][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1319.052221][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1319.052221][ C1] CR2: 00007f298b128000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1319.052221][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1319.052221][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1319.052221][ C1] Call Trace:
[ 1319.052221][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1319.052221][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1319.052221][ C1] __run_hrtimer+0x48b/0xd20
[ 1319.052221][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1319.052221][ C1] ? hrtimer_init+0x570/0x570
[ 1319.052221][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1319.052221][ C1] ? asm_sysvec_apic_timer_interrupt+0xa/0x20
[ 1319.052221][ C1] sysvec_apic_timer_interrupt+0x6a/0xf0
[ 1319.052221][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1319.052221][ C1] RIP: 0033:0x55797fe20048
[ 1319.052221][ C1] Code: d6 3e ff ff 48 8b 83 a0 00 00 00 e9 ab fd ff ff 66 90 48 8d 6f 18 89 74 24 0c 48 89 ef e8 a8 41 ff ff 48 83 bb 98 00 00 00 00 <8b> 74 24 0c 0f 84 c6 00 00 00 48 89 ef e8 9e 3e ff ff 48 8b 83 98
[ 1319.052221][ C1] RSP: 002b:00007f2983ffe7e0 EFLAGS: 00000246
[ 1319.052221][ C1] RAX: 0000000000000000 RBX: 00007f29840aa450 RCX: 0000000000000000
[ 1319.052221][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 1319.052221][ C1] RBP: 00007f29840aa468 R08: 00007f29840aa468 R09: 0000000000000000
[ 1319.052221][ C1] R10: 0000557980097280 R11: 0000000000000000 R12: 00007f29840aa450
[ 1319.052221][ C1] R13: 0000000000000000 R14: 00007f29840aa450 R15: 00007f29780138c0
06:44:15 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x0, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1319.052221][ C1] ---[ end trace 4b028c9d42567c97 ]---
[ 1319.348485][ T4168] systemd-journald[4168]: File /run/log/journal/04d8c135ee6b410280ba31a58c89679d/system.journal corrupted or uncleanly shut down, renaming and replacing.
[ 1319.428957][ C1] ------------[ cut here ]------------
[ 1319.434588][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1319.437935][ C1] Modules linked in:
[ 1319.437935][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1319.457989][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1319.457989][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1319.457989][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1319.488096][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1319.488096][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1319.488096][ C1] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001
[ 1319.488096][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1319.488096][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1319.488096][ C1] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fd27b00
[ 1319.488096][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1319.488096][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1319.488096][ C1] CR2: 00007f6c19e7b030 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1319.488096][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1319.488096][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1319.488096][ C1] Call Trace:
[ 1319.488096][ C1]
[ 1319.488096][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1319.488096][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1319.488096][ C1] __run_hrtimer+0x48b/0xd20
[ 1319.488096][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1319.488096][ C1] ? hrtimer_init+0x570/0x570
[ 1319.488096][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1319.488096][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1319.488096][ C1]
[ 1319.488096][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1319.488096][ C1] RIP: 0010:__msan_instrument_asm_store+0x111/0x130
[ 1319.488096][ C1] Code: f2 ff ff e8 31 ed ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1b e8 dc e3 0b ff f7 c3 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 51 fd 25
[ 1319.488096][ C1] RSP: 0018:ffff888158883b38 EFLAGS: 00000282
[ 1319.488096][ C1] RAX: 0000000000000000 RBX: 0000000000000008 RCX: ffff8880ba513e2e
[ 1319.488096][ C1] RDX: 00006180076f4170 RSI: 0000000000000001 RDI: ffffea00076f4170
[ 1319.488096][ C1] RBP: ffff888158883b50 R08: ffffffff82065ac0 R09: ffff88813fffa000
[ 1319.488096][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 00000000066200cc
[ 1319.488096][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: ffffea00076f4170
[ 1319.488096][ C1] ? __do_softirq+0x715/0x715
[ 1319.488096][ C1] ? __set_page_dirty_no_writeback+0x180/0x2a0
[ 1319.488096][ C1] __set_page_dirty_no_writeback+0x1d8/0x2a0
[ 1319.488096][ C1] set_page_dirty+0x3b5/0x6c0
[ 1319.488096][ C1] ? write_one_page+0x920/0x920
[ 1319.488096][ C1] shmem_fallocate+0x1319/0x1c10
[ 1319.488096][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1319.488096][ C1] vfs_fallocate+0xd72/0x1550
[ 1319.488096][ C1] __se_sys_fallocate+0x13c/0x210
[ 1319.488096][ C1] __x64_sys_fallocate+0x56/0x70
[ 1319.488096][ C1] do_syscall_64+0x9f/0x140
[ 1319.488096][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1319.488096][ C1] RIP: 0033:0x7f6c19130bc6
[ 1319.488096][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1319.488096][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1319.488096][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1319.488096][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1319.488096][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1319.488096][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1319.488096][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1319.488096][ C1] ---[ end trace 4b028c9d42567c98 ]---
[ 1319.853753][ C1] ------------[ cut here ]------------
[ 1319.859305][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1319.862987][ C1] Modules linked in:
[ 1319.862987][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1319.862987][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1319.862987][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1319.862987][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1319.862987][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1319.862987][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1319.862987][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1319.862987][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1319.862987][ C1] R10: 00000000b56c2fd0 R11: ffff8880ba513e80 R12: 0000000000000000
[ 1319.862987][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1319.862987][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1319.862987][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1319.862987][ C1] CR2: 00007f6c19e7b030 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1319.862987][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1319.862987][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1319.862987][ C1] Call Trace:
[ 1319.862987][ C1]
[ 1319.862987][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1319.862987][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1319.862987][ C1] __run_hrtimer+0x48b/0xd20
[ 1319.862987][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1319.862987][ C1] ? hrtimer_init+0x570/0x570
[ 1319.862987][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1319.862987][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1319.862987][ C1]
[ 1319.862987][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1319.862987][ C1] RIP: 0010:__msan_instrument_asm_store+0x111/0x130
[ 1319.862987][ C1] Code: f2 ff ff e8 31 ed ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1b e8 dc e3 0b ff f7 c3 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 51 fd 25
[ 1319.862987][ C1] RSP: 0018:ffff888158883b38 EFLAGS: 00000282
[ 1319.862987][ C1] RAX: 0000000000000000 RBX: 0000000000000008 RCX: ffff8880ba513e2e
[ 1319.862987][ C1] RDX: 00006180076f4170 RSI: 0000000000000001 RDI: ffffea00076f4170
[ 1319.862987][ C1] RBP: ffff888158883b50 R08: ffffffff82065ac0 R09: ffff88813fffa000
[ 1319.862987][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 00000000066200cc
[ 1319.862987][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: ffffea00076f4170
[ 1319.862987][ C1] ? __do_softirq+0x715/0x715
[ 1319.862987][ C1] ? __set_page_dirty_no_writeback+0x180/0x2a0
[ 1319.862987][ C1] __set_page_dirty_no_writeback+0x1d8/0x2a0
[ 1319.862987][ C1] set_page_dirty+0x3b5/0x6c0
[ 1319.862987][ C1] ? write_one_page+0x920/0x920
[ 1319.862987][ C1] shmem_fallocate+0x1319/0x1c10
[ 1319.862987][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1319.862987][ C1] vfs_fallocate+0xd72/0x1550
[ 1319.862987][ C1] __se_sys_fallocate+0x13c/0x210
[ 1319.862987][ C1] __x64_sys_fallocate+0x56/0x70
[ 1319.862987][ C1] do_syscall_64+0x9f/0x140
[ 1319.862987][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1319.862987][ C1] RIP: 0033:0x7f6c19130bc6
[ 1319.862987][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1319.862987][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1319.862987][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1319.862987][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1319.862987][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1319.862987][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1319.862987][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1319.862987][ C1] ---[ end trace 4b028c9d42567c99 ]---
[ 1319.862987][ C1] ------------[ cut here ]------------
[ 1319.862987][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1319.862987][ C1] Modules linked in:
[ 1319.862987][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1319.862987][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1319.862987][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1319.862987][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1319.862987][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1319.862987][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1319.862987][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1319.862987][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1319.862987][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1319.862987][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1319.862987][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1319.862987][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1319.862987][ C1] CR2: 00007f6c19e7b030 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1319.862987][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1319.862987][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1319.862987][ C1] Call Trace:
[ 1319.862987][ C1]
[ 1319.862987][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1319.862987][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1319.862987][ C1] __run_hrtimer+0x48b/0xd20
[ 1319.862987][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1319.862987][ C1] ? hrtimer_init+0x570/0x570
[ 1319.862987][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1319.862987][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1319.862987][ C1]
[ 1319.862987][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1319.862987][ C1] RIP: 0010:__msan_instrument_asm_store+0x111/0x130
[ 1319.862987][ C1] Code: f2 ff ff e8 31 ed ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1b e8 dc e3 0b ff f7 c3 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 51 fd 25
[ 1319.862987][ C1] RSP: 0018:ffff888158883b38 EFLAGS: 00000282
[ 1319.862987][ C1] RAX: 0000000000000000 RBX: 0000000000000008 RCX: ffff8880ba513e2e
[ 1319.862987][ C1] RDX: 00006180076f4170 RSI: 0000000000000001 RDI: ffffea00076f4170
[ 1319.862987][ C1] RBP: ffff888158883b50 R08: ffffffff82065ac0 R09: ffff88813fffa000
[ 1319.862987][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 00000000066200cc
[ 1319.862987][ C1] R13: 0000000000000000 R14: 0000000000000008 R15: ffffea00076f4170
[ 1319.862987][ C1] ? __do_softirq+0x715/0x715
[ 1319.862987][ C1] ? __set_page_dirty_no_writeback+0x180/0x2a0
[ 1319.862987][ C1] __set_page_dirty_no_writeback+0x1d8/0x2a0
[ 1319.862987][ C1] set_page_dirty+0x3b5/0x6c0
[ 1319.862987][ C1] ? write_one_page+0x920/0x920
[ 1319.862987][ C1] shmem_fallocate+0x1319/0x1c10
[ 1319.862987][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1319.862987][ C1] vfs_fallocate+0xd72/0x1550
[ 1319.862987][ C1] __se_sys_fallocate+0x13c/0x210
[ 1319.862987][ C1] __x64_sys_fallocate+0x56/0x70
[ 1319.862987][ C1] do_syscall_64+0x9f/0x140
[ 1319.862987][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1319.862987][ C1] RIP: 0033:0x7f6c19130bc6
[ 1319.862987][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1319.862987][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1319.862987][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1319.862987][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1319.862987][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1319.862987][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1319.862987][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1319.862987][ C1] ---[ end trace 4b028c9d42567c9a ]---
[ 1320.758029][ C1] ------------[ cut here ]------------
[ 1320.758029][ C1] WARNING: CPU: 1 PID: 8512 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1320.813054][ C1] Modules linked in:
[ 1320.813054][ C1] CPU: 1 PID: 8512 Comm: kworker/1:5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1320.832739][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1320.834658][ C1] Workqueue: wg-kex-wg0 wg_packet_handshake_receive_worker
[ 1320.834658][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1320.834658][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1320.834658][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1320.834658][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888081758000
[ 1320.834658][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1320.834658][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1320.834658][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1320.834658][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1320.834658][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1320.834658][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1320.834658][ C1] CR2: 000000000b0a7404 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1320.834658][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1320.834658][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1320.834658][ C1] Call Trace:
[ 1320.966467][ C1]
[ 1320.966467][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1320.966467][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1320.966467][ C1] __run_hrtimer+0x48b/0xd20
[ 1320.966467][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1320.966467][ C1] ? hrtimer_init+0x570/0x570
[ 1320.966467][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1320.966467][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1320.966467][ C1]
[ 1320.966467][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1320.966467][ C1] RIP: 0010:virt_to_page_or_null+0xd5/0xf0
[ 1320.966467][ C1] Code: 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f 48 01 c2 e9 49 ff
[ 1321.041227][ C1] RSP: 0018:ffff888083abf198 EFLAGS: 00000282
06:44:17 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x0, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1321.041227][ C1] RAX: ffffea0002925bb0 RBX: ffff888083abf710 RCX: 0000000002925bb0
[ 1321.058067][ C1] RDX: 0000000083abf710 RSI: 0000000000000100 RDI: ffff888083abf710
[ 1321.058067][ C1] RBP: ffff888083abf1b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1321.058067][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000
[ 1321.058067][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1321.088016][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1321.088016][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1321.088016][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1321.088016][ C1] curve25519_generic+0x8a29/0x23dc0
[ 1321.088016][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1321.118006][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1321.118006][ C1] ? wg_noise_handshake_create_response+0xc5f/0x1670
[ 1321.118006][ C1] wg_noise_handshake_create_response+0xc8d/0x1670
[ 1321.118006][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1321.118006][ C1] wg_packet_send_handshake_response+0xe9/0x350
[ 1321.118006][ C1] wg_packet_handshake_receive_worker+0x7c5/0xd10
[ 1321.118006][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1321.118006][ C1] ? local_bh_enable+0x40/0x40
[ 1321.118006][ C1] process_one_work+0x1219/0x1fe0
[ 1321.118006][ C1] worker_thread+0x10ec/0x2340
[ 1321.118006][ C1] kthread+0x521/0x560
[ 1321.118006][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1321.118006][ C1] ? kthread_blkcg+0x110/0x110
[ 1321.118006][ C1] ret_from_fork+0x1f/0x30
[ 1321.118006][ C1] ---[ end trace 4b028c9d42567c9b ]---
[ 1321.206887][ C1] ------------[ cut here ]------------
[ 1321.212435][ C1] WARNING: CPU: 1 PID: 8512 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1321.216052][ C1] Modules linked in:
[ 1321.216052][ C1] CPU: 1 PID: 8512 Comm: kworker/1:5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1321.216052][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1321.216052][ C1] Workqueue: wg-kex-wg0 wg_packet_handshake_receive_worker
[ 1321.216052][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1321.216052][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1321.216052][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1321.216052][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888081758000
[ 1321.216052][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1321.216052][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1321.216052][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1321.216052][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1321.216052][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1321.216052][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1321.216052][ C1] CR2: 000000000b0a7404 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1321.216052][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1321.216052][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1321.216052][ C1] Call Trace:
[ 1321.216052][ C1]
[ 1321.216052][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1321.216052][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1321.216052][ C1] __run_hrtimer+0x48b/0xd20
[ 1321.216052][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1321.216052][ C1] ? hrtimer_init+0x570/0x570
[ 1321.216052][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1321.216052][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1321.216052][ C1]
[ 1321.216052][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1321.216052][ C1] RIP: 0010:virt_to_page_or_null+0xd5/0xf0
[ 1321.216052][ C1] Code: 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f 48 01 c2 e9 49 ff
[ 1321.216052][ C1] RSP: 0018:ffff888083abf198 EFLAGS: 00000282
[ 1321.216052][ C1] RAX: ffffea0002925bb0 RBX: ffff888083abf710 RCX: 0000000002925bb0
[ 1321.216052][ C1] RDX: 0000000083abf710 RSI: 0000000000000100 RDI: ffff888083abf710
[ 1321.216052][ C1] RBP: ffff888083abf1b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1321.216052][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000
[ 1321.216052][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1321.216052][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1321.216052][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1321.216052][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1321.216052][ C1] curve25519_generic+0x8a29/0x23dc0
[ 1321.216052][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1321.216052][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1321.216052][ C1] ? wg_noise_handshake_create_response+0xc5f/0x1670
[ 1321.216052][ C1] wg_noise_handshake_create_response+0xc8d/0x1670
[ 1321.216052][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1321.216052][ C1] wg_packet_send_handshake_response+0xe9/0x350
[ 1321.216052][ C1] wg_packet_handshake_receive_worker+0x7c5/0xd10
[ 1321.216052][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1321.216052][ C1] ? local_bh_enable+0x40/0x40
[ 1321.216052][ C1] process_one_work+0x1219/0x1fe0
[ 1321.216052][ C1] worker_thread+0x10ec/0x2340
[ 1321.216052][ C1] kthread+0x521/0x560
[ 1321.216052][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1321.216052][ C1] ? kthread_blkcg+0x110/0x110
[ 1321.216052][ C1] ret_from_fork+0x1f/0x30
[ 1321.216052][ C1] ---[ end trace 4b028c9d42567c9c ]---
[ 1321.608852][ C1] ------------[ cut here ]------------
[ 1321.614410][ C1] WARNING: CPU: 1 PID: 8512 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1321.618056][ C1] Modules linked in:
[ 1321.618056][ C1] CPU: 1 PID: 8512 Comm: kworker/1:5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1321.618056][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1321.618056][ C1] Workqueue: wg-kex-wg0 wg_packet_handshake_receive_worker
[ 1321.618056][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1321.618056][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1321.618056][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1321.618056][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888081758000
[ 1321.618056][ C1] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001
[ 1321.618056][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1321.618056][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1321.618056][ C1] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fd27b00
[ 1321.618056][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1321.618056][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1321.618056][ C1] CR2: 000000000b0a7404 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1321.618056][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1321.618056][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1321.618056][ C1] Call Trace:
[ 1321.618056][ C1]
[ 1321.618056][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1321.618056][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1321.618056][ C1] __run_hrtimer+0x48b/0xd20
[ 1321.618056][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1321.618056][ C1] ? hrtimer_init+0x570/0x570
[ 1321.618056][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1321.618056][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1321.618056][ C1]
[ 1321.618056][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1321.618056][ C1] RIP: 0010:virt_to_page_or_null+0xd5/0xf0
[ 1321.618056][ C1] Code: 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 48 c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d 48 3d ff ff ff 1f 77 9c 48 8b 15 7b b2 23 0f 48 01 c2 e9 49 ff
[ 1321.618056][ C1] RSP: 0018:ffff888083abf198 EFLAGS: 00000282
[ 1321.618056][ C1] RAX: ffffea0002925bb0 RBX: ffff888083abf710 RCX: 0000000002925bb0
[ 1321.618056][ C1] RDX: 0000000083abf710 RSI: 0000000000000100 RDI: ffff888083abf710
[ 1321.618056][ C1] RBP: ffff888083abf1b8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1321.618056][ C1] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000
[ 1321.618056][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1321.618056][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1321.618056][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1321.618056][ C1] __msan_metadata_ptr_for_store_8+0x13/0x20
[ 1321.618056][ C1] curve25519_generic+0x8a29/0x23dc0
[ 1321.618056][ C1] ? __msan_metadata_ptr_for_store_4+0x13/0x20
[ 1321.618056][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1321.618056][ C1] ? wg_noise_handshake_create_response+0xc5f/0x1670
[ 1321.618056][ C1] wg_noise_handshake_create_response+0xc8d/0x1670
[ 1321.618056][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1321.618056][ C1] wg_packet_send_handshake_response+0xe9/0x350
[ 1321.618056][ C1] wg_packet_handshake_receive_worker+0x7c5/0xd10
[ 1321.618056][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1321.618056][ C1] ? local_bh_enable+0x40/0x40
[ 1321.618056][ C1] process_one_work+0x1219/0x1fe0
[ 1321.618056][ C1] worker_thread+0x10ec/0x2340
[ 1321.618056][ C1] kthread+0x521/0x560
[ 1321.618056][ C1] ? process_one_work+0x1fe0/0x1fe0
[ 1321.618056][ C1] ? kthread_blkcg+0x110/0x110
[ 1321.618056][ C1] ret_from_fork+0x1f/0x30
[ 1321.618056][ C1] ---[ end trace 4b028c9d42567c9d ]---
[ 1322.111877][ C1] ------------[ cut here ]------------
[ 1322.117526][ C1] WARNING: CPU: 1 PID: 4210 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1322.120931][ C1] Modules linked in:
[ 1322.120931][ C1] CPU: 1 PID: 4210 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1322.120931][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1322.151130][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1322.151130][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1322.151130][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1322.151130][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888114571f40
[ 1322.151130][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1322.151130][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1322.151130][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1322.151130][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1322.151130][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1322.151130][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1322.151130][ C1] CR2: 000000000b0a7404 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1322.248224][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1322.248224][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1322.248224][ C1] Call Trace:
[ 1322.270401][ C1]
[ 1322.270401][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.275018][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1322.275018][ C1] __run_hrtimer+0x48b/0xd20
[ 1322.275018][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1322.275018][ C1] ? hrtimer_init+0x570/0x570
[ 1322.275018][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1322.275018][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1322.275018][ C1]
[ 1322.275018][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1322.275018][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1322.275018][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1322.275018][ C1] RSP: 0018:ffff8881603a3280 EFLAGS: 00000282
[ 1322.275018][ C1] RAX: ffff888158cac768 RBX: ffff888158cac768 RCX: 0000000158cac768
[ 1322.275018][ C1] RDX: 00000001594ac768 RSI: 0000000000000001 RDI: ffff8881594ac768
[ 1322.275018][ C1] RBP: ffff8881603a3288 R08: ffffea000000000f R09: ffff88813fffa000
[ 1322.275018][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881594ac768
[ 1322.275018][ C1] R13: ffff8881145729c8 R14: ffff8881594ac768 R15: 0000000000000000
[ 1322.275018][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.275018][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1322.275018][ C1] zap_pte_range+0x4f0/0x3cb0
[ 1322.275018][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.275018][ C1] unmap_page_range+0x1154/0x1440
[ 1322.275018][ C1] unmap_single_vma+0x56b/0x750
[ 1322.275018][ C1] unmap_vmas+0x3c8/0x500
[ 1322.275018][ C1] exit_mmap+0x5f1/0xb80
[ 1322.275018][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1322.275018][ C1] __mmput+0x1b7/0x630
[ 1322.275018][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1322.275018][ C1] mmput+0x8c/0xb0
[ 1322.458110][ C1] exit_mm+0x7a9/0x9a0
06:44:18 executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
recvmmsg(r0, &(0x7f00000003c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
[ 1322.458110][ C1] do_exit+0xdbb/0x3c20
[ 1322.466782][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.466782][ C1] do_group_exit+0x1e1/0x3c0
[ 1322.466782][ C1] get_signal+0x2e5f/0x39e0
[ 1322.466782][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1322.488178][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1322.488178][ C1] ? arch_do_signal_or_restart+0x69/0xe10
[ 1322.488178][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1322.488178][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.488178][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1322.488178][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.518033][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.518033][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1322.518033][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1322.518033][ C1] ret_from_fork+0x15/0x30
[ 1322.518033][ C1] RIP: 0023:0x8096884
[ 1322.548208][ C1] Code: Unable to access opcode bytes at RIP 0x809685a.
[ 1322.548208][ C1] RSP: 002b:00000000f55c07a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[ 1322.548208][ C1] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f55c07a4
[ 1322.548208][ C1] RDX: 00000000f55c0ba8 RSI: 00000000ff94d72c RDI: 00000000f55c0ba8
[ 1322.578029][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1322.578029][ C1] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[ 1322.578029][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1322.578029][ C1] ---[ end trace 4b028c9d42567c9e ]---
[ 1322.612820][ C1] ------------[ cut here ]------------
[ 1322.618439][ C1] WARNING: CPU: 1 PID: 4210 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1322.621835][ C1] Modules linked in:
[ 1322.621835][ C1] CPU: 1 PID: 4210 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1322.621835][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1322.621835][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1322.621835][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1322.621835][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1322.621835][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888114571f40
[ 1322.621835][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1322.621835][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1322.621835][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1322.621835][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1322.621835][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1322.621835][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1322.621835][ C1] CR2: 000000000b0a7404 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1322.621835][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1322.621835][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1322.768191][ C1] Call Trace:
[ 1322.768191][ C1]
[ 1322.768191][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.768191][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1322.768191][ C1] __run_hrtimer+0x48b/0xd20
[ 1322.768191][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1322.768191][ C1] ? hrtimer_init+0x570/0x570
[ 1322.768191][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1322.768191][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1322.768191][ C1]
[ 1322.768191][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1322.768191][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1322.768191][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1322.768191][ C1] RSP: 0018:ffff8881603a3280 EFLAGS: 00000282
[ 1322.768191][ C1] RAX: ffff888158cac768 RBX: ffff888158cac768 RCX: 0000000158cac768
[ 1322.768191][ C1] RDX: 00000001594ac768 RSI: 0000000000000001 RDI: ffff8881594ac768
[ 1322.768191][ C1] RBP: ffff8881603a3288 R08: ffffea000000000f R09: ffff88813fffa000
[ 1322.768191][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881594ac768
[ 1322.768191][ C1] R13: ffff8881145729c8 R14: ffff8881594ac768 R15: 0000000000000000
[ 1322.768191][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.768191][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1322.768191][ C1] zap_pte_range+0x4f0/0x3cb0
[ 1322.768191][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1322.768191][ C1] unmap_page_range+0x1154/0x1440
[ 1322.768191][ C1] unmap_single_vma+0x56b/0x750
[ 1322.768191][ C1] unmap_vmas+0x3c8/0x500
[ 1322.768191][ C1] exit_mmap+0x5f1/0xb80
[ 1322.768191][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1322.768191][ C1] __mmput+0x1b7/0x630
[ 1322.768191][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1322.768191][ C1] mmput+0x8c/0xb0
[ 1322.768191][ C1] exit_mm+0x7a9/0x9a0
[ 1322.768191][ C1] do_exit+0xdbb/0x3c20
[ 1322.768191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.768191][ C1] do_group_exit+0x1e1/0x3c0
[ 1322.768191][ C1] get_signal+0x2e5f/0x39e0
[ 1322.768191][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1322.768191][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1322.768191][ C1] ? arch_do_signal_or_restart+0x69/0xe10
[ 1322.998099][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1322.998099][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.998099][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1322.998099][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1322.998099][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.028191][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1323.028191][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1323.039256][ C1] ret_from_fork+0x15/0x30
[ 1323.039256][ C1] RIP: 0023:0x8096884
[ 1323.039256][ C1] Code: Unable to access opcode bytes at RIP 0x809685a.
06:44:19 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(r0)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1323.039256][ C1] RSP: 002b:00000000f55c07a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[ 1323.039256][ C1] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f55c07a4
[ 1323.039256][ C1] RDX: 00000000f55c0ba8 RSI: 00000000ff94d72c RDI: 00000000f55c0ba8
[ 1323.039256][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1323.039256][ C1] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[ 1323.039256][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1323.039256][ C1] ---[ end trace 4b028c9d42567c9f ]---
[ 1323.114567][ C1] ------------[ cut here ]------------
[ 1323.120270][ C1] WARNING: CPU: 1 PID: 4210 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1323.123641][ C1] Modules linked in:
[ 1323.123641][ C1] CPU: 1 PID: 4210 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1323.123641][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1323.148035][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1323.148035][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1323.148035][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1323.148035][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888114571f40
[ 1323.148035][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1323.148035][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1323.148035][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1323.148035][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1323.148035][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1323.148035][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1323.148035][ C1] CR2: 000000000b0a7404 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1323.148035][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1323.148035][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1323.148035][ C1] Call Trace:
[ 1323.148035][ C1]
[ 1323.148035][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1323.148035][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1323.148035][ C1] __run_hrtimer+0x48b/0xd20
[ 1323.148035][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1323.148035][ C1] ? hrtimer_init+0x570/0x570
[ 1323.148035][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1323.148035][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1323.148035][ C1]
[ 1323.148035][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1323.148035][ C1] RIP: 0010:kmsan_get_metadata+0x6/0x180
[ 1323.148035][ C1] Code: c7 48 c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 <41> 56 53 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7
[ 1323.148035][ C1] RSP: 0018:ffff8881603a3280 EFLAGS: 00000282
[ 1323.148035][ C1] RAX: ffff888158cac768 RBX: ffff888158cac768 RCX: 0000000158cac768
[ 1323.148035][ C1] RDX: 00000001594ac768 RSI: 0000000000000001 RDI: ffff8881594ac768
[ 1323.148035][ C1] RBP: ffff8881603a3288 R08: ffffea000000000f R09: ffff88813fffa000
[ 1323.148035][ C1] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881594ac768
[ 1323.148035][ C1] R13: ffff8881145729c8 R14: ffff8881594ac768 R15: 0000000000000000
[ 1323.148035][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1323.148035][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1323.148035][ C1] zap_pte_range+0x4f0/0x3cb0
[ 1323.148035][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1323.148035][ C1] unmap_page_range+0x1154/0x1440
[ 1323.148035][ C1] unmap_single_vma+0x56b/0x750
[ 1323.148035][ C1] unmap_vmas+0x3c8/0x500
[ 1323.148035][ C1] exit_mmap+0x5f1/0xb80
[ 1323.148035][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1323.148035][ C1] __mmput+0x1b7/0x630
[ 1323.148035][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1323.148035][ C1] mmput+0x8c/0xb0
[ 1323.148035][ C1] exit_mm+0x7a9/0x9a0
[ 1323.148035][ C1] do_exit+0xdbb/0x3c20
[ 1323.148035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.148035][ C1] do_group_exit+0x1e1/0x3c0
[ 1323.148035][ C1] get_signal+0x2e5f/0x39e0
[ 1323.148035][ C1] ? kmsan_internal_set_origin+0x82/0xc0
[ 1323.148035][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1323.148035][ C1] ? arch_do_signal_or_restart+0x69/0xe10
[ 1323.148035][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1323.148035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.148035][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1323.148035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.148035][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.148035][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1323.148035][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1323.148035][ C1] ret_from_fork+0x15/0x30
[ 1323.148035][ C1] RIP: 0023:0x8096884
[ 1323.148035][ C1] Code: Unable to access opcode bytes at RIP 0x809685a.
[ 1323.148035][ C1] RSP: 002b:00000000f55c07a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078
[ 1323.148035][ C1] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f55c07a4
[ 1323.148035][ C1] RDX: 00000000f55c0ba8 RSI: 00000000ff94d72c RDI: 00000000f55c0ba8
[ 1323.148035][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1323.148035][ C1] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000
[ 1323.148035][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1323.148035][ C1] ---[ end trace 4b028c9d42567ca0 ]---
06:44:19 executing program 5:
openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x180081, 0x0)
[ 1323.709757][ C1] ------------[ cut here ]------------
[ 1323.715401][ C1] WARNING: CPU: 1 PID: 8651 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1323.718727][ C1] Modules linked in:
[ 1323.718727][ C1] CPU: 1 PID: 8651 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1323.718727][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1323.718727][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1323.718727][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1323.718727][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1323.718727][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881272c5dc0
[ 1323.718727][ C1] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001
[ 1323.718727][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1323.718727][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1323.809865][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1323.809865][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1323.809865][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1323.809865][ C1] CR2: 00000000090d52c5 CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1323.809865][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1323.809865][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1323.809865][ C1] Call Trace:
[ 1323.809865][ C1]
[ 1323.809865][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1323.809865][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1323.809865][ C1] __run_hrtimer+0x48b/0xd20
[ 1323.809865][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1323.809865][ C1] ? hrtimer_init+0x570/0x570
[ 1323.809865][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1323.809865][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1323.809865][ C1]
[ 1323.809865][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1323.809865][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x60
[ 1323.809865][ C1] Code: 00 4c 89 63 08 44 89 ab 90 0c 00 00 4c 89 ff 4c 89 f6 e8 82 d9 7f 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc cc cc 55 <48> 89 e5 48 8b 45 08 65 48 8b 0c 25 00 6d 01 00 65 8b 15 00 39 45
[ 1323.809865][ C1] RSP: 0018:ffff88808faab400 EFLAGS: 00000246
[ 1323.809865][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1323.809865][ C1] RDX: ffff8881272c5dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1323.809865][ C1] RBP: ffff88808faab678 R08: ffffffff821ee64a R09: ffff88813fffa000
[ 1323.809865][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1323.809865][ C1] R13: dead0000000000ff R14: 0000000000000000 R15: 0000000000000000
[ 1323.809865][ C1] ? copy_pte_range+0x165a/0x50c0
[ 1323.809865][ C1] ? copy_pte_range+0x167b/0x50c0
[ 1323.809865][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1323.809865][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1323.809865][ C1] copy_page_range+0x1a81/0x2410
[ 1323.809865][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1323.809865][ C1] dup_mmap+0x1674/0x2250
[ 1323.809865][ C1] dup_mm+0x1f0/0x7c0
[ 1323.809865][ C1] copy_process+0x3ec4/0x9b80
[ 1323.809865][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1323.809865][ C1] kernel_clone+0x4ea/0x1350
[ 1323.809865][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1323.809865][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1323.809865][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1323.809865][ C1] __do_fast_syscall_32+0x127/0x180
[ 1323.809865][ C1] do_fast_syscall_32+0x77/0xd0
[ 1323.809865][ C1] do_SYSENTER_32+0x73/0x90
[ 1323.809865][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1323.809865][ C1] RIP: 0023:0xf7fac549
[ 1323.809865][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1323.809865][ C1] RSP: 002b:00000000ff8bfcc0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1323.809865][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1323.809865][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009fa63e8
[ 1323.809865][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1323.809865][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1323.809865][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1323.809865][ C1] ---[ end trace 4b028c9d42567ca1 ]---
[ 1324.167180][ C1] ------------[ cut here ]------------
[ 1324.172733][ C1] WARNING: CPU: 1 PID: 8651 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1324.176416][ C1] Modules linked in:
[ 1324.176416][ C1] CPU: 1 PID: 8651 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1324.176416][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1324.176416][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1324.176416][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1324.176416][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1324.176416][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881272c5dc0
[ 1324.176416][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1324.176416][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1324.176416][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1324.176416][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1324.176416][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1324.176416][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1324.176416][ C1] CR2: 00000000090d52c5 CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1324.176416][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1324.176416][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1324.176416][ C1] Call Trace:
[ 1324.176416][ C1]
[ 1324.176416][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1324.176416][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1324.176416][ C1] __run_hrtimer+0x48b/0xd20
[ 1324.176416][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1324.176416][ C1] ? hrtimer_init+0x570/0x570
[ 1324.176416][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1324.176416][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1324.176416][ C1]
[ 1324.176416][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1324.176416][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x60
[ 1324.176416][ C1] Code: 00 4c 89 63 08 44 89 ab 90 0c 00 00 4c 89 ff 4c 89 f6 e8 82 d9 7f 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc cc cc 55 <48> 89 e5 48 8b 45 08 65 48 8b 0c 25 00 6d 01 00 65 8b 15 00 39 45
[ 1324.176416][ C1] RSP: 0018:ffff88808faab400 EFLAGS: 00000246
[ 1324.176416][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1324.176416][ C1] RDX: ffff8881272c5dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1324.176416][ C1] RBP: ffff88808faab678 R08: ffffffff821ee64a R09: ffff88813fffa000
[ 1324.176416][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1324.176416][ C1] R13: dead0000000000ff R14: 0000000000000000 R15: 0000000000000000
[ 1324.176416][ C1] ? copy_pte_range+0x165a/0x50c0
[ 1324.176416][ C1] ? copy_pte_range+0x167b/0x50c0
[ 1324.176416][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1324.176416][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1324.176416][ C1] copy_page_range+0x1a81/0x2410
[ 1324.176416][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1324.176416][ C1] dup_mmap+0x1674/0x2250
[ 1324.176416][ C1] dup_mm+0x1f0/0x7c0
[ 1324.176416][ C1] copy_process+0x3ec4/0x9b80
[ 1324.176416][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1324.176416][ C1] kernel_clone+0x4ea/0x1350
[ 1324.176416][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1324.176416][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1324.176416][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1324.176416][ C1] __do_fast_syscall_32+0x127/0x180
[ 1324.176416][ C1] do_fast_syscall_32+0x77/0xd0
[ 1324.176416][ C1] do_SYSENTER_32+0x73/0x90
[ 1324.176416][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1324.176416][ C1] RIP: 0023:0xf7fac549
[ 1324.176416][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1324.176416][ C1] RSP: 002b:00000000ff8bfcc0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1324.176416][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1324.176416][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009fa63e8
[ 1324.176416][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1324.176416][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1324.176416][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1324.176416][ C1] ---[ end trace 4b028c9d42567ca2 ]---
[ 1324.624348][ C1] ------------[ cut here ]------------
[ 1324.629925][ C1] WARNING: CPU: 1 PID: 8651 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1324.633556][ C1] Modules linked in:
[ 1324.633556][ C1] CPU: 1 PID: 8651 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1324.633556][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1324.633556][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1324.633556][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1324.633556][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1324.633556][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8881272c5dc0
[ 1324.633556][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1324.633556][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1324.633556][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1324.633556][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1324.633556][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:0000000009fa6380
[ 1324.633556][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1324.633556][ C1] CR2: 00000000090d52c5 CR3: 000000008faa0000 CR4: 00000000001506e0
[ 1324.633556][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1324.633556][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1324.633556][ C1] Call Trace:
[ 1324.633556][ C1]
[ 1324.633556][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1324.633556][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1324.633556][ C1] __run_hrtimer+0x48b/0xd20
[ 1324.633556][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1324.633556][ C1] ? hrtimer_init+0x570/0x570
[ 1324.633556][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1324.633556][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1324.633556][ C1]
[ 1324.633556][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1324.633556][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x1/0x60
[ 1324.633556][ C1] Code: 00 4c 89 63 08 44 89 ab 90 0c 00 00 4c 89 ff 4c 89 f6 e8 82 d9 7f 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc cc cc 55 <48> 89 e5 48 8b 45 08 65 48 8b 0c 25 00 6d 01 00 65 8b 15 00 39 45
[ 1324.633556][ C1] RSP: 0018:ffff88808faab400 EFLAGS: 00000246
[ 1324.633556][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 000000000000002e
[ 1324.633556][ C1] RDX: ffff8881272c5dc0 RSI: 0000000000000000 RDI: 0000000000000000
[ 1324.633556][ C1] RBP: ffff88808faab678 R08: ffffffff821ee64a R09: ffff88813fffa000
[ 1324.633556][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 0000000000000000
[ 1324.633556][ C1] R13: dead0000000000ff R14: 0000000000000000 R15: 0000000000000000
[ 1324.633556][ C1] ? copy_pte_range+0x165a/0x50c0
[ 1324.633556][ C1] ? copy_pte_range+0x167b/0x50c0
[ 1324.633556][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1324.633556][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1324.633556][ C1] copy_page_range+0x1a81/0x2410
[ 1324.633556][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1324.633556][ C1] dup_mmap+0x1674/0x2250
[ 1324.633556][ C1] dup_mm+0x1f0/0x7c0
[ 1324.633556][ C1] copy_process+0x3ec4/0x9b80
[ 1324.633556][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1324.633556][ C1] kernel_clone+0x4ea/0x1350
[ 1324.633556][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1324.633556][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1324.633556][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1324.633556][ C1] __do_fast_syscall_32+0x127/0x180
[ 1324.633556][ C1] do_fast_syscall_32+0x77/0xd0
[ 1324.633556][ C1] do_SYSENTER_32+0x73/0x90
[ 1324.633556][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1324.633556][ C1] RIP: 0023:0xf7fac549
[ 1324.633556][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1324.633556][ C1] RSP: 002b:00000000ff8bfcc0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1324.633556][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1324.633556][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000009fa63e8
[ 1324.633556][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1324.633556][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1324.633556][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1324.633556][ C1] ---[ end trace 4b028c9d42567ca3 ]---
[ 1325.181768][ C1] ------------[ cut here ]------------
[ 1325.187438][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1325.190729][ C1] Modules linked in:
[ 1325.190729][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1325.190729][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1325.190729][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1325.190729][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1325.190729][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1325.190729][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1325.190729][ C1] RDX: 0000000000010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1325.190729][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1325.190729][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1325.190729][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1325.190729][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1325.190729][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1325.190729][ C1] CR2: 000000000815f854 CR3: 00000001776fd000 CR4: 00000000001506e0
[ 1325.190729][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1325.190729][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1325.190729][ C1] Call Trace:
[ 1325.190729][ C1]
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1325.190729][ C1] __run_hrtimer+0x48b/0xd20
[ 1325.190729][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? hrtimer_init+0x570/0x570
[ 1325.190729][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1325.190729][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1325.190729][ C1]
[ 1325.190729][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1325.190729][ C1] RIP: 0010:kmsan_get_metadata+0x10e/0x180
[ 1325.190729][ C1] Code: 4f 03 00 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f <48> 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47
[ 1325.190729][ C1] RSP: 0018:ffff8881603bf590 EFLAGS: 00000297
[ 1325.190729][ C1] RAX: 00000000007fffc4 RBX: ffff8880186e7700 RCX: 0000000000040000
[ 1325.190729][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880186e7700
[ 1325.190729][ C1] RBP: ffff8881603bf5a8 R08: ffffffff8e7f0264 R09: ffff88813fffa000
[ 1325.190729][ C1] R10: 0000000000000002 R11: ffff8880a1a43e80 R12: ffff88807fd97070
[ 1325.190729][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1325.190729][ C1] ? sctp_bind_addr_state+0x1e4/0x370
[ 1325.190729][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1325.190729][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1325.190729][ C1] sctp_bind_addr_state+0x23f/0x370
[ 1325.190729][ C1] sctp_copy_local_addr_list+0x3d8/0x6d0
[ 1325.190729][ C1] sctp_copy_one_addr+0x227/0xed0
[ 1325.190729][ C1] sctp_bind_addr_copy+0x1fd/0x9d0
[ 1325.190729][ C1] sctp_assoc_set_bind_addr_from_ep+0x297/0x320
[ 1325.190729][ C1] sctp_connect_new_asoc+0x672/0xd30
[ 1325.190729][ C1] ? sctp_v6_scope+0x100/0x100
[ 1325.190729][ C1] sctp_sendmsg+0x437d/0x5c60
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? sctp_getsockopt+0x1f060/0x1f060
[ 1325.190729][ C1] inet_sendmsg+0x15b/0x1d0
[ 1325.190729][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1325.190729][ C1] __sys_sendto+0x9ea/0xc60
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] __se_sys_sendto+0x107/0x130
[ 1325.190729][ C1] __ia32_sys_sendto+0x6e/0x90
[ 1325.190729][ C1] __do_fast_syscall_32+0x127/0x180
[ 1325.190729][ C1] do_fast_syscall_32+0x77/0xd0
[ 1325.190729][ C1] do_SYSENTER_32+0x73/0x90
[ 1325.190729][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1325.190729][ C1] RIP: 0023:0xf7fac549
[ 1325.190729][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1325.190729][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1325.190729][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[ 1325.190729][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1325.190729][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1325.190729][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1325.190729][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1325.190729][ C1] ---[ end trace 4b028c9d42567ca4 ]---
[ 1325.190729][ C1] ------------[ cut here ]------------
[ 1325.190729][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1325.190729][ C1] Modules linked in:
[ 1325.190729][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1325.190729][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1325.190729][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1325.190729][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1325.190729][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1325.190729][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1325.190729][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1325.190729][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1325.190729][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1325.190729][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1325.190729][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1325.190729][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1325.190729][ C1] CR2: 000000000815f854 CR3: 00000001776fd000 CR4: 00000000001506e0
[ 1325.190729][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1325.190729][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1325.190729][ C1] Call Trace:
[ 1325.190729][ C1]
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1325.190729][ C1] __run_hrtimer+0x48b/0xd20
[ 1325.190729][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? hrtimer_init+0x570/0x570
[ 1325.190729][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1325.190729][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1325.190729][ C1]
[ 1325.190729][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1325.190729][ C1] RIP: 0010:kmsan_get_metadata+0x10e/0x180
[ 1325.190729][ C1] Code: 4f 03 00 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f <48> 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47
[ 1325.190729][ C1] RSP: 0018:ffff8881603bf590 EFLAGS: 00000297
[ 1325.190729][ C1] RAX: 00000000007fffc4 RBX: ffff8880186e7700 RCX: 0000000000040000
[ 1325.190729][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880186e7700
[ 1325.190729][ C1] RBP: ffff8881603bf5a8 R08: ffffffff8e7f0264 R09: ffff88813fffa000
[ 1325.190729][ C1] R10: 0000000000000002 R11: ffff8880a1a43e80 R12: ffff88807fd97070
[ 1325.190729][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1325.190729][ C1] ? sctp_bind_addr_state+0x1e4/0x370
[ 1325.190729][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1325.190729][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1325.190729][ C1] sctp_bind_addr_state+0x23f/0x370
[ 1325.190729][ C1] sctp_copy_local_addr_list+0x3d8/0x6d0
[ 1325.190729][ C1] sctp_copy_one_addr+0x227/0xed0
[ 1325.190729][ C1] sctp_bind_addr_copy+0x1fd/0x9d0
[ 1325.190729][ C1] sctp_assoc_set_bind_addr_from_ep+0x297/0x320
[ 1325.190729][ C1] sctp_connect_new_asoc+0x672/0xd30
[ 1325.190729][ C1] ? sctp_v6_scope+0x100/0x100
[ 1325.190729][ C1] sctp_sendmsg+0x437d/0x5c60
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? sctp_getsockopt+0x1f060/0x1f060
[ 1325.190729][ C1] inet_sendmsg+0x15b/0x1d0
[ 1325.190729][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1325.190729][ C1] __sys_sendto+0x9ea/0xc60
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1325.190729][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1325.190729][ C1] __se_sys_sendto+0x107/0x130
[ 1325.190729][ C1] __ia32_sys_sendto+0x6e/0x90
[ 1325.190729][ C1] __do_fast_syscall_32+0x127/0x180
[ 1325.190729][ C1] do_fast_syscall_32+0x77/0xd0
[ 1325.190729][ C1] do_SYSENTER_32+0x73/0x90
[ 1325.190729][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1325.190729][ C1] RIP: 0023:0xf7fac549
[ 1325.190729][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1325.190729][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1325.190729][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[ 1325.190729][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1325.190729][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1325.190729][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1325.190729][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1325.190729][ C1] ---[ end trace 4b028c9d42567ca5 ]---
[ 1326.198547][ C1] ------------[ cut here ]------------
[ 1326.204110][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1326.207630][ C1] Modules linked in:
[ 1326.207630][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1326.207630][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1326.207630][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1326.207630][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1326.207630][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1326.207630][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1326.207630][ C1] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1326.207630][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1326.207630][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1326.207630][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1326.207630][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:00000000f55a6b40
[ 1326.207630][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1326.207630][ C1] CR2: 000000000815f854 CR3: 00000001776fd000 CR4: 00000000001506e0
[ 1326.207630][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1326.207630][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1326.207630][ C1] Call Trace:
[ 1326.207630][ C1]
[ 1326.207630][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1326.207630][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1326.207630][ C1] __run_hrtimer+0x48b/0xd20
[ 1326.207630][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1326.207630][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1326.207630][ C1] ? hrtimer_init+0x570/0x570
[ 1326.207630][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1326.207630][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1326.207630][ C1]
[ 1326.207630][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1326.207630][ C1] RIP: 0010:kmsan_get_metadata+0x10e/0x180
[ 1326.207630][ C1] Code: 4f 03 00 77 25 48 c7 c2 c0 da 05 00 48 c7 c0 c0 8a 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f <48> 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47
[ 1326.207630][ C1] RSP: 0018:ffff8881603bf590 EFLAGS: 00000297
[ 1326.207630][ C1] RAX: 00000000007fffc4 RBX: ffff8880186e7700 RCX: 0000000000040000
[ 1326.207630][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff8880186e7700
[ 1326.207630][ C1] RBP: ffff8881603bf5a8 R08: ffffffff8e7f0264 R09: ffff88813fffa000
[ 1326.207630][ C1] R10: 0000000000000002 R11: ffff8880a1a43e80 R12: ffff88807fd97070
[ 1326.207630][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001
[ 1326.207630][ C1] ? sctp_bind_addr_state+0x1e4/0x370
[ 1326.207630][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1326.207630][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1326.207630][ C1] sctp_bind_addr_state+0x23f/0x370
[ 1326.207630][ C1] sctp_copy_local_addr_list+0x3d8/0x6d0
[ 1326.207630][ C1] sctp_copy_one_addr+0x227/0xed0
[ 1326.207630][ C1] sctp_bind_addr_copy+0x1fd/0x9d0
[ 1326.207630][ C1] sctp_assoc_set_bind_addr_from_ep+0x297/0x320
[ 1326.207630][ C1] sctp_connect_new_asoc+0x672/0xd30
[ 1326.207630][ C1] ? sctp_v6_scope+0x100/0x100
[ 1326.207630][ C1] sctp_sendmsg+0x437d/0x5c60
[ 1326.207630][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1326.207630][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1326.207630][ C1] ? sctp_getsockopt+0x1f060/0x1f060
[ 1326.207630][ C1] inet_sendmsg+0x15b/0x1d0
[ 1326.207630][ C1] ? inet_send_prepare+0x6b0/0x6b0
[ 1326.207630][ C1] __sys_sendto+0x9ea/0xc60
[ 1326.207630][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1326.207630][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1326.207630][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1326.207630][ C1] __se_sys_sendto+0x107/0x130
[ 1326.207630][ C1] __ia32_sys_sendto+0x6e/0x90
[ 1326.207630][ C1] __do_fast_syscall_32+0x127/0x180
[ 1326.207630][ C1] do_fast_syscall_32+0x77/0xd0
[ 1326.207630][ C1] do_SYSENTER_32+0x73/0x90
[ 1326.207630][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1326.207630][ C1] RIP: 0023:0xf7fac549
[ 1326.207630][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1326.207630][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1326.207630][ C1] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[ 1326.207630][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1326.207630][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1326.207630][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1326.207630][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1326.207630][ C1] ---[ end trace 4b028c9d42567ca6 ]---
[ 1326.806190][ C1] ------------[ cut here ]------------
[ 1326.811849][ C1] WARNING: CPU: 1 PID: 17 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1326.815213][ C1] Modules linked in:
[ 1326.815213][ C1] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1326.832448][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1326.832448][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1326.832448][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1326.858120][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1326.858120][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888102419f40
[ 1326.858120][ C1] RDX: 0000000000010100 RSI: 0000000000000025 RDI: 0000000000000001
[ 1326.888037][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1326.888037][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1326.888037][ C1] R13: 0000000000000000 R14: 0000000000000025 R15: ffff88813fd27b00
[ 1326.918078][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1326.918078][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1326.918078][ C1] CR2: 000000000815f854 CR3: 0000000119936000 CR4: 00000000001506e0
[ 1326.918078][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1326.948139][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1326.948139][ C1] Call Trace:
[ 1326.948139][ C1]
[ 1326.948139][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1326.948139][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1326.978067][ C1] __run_hrtimer+0x48b/0xd20
[ 1326.978067][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1326.978067][ C1] ? hrtimer_init+0x570/0x570
[ 1326.978067][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1326.978067][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1327.003409][ C1]
[ 1327.003409][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1327.014569][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1327.014569][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1327.014569][ C1] RSP: 0018:ffff8881024269a8 EFLAGS: 00000282
[ 1327.014569][ C1] RAX: ffff88813fd27b00 RBX: ffff888166ee0c00 RCX: 0000000000000101
[ 1327.014569][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff888166ee0c00
[ 1327.014569][ C1] RBP: ffff8881024269c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1327.014569][ C1] R10: 000000008162affc R11: ffffffff8fc00715 R12: 0000000000000246
[ 1327.014569][ C1] R13: 0000000000000000 R14: 0000000000082a20 R15: ffff888100032b00
[ 1327.014569][ C1] ? __do_softirq+0x715/0x715
[ 1327.014569][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 1327.014569][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.014569][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.014569][ C1] __alloc_skb+0x4dd/0xe90
[ 1327.014569][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.014569][ C1] skb_copy_expand+0x146/0x1110
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.014569][ C1] ? __msan_metadata_ptr_for_load_2+0x10/0x20
[ 1327.014569][ C1] ? sctp_ulpq_tail_event+0x10b4/0x11b0
[ 1327.014569][ C1] sctp_ulpevent_make_send_failed_event+0xff/0xfc0
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.014569][ C1] sctp_datamsg_put+0x7d6/0xaa0
[ 1327.014569][ C1] sctp_chunk_free+0x88/0xd0
[ 1327.014569][ C1] __sctp_outq_teardown+0x1130/0x15f0
[ 1327.014569][ C1] sctp_outq_free+0x37/0x40
[ 1327.014569][ C1] sctp_association_free+0x3f8/0x11b0
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] sctp_do_sm+0x929b/0xa160
[ 1327.014569][ C1] ? __ipv6_addr_type+0x4ef/0x530
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.014569][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1327.014569][ C1] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1327.014569][ C1] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0
[ 1327.014569][ C1] sctp_inq_push+0x31c/0x440
[ 1327.014569][ C1] sctp_rcv+0x562f/0x60d0
[ 1327.014569][ C1] sctp6_rcv+0x64/0xd0
[ 1327.014569][ C1] ? sctp_inet6addr_event+0xcd0/0xcd0
[ 1327.014569][ C1] ip6_protocol_deliver_rcu+0x1402/0x25f0
[ 1327.014569][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.014569][ C1] ip6_input+0x12b/0x390
[ 1327.014569][ C1] ? ip6_input+0x390/0x390
[ 1327.014569][ C1] ? ip6_protocol_deliver_rcu+0x25f0/0x25f0
[ 1327.014569][ C1] ip6_rcv_finish+0x5fc/0x7f0
[ 1327.014569][ C1] ipv6_rcv+0x1d1/0x460
[ 1327.014569][ C1] ? local_bh_enable+0x40/0x40
[ 1327.014569][ C1] __netif_receive_skb+0x1ec/0x640
[ 1327.014569][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1327.014569][ C1] ? ip6_rcv_finish+0x7f0/0x7f0
[ 1327.014569][ C1] process_backlog+0x517/0xbd0
[ 1327.014569][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.014569][ C1] ? rps_trigger_softirq+0x4d0/0x4d0
[ 1327.014569][ C1] __napi_poll+0x13e/0xca0
[ 1327.014569][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.014569][ C1] net_rx_action+0x726/0x14a0
[ 1327.014569][ C1] ? net_tx_action+0xd30/0xd30
[ 1327.014569][ C1] __do_softirq+0x1b9/0x715
[ 1327.014569][ C1] ? ksoftirqd_should_run+0x30/0x30
[ 1327.014569][ C1] run_ksoftirqd+0x20/0x40
[ 1327.014569][ C1] smpboot_thread_fn+0x5f5/0xa90
[ 1327.014569][ C1] kthread+0x521/0x560
[ 1327.014569][ C1] ? cpu_report_death+0x1a0/0x1a0
[ 1327.014569][ C1] ? kthread_blkcg+0x110/0x110
[ 1327.014569][ C1] ret_from_fork+0x1f/0x30
[ 1327.014569][ C1] ---[ end trace 4b028c9d42567ca7 ]---
[ 1327.418845][ C1] ------------[ cut here ]------------
[ 1327.424434][ C1] WARNING: CPU: 1 PID: 17 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1327.428085][ C1] Modules linked in:
[ 1327.428085][ C1] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1327.428085][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1327.428085][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1327.428085][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1327.428085][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1327.428085][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888102419f40
[ 1327.428085][ C1] RDX: 0000000000010100 RSI: 0000000000000024 RDI: 0000000000000001
[ 1327.428085][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1327.428085][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1327.428085][ C1] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fd27b00
[ 1327.428085][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1327.428085][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1327.428085][ C1] CR2: 000000000815f854 CR3: 0000000119936000 CR4: 00000000001506e0
[ 1327.428085][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1327.428085][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1327.428085][ C1] Call Trace:
[ 1327.428085][ C1]
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1327.428085][ C1] __run_hrtimer+0x48b/0xd20
[ 1327.428085][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1327.428085][ C1] ? hrtimer_init+0x570/0x570
[ 1327.428085][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1327.428085][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1327.428085][ C1]
[ 1327.428085][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1327.428085][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1327.428085][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1327.428085][ C1] RSP: 0018:ffff8881024269a8 EFLAGS: 00000282
[ 1327.428085][ C1] RAX: ffff88813fd27b00 RBX: ffff888166ee0c00 RCX: 0000000000000101
[ 1327.428085][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff888166ee0c00
[ 1327.428085][ C1] RBP: ffff8881024269c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1327.428085][ C1] R10: 000000008162affc R11: ffffffff8fc00715 R12: 0000000000000246
[ 1327.428085][ C1] R13: 0000000000000000 R14: 0000000000082a20 R15: ffff888100032b00
[ 1327.428085][ C1] ? __do_softirq+0x715/0x715
[ 1327.428085][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] __alloc_skb+0x4dd/0xe90
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_2+0x10/0x20
[ 1327.428085][ C1] ? sctp_ulpq_tail_event+0x10b4/0x11b0
[ 1327.428085][ C1] sctp_ulpevent_make_send_failed_event+0xff/0xfc0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] sctp_datamsg_put+0x7d6/0xaa0
[ 1327.428085][ C1] sctp_chunk_free+0x88/0xd0
[ 1327.428085][ C1] __sctp_outq_teardown+0x1130/0x15f0
[ 1327.428085][ C1] sctp_outq_free+0x37/0x40
[ 1327.428085][ C1] sctp_association_free+0x3f8/0x11b0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] sctp_do_sm+0x929b/0xa160
[ 1327.428085][ C1] ? __ipv6_addr_type+0x4ef/0x530
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1327.428085][ C1] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1327.428085][ C1] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0
[ 1327.428085][ C1] sctp_inq_push+0x31c/0x440
[ 1327.428085][ C1] sctp_rcv+0x562f/0x60d0
[ 1327.428085][ C1] sctp6_rcv+0x64/0xd0
[ 1327.428085][ C1] ? sctp_inet6addr_event+0xcd0/0xcd0
[ 1327.428085][ C1] ip6_protocol_deliver_rcu+0x1402/0x25f0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.428085][ C1] ip6_input+0x12b/0x390
[ 1327.428085][ C1] ? ip6_input+0x390/0x390
[ 1327.428085][ C1] ? ip6_protocol_deliver_rcu+0x25f0/0x25f0
[ 1327.428085][ C1] ip6_rcv_finish+0x5fc/0x7f0
[ 1327.428085][ C1] ipv6_rcv+0x1d1/0x460
[ 1327.428085][ C1] ? local_bh_enable+0x40/0x40
[ 1327.428085][ C1] __netif_receive_skb+0x1ec/0x640
[ 1327.428085][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1327.428085][ C1] ? ip6_rcv_finish+0x7f0/0x7f0
[ 1327.428085][ C1] process_backlog+0x517/0xbd0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? rps_trigger_softirq+0x4d0/0x4d0
[ 1327.428085][ C1] __napi_poll+0x13e/0xca0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.428085][ C1] net_rx_action+0x726/0x14a0
[ 1327.428085][ C1] ? net_tx_action+0xd30/0xd30
[ 1327.428085][ C1] __do_softirq+0x1b9/0x715
[ 1327.428085][ C1] ? ksoftirqd_should_run+0x30/0x30
[ 1327.428085][ C1] run_ksoftirqd+0x20/0x40
[ 1327.428085][ C1] smpboot_thread_fn+0x5f5/0xa90
[ 1327.428085][ C1] kthread+0x521/0x560
[ 1327.428085][ C1] ? cpu_report_death+0x1a0/0x1a0
[ 1327.428085][ C1] ? kthread_blkcg+0x110/0x110
[ 1327.428085][ C1] ret_from_fork+0x1f/0x30
[ 1327.428085][ C1] ---[ end trace 4b028c9d42567ca8 ]---
[ 1327.428085][ C1] ------------[ cut here ]------------
[ 1327.428085][ C1] WARNING: CPU: 1 PID: 17 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1327.428085][ C1] Modules linked in:
[ 1327.428085][ C1] CPU: 1 PID: 17 Comm: ksoftirqd/1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1327.428085][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1327.428085][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1327.428085][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1327.428085][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1327.428085][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888102419f40
[ 1327.428085][ C1] RDX: 0000000000010100 RSI: 0000000000000025 RDI: 0000000000000001
[ 1327.428085][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1327.428085][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1327.428085][ C1] R13: 0000000000000000 R14: 0000000000000025 R15: ffff88813fd27b00
[ 1327.428085][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1327.428085][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1327.428085][ C1] CR2: 000000000815f854 CR3: 0000000119936000 CR4: 00000000001506e0
[ 1327.428085][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1327.428085][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1327.428085][ C1] Call Trace:
[ 1327.428085][ C1]
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1327.428085][ C1] __run_hrtimer+0x48b/0xd20
[ 1327.428085][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1327.428085][ C1] ? hrtimer_init+0x570/0x570
[ 1327.428085][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1327.428085][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1327.428085][ C1]
[ 1327.428085][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1327.428085][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1327.428085][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1327.428085][ C1] RSP: 0018:ffff8881024269a8 EFLAGS: 00000282
[ 1327.428085][ C1] RAX: ffff88813fd27b00 RBX: ffff888166ee0c00 RCX: 0000000000000101
[ 1327.428085][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: ffff888166ee0c00
[ 1327.428085][ C1] RBP: ffff8881024269c8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1327.428085][ C1] R10: 000000008162affc R11: ffffffff8fc00715 R12: 0000000000000246
[ 1327.428085][ C1] R13: 0000000000000000 R14: 0000000000082a20 R15: ffff888100032b00
[ 1327.428085][ C1] ? __do_softirq+0x715/0x715
[ 1327.428085][ C1] __kmalloc_node_track_caller+0xa4f/0x1470
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] __alloc_skb+0x4dd/0xe90
[ 1327.428085][ C1] ? skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] skb_copy_expand+0x146/0x1110
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_2+0x10/0x20
[ 1327.428085][ C1] ? sctp_ulpq_tail_event+0x10b4/0x11b0
[ 1327.428085][ C1] sctp_ulpevent_make_send_failed_event+0xff/0xfc0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] sctp_datamsg_put+0x7d6/0xaa0
[ 1327.428085][ C1] sctp_chunk_free+0x88/0xd0
[ 1327.428085][ C1] __sctp_outq_teardown+0x1130/0x15f0
[ 1327.428085][ C1] sctp_outq_free+0x37/0x40
[ 1327.428085][ C1] sctp_association_free+0x3f8/0x11b0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] sctp_do_sm+0x929b/0xa160
[ 1327.428085][ C1] ? __ipv6_addr_type+0x4ef/0x530
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1327.428085][ C1] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1327.428085][ C1] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0
[ 1327.428085][ C1] sctp_inq_push+0x31c/0x440
[ 1327.428085][ C1] sctp_rcv+0x562f/0x60d0
[ 1327.428085][ C1] sctp6_rcv+0x64/0xd0
[ 1327.428085][ C1] ? sctp_inet6addr_event+0xcd0/0xcd0
[ 1327.428085][ C1] ip6_protocol_deliver_rcu+0x1402/0x25f0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.428085][ C1] ip6_input+0x12b/0x390
[ 1327.428085][ C1] ? ip6_input+0x390/0x390
[ 1327.428085][ C1] ? ip6_protocol_deliver_rcu+0x25f0/0x25f0
[ 1327.428085][ C1] ip6_rcv_finish+0x5fc/0x7f0
[ 1327.428085][ C1] ipv6_rcv+0x1d1/0x460
[ 1327.428085][ C1] ? local_bh_enable+0x40/0x40
[ 1327.428085][ C1] __netif_receive_skb+0x1ec/0x640
[ 1327.428085][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1327.428085][ C1] ? ip6_rcv_finish+0x7f0/0x7f0
[ 1327.428085][ C1] process_backlog+0x517/0xbd0
[ 1327.428085][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1327.428085][ C1] ? rps_trigger_softirq+0x4d0/0x4d0
[ 1327.428085][ C1] __napi_poll+0x13e/0xca0
[ 1327.428085][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1327.428085][ C1] net_rx_action+0x726/0x14a0
[ 1327.428085][ C1] ? net_tx_action+0xd30/0xd30
[ 1327.428085][ C1] __do_softirq+0x1b9/0x715
[ 1327.428085][ C1] ? ksoftirqd_should_run+0x30/0x30
[ 1327.428085][ C1] run_ksoftirqd+0x20/0x40
[ 1327.428085][ C1] smpboot_thread_fn+0x5f5/0xa90
06:44:24 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x23000000, &(0x7f0000000840)={[{@grpid}]})
06:44:24 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1327.428085][ C1] kthread+0x521/0x560
[ 1327.428085][ C1] ? cpu_report_death+0x1a0/0x1a0
[ 1327.428085][ C1] ? kthread_blkcg+0x110/0x110
[ 1327.428085][ C1] ret_from_fork+0x1f/0x30
[ 1327.428085][ C1] ---[ end trace 4b028c9d42567ca9 ]---
[ 1328.689636][ C1] ------------[ cut here ]------------
[ 1328.689636][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1328.689636][ C1] Modules linked in:
[ 1328.689636][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1328.689636][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1328.689636][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1328.689636][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1328.689636][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1328.689636][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1328.689636][ C1] RDX: 0000000080010000 RSI: 000000000000002b RDI: 0000000000000001
[ 1328.689636][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1328.689636][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1328.689636][ C1] R13: 0000000000000000 R14: 000000000000002b R15: ffff88813fd27b00
[ 1328.689636][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1328.689636][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1328.689636][ C1] CR2: 0000000008197fd8 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1328.689636][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1328.689636][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1328.888149][ C1] Call Trace:
[ 1328.888149][ C1]
[ 1328.888149][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1328.888149][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1328.888149][ C1] __run_hrtimer+0x48b/0xd20
[ 1328.918029][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1328.918029][ C1] ? hrtimer_init+0x570/0x570
[ 1328.918029][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1328.918029][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1328.918029][ C1]
[ 1328.918029][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1328.948111][ C1] RIP: 0010:kmsan_get_metadata+0x8/0x180
[ 1328.948111][ C1] Code: c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 <53> 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7 03 48
[ 1328.948111][ C1] RSP: 0018:ffff8881588832f0 EFLAGS: 00000246
[ 1328.948111][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: ffff8880ba514908
[ 1328.948111][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff91e978d8
[ 1328.948111][ C1] RBP: ffff888158883300 R08: ffffea000000000f R09: ffff88813fffa000
[ 1328.948111][ C1] R10: 0000000000000000 R11: ffff8880ba513e80 R12: ffff88813fffbd00
[ 1328.948111][ C1] R13: 0000000000000000 R14: ffffffff91e978d8 R15: 0000000000000000
[ 1328.948111][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1328.948111][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1328.948111][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1329.038000][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1329.038000][ C1] alloc_pages_vma+0x139b/0x1ec0
[ 1329.038000][ C1] shmem_alloc_page+0x241/0x430
[ 1329.038000][ C1] shmem_alloc_and_acct_page+0x9b1/0x10c0
[ 1329.038000][ C1] ? pagecache_get_page+0x1b6a/0x2040
[ 1329.068108][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1329.068108][ C1] shmem_getpage_gfp+0x1780/0x4b20
[ 1329.068108][ C1] shmem_fallocate+0x1087/0x1c10
[ 1329.068108][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1329.068108][ C1] vfs_fallocate+0xd72/0x1550
[ 1329.068108][ C1] __se_sys_fallocate+0x13c/0x210
[ 1329.098058][ C1] __x64_sys_fallocate+0x56/0x70
[ 1329.098058][ C1] do_syscall_64+0x9f/0x140
[ 1329.098058][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1329.098058][ C1] RIP: 0033:0x7f6c19130bc6
[ 1329.098058][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1329.128139][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1329.128139][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1329.128139][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1329.158035][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1329.158035][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1329.158035][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1329.188145][ C1] ---[ end trace 4b028c9d42567caa ]---
[ 1329.197695][ C1] ------------[ cut here ]------------
[ 1329.203325][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1329.211091][ C1] Modules linked in:
[ 1329.211091][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1329.211091][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1329.211091][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1329.211091][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1329.211091][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1329.211091][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1329.211091][ C1] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001
[ 1329.211091][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1329.211091][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1329.211091][ C1] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fd27b00
[ 1329.211091][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1329.211091][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1329.211091][ C1] CR2: 0000000008197fd8 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1329.211091][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1329.211091][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1329.211091][ C1] Call Trace:
[ 1329.211091][ C1]
[ 1329.211091][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1329.211091][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1329.211091][ C1] __run_hrtimer+0x48b/0xd20
[ 1329.211091][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1329.211091][ C1] ? hrtimer_init+0x570/0x570
[ 1329.211091][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1329.211091][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1329.211091][ C1]
[ 1329.211091][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1329.211091][ C1] RIP: 0010:kmsan_get_metadata+0x8/0x180
[ 1329.211091][ C1] Code: c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 <53> 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7 03 48
[ 1329.211091][ C1] RSP: 0018:ffff8881588832f0 EFLAGS: 00000246
[ 1329.211091][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: ffff8880ba514908
[ 1329.211091][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff91e978d8
[ 1329.211091][ C1] RBP: ffff888158883300 R08: ffffea000000000f R09: ffff88813fffa000
[ 1329.211091][ C1] R10: 0000000000000000 R11: ffff8880ba513e80 R12: ffff88813fffbd00
[ 1329.211091][ C1] R13: 0000000000000000 R14: ffffffff91e978d8 R15: 0000000000000000
[ 1329.211091][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1329.211091][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1329.211091][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1329.211091][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1329.211091][ C1] alloc_pages_vma+0x139b/0x1ec0
[ 1329.211091][ C1] shmem_alloc_page+0x241/0x430
[ 1329.211091][ C1] shmem_alloc_and_acct_page+0x9b1/0x10c0
[ 1329.211091][ C1] ? pagecache_get_page+0x1b6a/0x2040
[ 1329.211091][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1329.531169][ C1] shmem_getpage_gfp+0x1780/0x4b20
[ 1329.531169][ C1] shmem_fallocate+0x1087/0x1c10
[ 1329.531169][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1329.531169][ C1] vfs_fallocate+0xd72/0x1550
[ 1329.531169][ C1] __se_sys_fallocate+0x13c/0x210
[ 1329.531169][ C1] __x64_sys_fallocate+0x56/0x70
[ 1329.531169][ C1] do_syscall_64+0x9f/0x140
[ 1329.531169][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1329.531169][ C1] RIP: 0033:0x7f6c19130bc6
[ 1329.531169][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1329.531169][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1329.531169][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1329.531169][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1329.531169][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1329.531169][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1329.531169][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1329.531169][ C1] ---[ end trace 4b028c9d42567cab ]---
[ 1329.654804][ C1] ------------[ cut here ]------------
[ 1329.660471][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1329.663805][ C1] Modules linked in:
[ 1329.663805][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1329.663805][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1329.663805][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1329.663805][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1329.663805][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1329.663805][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1329.663805][ C1] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001
[ 1329.663805][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1329.663805][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1329.663805][ C1] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fd27b00
[ 1329.663805][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1329.663805][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1329.663805][ C1] CR2: 0000000008197fd8 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1329.663805][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1329.663805][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1329.663805][ C1] Call Trace:
[ 1329.663805][ C1]
[ 1329.663805][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1329.663805][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1329.663805][ C1] __run_hrtimer+0x48b/0xd20
[ 1329.663805][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1329.663805][ C1] ? hrtimer_init+0x570/0x570
[ 1329.663805][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1329.663805][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1329.663805][ C1]
[ 1329.663805][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1329.663805][ C1] RIP: 0010:kmsan_get_metadata+0x8/0x180
[ 1329.663805][ C1] Code: c7 c7 44 1c 7c 90 48 c7 c6 65 1c 7c 90 4c 89 f2 48 89 d9 31 c0 e8 51 e3 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 <53> 41 89 f6 48 89 fb 48 83 e3 fc 85 f6 48 0f 44 df 40 f6 c7 03 48
[ 1329.663805][ C1] RSP: 0018:ffff8881588832f0 EFLAGS: 00000246
[ 1329.663805][ C1] RAX: 0000000000000001 RBX: 0000000000000004 RCX: ffff8880ba514908
[ 1329.663805][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff91e978d8
[ 1329.663805][ C1] RBP: ffff888158883300 R08: ffffea000000000f R09: ffff88813fffa000
[ 1329.663805][ C1] R10: 0000000000000000 R11: ffff8880ba513e80 R12: ffff88813fffbd00
[ 1329.663805][ C1] R13: 0000000000000000 R14: ffffffff91e978d8 R15: 0000000000000000
[ 1329.663805][ C1] kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1329.663805][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1329.663805][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1329.663805][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1329.663805][ C1] alloc_pages_vma+0x139b/0x1ec0
[ 1329.663805][ C1] shmem_alloc_page+0x241/0x430
[ 1329.663805][ C1] shmem_alloc_and_acct_page+0x9b1/0x10c0
[ 1329.663805][ C1] ? pagecache_get_page+0x1b6a/0x2040
[ 1329.663805][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1329.663805][ C1] shmem_getpage_gfp+0x1780/0x4b20
[ 1329.663805][ C1] shmem_fallocate+0x1087/0x1c10
[ 1329.663805][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1329.663805][ C1] vfs_fallocate+0xd72/0x1550
[ 1329.663805][ C1] __se_sys_fallocate+0x13c/0x210
[ 1329.663805][ C1] __x64_sys_fallocate+0x56/0x70
[ 1329.663805][ C1] do_syscall_64+0x9f/0x140
[ 1330.024704][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1330.024704][ C1] RIP: 0033:0x7f6c19130bc6
[ 1330.024704][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1330.048962][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1330.048962][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1330.048962][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1330.048962][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1330.048962][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1330.048962][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1330.048962][ C1] ---[ end trace 4b028c9d42567cac ]---
[ 1330.213405][ C1] ------------[ cut here ]------------
[ 1330.219135][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1330.222429][ C1] Modules linked in:
[ 1330.222429][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1330.222429][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1330.222429][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1330.222429][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1330.267215][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1330.267215][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1330.267215][ C1] RDX: 0000000000010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1330.267215][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1330.267215][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1330.267215][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1330.267215][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1330.267215][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1330.267215][ C1] CR2: 0000000009325efc CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1330.267215][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1330.267215][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1330.267215][ C1] Call Trace:
[ 1330.267215][ C1]
[ 1330.267215][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1330.267215][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1330.267215][ C1] __run_hrtimer+0x48b/0xd20
[ 1330.267215][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1330.267215][ C1] ? hrtimer_init+0x570/0x570
[ 1330.267215][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1330.267215][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1330.267215][ C1]
[ 1330.267215][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1330.267215][ C1] RIP: 0010:shmem_add_to_page_cache+0x1608/0x1940
[ 1330.267215][ C1] Code: 7d a0 4c 89 ff e8 a8 d5 2f 00 8b 3a 48 8b 00 48 85 c0 75 5d 48 89 df e8 f6 d4 2f 00 c6 00 00 c6 03 00 fb 49 c7 06 00 00 00 00 <8b> 85 20 ff ff ff 41 89 46 08 8b 85 24 ff ff ff 41 89 86 90 0c 00
[ 1330.267215][ C1] RSP: 0018:ffff888158883878 EFLAGS: 00000282
[ 1330.267215][ C1] RAX: ffff888085427da8 RBX: ffff888085c27da8 RCX: 0000000085827da8
[ 1330.267215][ C1] RDX: ffff888085827da8 RSI: 0000000000000100 RDI: ffff888085c27da8
[ 1330.267215][ C1] RBP: ffff8881588839a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1330.267215][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 0000000000000001
[ 1330.267215][ C1] R13: 0000000000000000 R14: ffff8880ba514908 R15: ffff888158883948
[ 1330.267215][ C1] ? __do_softirq+0x715/0x715
[ 1330.267215][ C1] ? shmem_add_to_page_cache+0x15fa/0x1940
[ 1330.267215][ C1] shmem_getpage_gfp+0x21bf/0x4b20
[ 1330.267215][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1330.267215][ C1] shmem_fallocate+0x1087/0x1c10
[ 1330.267215][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1330.267215][ C1] vfs_fallocate+0xd72/0x1550
[ 1330.533271][ C1] __se_sys_fallocate+0x13c/0x210
[ 1330.533271][ C1] __x64_sys_fallocate+0x56/0x70
[ 1330.533271][ C1] do_syscall_64+0x9f/0x140
[ 1330.533271][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1330.533271][ C1] RIP: 0033:0x7f6c19130bc6
[ 1330.533271][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1330.533271][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1330.533271][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1330.533271][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1330.533271][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1330.533271][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1330.533271][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1330.533271][ C1] ---[ end trace 4b028c9d42567cad ]---
[ 1330.635739][ C1] ------------[ cut here ]------------
[ 1330.641369][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1330.644650][ C1] Modules linked in:
[ 1330.644650][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1330.644650][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1330.644650][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1330.644650][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1330.688253][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1330.688253][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1330.688253][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1330.688253][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1330.688253][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1330.688253][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1330.688253][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1330.688253][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1330.688253][ C1] CR2: 0000000009325efc CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1330.688253][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1330.688253][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1330.688253][ C1] Call Trace:
[ 1330.688253][ C1]
[ 1330.688253][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1330.688253][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1330.688253][ C1] __run_hrtimer+0x48b/0xd20
[ 1330.688253][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1330.688253][ C1] ? hrtimer_init+0x570/0x570
[ 1330.688253][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1330.688253][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1330.688253][ C1]
[ 1330.688253][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1330.688253][ C1] RIP: 0010:shmem_add_to_page_cache+0x1608/0x1940
[ 1330.688253][ C1] Code: 7d a0 4c 89 ff e8 a8 d5 2f 00 8b 3a 48 8b 00 48 85 c0 75 5d 48 89 df e8 f6 d4 2f 00 c6 00 00 c6 03 00 fb 49 c7 06 00 00 00 00 <8b> 85 20 ff ff ff 41 89 46 08 8b 85 24 ff ff ff 41 89 86 90 0c 00
[ 1330.688253][ C1] RSP: 0018:ffff888158883878 EFLAGS: 00000282
[ 1330.688253][ C1] RAX: ffff888085427da8 RBX: ffff888085c27da8 RCX: 0000000085827da8
[ 1330.688253][ C1] RDX: ffff888085827da8 RSI: 0000000000000100 RDI: ffff888085c27da8
[ 1330.688253][ C1] RBP: ffff8881588839a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1330.688253][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 0000000000000001
[ 1330.688253][ C1] R13: 0000000000000000 R14: ffff8880ba514908 R15: ffff888158883948
[ 1330.688253][ C1] ? __do_softirq+0x715/0x715
[ 1330.688253][ C1] ? shmem_add_to_page_cache+0x15fa/0x1940
[ 1330.688253][ C1] shmem_getpage_gfp+0x21bf/0x4b20
[ 1330.688253][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1330.688253][ C1] shmem_fallocate+0x1087/0x1c10
[ 1330.688253][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1330.688253][ C1] vfs_fallocate+0xd72/0x1550
[ 1330.688253][ C1] __se_sys_fallocate+0x13c/0x210
[ 1330.688253][ C1] __x64_sys_fallocate+0x56/0x70
[ 1330.688253][ C1] do_syscall_64+0x9f/0x140
[ 1330.688253][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1330.688253][ C1] RIP: 0033:0x7f6c19130bc6
[ 1330.688253][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1330.688253][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1330.688253][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1330.688253][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1330.688253][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1330.688253][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
[ 1330.688253][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1330.688253][ C1] ---[ end trace 4b028c9d42567cae ]---
[ 1330.688253][ C1] ------------[ cut here ]------------
[ 1330.688253][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1330.688253][ C1] Modules linked in:
[ 1330.688253][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1330.688253][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1330.688253][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1330.688253][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1330.688253][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1330.688253][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1330.688253][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1330.688253][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1330.688253][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1330.688253][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1330.688253][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1330.688253][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1330.688253][ C1] CR2: 0000000009325efc CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1330.688253][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1330.688253][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1330.688253][ C1] Call Trace:
[ 1330.688253][ C1]
[ 1330.688253][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1330.688253][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1330.688253][ C1] __run_hrtimer+0x48b/0xd20
[ 1330.688253][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1330.688253][ C1] ? hrtimer_init+0x570/0x570
[ 1330.688253][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1331.249077][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1331.249077][ C1]
[ 1331.249077][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1331.249077][ C1] RIP: 0010:shmem_add_to_page_cache+0x1608/0x1940
[ 1331.249077][ C1] Code: 7d a0 4c 89 ff e8 a8 d5 2f 00 8b 3a 48 8b 00 48 85 c0 75 5d 48 89 df e8 f6 d4 2f 00 c6 00 00 c6 03 00 fb 49 c7 06 00 00 00 00 <8b> 85 20 ff ff ff 41 89 46 08 8b 85 24 ff ff ff 41 89 86 90 0c 00
[ 1331.249077][ C1] RSP: 0018:ffff888158883878 EFLAGS: 00000282
[ 1331.249077][ C1] RAX: ffff888085427da8 RBX: ffff888085c27da8 RCX: 0000000085827da8
[ 1331.249077][ C1] RDX: ffff888085827da8 RSI: 0000000000000100 RDI: ffff888085c27da8
[ 1331.249077][ C1] RBP: ffff8881588839a8 R08: ffffea000000000f R09: ffff88813fffa000
[ 1331.249077][ C1] R10: 000000000ade8bad R11: ffffffff8fc00715 R12: 0000000000000001
[ 1331.249077][ C1] R13: 0000000000000000 R14: ffff8880ba514908 R15: ffff888158883948
[ 1331.249077][ C1] ? __do_softirq+0x715/0x715
[ 1331.249077][ C1] ? shmem_add_to_page_cache+0x15fa/0x1940
[ 1331.249077][ C1] shmem_getpage_gfp+0x21bf/0x4b20
[ 1331.249077][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1331.249077][ C1] shmem_fallocate+0x1087/0x1c10
[ 1331.249077][ C1] ? shmem_mmap+0xdd0/0xdd0
[ 1331.249077][ C1] vfs_fallocate+0xd72/0x1550
[ 1331.249077][ C1] __se_sys_fallocate+0x13c/0x210
[ 1331.249077][ C1] __x64_sys_fallocate+0x56/0x70
[ 1331.249077][ C1] do_syscall_64+0x9f/0x140
[ 1331.249077][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1331.249077][ C1] RIP: 0033:0x7f6c19130bc6
[ 1331.249077][ C1] Code: 24 00 75 bf eb a0 0f 1f 40 00 66 2e 0f 1f 84 00 00 00 00 00 53 49 89 f1 48 89 d3 49 89 d2 b8 1d 01 00 00 48 89 f2 31 f6 0f 05 <3d> 00 f0 ff ff 76 13 83 f8 a1 74 16 f7 d8 5b c3 66 2e 0f 1f 84 00
[ 1331.249077][ C1] RSP: 002b:00007ffe53afffb0 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 1331.249077][ C1] RAX: ffffffffffffffda RBX: 00000000007fff10 RCX: 00007f6c19130bc6
[ 1331.249077][ C1] RDX: 00000000000000f0 RSI: 0000000000000000 RDI: 0000000000000014
[ 1331.249077][ C1] RBP: 0000000000000005 R08: 00000000000000f0 R09: 00000000000000f0
[ 1331.249077][ C1] R10: 00000000007fff10 R11: 0000000000000246 R12: 000055a6317b7f20
06:44:26 executing program 4:
pselect6(0x0, 0x0, 0x0, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140)={&(0x7f0000000100)={[0x5]}, 0x8})
[ 1331.249077][ C1] R13: 00007ffe53b000f0 R14: 00007ffe53b000f8 R15: 0000000000800000
[ 1331.249077][ C1] ---[ end trace 4b028c9d42567caf ]---
[ 1331.578047][ C1] ------------[ cut here ]------------
[ 1331.578047][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1331.578047][ C1] Modules linked in:
[ 1331.578047][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1331.578047][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1331.622025][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1331.622025][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1331.622025][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1331.622025][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1331.622025][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1331.622025][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1331.622025][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1331.622025][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1331.622025][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1331.622025][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1331.622025][ C1] CR2: 00000000f55a6bb0 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1331.622025][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1331.622025][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1331.622025][ C1] Call Trace:
[ 1331.622025][ C1]
[ 1331.622025][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1331.622025][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1331.622025][ C1] __run_hrtimer+0x48b/0xd20
[ 1331.622025][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1331.622025][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1331.622025][ C1] ? hrtimer_init+0x570/0x570
[ 1331.622025][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1331.622025][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1331.622025][ C1]
[ 1331.622025][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1331.622025][ C1] RIP: 0010:__msan_metadata_ptr_for_load_8+0x10/0x20
[ 1331.622025][ C1] Code: 00 00 00 ba 01 00 00 00 e8 cd 1a 00 00 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 be 08 00 00 00 31 d2 e8 b0 1a 00 00 <5d> c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 be 08
[ 1331.622025][ C1] RSP: 0018:ffff8881603bf220 EFLAGS: 00000286
[ 1331.622025][ C1] RAX: ffff88815fbbf3d8 RBX: ffff8881603bf3d8 RCX: 000000015ffbf3d8
[ 1331.622025][ C1] RDX: ffff88815ffbf3d8 RSI: 00000000000002c0 RDI: ffff8881603bf3d8
[ 1331.622025][ C1] RBP: ffff8881603bf220 R08: ffffea000000000f R09: ffff88813fffa000
[ 1331.622025][ C1] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: 0000000000000000
[ 1331.622025][ C1] R13: 0000000000000000 R14: ffff888169c5e938 R15: 0000000000000000
[ 1331.622025][ C1] ? __do_softirq+0x715/0x715
[ 1331.622025][ C1] zap_pte_range+0x1154/0x3cb0
[ 1331.622025][ C1] ? free_unref_page_commit+0x330/0x750
[ 1331.622025][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1331.622025][ C1] unmap_page_range+0x1154/0x1440
[ 1331.622025][ C1] unmap_single_vma+0x56b/0x750
[ 1331.622025][ C1] unmap_vmas+0x3c8/0x500
[ 1331.622025][ C1] exit_mmap+0x5f1/0xb80
[ 1331.622025][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1331.622025][ C1] __mmput+0x1b7/0x630
[ 1331.622025][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1331.622025][ C1] mmput+0x8c/0xb0
[ 1331.622025][ C1] exit_mm+0x7a9/0x9a0
[ 1331.622025][ C1] do_exit+0xdbb/0x3c20
[ 1331.622025][ C1] ? task_numa_work+0xf1b/0x1140
[ 1331.622025][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1331.622025][ C1] do_group_exit+0x1e1/0x3c0
[ 1331.622025][ C1] get_signal+0x2e5f/0x39e0
[ 1331.622025][ C1] ? fput+0x82/0x320
[ 1331.622025][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1331.622025][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1331.622025][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1331.622025][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1331.622025][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1331.622025][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1331.622025][ C1] do_fast_syscall_32+0x77/0xd0
[ 1331.622025][ C1] do_SYSENTER_32+0x73/0x90
[ 1331.622025][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1331.622025][ C1] RIP: 0023:0xf7fac549
[ 1331.622025][ C1] Code: Unable to access opcode bytes at RIP 0xf7fac51f.
[ 1331.622025][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1331.622025][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1331.622025][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1331.622025][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1331.622025][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1331.622025][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1331.622025][ C1] ---[ end trace 4b028c9d42567cb0 ]---
[ 1332.081385][ C1] ------------[ cut here ]------------
[ 1332.086971][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1332.090408][ C1] Modules linked in:
[ 1332.090408][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1332.090408][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1332.090408][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1332.090408][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1332.090408][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1332.090408][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1332.090408][ C1] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1332.090408][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1332.090408][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1332.090408][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1332.090408][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1332.090408][ C1] CR2: 00000000f55a6bb0 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1332.090408][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1332.090408][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1332.090408][ C1] Call Trace:
[ 1332.090408][ C1]
[ 1332.090408][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1332.090408][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1332.090408][ C1] __run_hrtimer+0x48b/0xd20
[ 1332.090408][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1332.090408][ C1] ? hrtimer_init+0x570/0x570
[ 1332.090408][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1332.090408][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1332.090408][ C1]
[ 1332.090408][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1332.090408][ C1] RIP: 0010:__msan_metadata_ptr_for_load_8+0x10/0x20
[ 1332.090408][ C1] Code: 00 00 00 ba 01 00 00 00 e8 cd 1a 00 00 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 be 08 00 00 00 31 d2 e8 b0 1a 00 00 <5d> c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 be 08
[ 1332.090408][ C1] RSP: 0018:ffff8881603bf220 EFLAGS: 00000286
[ 1332.090408][ C1] RAX: ffff88815fbbf3d8 RBX: ffff8881603bf3d8 RCX: 000000015ffbf3d8
[ 1332.090408][ C1] RDX: ffff88815ffbf3d8 RSI: 00000000000002c0 RDI: ffff8881603bf3d8
[ 1332.090408][ C1] RBP: ffff8881603bf220 R08: ffffea000000000f R09: ffff88813fffa000
[ 1332.090408][ C1] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: ffff888169c5e938 R15: 0000000000000000
[ 1332.090408][ C1] ? __do_softirq+0x715/0x715
[ 1332.090408][ C1] zap_pte_range+0x1154/0x3cb0
[ 1332.090408][ C1] ? free_unref_page_commit+0x330/0x750
[ 1332.090408][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1332.090408][ C1] unmap_page_range+0x1154/0x1440
[ 1332.090408][ C1] unmap_single_vma+0x56b/0x750
[ 1332.090408][ C1] unmap_vmas+0x3c8/0x500
[ 1332.090408][ C1] exit_mmap+0x5f1/0xb80
[ 1332.090408][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1332.090408][ C1] __mmput+0x1b7/0x630
[ 1332.090408][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1332.090408][ C1] mmput+0x8c/0xb0
[ 1332.090408][ C1] exit_mm+0x7a9/0x9a0
[ 1332.090408][ C1] do_exit+0xdbb/0x3c20
[ 1332.090408][ C1] ? task_numa_work+0xf1b/0x1140
[ 1332.090408][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1332.090408][ C1] do_group_exit+0x1e1/0x3c0
[ 1332.090408][ C1] get_signal+0x2e5f/0x39e0
[ 1332.090408][ C1] ? fput+0x82/0x320
[ 1332.090408][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1332.090408][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1332.090408][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1332.090408][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1332.090408][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1332.090408][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1332.090408][ C1] do_fast_syscall_32+0x77/0xd0
[ 1332.090408][ C1] do_SYSENTER_32+0x73/0x90
[ 1332.090408][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1332.090408][ C1] RIP: 0023:0xf7fac549
[ 1332.090408][ C1] Code: Unable to access opcode bytes at RIP 0xf7fac51f.
[ 1332.090408][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1332.090408][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1332.090408][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1332.090408][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1332.090408][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1332.090408][ C1] ---[ end trace 4b028c9d42567cb1 ]---
[ 1332.090408][ C1] ------------[ cut here ]------------
[ 1332.090408][ C1] WARNING: CPU: 1 PID: 4238 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1332.090408][ C1] Modules linked in:
[ 1332.090408][ C1] CPU: 1 PID: 4238 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1332.090408][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1332.090408][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1332.090408][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1332.090408][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1332.090408][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880a1a43e80
[ 1332.090408][ C1] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001
[ 1332.090408][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1332.090408][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fd27b00
[ 1332.090408][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1332.090408][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1332.090408][ C1] CR2: 00000000f55a6bb0 CR3: 0000000011629000 CR4: 00000000001506e0
[ 1332.090408][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1332.090408][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1332.090408][ C1] Call Trace:
[ 1332.090408][ C1]
[ 1332.090408][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1332.090408][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1332.090408][ C1] __run_hrtimer+0x48b/0xd20
[ 1332.090408][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1332.090408][ C1] ? hrtimer_init+0x570/0x570
[ 1332.090408][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1332.090408][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1332.090408][ C1]
[ 1332.090408][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1332.090408][ C1] RIP: 0010:__msan_metadata_ptr_for_load_8+0x10/0x20
[ 1332.090408][ C1] Code: 00 00 00 ba 01 00 00 00 e8 cd 1a 00 00 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 be 08 00 00 00 31 d2 e8 b0 1a 00 00 <5d> c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 be 08
[ 1332.090408][ C1] RSP: 0018:ffff8881603bf220 EFLAGS: 00000286
[ 1332.090408][ C1] RAX: ffff88815fbbf3d8 RBX: ffff8881603bf3d8 RCX: 000000015ffbf3d8
[ 1332.090408][ C1] RDX: ffff88815ffbf3d8 RSI: 00000000000002c0 RDI: ffff8881603bf3d8
[ 1332.090408][ C1] RBP: ffff8881603bf220 R08: ffffea000000000f R09: ffff88813fffa000
[ 1332.090408][ C1] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: ffff888169c5e938 R15: 0000000000000000
[ 1332.090408][ C1] ? __do_softirq+0x715/0x715
[ 1332.090408][ C1] zap_pte_range+0x1154/0x3cb0
[ 1332.090408][ C1] ? free_unref_page_commit+0x330/0x750
[ 1332.090408][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1332.090408][ C1] unmap_page_range+0x1154/0x1440
[ 1332.090408][ C1] unmap_single_vma+0x56b/0x750
[ 1332.090408][ C1] unmap_vmas+0x3c8/0x500
[ 1332.090408][ C1] exit_mmap+0x5f1/0xb80
[ 1332.090408][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1332.090408][ C1] __mmput+0x1b7/0x630
[ 1332.090408][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1332.090408][ C1] mmput+0x8c/0xb0
[ 1332.090408][ C1] exit_mm+0x7a9/0x9a0
[ 1332.090408][ C1] do_exit+0xdbb/0x3c20
[ 1332.090408][ C1] ? task_numa_work+0xf1b/0x1140
[ 1332.090408][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1332.090408][ C1] do_group_exit+0x1e1/0x3c0
[ 1332.090408][ C1] get_signal+0x2e5f/0x39e0
[ 1332.090408][ C1] ? fput+0x82/0x320
[ 1332.090408][ C1] ? __msan_poison_alloca+0xec/0x110
[ 1332.090408][ C1] arch_do_signal_or_restart+0xa4/0xe10
[ 1332.090408][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1332.090408][ C1] exit_to_user_mode_prepare+0x2d2/0x560
[ 1332.090408][ C1] syscall_exit_to_user_mode+0x35/0x60
[ 1332.090408][ C1] __do_fast_syscall_32+0x14f/0x180
[ 1332.090408][ C1] do_fast_syscall_32+0x77/0xd0
[ 1332.090408][ C1] do_SYSENTER_32+0x73/0x90
[ 1332.090408][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1332.090408][ C1] RIP: 0023:0xf7fac549
[ 1332.090408][ C1] Code: Unable to access opcode bytes at RIP 0xf7fac51f.
[ 1332.090408][ C1] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1332.090408][ C1] RAX: 0000000000034000 RBX: 0000000000000003 RCX: 0000000020847fff
[ 1332.090408][ C1] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
06:44:29 executing program 2:
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip_tables_names\x00')
read$FUSE(r0, 0x0, 0x0)
read$FUSE(r0, &(0x7f0000004840)={0x2020}, 0x2020)
[ 1332.090408][ C1] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1332.090408][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1332.090408][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1332.090408][ C1] ---[ end trace 4b028c9d42567cb2 ]---
[ 1333.167028][ C1] ------------[ cut here ]------------
[ 1333.170732][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1333.170732][ C1] Modules linked in:
[ 1333.170732][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1333.170732][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1333.170732][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1333.170732][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1333.170732][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1333.170732][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1333.248269][ C1] RDX: 0000000080010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1333.248269][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1333.248269][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1333.248269][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1333.248269][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1333.248269][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1333.248269][ C1] CR2: 00007f6c19e7c000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1333.248269][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1333.248269][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1333.248269][ C1] Call Trace:
[ 1333.248269][ C1]
[ 1333.248269][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.248269][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1333.248269][ C1] __run_hrtimer+0x48b/0xd20
[ 1333.248269][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1333.248269][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.248269][ C1] ? hrtimer_init+0x570/0x570
[ 1333.248269][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1333.248269][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1333.248269][ C1]
[ 1333.248269][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1333.248269][ C1] RIP: 0010:kmsan_get_metadata+0x128/0x180
[ 1333.248269][ C1] Code: 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 <48> 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00
[ 1333.408191][ C1] RSP: 0018:ffff888127153238 EFLAGS: 00000286
[ 1333.408191][ C1] RAX: ffffea000b3c1260 RBX: ffffffff91e978d8 RCX: ffffea000b3ecb90
[ 1333.408191][ C1] RDX: 0000000011e978d8 RSI: 0000000000000020 RDI: ffffffff91e978d8
[ 1333.408191][ C1] RBP: ffff888127153250 R08: ffffea000000000f R09: ffff88813fffa000
[ 1333.408191][ C1] R10: 0000000000000000 R11: ffff888122903e80 R12: ffff88813fffb000
[ 1333.408191][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.408191][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1333.408191][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1333.408191][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1333.408191][ C1] alloc_pages_current+0x7b6/0xb60
[ 1333.408191][ C1] pagecache_get_page+0x111d/0x2040
[ 1333.408191][ C1] grab_cache_page_write_begin+0x125/0x1b0
[ 1333.408191][ C1] ext4_da_write_begin+0xb58/0x2080
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] ? iov_iter_fault_in_readable+0x501/0xb00
[ 1333.408191][ C1] ? ext4_set_page_dirty+0x370/0x370
[ 1333.408191][ C1] generic_perform_write+0x459/0xb00
[ 1333.408191][ C1] ? ext4_da_write_begin+0x2080/0x2080
[ 1333.408191][ C1] ext4_buffered_write_iter+0x8b4/0xc40
[ 1333.408191][ C1] ext4_file_write_iter+0x121e/0x36a0
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.408191][ C1] ? __msan_get_context_state+0x9/0x20
[ 1333.408191][ C1] ? fsnotify_perm+0x164/0x920
[ 1333.408191][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1333.408191][ C1] ? apparmor_file_permission+0x4f7/0x710
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.408191][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.408191][ C1] ? iov_iter_init+0x196/0x290
[ 1333.408191][ C1] ? ext4_file_read_iter+0xcb0/0xcb0
[ 1333.408191][ C1] vfs_write+0x1083/0x1b00
[ 1333.408191][ C1] ksys_write+0x275/0x500
[ 1333.408191][ C1] __se_sys_write+0x92/0xb0
[ 1333.408191][ C1] __x64_sys_write+0x4a/0x70
[ 1333.408191][ C1] do_syscall_64+0x9f/0x140
[ 1333.408191][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1333.408191][ C1] RIP: 0033:0x7f298ab421cd
[ 1333.408191][ C1] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1333.408191][ C1] RSP: 002b:00007f2983ffe580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1333.408191][ C1] RAX: ffffffffffffffda RBX: 00007f297801dcb0 RCX: 00007f298ab421cd
[ 1333.408191][ C1] RDX: 0000000000001000 RSI: 00007f297801dcb0 RDI: 0000000000000006
[ 1333.408191][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1333.408191][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f297801da30
[ 1333.408191][ C1] R13: 00007f2983ffe5a0 R14: 0000000000000024 R15: 0000000000001000
[ 1333.408191][ C1] ---[ end trace 4b028c9d42567cb3 ]---
[ 1333.725578][ C1] ------------[ cut here ]------------
[ 1333.731275][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1333.734427][ C1] Modules linked in:
[ 1333.734427][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1333.734427][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1333.734427][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1333.734427][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1333.734427][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1333.734427][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1333.734427][ C1] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001
[ 1333.734427][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1333.734427][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1333.734427][ C1] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fd27b00
[ 1333.734427][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1333.734427][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1333.734427][ C1] CR2: 00007f6c19e7c000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1333.734427][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1333.734427][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1333.734427][ C1] Call Trace:
[ 1333.734427][ C1]
[ 1333.734427][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.734427][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1333.734427][ C1] __run_hrtimer+0x48b/0xd20
[ 1333.734427][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1333.734427][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.734427][ C1] ? hrtimer_init+0x570/0x570
[ 1333.734427][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1333.734427][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1333.734427][ C1]
[ 1333.734427][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1333.734427][ C1] RIP: 0010:kmsan_get_metadata+0x128/0x180
[ 1333.734427][ C1] Code: 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 <48> 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00
[ 1333.734427][ C1] RSP: 0018:ffff888127153238 EFLAGS: 00000286
[ 1333.734427][ C1] RAX: ffffea000b3c1260 RBX: ffffffff91e978d8 RCX: ffffea000b3ecb90
[ 1333.734427][ C1] RDX: 0000000011e978d8 RSI: 0000000000000020 RDI: ffffffff91e978d8
[ 1333.734427][ C1] RBP: ffff888127153250 R08: ffffea000000000f R09: ffff88813fffa000
[ 1333.734427][ C1] R10: 0000000000000000 R11: ffff888122903e80 R12: ffff88813fffb000
[ 1333.734427][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1333.734427][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1333.734427][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1333.734427][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1333.734427][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1334.038072][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1334.038072][ C1] alloc_pages_current+0x7b6/0xb60
[ 1334.048564][ C1] pagecache_get_page+0x111d/0x2040
[ 1334.048564][ C1] grab_cache_page_write_begin+0x125/0x1b0
[ 1334.048564][ C1] ext4_da_write_begin+0xb58/0x2080
[ 1334.048564][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.048564][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.048564][ C1] ? iov_iter_fault_in_readable+0x501/0xb00
[ 1334.048564][ C1] ? ext4_set_page_dirty+0x370/0x370
[ 1334.048564][ C1] generic_perform_write+0x459/0xb00
[ 1334.048564][ C1] ? ext4_da_write_begin+0x2080/0x2080
[ 1334.048564][ C1] ext4_buffered_write_iter+0x8b4/0xc40
[ 1334.048564][ C1] ext4_file_write_iter+0x121e/0x36a0
[ 1334.048564][ C1] ? kmsan_get_metadata+0x116/0x180
06:44:30 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x0, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1334.048564][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.048564][ C1] ? __msan_get_context_state+0x9/0x20
[ 1334.048564][ C1] ? fsnotify_perm+0x164/0x920
[ 1334.129879][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1334.129879][ C1] ? apparmor_file_permission+0x4f7/0x710
[ 1334.129879][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.129879][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.129879][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.129879][ C1] ? iov_iter_init+0x196/0x290
[ 1334.129879][ C1] ? ext4_file_read_iter+0xcb0/0xcb0
[ 1334.129879][ C1] vfs_write+0x1083/0x1b00
[ 1334.129879][ C1] ksys_write+0x275/0x500
[ 1334.129879][ C1] __se_sys_write+0x92/0xb0
[ 1334.129879][ C1] __x64_sys_write+0x4a/0x70
[ 1334.129879][ C1] do_syscall_64+0x9f/0x140
[ 1334.129879][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1334.129879][ C1] RIP: 0033:0x7f298ab421cd
[ 1334.129879][ C1] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1334.129879][ C1] RSP: 002b:00007f2983ffe580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1334.129879][ C1] RAX: ffffffffffffffda RBX: 00007f297801dcb0 RCX: 00007f298ab421cd
[ 1334.129879][ C1] RDX: 0000000000001000 RSI: 00007f297801dcb0 RDI: 0000000000000006
[ 1334.129879][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1334.129879][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f297801da30
[ 1334.129879][ C1] R13: 00007f2983ffe5a0 R14: 0000000000000024 R15: 0000000000001000
[ 1334.129879][ C1] ---[ end trace 4b028c9d42567cb4 ]---
[ 1334.283178][ C1] ------------[ cut here ]------------
[ 1334.288780][ C1] WARNING: CPU: 1 PID: 7929 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1334.292354][ C1] Modules linked in:
[ 1334.292354][ C1] CPU: 1 PID: 7929 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1334.292354][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1334.292354][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1334.292354][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1334.292354][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1334.292354][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff888122903e80
[ 1334.292354][ C1] RDX: 0000000000010000 RSI: 0000000000000021 RDI: 0000000000000001
[ 1334.292354][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1334.292354][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1334.292354][ C1] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fd27b00
[ 1334.292354][ C1] FS: 00007f2983fff700(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1334.292354][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1334.292354][ C1] CR2: 00007f6c19e7c000 CR3: 0000000122b8f000 CR4: 00000000001506e0
[ 1334.292354][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1334.292354][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1334.292354][ C1] Call Trace:
[ 1334.292354][ C1]
[ 1334.292354][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.292354][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1334.292354][ C1] __run_hrtimer+0x48b/0xd20
[ 1334.292354][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? hrtimer_init+0x570/0x570
[ 1334.292354][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1334.292354][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1334.292354][ C1]
[ 1334.292354][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1334.292354][ C1] RIP: 0010:kmsan_get_metadata+0x128/0x180
[ 1334.292354][ C1] Code: 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 <48> 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00
[ 1334.292354][ C1] RSP: 0018:ffff888127153238 EFLAGS: 00000286
[ 1334.292354][ C1] RAX: ffffea000b3c1260 RBX: ffffffff91e978d8 RCX: ffffea000b3ecb90
[ 1334.292354][ C1] RDX: 0000000011e978d8 RSI: 0000000000000020 RDI: ffffffff91e978d8
[ 1334.292354][ C1] RBP: ffff888127153250 R08: ffffea000000000f R09: ffff88813fffa000
[ 1334.292354][ C1] R10: 0000000000000000 R11: ffff888122903e80 R12: ffff88813fffb000
[ 1334.292354][ C1] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.292354][ C1] __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1334.292354][ C1] get_page_from_freelist+0x8fd/0x26d0
[ 1334.292354][ C1] __alloc_pages_nodemask+0x6bf/0xf90
[ 1334.292354][ C1] alloc_pages_current+0x7b6/0xb60
[ 1334.292354][ C1] pagecache_get_page+0x111d/0x2040
[ 1334.292354][ C1] grab_cache_page_write_begin+0x125/0x1b0
[ 1334.292354][ C1] ext4_da_write_begin+0xb58/0x2080
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? iov_iter_fault_in_readable+0x501/0xb00
[ 1334.292354][ C1] ? ext4_set_page_dirty+0x370/0x370
[ 1334.292354][ C1] generic_perform_write+0x459/0xb00
[ 1334.292354][ C1] ? ext4_da_write_begin+0x2080/0x2080
[ 1334.292354][ C1] ext4_buffered_write_iter+0x8b4/0xc40
[ 1334.292354][ C1] ext4_file_write_iter+0x121e/0x36a0
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.292354][ C1] ? __msan_get_context_state+0x9/0x20
[ 1334.292354][ C1] ? fsnotify_perm+0x164/0x920
[ 1334.292354][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1334.292354][ C1] ? apparmor_file_permission+0x4f7/0x710
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1334.292354][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.292354][ C1] ? iov_iter_init+0x196/0x290
[ 1334.292354][ C1] ? ext4_file_read_iter+0xcb0/0xcb0
[ 1334.292354][ C1] vfs_write+0x1083/0x1b00
[ 1334.292354][ C1] ksys_write+0x275/0x500
[ 1334.292354][ C1] __se_sys_write+0x92/0xb0
[ 1334.292354][ C1] __x64_sys_write+0x4a/0x70
[ 1334.292354][ C1] do_syscall_64+0x9f/0x140
[ 1334.292354][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1334.292354][ C1] RIP: 0033:0x7f298ab421cd
[ 1334.292354][ C1] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01
[ 1334.292354][ C1] RSP: 002b:00007f2983ffe580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[ 1334.292354][ C1] RAX: ffffffffffffffda RBX: 00007f297801dcb0 RCX: 00007f298ab421cd
[ 1334.292354][ C1] RDX: 0000000000001000 RSI: 00007f297801dcb0 RDI: 0000000000000006
[ 1334.292354][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1334.292354][ C1] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f297801da30
[ 1334.292354][ C1] R13: 00007f2983ffe5a0 R14: 0000000000000024 R15: 0000000000001000
[ 1334.292354][ C1] ---[ end trace 4b028c9d42567cb5 ]---
[ 1334.878120][ T4168] systemd-journald[4168]: /dev/kmsg buffer overrun, some messages lost.
[ 1334.908141][ C1] ------------[ cut here ]------------
[ 1334.908141][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1334.908141][ C1] Modules linked in:
[ 1334.908141][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1334.963842][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1334.963842][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1334.963842][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1334.963842][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1334.963842][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1334.963842][ C1] RDX: 0000000080010000 RSI: 0000000000000027 RDI: 0000000000000001
[ 1334.963842][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1334.963842][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1334.963842][ C1] R13: 0000000000000000 R14: 0000000000000027 R15: ffff88813fd27b00
[ 1334.963842][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1334.963842][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1334.963842][ C1] CR2: 00007f6c17127028 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1334.963842][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1334.963842][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1334.963842][ C1] Call Trace:
[ 1334.963842][ C1]
[ 1334.963842][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1334.963842][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1334.963842][ C1] __run_hrtimer+0x48b/0xd20
[ 1334.963842][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1334.963842][ C1] ? hrtimer_init+0x570/0x570
[ 1334.963842][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1334.963842][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1334.963842][ C1]
[ 1334.963842][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1334.963842][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1334.963842][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1334.963842][ C1] RSP: 0018:ffff888158883c50 EFLAGS: 00000296
[ 1334.963842][ C1] RAX: ffff8880ba514908 RBX: ffff888122828000 RCX: 0000000000000401
[ 1334.963842][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff888122828000
[ 1334.963842][ C1] RBP: ffff888158883c70 R08: ffffea000000000f R09: ffff88813fffa000
[ 1334.963842][ C1] R10: 00000000d9fad06d R11: ffffffff8fc00715 R12: 0000000000000246
[ 1334.963842][ C1] R13: 0000000000000000 R14: 0000000000000cc0 R15: ffff888100152f00
[ 1334.963842][ C1] ? __do_softirq+0x715/0x715
[ 1334.963842][ C1] kmem_cache_alloc+0x895/0x1030
[ 1334.963842][ C1] ? getname_flags+0x154/0xbe0
[ 1334.963842][ C1] getname_flags+0x154/0xbe0
[ 1334.963842][ C1] ? do_mkdirat+0x76/0x740
[ 1334.963842][ C1] do_mkdirat+0xb6/0x740
[ 1335.248317][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1335.248317][ C1] __se_sys_mkdir+0x76/0x90
[ 1335.248317][ C1] __x64_sys_mkdir+0x3e/0x60
[ 1335.248317][ C1] do_syscall_64+0x9f/0x140
[ 1335.248317][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1335.248317][ C1] RIP: 0033:0x7f6c1912c687
[ 1335.248317][ C1] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48
[ 1335.248317][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000293 ORIG_RAX: 0000000000000053
[ 1335.248317][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c687
[ 1335.248317][ C1] RDX: 00007f6c19b9da00 RSI: 00000000000001ed RDI: 000055a6317c0d60
[ 1335.248317][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1335.328037][ C1] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000
[ 1335.328037][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1335.328037][ C1] ---[ end trace 4b028c9d42567cb6 ]---
[ 1335.356559][ C1] ------------[ cut here ]------------
[ 1335.362161][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1335.365530][ C1] Modules linked in:
[ 1335.365530][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1335.365530][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1335.365530][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1335.365530][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1335.365530][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1335.365530][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1335.365530][ C1] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001
[ 1335.365530][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1335.365530][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1335.365530][ C1] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fd27b00
[ 1335.365530][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1335.365530][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1335.365530][ C1] CR2: 00007f6c17127028 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1335.365530][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1335.365530][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1335.365530][ C1] Call Trace:
[ 1335.365530][ C1]
[ 1335.365530][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1335.365530][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1335.365530][ C1] __run_hrtimer+0x48b/0xd20
[ 1335.365530][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1335.365530][ C1] ? hrtimer_init+0x570/0x570
[ 1335.365530][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1335.365530][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1335.365530][ C1]
[ 1335.365530][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1335.365530][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1335.365530][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1335.365530][ C1] RSP: 0018:ffff888158883c50 EFLAGS: 00000296
[ 1335.365530][ C1] RAX: ffff8880ba514908 RBX: ffff888122828000 RCX: 0000000000000401
[ 1335.365530][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff888122828000
[ 1335.365530][ C1] RBP: ffff888158883c70 R08: ffffea000000000f R09: ffff88813fffa000
[ 1335.365530][ C1] R10: 00000000d9fad06d R11: ffffffff8fc00715 R12: 0000000000000246
[ 1335.365530][ C1] R13: 0000000000000000 R14: 0000000000000cc0 R15: ffff888100152f00
[ 1335.365530][ C1] ? __do_softirq+0x715/0x715
[ 1335.365530][ C1] kmem_cache_alloc+0x895/0x1030
[ 1335.365530][ C1] ? getname_flags+0x154/0xbe0
[ 1335.365530][ C1] getname_flags+0x154/0xbe0
[ 1335.365530][ C1] ? do_mkdirat+0x76/0x740
[ 1335.365530][ C1] do_mkdirat+0xb6/0x740
[ 1335.365530][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1335.365530][ C1] __se_sys_mkdir+0x76/0x90
[ 1335.365530][ C1] __x64_sys_mkdir+0x3e/0x60
[ 1335.365530][ C1] do_syscall_64+0x9f/0x140
[ 1335.365530][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1335.365530][ C1] RIP: 0033:0x7f6c1912c687
[ 1335.365530][ C1] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48
[ 1335.365530][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000293 ORIG_RAX: 0000000000000053
[ 1335.365530][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c687
[ 1335.365530][ C1] RDX: 00007f6c19b9da00 RSI: 00000000000001ed RDI: 000055a6317c0d60
[ 1335.365530][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1335.365530][ C1] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000
[ 1335.365530][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1335.365530][ C1] ---[ end trace 4b028c9d42567cb7 ]---
[ 1335.774907][ C1] ------------[ cut here ]------------
[ 1335.780567][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1335.789228][ C1] Modules linked in:
[ 1335.789228][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1335.789228][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1335.789228][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1335.789228][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1335.789228][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1335.789228][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1335.789228][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1335.789228][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1335.789228][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1335.789228][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1335.789228][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1335.789228][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1335.789228][ C1] CR2: 00007f6c17127028 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1335.789228][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1335.789228][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1335.789228][ C1] Call Trace:
[ 1335.789228][ C1]
[ 1335.789228][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1335.789228][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1335.789228][ C1] __run_hrtimer+0x48b/0xd20
[ 1335.789228][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1335.789228][ C1] ? hrtimer_init+0x570/0x570
[ 1335.789228][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1335.789228][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1335.789228][ C1]
[ 1335.789228][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1335.789228][ C1] RIP: 0010:kmsan_slab_alloc+0xc2/0xe0
[ 1335.789228][ C1] Code: ff ff e8 e1 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1e e8 8c db 0b ff 41 f7 c4 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5c 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 79 19 7c 90 31 c0 e8 fe
[ 1335.789228][ C1] RSP: 0018:ffff888158883c50 EFLAGS: 00000296
[ 1336.014183][ C1] RAX: ffff8880ba514908 RBX: ffff888122828000 RCX: 0000000000000401
[ 1336.014183][ C1] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff888122828000
[ 1336.014183][ C1] RBP: ffff888158883c70 R08: ffffea000000000f R09: ffff88813fffa000
[ 1336.014183][ C1] R10: 00000000d9fad06d R11: ffffffff8fc00715 R12: 0000000000000246
[ 1336.048211][ C1] R13: 0000000000000000 R14: 0000000000000cc0 R15: ffff888100152f00
[ 1336.048211][ C1] ? __do_softirq+0x715/0x715
[ 1336.048211][ C1] kmem_cache_alloc+0x895/0x1030
[ 1336.048211][ C1] ? getname_flags+0x154/0xbe0
[ 1336.048211][ C1] getname_flags+0x154/0xbe0
[ 1336.048211][ C1] ? do_mkdirat+0x76/0x740
[ 1336.048211][ C1] do_mkdirat+0xb6/0x740
[ 1336.048211][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.048211][ C1] __se_sys_mkdir+0x76/0x90
[ 1336.048211][ C1] __x64_sys_mkdir+0x3e/0x60
[ 1336.048211][ C1] do_syscall_64+0x9f/0x140
[ 1336.048211][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1336.048211][ C1] RIP: 0033:0x7f6c1912c687
[ 1336.048211][ C1] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48
[ 1336.048211][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000293 ORIG_RAX: 0000000000000053
[ 1336.048211][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c687
[ 1336.048211][ C1] RDX: 00007f6c19b9da00 RSI: 00000000000001ed RDI: 000055a6317c0d60
[ 1336.048211][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.048211][ C1] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000
[ 1336.178122][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1336.178122][ C1] ---[ end trace 4b028c9d42567cb8 ]---
[ 1336.218832][ T4168] systemd-journald[4168]: /dev/kmsg buffer overrun, some messages lost.
[ 1336.296967][ C1] ------------[ cut here ]------------
[ 1336.302609][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1336.305978][ C1] Modules linked in:
[ 1336.305978][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1336.305978][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1336.305978][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1336.305978][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1336.305978][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1336.305978][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1336.305978][ C1] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1336.305978][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1336.305978][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1336.305978][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1336.305978][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1336.305978][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1336.305978][ C1] CR2: 0000000008171088 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1336.305978][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1336.305978][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1336.305978][ C1] Call Trace:
[ 1336.305978][ C1]
[ 1336.305978][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.305978][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1336.305978][ C1] __run_hrtimer+0x48b/0xd20
[ 1336.305978][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1336.305978][ C1] ? hrtimer_init+0x570/0x570
[ 1336.305978][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1336.305978][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1336.305978][ C1]
[ 1336.305978][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1336.305978][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1a/0x20
[ 1336.305978][ C1] Code: 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 <5d> c3 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec
[ 1336.305978][ C1] RSP: 0018:ffff888158883d50 EFLAGS: 00000246
[ 1336.305978][ C1] RAX: ffffd0ffffffff00 RBX: ffff888158883fd0 RCX: 0000000158083f00
[ 1336.305978][ C1] RDX: 0000000158883fd0 RSI: 0000000000000001 RDI: ffff888158883fd0
[ 1336.305978][ C1] RBP: ffff888158883d50 R08: ffffea000000000f R09: ffff88813fffa000
[ 1336.305978][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880ba514908
[ 1336.305978][ C1] R13: 0000000000000002 R14: 0000000000000001 R15: 0000000000000000
[ 1336.305978][ C1] kmsan_get_metadata+0x35/0x180
[ 1336.305978][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.305978][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1336.305978][ C1] __secure_computing+0x12f/0x4c0
[ 1336.305978][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.305978][ C1] syscall_trace_enter+0x31e/0x840
[ 1336.305978][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.305978][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1336.305978][ C1] do_syscall_64+0x4b/0x140
[ 1336.305978][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1336.305978][ C1] RIP: 0033:0x7f6c1912c9c7
[ 1336.305978][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1336.305978][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1336.305978][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c9c7
[ 1336.305978][ C1] RDX: 00007f6c19b9da00 RSI: 0000000000000000 RDI: 000055a63164d9a3
[ 1336.305978][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.305978][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1336.305978][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1336.305978][ C1] ---[ end trace 4b028c9d42567cb9 ]---
[ 1336.714577][ C1] ------------[ cut here ]------------
[ 1336.720161][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1336.723696][ C1] Modules linked in:
[ 1336.723696][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1336.723696][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1336.723696][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1336.723696][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1336.723696][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1336.723696][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1336.723696][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1336.723696][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1336.723696][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1336.723696][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1336.723696][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1336.723696][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1336.723696][ C1] CR2: 0000000008171088 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1336.723696][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1336.723696][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1336.723696][ C1] Call Trace:
[ 1336.723696][ C1]
[ 1336.723696][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.723696][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1336.723696][ C1] __run_hrtimer+0x48b/0xd20
[ 1336.723696][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1336.723696][ C1] ? hrtimer_init+0x570/0x570
[ 1336.723696][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1336.723696][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1336.723696][ C1]
[ 1336.723696][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1336.723696][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1a/0x20
[ 1336.723696][ C1] Code: 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 <5d> c3 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec
[ 1336.723696][ C1] RSP: 0018:ffff888158883d50 EFLAGS: 00000246
[ 1336.723696][ C1] RAX: ffffd0ffffffff00 RBX: ffff888158883fd0 RCX: 0000000158083f00
[ 1336.723696][ C1] RDX: 0000000158883fd0 RSI: 0000000000000001 RDI: ffff888158883fd0
[ 1336.723696][ C1] RBP: ffff888158883d50 R08: ffffea000000000f R09: ffff88813fffa000
[ 1336.723696][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880ba514908
[ 1336.723696][ C1] R13: 0000000000000002 R14: 0000000000000001 R15: 0000000000000000
[ 1336.723696][ C1] kmsan_get_metadata+0x35/0x180
[ 1336.723696][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.723696][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1336.723696][ C1] __secure_computing+0x12f/0x4c0
[ 1336.723696][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.723696][ C1] syscall_trace_enter+0x31e/0x840
[ 1336.723696][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1336.723696][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1336.723696][ C1] do_syscall_64+0x4b/0x140
[ 1336.723696][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1336.723696][ C1] RIP: 0033:0x7f6c1912c9c7
[ 1336.723696][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1336.723696][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1336.723696][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c9c7
[ 1336.723696][ C1] RDX: 00007f6c19b9da00 RSI: 0000000000000000 RDI: 000055a63164d9a3
[ 1336.723696][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1336.723696][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1336.723696][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1336.723696][ C1] ---[ end trace 4b028c9d42567cba ]---
[ 1337.133913][ C1] ------------[ cut here ]------------
[ 1337.139461][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1337.143094][ C1] Modules linked in:
[ 1337.143094][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1337.143094][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1337.143094][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1337.143094][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1337.143094][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1337.143094][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1337.143094][ C1] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001
[ 1337.143094][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1337.143094][ C1] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000
[ 1337.143094][ C1] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fd27b00
[ 1337.143094][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1337.143094][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1337.143094][ C1] CR2: 0000000008171088 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1337.143094][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1337.143094][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1337.143094][ C1] Call Trace:
[ 1337.143094][ C1]
[ 1337.143094][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.143094][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1337.143094][ C1] __run_hrtimer+0x48b/0xd20
[ 1337.143094][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1337.143094][ C1] ? hrtimer_init+0x570/0x570
[ 1337.143094][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1337.143094][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1337.143094][ C1]
[ 1337.143094][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1337.143094][ C1] RIP: 0010:kmsan_internal_is_module_addr+0x1a/0x20
[ 1337.143094][ C1] Code: 0f 92 c0 20 c8 5d c3 66 0f 1f 84 00 00 00 00 00 55 48 89 e5 48 81 ff ff ff ff 9f 0f 97 c1 48 81 ff 00 00 00 ff 0f 92 c0 20 c8 <5d> c3 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec
[ 1337.143094][ C1] RSP: 0018:ffff888158883d50 EFLAGS: 00000246
[ 1337.143094][ C1] RAX: ffffd0ffffffff00 RBX: ffff888158883fd0 RCX: 0000000158083f00
[ 1337.143094][ C1] RDX: 0000000158883fd0 RSI: 0000000000000001 RDI: ffff888158883fd0
[ 1337.143094][ C1] RBP: ffff888158883d50 R08: ffffea000000000f R09: ffff88813fffa000
[ 1337.143094][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8880ba514908
[ 1337.143094][ C1] R13: 0000000000000002 R14: 0000000000000001 R15: 0000000000000000
[ 1337.143094][ C1] kmsan_get_metadata+0x35/0x180
[ 1337.143094][ C1] kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.143094][ C1] __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1337.143094][ C1] __secure_computing+0x12f/0x4c0
[ 1337.143094][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.143094][ C1] syscall_trace_enter+0x31e/0x840
[ 1337.143094][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.143094][ C1] syscall_enter_from_user_mode+0x4d/0x70
[ 1337.143094][ C1] do_syscall_64+0x4b/0x140
[ 1337.143094][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1337.143094][ C1] RIP: 0033:0x7f6c1912c9c7
[ 1337.143094][ C1] Code: 83 c4 08 48 3d 01 f0 ff ff 73 01 c3 48 8b 0d c8 d4 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 b8 15 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d a1 d4 2b 00 f7 d8 64 89 01 48
[ 1337.143094][ C1] RSP: 002b:00007ffe53afd678 EFLAGS: 00000246 ORIG_RAX: 0000000000000015
[ 1337.143094][ C1] RAX: ffffffffffffffda RBX: 00007ffe53b00590 RCX: 00007f6c1912c9c7
[ 1337.143094][ C1] RDX: 00007f6c19b9da00 RSI: 0000000000000000 RDI: 000055a63164d9a3
[ 1337.143094][ C1] RBP: 00007ffe53afd6b0 R08: 0000000000000000 R09: 0000000000000000
[ 1337.143094][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 0000000000000000
[ 1337.143094][ C1] R13: 0000000000000000 R14: 00007ffe53b00590 R15: 00007ffe53afdba0
[ 1337.143094][ C1] ---[ end trace 4b028c9d42567cbb ]---
[ 1337.629766][ C1] ------------[ cut here ]------------
[ 1337.629766][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1337.629766][ C1] Modules linked in:
[ 1337.629766][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1337.629766][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1337.629766][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1337.629766][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1337.629766][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1337.629766][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1337.629766][ C1] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001
[ 1337.629766][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1337.629766][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1337.629766][ C1] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fd27b00
[ 1337.629766][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1337.629766][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1337.629766][ C1] CR2: 00000000090d52c5 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1337.629766][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1337.629766][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1337.629766][ C1] Call Trace:
[ 1337.629766][ C1]
[ 1337.629766][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.629766][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1337.629766][ C1] __run_hrtimer+0x48b/0xd20
[ 1337.629766][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1337.629766][ C1] ? hrtimer_init+0x570/0x570
[ 1337.629766][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1337.629766][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1337.629766][ C1]
[ 1337.629766][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1337.629766][ C1] RIP: 0010:virt_to_page_or_null+0x2b/0xf0
[ 1337.629766][ C1] Code: 48 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f <48> 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b
[ 1337.878065][ C1] RSP: 0018:ffff8880b535f340 EFLAGS: 00000207
[ 1337.878065][ C1] RAX: ffff88813535f628 RBX: ffff8880b535f628 RCX: 000000000000002e
[ 1337.878065][ C1] RDX: 00000000b535f628 RSI: 0000000000000000 RDI: ffff8880b535f628
[ 1337.878065][ C1] RBP: ffff8880b535f340 R08: ffffffff821eea16 R09: ffff88813fffa000
[ 1337.878065][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 00000000ffffffff
[ 1337.878065][ C1] R13: 0000000000000008 R14: 0000000000000000 R15: 0000000000000001
[ 1337.878065][ C1] ? copy_pte_range+0x1a26/0x50c0
[ 1337.878065][ C1] kmsan_get_metadata+0x116/0x180
[ 1337.878065][ C1] kmsan_internal_memset_shadow+0x77/0xa0
[ 1337.878065][ C1] __msan_poison_alloca+0x50/0x110
[ 1337.878065][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.878065][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1337.878065][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1337.878065][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1337.878065][ C1] copy_page_range+0x1a81/0x2410
[ 1337.878065][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1337.878065][ C1] dup_mmap+0x1674/0x2250
[ 1337.878065][ C1] dup_mm+0x1f0/0x7c0
[ 1337.878065][ C1] copy_process+0x3ec4/0x9b80
[ 1337.878065][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1337.878065][ C1] kernel_clone+0x4ea/0x1350
[ 1337.878065][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1337.878065][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1337.878065][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1337.878065][ C1] __do_fast_syscall_32+0x127/0x180
[ 1337.878065][ C1] do_fast_syscall_32+0x77/0xd0
[ 1337.878065][ C1] do_SYSENTER_32+0x73/0x90
[ 1337.878065][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1337.878065][ C1] RIP: 0023:0xf7fe7549
[ 1337.878065][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1337.878065][ C1] RSP: 002b:00000000ff94d9c0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1337.878065][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1337.878065][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000b0a73e8
[ 1337.878065][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1337.878065][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1337.878065][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1337.878065][ C1] ---[ end trace 4b028c9d42567cbc ]---
[ 1338.133183][ C1] ------------[ cut here ]------------
[ 1338.138756][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1338.142327][ C1] Modules linked in:
[ 1338.142327][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1338.142327][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1338.142327][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1338.142327][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1338.142327][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1338.142327][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1338.142327][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1338.142327][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1338.142327][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1338.142327][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1338.142327][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1338.142327][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1338.142327][ C1] CR2: 00000000090d52c5 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1338.142327][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1338.142327][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1338.142327][ C1] Call Trace:
[ 1338.142327][ C1]
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1338.142327][ C1] __run_hrtimer+0x48b/0xd20
[ 1338.142327][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1338.142327][ C1] ? hrtimer_init+0x570/0x570
[ 1338.142327][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1338.142327][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1338.142327][ C1]
[ 1338.142327][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1338.142327][ C1] RIP: 0010:virt_to_page_or_null+0x2b/0xf0
[ 1338.142327][ C1] Code: 48 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f <48> 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b
[ 1338.142327][ C1] RSP: 0018:ffff8880b535f340 EFLAGS: 00000207
[ 1338.142327][ C1] RAX: ffff88813535f628 RBX: ffff8880b535f628 RCX: 000000000000002e
[ 1338.142327][ C1] RDX: 00000000b535f628 RSI: 0000000000000000 RDI: ffff8880b535f628
[ 1338.142327][ C1] RBP: ffff8880b535f340 R08: ffffffff821eea16 R09: ffff88813fffa000
[ 1338.142327][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 00000000ffffffff
[ 1338.142327][ C1] R13: 0000000000000008 R14: 0000000000000000 R15: 0000000000000001
[ 1338.142327][ C1] ? copy_pte_range+0x1a26/0x50c0
[ 1338.142327][ C1] kmsan_get_metadata+0x116/0x180
[ 1338.142327][ C1] kmsan_internal_memset_shadow+0x77/0xa0
[ 1338.142327][ C1] __msan_poison_alloca+0x50/0x110
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1338.142327][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] copy_page_range+0x1a81/0x2410
[ 1338.142327][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1338.142327][ C1] dup_mmap+0x1674/0x2250
[ 1338.142327][ C1] dup_mm+0x1f0/0x7c0
[ 1338.142327][ C1] copy_process+0x3ec4/0x9b80
[ 1338.142327][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1338.142327][ C1] kernel_clone+0x4ea/0x1350
[ 1338.142327][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1338.142327][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1338.142327][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1338.142327][ C1] __do_fast_syscall_32+0x127/0x180
[ 1338.142327][ C1] do_fast_syscall_32+0x77/0xd0
[ 1338.142327][ C1] do_SYSENTER_32+0x73/0x90
[ 1338.142327][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1338.142327][ C1] RIP: 0023:0xf7fe7549
[ 1338.142327][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1338.142327][ C1] RSP: 002b:00000000ff94d9c0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1338.142327][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1338.142327][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000b0a73e8
[ 1338.142327][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1338.142327][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1338.142327][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1338.142327][ C1] ---[ end trace 4b028c9d42567cbd ]---
[ 1338.142327][ C1] ------------[ cut here ]------------
[ 1338.142327][ C1] WARNING: CPU: 1 PID: 12527 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1338.142327][ C1] Modules linked in:
[ 1338.142327][ C1] CPU: 1 PID: 12527 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1338.142327][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1338.142327][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1338.142327][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1338.142327][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1338.142327][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff88812a161f40
[ 1338.142327][ C1] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001
[ 1338.142327][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1338.142327][ C1] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000
[ 1338.142327][ C1] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fd27b00
[ 1338.142327][ C1] FS: 0000000000000000(0000) GS:ffff88813fd00000(0063) knlGS:000000000b0a7380
[ 1338.142327][ C1] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1338.142327][ C1] CR2: 00000000090d52c5 CR3: 00000000b5399000 CR4: 00000000001506e0
[ 1338.142327][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1338.142327][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1338.142327][ C1] Call Trace:
[ 1338.142327][ C1]
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1338.142327][ C1] __run_hrtimer+0x48b/0xd20
[ 1338.142327][ C1] hrtimer_interrupt+0x6e2/0x1b50
[ 1338.142327][ C1] ? hrtimer_init+0x570/0x570
[ 1338.142327][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1338.142327][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1338.142327][ C1]
[ 1338.142327][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1338.142327][ C1] RIP: 0010:virt_to_page_or_null+0x2b/0xf0
[ 1338.142327][ C1] Code: 48 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d 32 1c aa 0f <48> 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b
[ 1338.142327][ C1] RSP: 0018:ffff8880b535f340 EFLAGS: 00000207
[ 1338.142327][ C1] RAX: ffff88813535f628 RBX: ffff8880b535f628 RCX: 000000000000002e
[ 1338.142327][ C1] RDX: 00000000b535f628 RSI: 0000000000000000 RDI: ffff8880b535f628
[ 1338.142327][ C1] RBP: ffff8880b535f340 R08: ffffffff821eea16 R09: ffff88813fffa000
[ 1338.142327][ C1] R10: 00000000ca43d80e R11: ffffffff7fffffff R12: 00000000ffffffff
[ 1338.142327][ C1] R13: 0000000000000008 R14: 0000000000000000 R15: 0000000000000001
[ 1338.142327][ C1] ? copy_pte_range+0x1a26/0x50c0
[ 1338.142327][ C1] kmsan_get_metadata+0x116/0x180
[ 1338.142327][ C1] kmsan_internal_memset_shadow+0x77/0xa0
[ 1338.142327][ C1] __msan_poison_alloca+0x50/0x110
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] copy_pte_range+0x1a7a/0x50c0
[ 1338.142327][ C1] ? kmsan_set_origin_checked+0xa2/0x100
[ 1338.142327][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1338.142327][ C1] copy_page_range+0x1a81/0x2410
[ 1338.142327][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1338.142327][ C1] dup_mmap+0x1674/0x2250
[ 1338.142327][ C1] dup_mm+0x1f0/0x7c0
[ 1338.142327][ C1] copy_process+0x3ec4/0x9b80
[ 1338.142327][ C1] ? kmsan_get_metadata+0xd1/0x180
[ 1338.142327][ C1] kernel_clone+0x4ea/0x1350
[ 1338.142327][ C1] ? kmsan_internal_unpoison_shadow+0x2f/0x40
[ 1338.142327][ C1] __se_compat_sys_ia32_clone+0x222/0x350
[ 1338.142327][ C1] __ia32_compat_sys_ia32_clone+0x5d/0x80
[ 1338.142327][ C1] __do_fast_syscall_32+0x127/0x180
[ 1338.142327][ C1] do_fast_syscall_32+0x77/0xd0
[ 1338.142327][ C1] do_SYSENTER_32+0x73/0x90
[ 1338.142327][ C1] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1338.142327][ C1] RIP: 0023:0xf7fe7549
[ 1338.142327][ C1] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1338.142327][ C1] RSP: 002b:00000000ff94d9c0 EFLAGS: 00000206 ORIG_RAX: 0000000000000078
[ 1338.142327][ C1] RAX: ffffffffffffffda RBX: 0000000001200011 RCX: 0000000000000000
[ 1338.142327][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000b0a73e8
[ 1338.142327][ C1] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000
[ 1338.142327][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1338.142327][ C1] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1338.142327][ C1] ---[ end trace 4b028c9d42567cbe ]---
[ 1339.157397][ T4168] systemd-journald[4168]: /dev/kmsg buffer overrun, some messages lost.
[ 1339.157397][ C1] ------------[ cut here ]------------
[ 1339.157397][ C1] WARNING: CPU: 1 PID: 4168 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700
[ 1339.157397][ C1] Modules linked in:
[ 1339.157397][ C1] CPU: 1 PID: 4168 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1339.157397][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1339.157397][ C1] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700
[ 1339.157397][ C1] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 21 74 22 fb e9 bf fe ff ff 44 89 e7 e8 14 74 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 05 83 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 f2 73 22 fb 84 db 75
[ 1339.157397][ C1] RSP: 0018:ffff88813fd05cb0 EFLAGS: 00010046
[ 1339.157397][ C1] RAX: ffffffff871cb0eb RBX: 0000000000000000 RCX: ffff8880ba513e80
06:44:35 executing program 4:
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000080)={'sit0\x00', &(0x7f0000000000)={'syztnl2\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00', @private2}})
[ 1339.157397][ C1] RDX: 0000000080010000 RSI: 0000000000000023 RDI: 0000000000000001
[ 1339.157397][ C1] RBP: ffff88813fd05d30 R08: ffffffff871cb032 R09: ffff88813fffa000
[ 1339.157397][ C1] R10: 000000004d1d8650 R11: ffff88813fd05ff8 R12: 0000000000000000
[ 1339.157397][ C1] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fd27b00
[ 1339.157397][ C1] FS: 00007f6c19e718c0(0000) GS:ffff88813fd00000(0000) knlGS:0000000000000000
[ 1339.157397][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1339.157397][ C1] CR2: 0000000008171088 CR3: 00000001602e1000 CR4: 00000000001506e0
[ 1339.157397][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1339.157397][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1339.157397][ C1] Call Trace:
[ 1339.157397][ C1]
[ 1339.157397][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1339.157397][ C1] ? vkms_get_vblank_timestamp+0x3d0/0x3d0
[ 1339.157397][ C1] __run_hrtimer+0x48b/0xd20
[ 1339.157397][ C1] hrtimer_interrupt+0x6e2/0x1b50
06:44:35 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1339.157397][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1339.157397][ C1] ? hrtimer_init+0x570/0x570
[ 1339.157397][ C1] __sysvec_apic_timer_interrupt+0xfd/0x470
[ 1339.157397][ C1] sysvec_apic_timer_interrupt+0xc1/0xf0
[ 1339.157397][ C1]
[ 1339.157397][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 1339.157397][ C1] RIP: 0010:console_unlock+0x1929/0x1d70
[ 1339.157397][ C1] Code: db 74 0c 4d 85 ff 75 19 e8 64 45 2d 00 eb 18 8b 7c 24 64 e8 59 36 b0 00 4d 85 ff 74 eb 0f 1f 40 00 e8 4b 45 2d 00 fb 44 89 f0 <34> 01 22 44 24 2f 44 89 f3 0a 5c 24 1f 3c 01 74 10 f6 c3 01 74 21
[ 1339.157397][ C1] RSP: 0018:ffff888158883700 EFLAGS: 00000293
[ 1339.157397][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8880ba513e80
[ 1339.157397][ C1] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000
[ 1339.157397][ C1] RBP: ffff888158883878 R08: ffffffff818eee73 R09: ffff88813fffa000
[ 1339.157397][ C1] R10: 000000009139ed00 R11: 00000000ffffffff R12: 0000000000000000
[ 1339.157397][ C1] R13: ffff8880ba514908 R14: 0000000000000000 R15: 0000000000000200
[ 1339.157397][ C1] ? console_unlock+0x18f3/0x1d70
[ 1339.157397][ C1] ? console_trylock+0x288/0x2c0
[ 1339.157397][ C1] vprintk_emit+0x3cd/0x8b0
[ 1339.157397][ C1] devkmsg_emit+0x1c1/0x1ee
[ 1339.157397][ C1] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1339.157397][ C1] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1339.157397][ C1] devkmsg_write+0x857/0x8a0
[ 1339.157397][ C1] ? devkmsg_read+0x1250/0x1250
[ 1339.157397][ C1] do_iter_readv_writev+0xa99/0xc30
[ 1339.157397][ C1] ? devkmsg_read+0x1250/0x1250
[ 1339.157397][ C1] do_iter_write+0x371/0x1090
[ 1339.157397][ C1] ? kmsan_get_metadata+0x116/0x180
[ 1339.157397][ C1] do_writev+0x55a/0xcf0
[ 1339.157397][ C1] ? syscall_trace_enter+0x3d4/0x840
[ 1339.157397][ C1] __se_sys_writev+0x9b/0xb0
[ 1339.157397][ C1] __x64_sys_writev+0x4a/0x70
[ 1339.157397][ C1] do_syscall_64+0x9f/0x140
[ 1339.157397][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1339.157397][ C1] RIP: 0033:0x7f6c191320b0
[ 1339.157397][ C1] Code: 73 01 c3 48 8b 0d e8 7d 2b 00 f7 d8 64 89 01 48 83 c8 ff c3 66 0f 1f 44 00 00 83 3d 59 d6 2b 00 00 75 10 b8 14 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 3e 44 01 00 48 89 04 24
[ 1339.157397][ C1] RSP: 002b:00007ffe53aff888 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 1339.157397][ C1] RAX: ffffffffffffffda RBX: 00007ffe53affa80 RCX: 00007f6c191320b0
[ 1339.157397][ C1] RDX: 0000000000000005 RSI: 00007ffe53aff9a0 RDI: 000000000000000b
[ 1339.157397][ C1] RBP: 0000000000000000 R08: 000000000000e000 R09: 0000000000000008
[ 1339.157397][ C1] R10: 0000000000000069 R11: 0000000000000246 R12: 00007ffe53aff9e0
[ 1339.157397][ C1] R13: 00007ffe53aff960 R14: 000000000000002c R15: 00007ffe53aff9a0
[ 1339.157397][ C1] ---[ end trace 4b028c9d42567cbf ]---
06:44:36 executing program 5:
r0 = socket$can_raw(0x2, 0x3, 0x1)
ioctl$SIOCGIFHWADDR(r0, 0x8912, &(0x7f0000000040)={'bridge_slave_1\x00'})
06:44:36 executing program 2:
bpf$MAP_CREATE(0x7, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)
06:44:36 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1340.514144][ T4273] XFS (loop0): Invalid superblock magic number
06:44:36 executing program 4:
r0 = socket$can_raw(0x2, 0x3, 0x1)
sendmsg$can_raw(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x2}, 0x10, &(0x7f00000001c0)={0x0}, 0x8}, 0x0)
06:44:36 executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)={0x50, r1, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x30, 0x24, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_EXTENDED_ADDR={0xc}, @NL802154_DEVKEY_ATTR_ID={0x20, 0x3, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0x14, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}, @NL802154_DEV_ADDR_ATTR_MODE={0x8, 0x2, 0x2}]}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}]}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x50}}, 0x0)
06:44:37 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x24000000, &(0x7f0000000840)={[{@grpid}]})
06:44:37 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000cc0)={0x1c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x1c}}, 0x0)
06:44:37 executing program 4:
r0 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x0)
06:44:37 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x0, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:37 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:37 executing program 2:
r0 = epoll_create(0x7)
epoll_wait(r0, &(0x7f0000000080)=[{}], 0x1, 0x0)
06:44:37 executing program 5:
add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$keyring(&(0x7f0000000300), &(0x7f0000000340)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
06:44:37 executing program 4:
readv(0xffffffffffffffff, &(0x7f0000000080)=[{0x0}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000081000/0x3000)=nil, 0x3000)
pkey_free(0xffffffffffffffff)
[ 1341.631785][ T4325] XFS (loop0): Invalid superblock magic number
06:44:37 executing program 2:
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCPKT(r0, 0x5420, &(0x7f0000000180)=0xffffffff)
read(r0, &(0x7f0000001c40)=""/242, 0xf2)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "59dd978797942149c2ac3890a5dfb842337cd4"})
[ 1341.871605][ T4325] XFS (loop0): Invalid superblock magic number
06:44:38 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:38 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x0, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:38 executing program 5:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0xfffffd6e)
06:44:38 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x2458ffff, &(0x7f0000000840)={[{@grpid}]})
06:44:38 executing program 4:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
fcntl$lock(r0, 0x25, &(0x7f0000000000))
06:44:38 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:39 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x25000000, &(0x7f0000000840)={[{@grpid}]})
06:44:39 executing program 5:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER_AVC(r0, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0x14, 0x453, 0x0, 0x0, 0x0, "95"}, 0x14}}, 0x0)
06:44:39 executing program 2:
r0 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x141041, 0x0)
write$P9_RVERSION(r0, 0x0, 0x0)
06:44:39 executing program 4:
syz_open_procfs$namespace(0x0, &(0x7f0000000280)='ns/pid\x00')
06:44:39 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1343.147420][ T35] audit: type=1107 audit(1624776279.322:29): pid=4406 uid=0 auid=4294967295 ses=4294967295 subj==unconfined msg='•'
06:44:39 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x0, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:39 executing program 5:
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001100)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
[ 1343.364043][ T4413] XFS (loop0): Invalid superblock magic number
06:44:39 executing program 4:
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000)
write$P9_RXATTRWALK(r0, &(0x7f0000000040)={0xf}, 0xf)
write$P9_RXATTRCREATE(r0, &(0x7f0000000140)={0x7}, 0x7)
06:44:39 executing program 2:
mbind(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, &(0x7f0000000f80), 0x0, 0x0)
06:44:39 executing program 5:
r0 = getpgrp(0x0)
sched_rr_get_interval(r0, &(0x7f0000000080))
[ 1343.613326][ T4413] XFS (loop0): Invalid superblock magic number
06:44:40 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:40 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x2558ffff, &(0x7f0000000840)={[{@grpid}]})
06:44:40 executing program 4:
io_setup(0x3, &(0x7f0000000000)=0x0)
io_cancel(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0)
06:44:40 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
recvmsg(r0, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x0)
06:44:40 executing program 5:
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000002640)={0x0, @ipx={0x4, 0x0, 0x0, "790547733b5e"}, @xdp, @nl=@proc, 0x0, 0x0, 0x0, 0x0, 0x2})
06:44:40 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:40 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x0, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:40 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff})
getpeername(r0, &(0x7f0000004780)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev}}}, &(0x7f0000001340)=0x80)
ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, 0x0)
06:44:40 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x26000000, &(0x7f0000000840)={[{@grpid}]})
06:44:41 executing program 5:
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='!%-.[:&#]\xfcb\x00')
06:44:41 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:41 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bind(r0, &(0x7f0000000000)=@generic={0x0, "2f00f7dae4319a890bbbce53930e6df4c4dd3a0e1152815c0bda1a57a3612dcfafeba1cff1b91fa11545cbf22cb2b64b9486ae000000000000007635d059d7e0a03d2df76e15b167cc7e181332f2696fd2c25fb347916be3c95ed81f7f412082368e2832d76a2755223b4dda5ae817946385298300"}, 0x80)
[ 1345.088372][ T4500] XFS (loop0): Invalid superblock magic number
[ 1345.200450][ T4500] XFS (loop0): Invalid superblock magic number
06:44:41 executing program 5:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, 0x0)
06:44:41 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x27000000, &(0x7f0000000840)={[{@grpid}]})
06:44:41 executing program 2:
bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000001240), 0x10)
06:44:41 executing program 4:
openat$full(0xffffff9c, &(0x7f0000000000), 0x1c001, 0x0)
06:44:41 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x0, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:41 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:42 executing program 5:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
flock(r0, 0x0)
[ 1345.991948][ T4558] XFS (loop0): Invalid superblock magic number
06:44:42 executing program 2:
pipe(&(0x7f00000003c0))
io_setup(0x3, &(0x7f0000000000))
06:44:42 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x2f000000, &(0x7f0000000840)={[{@grpid}]})
06:44:42 executing program 4:
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb)
06:44:42 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:42 executing program 5:
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
06:44:42 executing program 2:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, &(0x7f0000000240)=@req={0xffffff8b, &(0x7f0000000040)={'vlan1\x00', @ifru_hwaddr=@multicast}})
06:44:43 executing program 4:
request_key(&(0x7f0000000000)='encrypted\x00', &(0x7f0000000040)={'syz', 0x3}, &(0x7f00000000c0)=']][%&+-]}-^-?)\x00', 0xfffffffffffffff9)
[ 1347.032739][ T4615] XFS (loop0): Invalid superblock magic number
06:44:43 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x0, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:43 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1347.195727][ T4615] XFS (loop0): Invalid superblock magic number
06:44:43 executing program 2:
bpf$OBJ_GET_MAP(0x7, &(0x7f00000001c0)={&(0x7f0000000180)='./file0\x00'}, 0x10)
06:44:43 executing program 5:
r0 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap$perf(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x6, 0x10, r0, 0x0)
06:44:43 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x3f000000, &(0x7f0000000840)={[{@grpid}]})
06:44:43 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}}, 0x0)
06:44:43 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3c0, 0x0, 0x354, 0x94, 0x354, 0x0, 0x418, 0x418, 0x418, 0x418, 0x418, 0x6, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, 'vlan0\x00', 'ip_vti0\x00'}, 0x0, 0x70, 0x94}, @inet=@TOS={0x24}}, {{@uncond, 0x0, 0x70, 0x94}, @TTL={0x24}}, {{@ip={@private, @loopback, 0x0, 0x0, 'veth0_to_bridge\x00', 'geneve1\x00'}, 0x0, 0x70, 0x94}, @unspec=@CHECKSUM={0x24}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'macvlan0\x00', 'caif0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x0, 0x0, 'virt_wifi0\x00', 'veth0_to_hsr\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x41c)
06:44:44 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:44 executing program 5:
add_key(&(0x7f0000000000)='rxrpc_s\x00', 0x0, 0x0, 0x0, 0xfffffffffffffff8)
[ 1348.084579][ T4693] XFS (loop0): Invalid superblock magic number
[ 1348.193853][ T4693] XFS (loop0): Invalid superblock magic number
06:44:44 executing program 2:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmsg(r0, &(0x7f0000001280)={0x0, 0x0, 0x0}, 0x40002003)
06:44:44 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x3fffffff, &(0x7f0000000840)={[{@grpid}]})
06:44:44 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x0, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:44 executing program 4:
waitid(0x0, 0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0))
06:44:44 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:44 executing program 5:
add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc3}, &(0x7f0000000080)={0x0, "7a128d6bcd730b2e85f590f436bb004679a51e5a119ba65ff0a7cf9464da82d813cad006fc42c22b3e77822f8c1be69571936c6c8797fc203c59b3d6cbe1b51a"}, 0x48, 0xfffffffffffffffb)
06:44:45 executing program 2:
clock_nanosleep(0x7, 0x0, &(0x7f0000000000), &(0x7f0000000040))
06:44:45 executing program 4:
add_key(&(0x7f0000000000)='encrypted\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
06:44:45 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x40000000, &(0x7f0000000840)={[{@grpid}]})
06:44:45 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:45 executing program 4:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
recvmsg(r0, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x2001)
06:44:45 executing program 5:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$RTC_UIE_ON(r0, 0x7003)
06:44:45 executing program 2:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0)
preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x800000000009031, 0xffffffffffffffff, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff})
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000400), 0x1, 0x0)
ioctl$EVIOCGPROP(r4, 0xc004743e, &(0x7f00000002c0)=""/246)
ioctl$PPPIOCSFLAGS1(r4, 0x40047459, &(0x7f0000000000)=0x24404e)
pwritev(0xffffffffffffffff, &(0x7f0000000080)=[{&(0x7f0000000140)="80fd02", 0xfffffffffffffd7c}], 0x1, 0x0, 0x0)
write$binfmt_misc(r3, &(0x7f0000000140)=ANY=[], 0x4240a2a0)
splice(r2, 0x0, r4, 0x0, 0x10005, 0x0)
[ 1349.670953][ T4772] XFS (loop0): Invalid superblock magic number
[ 1349.877470][ T4772] XFS (loop0): Invalid superblock magic number
06:44:46 executing program 4:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000980)={'syztnl0\x00', 0x0})
06:44:46 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x0, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:46 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:46 executing program 5:
r0 = socket$inet(0x2, 0x2000000000003, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800005, 0x12, r1, 0x0)
preadv(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c)
06:44:46 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x40000800, &(0x7f0000000840)={[{@grpid}]})
06:44:46 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, 0x0, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1350.844578][ T4842] XFS (loop0): Invalid superblock magic number
06:44:47 executing program 5:
r0 = socket$inet(0x2, 0x2000000000003, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800005, 0x12, r1, 0x0)
preadv(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c)
06:44:47 executing program 4:
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
write$P9_RXATTRCREATE(r0, 0x0, 0x0)
[ 1351.024162][ T4842] XFS (loop0): Invalid superblock magic number
06:44:47 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x40010000, &(0x7f0000000840)={[{@grpid}]})
06:44:47 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x0, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:47 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1352.022695][ T4899] XFS (loop0): Invalid superblock magic number
[ 1352.170655][ T4899] XFS (loop0): Invalid superblock magic number
06:44:48 executing program 2:
pipe(&(0x7f00000003c0))
06:44:48 executing program 4:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff})
r1 = openat$autofs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r1, 0x2, r0)
06:44:48 executing program 5:
r0 = socket$inet(0x2, 0x2000000000003, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800005, 0x12, r1, 0x0)
preadv(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c)
06:44:48 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x0, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:48 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:48 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x404afeff, &(0x7f0000000840)={[{@grpid}]})
06:44:49 executing program 4:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x11, r1, 0x0)
preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x114031, 0xffffffffffffffff, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x4c, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x4c}}, 0x0)
06:44:49 executing program 2:
pipe(&(0x7f00000003c0)={0xffffffffffffffff})
fremovexattr(r0, 0x0)
06:44:49 executing program 5:
r0 = socket$inet(0x2, 0x2000000000003, 0x2)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x3800005, 0x12, r1, 0x0)
preadv(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
setsockopt$inet_int(r0, 0x1f00000000000000, 0xd2, &(0x7f0000000000), 0x3c)
06:44:49 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:49 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x42534658, &(0x7f0000000840)={[{@grpid}]})
06:44:49 executing program 4:
r0 = epoll_create(0x1)
epoll_pwait(r0, &(0x7f0000000040)=[{}], 0x1, 0x0, &(0x7f00000000c0)={[0x0, 0x8]}, 0x8)
06:44:49 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x0, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:49 executing program 5:
clock_gettime(0x0, &(0x7f0000008540))
06:44:49 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x8993, &(0x7f0000000040)={'wg0\x00', @ifru_ivalue})
06:44:49 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:50 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x48000000, &(0x7f0000000840)={[{@grpid}]})
06:44:50 executing program 4:
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = getpgrp(0x0)
sched_rr_get_interval(r0, &(0x7f0000000080))
06:44:50 executing program 2:
openat$autofs(0xffffff9c, &(0x7f0000000000), 0x882c1, 0x0)
06:44:50 executing program 5:
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff})
sendmsg$NL80211_CMD_CHANGE_NAN_CONFIG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
06:44:50 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:50 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x0, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1354.393638][ T5009] XFS (loop0): Invalid superblock magic number
[ 1354.649869][ T5009] XFS (loop0): Invalid superblock magic number
06:44:50 executing program 4:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x0)
06:44:50 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:50 executing program 2:
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
recvmsg(r0, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x80002000)
06:44:51 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x4c000000, &(0x7f0000000840)={[{@grpid}]})
06:44:51 executing program 5:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
write$cgroup_type(r0, 0x0, 0x0)
06:44:51 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x0, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:51 executing program 4:
name_to_handle_at(0xffffffffffffffff, &(0x7f0000001040)='./file0/file0\x00', 0x0, 0x0, 0x0)
06:44:51 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x0)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:51 executing program 2:
openat$hwrng(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
migrate_pages(0x0, 0x7f, &(0x7f0000000000), 0x0)
[ 1355.498249][ T5075] XFS (loop0): Invalid superblock magic number
06:44:51 executing program 5:
keyctl$search(0xa, 0x0, &(0x7f0000000100)='dns_resolver\x00', &(0x7f0000000140)={'syz', 0x1}, 0x0)
[ 1355.724131][ T5075] XFS (loop0): Invalid superblock magic number
06:44:52 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="01"], 0x48}}, 0x0)
06:44:52 executing program 4:
r0 = openat$null(0xffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESTOP(r0, 0x1275, 0x0)
06:44:52 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x58465342, &(0x7f0000000840)={[{@grpid}]})
06:44:52 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x0)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:52 executing program 2:
r0 = openat$null(0xffffff9c, &(0x7f0000000280), 0x0, 0x0)
write$FUSE_DIRENTPLUS(r0, 0x0, 0x0)
06:44:52 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x0, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:52 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000500)=@mangle={'mangle\x00', 0x1f, 0x6, 0x3c0, 0x0, 0x354, 0x94, 0x354, 0x0, 0x418, 0x418, 0x418, 0x418, 0x418, 0x6, 0x0, {[{{@ip={@broadcast, @local, 0x0, 0x0, 'vlan0\x00', 'ip_vti0\x00', {}, {}, 0x0, 0x6}, 0x0, 0x70, 0x94}, @inet=@TOS={0x24}}, {{@uncond, 0x0, 0x70, 0x94}, @TTL={0x24}}, {{@ip={@private, @loopback, 0x0, 0x0, 'veth0_to_bridge\x00', 'geneve1\x00'}, 0x0, 0x70, 0x94}, @unspec=@CHECKSUM={0x24}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr, 0x0, 0x0, 'macvlan0\x00', 'caif0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @loopback, 0x0, 0x0, 'virt_wifi0\x00', 'veth0_to_hsr\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x41c)
06:44:52 executing program 4:
vmsplice(0xffffffffffffffff, &(0x7f0000001100)=[{0x0}, {0x0}], 0x2, 0x0)
06:44:52 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x0)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:53 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x5c000000, &(0x7f0000000840)={[{@grpid}]})
06:44:53 executing program 2:
r0 = openat$loop_ctrl(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
fcntl$notify(r0, 0x402, 0xc)
06:44:53 executing program 5:
madvise(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x2)
06:44:53 executing program 4:
add_key$fscrypt_v1(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffb)
06:44:53 executing program 3:
syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(0xffffffffffffffff)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:53 executing program 2:
mknod$loop(&(0x7f0000002480)='./file0\x00', 0x6000, 0x0)
[ 1357.386243][ T5163] XFS (loop0): Invalid superblock magic number
06:44:53 executing program 4:
r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000010c0)='ns/uts\x00')
vmsplice(r0, &(0x7f00000020c0)=[{0x0}], 0x1, 0x0)
06:44:53 executing program 5:
pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
write$P9_RXATTRCREATE(r0, &(0x7f0000000000)={0x3}, 0xfffffffffffffe82)
06:44:53 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:53 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x60000000, &(0x7f0000000840)={[{@grpid}]})
06:44:54 executing program 3:
syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(0xffffffffffffffff)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:54 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_mreq(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0))
06:44:54 executing program 4:
r0 = inotify_init1(0x0)
ioctl$BTRFS_IOC_START_SYNC(r0, 0x80089418, 0x0)
06:44:54 executing program 2:
pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff})
writev(r0, 0x0, 0x0)
[ 1358.493636][ T5213] XFS (loop0): Invalid superblock magic number
06:44:54 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1358.630050][ T5213] XFS (loop0): Invalid superblock magic number
06:44:54 executing program 5:
r0 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc2}, &(0x7f0000000180)={0x0, "29f3a55e341f8d779c48cbdacc0461b1acd0791c9796aae2deb8328bc198cbedbfd22c1f045431b3fb4a8ee52a7408ca184520a058c5cbce4a7520aecdb949e8"}, 0x48, 0xfffffffffffffffd)
keyctl$setperm(0x5, r0, 0x210004)
keyctl$get_security(0x11, r0, 0x0, 0x0)
06:44:54 executing program 3:
syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r2 = dup(0xffffffffffffffff)
io_uring_enter(r2, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r2, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:55 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x68000000, &(0x7f0000000840)={[{@grpid}]})
06:44:55 executing program 4:
pipe2$9p(&(0x7f0000001180), 0x0)
06:44:55 executing program 2:
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000640)={0x0, 0x0, 0x18}, 0x10)
06:44:55 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:55 executing program 5:
munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000)
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
06:44:55 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(0xffffffffffffffff, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1359.595843][ T5275] XFS (loop0): Invalid superblock magic number
06:44:56 executing program 4:
munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000)
mlock(&(0x7f0000800000/0x800000)=nil, 0x800000)
06:44:56 executing program 2:
munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
r0 = shmget(0x0, 0x2000, 0x0, &(0x7f0000ffb000/0x2000)=nil)
shmat(r0, &(0x7f0000ffb000/0x1000)=nil, 0x0)
06:44:56 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x1802, 0x0)
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x11, r0, 0x0)
06:44:56 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:56 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x6c000000, &(0x7f0000000840)={[{@grpid}]})
06:44:56 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(0xffffffffffffffff, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:56 executing program 4:
clock_gettime(0x0, &(0x7f0000008540)={0x0, 0x0})
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000008580)={0x0, r0+60000000})
06:44:56 executing program 2:
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000080)={0x0, @hci, @hci, @ethernet={0x0, @random="cb1bd81271bb"}})
06:44:56 executing program 5:
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x10b7c0, 0x3)
[ 1360.883727][ T1] systemd[1]: Started Journal Service.
06:44:57 executing program 2:
pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
write$FUSE_DIRENTPLUS(r0, 0x0, 0x0)
06:44:57 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(0xffffffffffffffff, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1361.222757][ T5337] XFS (loop0): Invalid superblock magic number
06:44:57 executing program 4:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x2, &(0x7f0000000180))
06:44:57 executing program 5:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x40802, 0x0)
write$FUSE_CREATE_OPEN(r0, 0x0, 0x0)
06:44:57 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x74000000, &(0x7f0000000840)={[{@grpid}]})
06:44:58 executing program 4:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x294040, 0x3)
06:44:58 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:58 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff})
getpeername$netlink(r0, 0x0, &(0x7f0000000280))
06:44:58 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:58 executing program 5:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000300)='./file0\x00', 0x801)
[ 1362.415850][ T5399] XFS (loop0): Invalid superblock magic number
06:44:59 executing program 2:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x8, &(0x7f0000000180))
06:44:59 executing program 5:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x321200, 0x134)
06:44:59 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x775a1ad1, &(0x7f0000000840)={[{@grpid}]})
06:44:59 executing program 4:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000000)='./file0\x00', 0x2)
06:44:59 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:44:59 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x0, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:44:59 executing program 2:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x8, &(0x7f0000000180))
06:44:59 executing program 5:
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x8241, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4000, 0x7ff, &(0x7f0000000180))
06:44:59 executing program 4:
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000080)={{0x0, 0x80000000000000}}, 0x0)
06:44:59 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:00 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x7a000000, &(0x7f0000000840)={[{@grpid}]})
06:45:00 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff})
writev(r1, &(0x7f0000000a80)=[{&(0x7f0000000580)="a90201bb5f85237898a3ec369452cf3feec2550fe1c5e08b10f1cdd666031363f4987f137307fb6f753fe7afa5285bc357d30696dee308dc5375ffa1de0c1fbe432be1182bccc7ad5a5ee2da3432cbadbb82d2d8679b48d11f94d892c185049bb6833882726a592ab9a0f9ec3e8ef2c615d44ac5a7e772a49041dd03bcbfcb67a1b6a176398c523307dfd40b1428f5df3169ecbed300119c5be8c0a254e6bd0e2b68a28a6a0cd86fe7cc35001cad70a18fa466d9425ad813c4d4a41dc9ab6da3bc37f16930c65e1537f5fbb7ea47bb7257763b27565964f5b1b24109ccbb4501549fde867ad4848ef7e3ee61e18cbbd07977ce46cb09835e", 0xf8}, {&(0x7f0000000680)="6601a647fc86eb00736a32c07798da6c5a4e4fb55a72f32bd26a2b430151b12483d237f420eaa203d035982a2f92c32cad0b21ad34b410db4b5e2bc72e0e7298fca940282277538e6dc7d3db43e92f82ba36926dbb722a30b2981db34336744926d2369372d68a010677b2ff3d53d90919b9ab95e162b9eca9", 0x79}], 0x2)
readv(r0, &(0x7f0000000dc0)=[{&(0x7f0000000c00)=""/252, 0xfc}], 0x1)
06:45:00 executing program 4:
r0 = socket$unix(0x1, 0x5, 0x0)
recvfrom$unix(r0, 0x0, 0x0, 0x41, 0x0, 0x0)
06:45:00 executing program 5:
r0 = socket$inet6(0x18, 0x2, 0x0)
recvmsg(r0, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x1)
06:45:00 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1364.301384][ T5482] XFS (loop0): Invalid superblock magic number
06:45:00 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1364.454122][ T5482] XFS (loop0): Invalid superblock magic number
06:45:00 executing program 2:
r0 = socket$inet6(0x18, 0x1, 0x0)
r1 = dup(r0)
ioctl$TIOCGETD(r1, 0x4004741a, 0x0)
06:45:00 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x80010000, &(0x7f0000000840)={[{@grpid}]})
06:45:01 executing program 5:
r0 = open$dir(&(0x7f0000000000)='./file0\x00', 0x200, 0x0)
mmap(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x0, 0x2810, r0, 0x0)
06:45:01 executing program 4:
r0 = socket$inet6(0x18, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0x18}, 0xc)
06:45:01 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:01 executing program 2:
r0 = socket$inet6(0x18, 0x2, 0x0)
close(r0)
getsockname$inet6(r0, 0x0, 0x0)
06:45:01 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
shutdown(r0, 0x0)
recvmsg(r0, &(0x7f0000000280)={&(0x7f0000000000), 0x53, &(0x7f00000000c0)=[{0x0}, {0x0}], 0x2, &(0x7f0000000200)=""/89, 0x59}, 0x0)
06:45:01 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x8cffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:01 executing program 5:
writev(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000000500)="6c2df9a979edd3ee58717fea963d00106017567be8b9bc6cd72d0030503c0c7d4ca9ee88ce59927205f153b84568d6600f0064f282c40a3cfaeb6bcf28a8097a72997b68ba475bc177eb503572a46aed1726b838d96b4266f20cc94a11475d6202786fbec029ae79ad9d34d8e1a8215aade7b30b412e5e8ab38d00f959850097196b1569468b150849d87eaa4778040000000cd55d764e72c638d8f22defcf1e0ed3f5f67967f4062b5bf2725d69415deb3b0782dff57342d526bb321bc92705a2d2a84ebedc9c472adb4a2beda78cb934e6b4156233252184046cf1569d20d000", 0xd5}, {&(0x7f0000000280)="2eed10d46b6e3640dd4eb757a587c1a34b16d53d3363607811b9fa1c9915abbea60900000045bcbd20a32d54be7e76afa9ea2e12d044c7eae1f8bd724d2d7f24868f8fdc3133be2a73afee2a314f3b4ad0a2aed0cc715e346a8aa0647b75338e69ce2fd13209b5651b3a742963153dfb72b94fd9e528dc98603a775ab79b7afbb0b7600ceb5c7bb669ac3a8952ab4c326764cddf58baa364c017020927d0b669836747f6c67ab323ba32cade74327a6dde60133800ee3e7baa8e066678ffffffff00000000951e4c6cf8e9938a997adb75cdc1c4a263f76b2c27a139c54c646e7c0ea82489ec", 0xd6}, {&(0x7f0000000380)="7bca95c9b8920fef0a1937c9818de9f5ad0801a661069cb1470c4a7c45650afc9241772f1b3d6d88367251bb1fc7f93d6541b508543bd09801cbedecd73f89ec4a739157a00669c4ed3878cddc823b431687dbaca2f0c38d8d8e12ea03410efa768d02c199ec49339845f7a9096fcac399183ff0925445a57f524affe5c8362b89899d9c62008915fdd41f7f7c6289db0a221c3cb6bbd75330c730aca786e56d11c11250919100312bfb2345c4a8e049fa22b417a9641eb313af259c0525ce3254293f4f56b1f9cb2e4c932f59cbcaa5bc47884e09e9f5b43d3c6c4a3d8f700500000000000000750965af7282a78261", 0xf0}, {&(0x7f0000000480)="89e8a4a855774dc110b4aebf9d1b5732e614058188c61dc0a9925a5553af5605628ff5a747c7817a3ebe747b65ab8198e8c4ed2260d59a3191be47cab3e30aad5e7d6e0e59f9", 0x46}], 0x10000000000002c7)
06:45:01 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:01 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:02 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff})
sendto$unix(r0, 0x0, 0x0, 0x9, 0x0, 0x0)
06:45:02 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000080)=@abs={0x0, 0x0, 0x1}, 0x8)
06:45:02 executing program 5:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff})
getsockopt$sock_int(r0, 0xffff, 0x800, 0x0, 0x0)
06:45:02 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x95000000, &(0x7f0000000840)={[{@grpid}]})
06:45:02 executing program 2:
symlinkat(&(0x7f0000000180)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00')
lchown(&(0x7f0000000080)='./file1\x00', 0xffffffffffffffff, 0x0)
06:45:02 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:02 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(0xffffffffffffffff, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:02 executing program 4:
r0 = socket$unix(0x1, 0x5, 0x0)
setsockopt$sock_int(r0, 0xffff, 0x800, &(0x7f0000000000), 0x4)
06:45:02 executing program 2:
socket(0x1, 0x5, 0x1)
06:45:02 executing program 5:
r0 = syz_open_pts(0xffffffffffffffff, 0x0)
fcntl$lock(r0, 0x7, 0x0)
06:45:03 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x97ffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:03 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:03 executing program 4:
r0 = socket$inet6(0x18, 0x2, 0x0)
sendmsg(r0, &(0x7f0000000780)={&(0x7f0000000000)=@un=@abs, 0x8, 0x0, 0x0, &(0x7f0000000540)=[{0x10}, {0x10}], 0x20}, 0x0)
06:45:03 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, 0x0, &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:03 executing program 5:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff})
r1 = dup(r0)
recvfrom$inet(r1, 0x0, 0xffffffffffffff5d, 0x0, 0x0, 0x0)
06:45:03 executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0xa)
r2 = dup(r0)
recvfrom$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:03 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
[ 1367.513787][ T5632] not chained 60000 origins
[ 1367.517930][ T5632] CPU: 0 PID: 5632 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1367.525169][ T5632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1367.529867][ T5632] Call Trace:
[ 1367.529867][ T5632] dump_stack+0x24c/0x2e0
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0x6f/0x130
[ 1367.529867][ T5632] ? kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] ? __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] ? sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] ? __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] ? sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] ? sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] ? sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] ? sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] ? sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] ? sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] ? __release_sock+0x26b/0x670
[ 1367.529867][ T5632] ? release_sock+0x98/0x2d0
[ 1367.529867][ T5632] ? sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] ? sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] ? sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] ? inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] ? __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] ? __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] ? __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] ? __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] ? do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] ? do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_set_origin_checked+0xa2/0x100
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1367.529867][ T5632] ? __genradix_ptr+0x8e6/0xbe0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632] ? kmsan_internal_set_origin+0x82/0xc0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? sctp_rcv+0x60d0/0x60d0
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] ? init_wait_entry+0x190/0x190
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? sctp_getsockopt+0x1f060/0x1f060
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] ? inet_send_prepare+0x6b0/0x6b0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1367.529867][ T5632] ? kmsan_get_metadata+0x116/0x180
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632] RIP: 0023:0xf7fac549
[ 1367.529867][ T5632] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1367.529867][ T5632] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1367.529867][ T5632] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[ 1367.529867][ T5632] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1367.529867][ T5632] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1367.529867][ T5632] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1367.529867][ T5632] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_chunk_fail+0x119/0x150
[ 1367.529867][ T5632] __sctp_outq_teardown+0x111e/0x15f0
[ 1367.529867][ T5632] sctp_outq_free+0x37/0x40
[ 1367.529867][ T5632] sctp_association_free+0x3f8/0x11b0
[ 1367.529867][ T5632] sctp_do_sm+0x929b/0xa160
[ 1367.529867][ T5632] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1367.529867][ T5632] sctp_inq_push+0x31c/0x440
[ 1367.529867][ T5632] sctp_backlog_rcv+0x2bb/0x1710
[ 1367.529867][ T5632] __release_sock+0x26b/0x670
[ 1367.529867][ T5632] release_sock+0x98/0x2d0
[ 1367.529867][ T5632] sctp_wait_for_connect+0x518/0x9d0
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_datamsg_from_user+0x1d3c/0x2470
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was stored to memory at:
[ 1367.529867][ T5632] kmsan_internal_chain_origin+0xad/0x130
[ 1367.529867][ T5632] __msan_chain_origin+0x54/0xa0
[ 1367.529867][ T5632] sctp_datamsg_from_user+0x35a/0x2470
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1367.529867][ T5632]
[ 1367.529867][ T5632] Uninit was created at:
[ 1367.529867][ T5632] kmsan_internal_poison_shadow+0x66/0xd0
[ 1367.529867][ T5632] kmsan_slab_alloc+0x8e/0xe0
[ 1367.529867][ T5632] kmem_cache_alloc_trace+0x8c7/0x1030
[ 1367.529867][ T5632] sctp_datamsg_from_user+0xf7/0x2470
[ 1367.529867][ T5632] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1367.529867][ T5632] sctp_sendmsg+0x35a5/0x5c60
[ 1367.529867][ T5632] inet_sendmsg+0x15b/0x1d0
[ 1367.529867][ T5632] __sys_sendto+0x9ea/0xc60
[ 1367.529867][ T5632] __se_sys_sendto+0x107/0x130
[ 1367.529867][ T5632] __ia32_sys_sendto+0x6e/0x90
[ 1367.529867][ T5632] __do_fast_syscall_32+0x127/0x180
[ 1367.529867][ T5632] do_fast_syscall_32+0x77/0xd0
[ 1367.529867][ T5632] do_SYSENTER_32+0x73/0x90
[ 1367.529867][ T5632] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
06:45:05 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xa6090000, &(0x7f0000000840)={[{@grpid}]})
06:45:05 executing program 4:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff})
r1 = dup(r0)
recvfrom$inet(r1, &(0x7f0000000140)=""/46, 0x2e, 0x0, 0x0, 0x0)
06:45:05 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff})
r1 = dup(r0)
recvfrom$inet(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:05 executing program 2:
readlinkat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
06:45:05 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:05 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:05 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, 0x0, &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:05 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xaa000000, &(0x7f0000000840)={[{@grpid}]})
06:45:05 executing program 2:
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff})
sendto$unix(r1, 0x0, 0x0, 0x0, 0x0, 0xa)
r2 = dup(r0)
recvfrom$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
[ 1369.893960][ T3128] ieee802154 phy0 wpan0: encryption failed: -22
[ 1369.900496][ T3128] ieee802154 phy1 wpan1: encryption failed: -22
06:45:06 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, 0x0, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:06 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto(r0, &(0x7f0000000000)="e1", 0x1, 0x84, &(0x7f0000000080)=@in6={0x1c, 0x1c, 0x3}, 0x1c)
06:45:06 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xc0010000, &(0x7f0000000840)={[{@grpid}]})
06:45:06 executing program 4:
syz_emit_ethernet(0x1a24, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:06 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, 0x0, &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:06 executing program 5:
syz_emit_ethernet(0x36, &(0x7f0000000100)={@broadcast, @broadcast, @val, {@ipv6}}, 0x0)
06:45:06 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:07 executing program 4:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:07 executing program 2:
r0 = socket$inet6_tcp(0x1c, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:07 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:07 executing program 5:
futimesat(0xffffffffffffffff, &(0x7f00000003c0)='./file0\x00', 0x0)
06:45:07 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xc0ed0000, &(0x7f0000000840)={[{@grpid}]})
06:45:07 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:07 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:07 executing program 4:
munlock(&(0x7f0000ffa000/0x3000)=nil, 0x3000)
06:45:07 executing program 2:
syz_emit_ethernet(0x1fff, &(0x7f00000000c0)={@local, @local, @val, {@ipv6}}, 0x0)
06:45:07 executing program 5:
syz_emit_ethernet(0x76, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
[ 1371.692321][ T5731] XFS (loop0): Invalid superblock magic number
06:45:08 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1371.892355][ T5731] XFS (loop0): Invalid superblock magic number
06:45:08 executing program 2:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f0000000700)={&(0x7f0000000000)=@abs={0x8}, 0x8, 0x0, 0x0, &(0x7f0000000a80)=[@cred, @cred, @rights], 0xcc}, 0x0)
06:45:08 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:08 executing program 4:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
open$dir(&(0x7f00000007c0)='./file1\x00', 0x400000, 0x0)
06:45:08 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_int(r0, 0xffff, 0x10000, &(0x7f0000000000), &(0x7f0000000040)=0x4)
06:45:08 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xc6000000, &(0x7f0000000840)={[{@grpid}]})
06:45:08 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:08 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
r1 = dup(r0)
connect$inet(r1, &(0x7f00000000c0)={0x10, 0x2}, 0x10)
06:45:08 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
sendto$inet6(r0, &(0x7f0000000180)='\a', 0x1, 0x0, &(0x7f0000000040)={0x1c, 0x1c}, 0x1c)
06:45:08 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:09 executing program 5:
socket$unix(0x1, 0x2, 0x0)
munlock(&(0x7f0000ffa000/0x3000)=nil, 0x3000)
06:45:09 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xcceaffff, &(0x7f0000000840)={[{@grpid}]})
06:45:09 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4}, 0x0)
io_uring_enter(r3, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:09 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:09 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000240)={&(0x7f0000000040)=@in6={0x1c, 0x1c, 0x2}, 0x1c, 0x0}, 0x0)
sendmsg$inet_sctp(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000400)='e', 0x1}], 0x1, &(0x7f0000000700)=[@sndinfo={0x1c, 0x84, 0x4, {0x0, 0x400}}], 0x1c}, 0x0)
06:45:09 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockname(r0, 0x0, &(0x7f0000000140))
06:45:09 executing program 5:
syz_emit_ethernet(0xab1, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:09 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:09 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xd0030000, &(0x7f0000000840)={[{@grpid}]})
06:45:10 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:10 executing program 5:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@broadcast, @local, @val, {@ipv6}}, 0x0)
06:45:10 executing program 2:
r0 = socket(0x2, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0x40, &(0x7f0000000000)='htcp\x00', 0x5)
close(r0)
06:45:10 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
bind(r0, &(0x7f0000000080)=@un=@file={0x10}, 0x10)
06:45:10 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:10 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xd11a5a77, &(0x7f0000000840)={[{@grpid}]})
06:45:10 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:10 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
connect$inet6(r0, &(0x7f0000000180)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:10 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
connect$inet6(r0, &(0x7f0000000180)={0x1c, 0x1c, 0x2}, 0x1c)
close(r0)
06:45:10 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
06:45:11 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2eeb, 0x0, 0x0, 0x0, 0x0)
06:45:11 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xf5ffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:11 executing program 2:
syz_emit_ethernet(0x4e, &(0x7f0000000080)={@local, @remote, @val, {@ipv6}}, 0x0)
06:45:11 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendmsg(r0, &(0x7f0000000fc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000e40)=[{0xc}, {0xc}], 0x18}, 0x0)
06:45:11 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
bind(r0, &(0x7f0000000080)=@in={0x10, 0x2}, 0x10)
06:45:11 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:11 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:11 executing program 2:
syz_emit_ethernet(0xf1b, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:12 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xf6ffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:12 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
sendfile(r0, 0xffffffffffffffff, 0x0, 0x0)
clock_nanosleep(0x0, 0x0, 0x0, 0x0)
06:45:12 executing program 4:
utimensat(0xffffffffffffffff, 0x0, &(0x7f0000000fc0)={{0x0, 0xfffffffe}}, 0x0)
06:45:12 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:12 executing program 2:
shmat(0x0, &(0x7f0000800000/0x800000)=nil, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x3000)=nil, 0x0)
06:45:12 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xf9fdffff, &(0x7f0000000840)={[{@grpid}]})
06:45:12 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
copy_file_range(r0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
06:45:12 executing program 4:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
readlink(&(0x7f0000000000)='./file1\x00', 0x0, 0x0)
06:45:12 executing program 3:
r0 = syz_io_uring_setup(0x70c4, &(0x7f00000023c0), &(0x7f0000501000/0x4000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000380)=0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000bea000/0x1000)=nil, 0x1000}, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x3, 0x0, 0x8}, 0x20005)
r3 = dup(r0)
io_uring_enter(r3, 0x3ef4, 0x0, 0x0, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x0)
io_uring_enter(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:12 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:13 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@init={0x14, 0x84, 0x1, {0x4}}], 0x14}, 0x0)
06:45:13 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto(r0, 0x0, 0x0, 0x0, &(0x7f0000000080)=@in6={0x1c, 0x1c, 0x3}, 0x1c)
06:45:13 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfdfdffff, &(0x7f0000000840)={[{@grpid}]})
06:45:13 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
setsockopt$inet6_MRT6_DEL_MFC(r0, 0x29, 0x69, 0x0, 0x0)
06:45:13 executing program 3:
clock_nanosleep(0x0, 0x0, &(0x7f0000000040)={0xdd51}, 0x0)
06:45:13 executing program 2:
r0 = socket$inet6_tcp(0x1c, 0x1, 0x0)
sendmsg(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x304}, 0x20009)
06:45:13 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_group_source_req(r0, 0x0, 0x54, 0x0, 0x0)
06:45:14 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfdffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:14 executing program 4:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
symlink(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file1\x00')
06:45:14 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:14 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000080)="01", 0x1}], 0x1, &(0x7f0000000340)=[@init={0x14, 0x84, 0x1, {0x0, 0x1, 0xe7}}], 0x14}, 0x0)
06:45:14 executing program 2:
r0 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0)
futimesat(r0, &(0x7f0000000080)='./file1/file0\x00', 0x0)
06:45:14 executing program 4:
socket$inet(0x2, 0x20000003, 0x0)
06:45:14 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfeffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:14 executing program 3:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendto$inet(r0, &(0x7f0000000340)="40357b79495c2181582513b8a7dc4b18f08d90757d6c71581a26f87501ba28127f6eaf7b1165cf35c3a7f076d4b68fa10a62cc7821de4820d0a6088eab02adc464b05ee02249fc49c6fb3ff1457884dc1c72c43fb8a2a99d9abe05d1bc4f96b569ead9a15752a73ad5745f644267b60ac226971c82f49fae40e45bbac8891249fa0127686b2b6f47c4b88085f8266b8457daf9a92cd6eaba40273ccefc6e3e864dfdd0079d6920b5769f9a", 0xab, 0x4, &(0x7f0000000400)={0x10, 0x2}, 0x10)
06:45:15 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$unix(r1, &(0x7f0000000e80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000cc0)=[@cred, @rights], 0x6c}, 0x0)
06:45:15 executing program 2:
clock_nanosleep(0x0, 0x0, &(0x7f0000000080)={0x6}, 0x0)
munlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
06:45:15 executing program 4:
syz_emit_ethernet(0x4a, &(0x7f0000000040)={@broadcast, @empty, @val, {@ipv6}}, 0x0)
06:45:15 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xff000000, &(0x7f0000000840)={[{@grpid}]})
06:45:15 executing program 3:
write(0xffffffffffffffff, &(0x7f00000020c0)="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", 0xffffffffffffff62)
06:45:15 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:15 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto(r0, 0x0, 0x0, 0x84, &(0x7f0000000080)=@in6={0x1c, 0x1c, 0x3}, 0x1c)
06:45:15 executing program 5:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
open(&(0x7f0000000180)='./file1\x00', 0x400, 0x0)
06:45:15 executing program 3:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x10, 0x2}, 0x10)
06:45:16 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xff0f0000, &(0x7f0000000840)={[{@grpid}]})
06:45:16 executing program 5:
r0 = socket$inet6_tcp(0x1c, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:16 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_timeval(r0, 0xffff, 0x1005, &(0x7f0000000040), &(0x7f0000000000)=0x8)
06:45:16 executing program 2:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[], 0x13, 0x0, 0x0, &(0x7f0000000500)=[@cred, @cred], 0xc0}, 0x0)
06:45:16 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:16 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
socket$unix(0x1, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_tcp(0x1c, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[], 0x13, 0x0, 0x0, &(0x7f00000007c0)=[@cred, @rights], 0x78}, 0x10c)
06:45:16 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffdffff, &(0x7f0000000840)={[{@grpid}]})
06:45:16 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
recvfrom(r0, &(0x7f0000000440)=""/141, 0x8d, 0x82, 0x0, 0x0)
06:45:16 executing program 2:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@sndrcv={0x2c}, @init={0x14, 0x84, 0x1, {0x4, 0x1, 0xe7, 0x5}}], 0x40}, 0x0)
06:45:16 executing program 3:
syz_emit_ethernet(0x16, &(0x7f0000000040)={@broadcast, @random="e9e639237479"}, 0x0)
06:45:17 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
sendto(r0, &(0x7f0000000000)="e1", 0x1, 0x0, &(0x7f0000000080)=@in6={0x1c, 0x1c, 0x3}, 0x1c)
06:45:17 executing program 3:
syz_emit_ethernet(0x1026, &(0x7f00000000c0)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:17 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:17 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffe4a40, &(0x7f0000000840)={[{@grpid}]})
06:45:17 executing program 2:
r0 = socket$inet6_icmp_raw(0x1c, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000080)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:17 executing program 3:
mount(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
06:45:17 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[], 0x13, 0x0, 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="60000000ffff000003000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="10000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="18000000ffff"], 0x78}, 0x0)
06:45:18 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffff5801, &(0x7f0000000840)={[{@grpid}]})
06:45:18 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6ee"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:18 executing program 5:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
open$dir(&(0x7f0000000000)='./file1\x00', 0x488288, 0x0)
06:45:18 executing program 2:
openat(0xffffffffffffffff, 0x0, 0x40102, 0x0)
06:45:18 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
r2 = dup(r1)
listen(r2, 0x0)
06:45:18 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = dup(r0)
getsockopt$inet_opts(r1, 0x0, 0x1, 0x0, 0x0)
06:45:18 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_PR_STREAM_STATUS(r0, 0x84, 0x107, &(0x7f0000000080), &(0x7f0000000100)=0x18)
06:45:18 executing program 5:
syz_emit_ethernet(0xff, 0x0, 0x0)
06:45:18 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffff5802, &(0x7f0000000840)={[{@grpid}]})
06:45:18 executing program 3:
r0 = shmget$private(0x0, 0x2000, 0x0, &(0x7f0000ffd000/0x2000)=nil)
shmat(r0, &(0x7f0000800000/0x800000)=nil, 0x0)
06:45:18 executing program 2:
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = dup(r0)
r2 = socket$unix(0x1, 0x2, 0x0)
dup2(r2, r1)
06:45:18 executing program 4:
symlinkat(&(0x7f00000004c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001580)='./file1\x00')
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x2, 0x0)
06:45:19 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6ee"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:19 executing program 5:
syz_emit_ethernet(0x234, &(0x7f0000000280)=ANY=[@ANYBLOB="ffffffffffffffffffffffff86dd67a2828601fe2301ff"], 0x0)
06:45:19 executing program 3:
r0 = socket$inet6_udp(0x1c, 0x2, 0x0)
getsockopt$sock_int(r0, 0xffff, 0x800, 0x0, &(0x7f0000000100))
06:45:19 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffff5803, &(0x7f0000000840)={[{@grpid}]})
06:45:19 executing program 2:
r0 = socket$inet6_icmp_raw(0x1c, 0x3, 0x3a)
getsockopt$sock_int(r0, 0xffff, 0x4000, 0x0, &(0x7f0000000040))
06:45:19 executing program 4:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @local, @val, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @remote, @empty, @broadcast, @broadcast}}}}, 0x0)
06:45:19 executing program 2:
syz_emit_ethernet(0x1017, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:19 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6ee"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:19 executing program 3:
syz_emit_ethernet(0x16, &(0x7f0000000040)={@broadcast, @random="e9e639237479"}, 0x0)
06:45:20 executing program 5:
r0 = socket$inet6_icmp_raw(0x1c, 0x3, 0x3a)
connect$inet6(r0, &(0x7f00000000c0)={0x1c, 0x1c, 0x2}, 0x1c)
06:45:20 executing program 4:
symlinkat(&(0x7f00000004c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001580)='./file1\x00')
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x0)
06:45:20 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffff5824, &(0x7f0000000840)={[{@grpid}]})
06:45:20 executing program 2:
execve(0x0, &(0x7f0000000100), 0x0)
sendto$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000004c0)=@file={0xa}, 0xa)
renameat(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0)
mount(&(0x7f00000002c0), 0x0, 0x0, 0x0, 0x0)
06:45:20 executing program 3:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x1c, 0x1c, 0x3}, 0x1c)
bind$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
06:45:20 executing program 4:
syz_emit_ethernet(0x12, &(0x7f0000000040)={@broadcast, @random="e9e639237479"}, 0x0)
06:45:20 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$inet_sctp(r1, &(0x7f0000001700)={&(0x7f00000001c0)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000001680)=[@dstaddrv4={0x10, 0x84, 0x9, @multicast2}], 0x10}, 0x0)
06:45:20 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffff5825, &(0x7f0000000840)={[{@grpid}]})
06:45:21 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
r1 = dup(r0)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x105, &(0x7f0000000100)=ANY=[@ANYRES32=0x0], &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x13, &(0x7f00000002c0)={r2}, 0x8)
06:45:21 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c4"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:21 executing program 3:
r0 = socket$unix(0x1, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f00000007c0)={&(0x7f0000000140)=@abs={0x8}, 0x8, 0x0, 0x0, &(0x7f0000000740)=[@cred], 0x60}, 0x0)
06:45:21 executing program 4:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, 0x0, 0x0, &(0x7f0000000340)=[@sndrcv={0x2c}], 0x2c}, 0x0)
06:45:21 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet6_group_source_req(r1, 0x29, 0x53, 0x0, 0x0)
06:45:21 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffe000, &(0x7f0000000840)={[{@grpid}]})
06:45:21 executing program 3:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
r1 = dup(r0)
r2 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r2, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
r3 = dup(r2)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x105, &(0x7f0000000100)={0x1, [0x0]}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x29, &(0x7f0000000080)={r4}, &(0x7f0000000280)=0x8)
06:45:21 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
socket$unix(0x1, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_tcp(0x1c, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f0000000880)={&(0x7f0000000080)=ANY=[], 0x13, 0x0, 0x0, &(0x7f00000007c0)=[@cred, @rights], 0x78}, 0x10c)
06:45:21 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c4"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:21 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffeacc, &(0x7f0000000840)={[{@grpid}]})
06:45:22 executing program 2:
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:22 executing program 5:
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @broadcast, @val, {@ipv4}}, 0x0)
06:45:22 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c4"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:22 executing program 4:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
sendmsg(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=[{0xc}], 0xc}, 0x0)
06:45:22 executing program 3:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000080)="01", 0x1}], 0x1, &(0x7f0000000340)=[@init={0x14}], 0x14}, 0x0)
06:45:22 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0xa, &(0x7f0000000100), 0x98)
06:45:22 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffdf9, &(0x7f0000000840)={[{@grpid}]})
06:45:22 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect(r0, &(0x7f0000000380)=@in={0x10, 0x2}, 0x10)
06:45:23 executing program 3:
r0 = open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
write(r0, 0x0, 0x0)
06:45:23 executing program 4:
syz_emit_ethernet(0xa7, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd60c650f700710000dfef4600000000000000ffff000000004116c64d2c5c453c92c6683312dd23a8"], 0x0)
06:45:23 executing program 2:
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@broadcast, @empty, @val, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x0, @remote, @empty, @empty, @loopback}}}}, 0x0)
06:45:23 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffdfd, &(0x7f0000000840)={[{@grpid}]})
06:45:23 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:23 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x1c, 0x1c, 0x2}, 0x1c)
sendto(r0, 0x0, 0x0, 0x100, 0x0, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
06:45:23 executing program 3:
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_int(r0, 0xffff, 0x1019, &(0x7f0000000000), &(0x7f0000000040)=0x4)
06:45:23 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$sock_timeval(r1, 0xffff, 0x1006, &(0x7f0000000000), 0x8)
06:45:23 executing program 4:
r0 = socket$unix(0x1, 0x1, 0x0)
sendmsg$unix(r0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@cred], 0x60}, 0x0)
06:45:23 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:24 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffdff, &(0x7f0000000840)={[{@grpid}]})
06:45:24 executing program 3:
open(&(0x7f0000000340)='.\x00', 0x200, 0x0)
06:45:24 executing program 4:
open(&(0x7f0000000340)='./file1\x00', 0x200, 0x0)
execve(&(0x7f0000000240)='./file1\x00', &(0x7f0000000540), 0x0)
06:45:24 executing program 5:
r0 = socket$unix(0x1, 0x2, 0x0)
sendmsg$unix(r0, &(0x7f00000007c0)={&(0x7f0000000080)=@file={0x10}, 0x10, 0x0}, 0x0)
06:45:24 executing program 2:
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
bind$inet(r0, &(0x7f0000001280)={0x10, 0x2}, 0x10)
06:45:24 executing program 3:
syz_emit_ethernet(0x66, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:24 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], 0x0)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:24 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffff3f, &(0x7f0000000840)={[{@grpid}]})
06:45:24 executing program 4:
r0 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_int(r0, 0xffff, 0x8000, &(0x7f0000000000), &(0x7f0000000040)=0x4)
06:45:24 executing program 5:
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000000200)={&(0x7f0000000040)=@in6={0x1c, 0x1c}, 0x1c, &(0x7f00000001c0)=[{&(0x7f0000000080)="01", 0x1}], 0x1, &(0x7f0000000340)=[@sndrcv={0x2c}, @init={0x14, 0x84, 0x1, {0x0, 0x1, 0xe7, 0x5}}], 0x40}, 0x0)
06:45:25 executing program 2:
open(0x0, 0x150084, 0x0)
06:45:25 executing program 3:
mount(&(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
06:45:25 executing program 4:
syz_emit_ethernet(0x26, &(0x7f0000000000)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:25 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffff7f, &(0x7f0000000840)={[{@grpid}]})
06:45:25 executing program 2:
syz_emit_ethernet(0x46, &(0x7f0000000080)={@local, @remote, @val, {@ipv6}}, 0x0)
06:45:25 executing program 5:
syz_emit_ethernet(0x36, &(0x7f0000000000)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:25 executing program 3:
mount(&(0x7f00000002c0), 0x0, 0xffffffffffffffff, 0x0, 0x0)
06:45:25 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:25 executing program 2:
syz_emit_ethernet(0x32, &(0x7f0000000000)={@broadcast, @local, @val, {@ipv4}}, 0x0)
06:45:25 executing program 4:
syz_emit_ethernet(0x174f, &(0x7f0000001180)={@random="adf6393f08b1", @local, @val, {@ipv6}}, 0x0)
06:45:25 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffff8c, &(0x7f0000000840)={[{@grpid}]})
06:45:25 executing program 5:
shmat(0x0, &(0x7f0000fff000/0x1000)=nil, 0x0)
shmdt(0x0)
06:45:26 executing program 3:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r1, 0x84, 0x11, &(0x7f0000000000), 0x4)
06:45:26 executing program 2:
clock_nanosleep(0xa, 0x0, &(0x7f00000001c0)={0x0, 0xcdc1}, 0x0)
06:45:26 executing program 4:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f00000002c0)={0x1c, 0x1c, 0x3}, 0x1c)
setsockopt$inet_sctp_SCTP_ASSOCINFO(r1, 0x84, 0x2, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x5, 0x6}, 0x14)
06:45:26 executing program 5:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000080)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:26 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:26 executing program 2:
r0 = socket$inet6_sctp(0x1c, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000000)={0x1c, 0x1c, 0x1}, 0x1c)
r1 = dup(r0)
connect$inet6(r1, &(0x7f00000000c0)={0x1c, 0x1c, 0x2}, 0x1c)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x105, &(0x7f0000000100)={0x1, [0x0]}, &(0x7f0000000040)=0x8)
06:45:26 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffff97, &(0x7f0000000840)={[{@grpid}]})
06:45:26 executing program 3:
r0 = socket$inet6_sctp(0x1c, 0x1, 0x84)
connect$inet6(r0, &(0x7f0000000100)={0x1c, 0x1c, 0x3}, 0x1c)
06:45:27 executing program 4:
shmat(0xffffffffffffffff, &(0x7f0000ffc000/0x3000)=nil, 0x0)
clock_nanosleep(0x0, 0x0, 0x0, 0x0)
06:45:27 executing program 5:
epoll_create(0x80)
06:45:27 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:27 executing program 2:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000300)={0x3, &(0x7f0000000140)=[{0x1, 0x4, 0x6, 0x8}, {}, {}]})
ioctl$NS_GET_NSTYPE(0xffffffffffffffff, 0xb703, 0x0)
ioctl$EVIOCGBITKEY(0xffffffffffffffff, 0x80404521, &(0x7f0000000200)=""/233)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, 0xffffffffffffffff)
06:45:27 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffff5, &(0x7f0000000840)={[{@grpid}]})
06:45:27 executing program 3:
r0 = epoll_create(0xaa2c)
r1 = socket$alg(0x26, 0x5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0))
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100))
getpgid(0x0)
06:45:27 executing program 5:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000840)={'gretap0\x00', 0x0})
06:45:27 executing program 4:
socketpair(0x11, 0x2, 0x3, &(0x7f0000000140))
06:45:27 executing program 2:
pkey_mprotect(&(0x7f0000ff4000/0x9000)=nil, 0x9000, 0x0, 0xffffffffffffffff)
06:45:27 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffff6, &(0x7f0000000840)={[{@grpid}]})
06:45:28 executing program 5:
io_uring_setup(0x73cb, &(0x7f0000000040))
06:45:28 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:28 executing program 3:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000040), 0x10)
06:45:28 executing program 4:
pipe2$9p(&(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84000)
write$P9_RLOCK(r0, &(0x7f0000000640)={0x8}, 0x8)
06:45:28 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x3ed, 0x4}, 0x10}}, 0x0)
06:45:28 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200), &(0x7f0000001240)=ANY=[], 0xfe1, 0x0)
06:45:28 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffffd, &(0x7f0000000840)={[{@grpid}]})
06:45:28 executing program 3:
socket$inet(0x2, 0x3, 0x7f)
06:45:28 executing program 2:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000880)={0x0, 0x1, [{}]})
06:45:28 executing program 4:
syz_io_uring_setup(0x0, &(0x7f0000000000), &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
06:45:28 executing program 5:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0}, 0x40)
06:45:29 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xfffffffe, &(0x7f0000000840)={[{@grpid}]})
06:45:29 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:29 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x108}}, 0x0)
06:45:29 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0xa8}}, 0x0)
06:45:29 executing program 4:
fsopen(&(0x7f0000001480)='fuseblk\x00', 0x0)
06:45:29 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000040)=ANY=[@ANYBLOB='/'], &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='squashfs\x00', 0x0, 0x0)
06:45:29 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000040)=ANY=[@ANYBLOB='/d'], &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='squashfs\x00', 0x0, 0x0)
[ 1393.591137][ T6582] /: Can't open blockdev
06:45:29 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
mount$fuseblk(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x1000a0, 0x0)
06:45:29 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='mqueue\x00', 0x0, 0x0)
06:45:29 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0xffffffff, &(0x7f0000000840)={[{@grpid}]})
06:45:29 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001380)='ext2\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002440)=[{&(0x7f0000001400), 0x6800000000000000}, {&(0x7f0000002400)="ff", 0x1, 0x8000}], 0x100000, &(0x7f0000002640)=ANY=[@ANYBLOB='bh,obj_type=devtmpfs\x00,euid>', @ANYRESDEC=0xee00, @ANYBLOB="2c61756469742c657569643c771c988ddc998768b0eb16dcb389a7f14b01954e177538be2c7707bdc50e14284f1ef6a75ad5e64d541bf432e26780aa", @ANYRESDEC, @ANYBLOB=',audit,\x00'])
06:45:30 executing program 4:
r0 = epoll_create(0xaa2c)
r1 = getpgid(0x0)
r2 = getpgid(0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f00000000c0)={r0})
06:45:30 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001380)='ext2\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002440)=[{0x0, 0x0, 0x3f}, {&(0x7f0000002400)="ff", 0x1, 0x8000}], 0x100000, &(0x7f0000002640)=ANY=[@ANYBLOB='bh,obj_type=devtmpfs\x00,euid>', @ANYRESDEC=0xee00, @ANYRESDEC, @ANYBLOB=',audit,\x00'])
[ 1394.114345][ T6598] loop5: detected capacity change from 0 to 128
06:45:30 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:30 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid, 0x2b}]})
06:45:30 executing program 2:
r0 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000ec0))
[ 1394.303752][ T6605] loop5: detected capacity change from 0 to 128
[ 1394.363987][ T6607] loop3: detected capacity change from 0 to 128
06:45:30 executing program 5:
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
pipe2$9p(&(0x7f0000000600), 0x84000)
[ 1394.558212][ T6617] loop3: detected capacity change from 0 to 128
[ 1394.587033][ T6619] xfs: Unknown parameter 'grpid+'
[ 1394.687063][ T6619] xfs: Unknown parameter 'grpid+'
06:45:30 executing program 3:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x32800, 0x0)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000d00), 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
io_uring_setup(0x73cb, &(0x7f0000000040)={0x0, 0x0, 0x1, 0x0, 0x333, 0x0, r0})
06:45:31 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid, 0x30}]})
06:45:31 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='devtmpfs\x00', 0x0, 0x0)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000080)='./file0\x00', 0x4)
06:45:31 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$sock_SIOCDELRT(r0, 0x890c, 0x0)
06:45:31 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)='debugfs\x00', 0x0, &(0x7f0000000100)='\x00')
06:45:31 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180), 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:31 executing program 3:
mincore(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0)
[ 1395.305202][ T6646] xfs: Unknown parameter 'grpid0'
06:45:31 executing program 4:
sigaltstack(&(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000000))
06:45:31 executing program 5:
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
openat$nvram(0xffffffffffffff9c, 0x0, 0x0, 0x0)
io_uring_setup(0x73cb, &(0x7f0000000040)={0x0, 0x0, 0x1, 0x0, 0x333})
[ 1395.409991][ T6646] xfs: Unknown parameter 'grpid0'
06:45:31 executing program 2:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f0000000880)={0x0, 0x2, [{0xffffffffffffffff, 0x0, 0x0, 0x1000000}, {}]})
06:45:31 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}]})
06:45:32 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x20028, &(0x7f00000001c0)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[], [{@smackfsfloor={'smackfsfloor', 0x3d, '/dev/md0\x00'}}]}})
06:45:32 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000002380))
06:45:32 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='fusectl\x00', 0x0, 0x0)
setxattr$security_ima(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0, 0x0, 0x0)
06:45:32 executing program 2:
r0 = epoll_create(0x7ff)
r1 = io_uring_setup(0x447c, &(0x7f0000000000))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080))
06:45:32 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180), 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1396.211392][ T6670] XFS (loop0): Invalid superblock magic number
06:45:32 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000140)='./file0\x00', &(0x7f0000000200), &(0x7f0000000240)=@v2={0x0, 0x0, 0x0, 0x0, 0xfd8, "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"}, 0xfe1, 0x0)
[ 1396.573451][ T6718] not chained 70000 origins
[ 1396.577959][ T6718] CPU: 0 PID: 6718 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1396.577959][ T6718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1396.592620][ T6718] Call Trace:
[ 1396.592620][ T6718] dump_stack+0x24c/0x2e0
[ 1396.592620][ T6718] kmsan_internal_chain_origin+0x6f/0x130
[ 1396.592620][ T6718] ? kmsan_internal_chain_origin+0xad/0x130
[ 1396.592620][ T6718] ? __msan_chain_origin+0x54/0xa0
06:45:32 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x2})
[ 1396.592620][ T6718] ? sctp_chunk_fail+0x119/0x150
[ 1396.592620][ T6718] ? __sctp_outq_teardown+0x111e/0x15f0
[ 1396.592620][ T6718] ? sctp_outq_free+0x37/0x40
[ 1396.592620][ T6718] ? sctp_association_free+0x3f8/0x11b0
[ 1396.592620][ T6718] ? sctp_do_sm+0x929b/0xa160
[ 1396.592620][ T6718] ? sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] ? sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] ? sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] ? __release_sock+0x26b/0x670
[ 1396.648525][ T6718] ? release_sock+0x98/0x2d0
06:45:32 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x84000, 0x0)
06:45:32 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
sendmsg$sock(r0, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@timestamping={{0x14}}, @mark={{0x14}}], 0x30}, 0x0)
[ 1396.648525][ T6718] ? sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] ? sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] ? sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] ? inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] ? __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] ? __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] ? __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] ? __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] ? do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] ? do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_set_origin_checked+0xa2/0x100
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] ? __msan_metadata_ptr_for_load_8+0x10/0x20
[ 1396.648525][ T6718] ? __genradix_ptr+0x8e6/0xbe0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] ? entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718] ? kmsan_internal_set_origin+0x82/0xc0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] ? sctp_assoc_lookup_asconf_ack+0x2c0/0x2c0
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? sctp_rcv+0x60d0/0x60d0
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] ? init_wait_entry+0x190/0x190
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? sctp_getsockopt+0x1f060/0x1f060
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] ? inet_send_prepare+0x6b0/0x6b0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1396.648525][ T6718] ? kmsan_get_metadata+0x116/0x180
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718] RIP: 0023:0xf7fac549
[ 1396.648525][ T6718] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[ 1396.648525][ T6718] RSP: 002b:00000000f55a65fc EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[ 1396.648525][ T6718] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020847fff
[ 1396.648525][ T6718] RDX: 0000000000034000 RSI: 0000000000000000 RDI: 000000002005ffe4
[ 1396.648525][ T6718] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000
[ 1396.648525][ T6718] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[ 1396.648525][ T6718] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_chunk_fail+0x119/0x150
[ 1396.648525][ T6718] __sctp_outq_teardown+0x111e/0x15f0
[ 1396.648525][ T6718] sctp_outq_free+0x37/0x40
[ 1396.648525][ T6718] sctp_association_free+0x3f8/0x11b0
[ 1396.648525][ T6718] sctp_do_sm+0x929b/0xa160
[ 1396.648525][ T6718] sctp_assoc_bh_rcv+0xa3f/0xe10
[ 1396.648525][ T6718] sctp_inq_push+0x31c/0x440
[ 1396.648525][ T6718] sctp_backlog_rcv+0x2bb/0x1710
[ 1396.648525][ T6718] __release_sock+0x26b/0x670
[ 1396.648525][ T6718] release_sock+0x98/0x2d0
[ 1396.648525][ T6718] sctp_wait_for_connect+0x518/0x9d0
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x2203/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_datamsg_from_user+0x1d3c/0x2470
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was stored to memory at:
[ 1396.648525][ T6718] kmsan_internal_chain_origin+0xad/0x130
[ 1396.648525][ T6718] __msan_chain_origin+0x54/0xa0
[ 1396.648525][ T6718] sctp_datamsg_from_user+0x35a/0x2470
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[ 1396.648525][ T6718]
[ 1396.648525][ T6718] Uninit was created at:
[ 1396.648525][ T6718] kmsan_internal_poison_shadow+0x66/0xd0
[ 1396.648525][ T6718] kmsan_slab_alloc+0x8e/0xe0
[ 1396.648525][ T6718] kmem_cache_alloc_trace+0x8c7/0x1030
[ 1396.648525][ T6718] sctp_datamsg_from_user+0xf7/0x2470
[ 1396.648525][ T6718] sctp_sendmsg_to_asoc+0x117d/0x2520
[ 1396.648525][ T6718] sctp_sendmsg+0x35a5/0x5c60
[ 1396.648525][ T6718] inet_sendmsg+0x15b/0x1d0
[ 1396.648525][ T6718] __sys_sendto+0x9ea/0xc60
[ 1396.648525][ T6718] __se_sys_sendto+0x107/0x130
[ 1396.648525][ T6718] __ia32_sys_sendto+0x6e/0x90
[ 1396.648525][ T6718] __do_fast_syscall_32+0x127/0x180
[ 1396.648525][ T6718] do_fast_syscall_32+0x77/0xd0
[ 1396.648525][ T6718] do_SYSENTER_32+0x73/0x90
[ 1396.648525][ T6718] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
06:45:34 executing program 5:
sendmsg$AUDIT_ADD_RULE(0xffffffffffffffff, 0x0, 0xd98dd0dccdd37442)
06:45:34 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180), 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1398.800407][ T6731] xfs: Unknown parameter '�'
[ 1398.985285][ T6731] xfs: Unknown parameter '�'
06:45:35 executing program 4:
io_uring_setup(0x0, &(0x7f0000000040))
06:45:35 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
06:45:35 executing program 2:
socket$inet(0x2, 0x0, 0x477)
06:45:35 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001380)='ext2\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002440)=[{&(0x7f0000001400), 0x3f000000}, {&(0x7f0000002400)="ff", 0x1, 0x8000}], 0x100000, &(0x7f0000002640)=ANY=[@ANYBLOB='bh,obj_type=devtmpfs\x00,euid>', @ANYRESDEC=0xee00, @ANYBLOB="2c61756469742c657569643c771c988ddc998768b0eb16dcb389a7f14b01954e177538be2c7707bdc50e14284f1ef6a75ad5e64d541bf432e26780aa", @ANYRESDEC, @ANYBLOB=',audit,\x00'])
06:45:35 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:35 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x3})
06:45:35 executing program 4:
memfd_create(&(0x7f0000000840)='\x00', 0x0)
06:45:35 executing program 5:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000040)={0x10}, 0x10}}, 0x0)
06:45:35 executing program 2:
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
recvmsg$can_bcm(r0, &(0x7f00000008c0)={&(0x7f0000000480)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @remote}}}, 0x80, 0x0}, 0x2)
[ 1399.625701][ T6758] xfs: Unknown parameter '�'
[ 1399.704224][ T6758] xfs: Unknown parameter '�'
06:45:36 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:36 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x4})
06:45:36 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
setxattr$incfs_size(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0)
06:45:36 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$sock(r0, &(0x7f0000001900)={&(0x7f0000000700)=@ipx={0x4, 0x0, 0x0, "3821db7ac698"}, 0x80, 0x0, 0x0, &(0x7f00000018c0)=[@timestamping={{0x14}}], 0x18}, 0x0)
[ 1400.346818][ T6776] xfs: Unknown parameter '�'
06:45:36 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(0xffffffffffffffff, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:36 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x5})
06:45:37 executing program 3:
syz_io_uring_setup(0x5cf2, &(0x7f0000000000), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080)=0x0, &(0x7f00000000c0))
syz_io_uring_submit(r0, 0x0, 0x0, 0x0)
06:45:37 executing program 4:
pipe2$9p(&(0x7f0000000600)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84000)
write$P9_RLOCK(r0, 0x0, 0x0)
06:45:37 executing program 5:
r0 = epoll_create(0x7ff)
r1 = epoll_create(0xaa2c)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000002300))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))
06:45:37 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:37 executing program 2:
alarm(0xfffffffffffff800)
[ 1401.078667][ T6793] xfs: Unknown parameter '�'
[ 1401.139920][ T6793] xfs: Unknown parameter '�'
06:45:37 executing program 2:
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000200)={&(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, 0x0}, 0x68)
06:45:37 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x6})
06:45:37 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x5f, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
setxattr$incfs_size(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240), 0x0, 0x0, 0x0)
06:45:37 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000002180)={0x0, 0x0, &(0x7f0000002140)={0x0}}, 0x2000c011)
06:45:37 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:37 executing program 3:
r0 = epoll_create(0x7ff)
r1 = epoll_create(0xaa2c)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000002300))
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000080))
[ 1401.736050][ T6817] xfs: Unknown parameter '�'
06:45:37 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
[ 1401.850346][ T6817] xfs: Unknown parameter '�'
06:45:38 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x7})
06:45:38 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:38 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000640)=[{0x0}], 0x40000, &(0x7f0000000700)={[{@prjquota}, {@jqfmt_vfsv0}, {@delalloc}]})
06:45:38 executing program 4:
syz_io_uring_setup(0x5cf2, &(0x7f0000000000), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
[ 1402.153973][ T6834] xfs: Unknown parameter '�'
[ 1402.287404][ T6834] xfs: Unknown parameter '�'
06:45:38 executing program 2:
r0 = io_uring_setup(0xf0a, &(0x7f0000000080))
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x0, 0x0)
06:45:38 executing program 3:
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000001040)={&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x3000)=nil, 0x0}, 0x68)
06:45:38 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x8})
06:45:38 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
06:45:39 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3, &(0x7f0000000640)=[{&(0x7f0000000200)='[)', 0x2, 0x3f}, {&(0x7f00000000c0)="714a1fa5bb861faa43aac371ea426880c5941a2c337015b721273f719e3c474e5b0d14885127ca0c9f20c8eda8c14a5fe5e08a0382c0714523b44d4f4b296034c1264a9bac16377854b1d4a2235ce06c4ce528400b913c444c1e13fe86336c96d0845df1f7abc2057b64d188", 0x6c}, {0x0}], 0x40000, &(0x7f0000000700)={[{@delalloc}], [{@mask={'mask', 0x3d, '^MAY_APPEND'}}]})
06:45:39 executing program 5:
openat$nvram(0xffffffffffffff9c, 0x0, 0x2400, 0x0)
[ 1402.943858][ T6868] xfs: Unknown parameter '�'
06:45:39 executing program 3:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={&(0x7f0000000000), 0xc, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="a8000000ed03"], 0xa8}}, 0x0)
06:45:39 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1403.051754][ T6868] xfs: Unknown parameter '�'
06:45:39 executing program 2:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001240), 0x1, 0x0)
write$P9_RREADDIR(r0, &(0x7f0000001280)={0xb}, 0xb)
06:45:39 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x9})
06:45:39 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x40000, &(0x7f0000000700))
06:45:39 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x6, 0x3, &(0x7f0000000640)=[{&(0x7f00000000c0)="714a1fa5bb861faa43aac371ea426880c5941a2c337015b721273f719e3c474e5b0d14885127ca0c9f20c8eda8c14a5fe5e08a0382c071", 0x37}, {0x0}, {&(0x7f0000000340)="f10a9028ff483284762efbc6e0ff849b31bcd0a5dfe056164eb6811afd494519b5a49ad5dbee25ee3c1f7711c9c24f2ba19764a6e1f7307ac1eaa23bc6", 0x3d, 0x6}], 0x40000, &(0x7f0000000700)={[{@prjquota}, {@jqfmt_vfsv0}], [{@mask={'mask', 0x3d, '^MAY_APPEND'}}]})
06:45:39 executing program 4:
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, r0, 0x0)
06:45:39 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff), 0x0, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
[ 1403.715844][ T6898] xfs: Unknown parameter ' '
[ 1403.829154][ T6898] xfs: Unknown parameter ' '
06:45:40 executing program 2:
r0 = epoll_create(0xaa2c)
r1 = socket$alg(0x26, 0x5, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0))
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100))
06:45:40 executing program 5:
openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
06:45:40 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xa})
06:45:40 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000640)=[{0x0}], 0x40000, &(0x7f0000000700))
06:45:40 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000002240)=ANY=[])
fchmodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0)
06:45:40 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
06:45:40 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
06:45:40 executing program 5:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, &(0x7f0000000180))
[ 1404.447695][ T6935] xfs: Unknown parameter '
[ 1404.447695][ T6935] '
[ 1404.543116][ T6935] xfs: Unknown parameter '
[ 1404.543116][ T6935] '
06:45:40 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xb})
06:45:41 executing program 4:
pipe2$9p(&(0x7f0000000600), 0x0)
06:45:41 executing program 3:
get_mempolicy(0x0, &(0x7f0000000440), 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x0)
06:45:41 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
06:45:41 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x2, 0x0)
06:45:41 executing program 5:
prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000040)="ce", 0x1)
06:45:41 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='devpts\x00', 0x0, &(0x7f00000000c0)='\x00')
[ 1405.282704][ T6965] xfs: Unknown parameter '�'
06:45:41 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x1, 0x0, 0x0, 0x0)
06:45:41 executing program 2:
r0 = socket$nl_audit(0x10, 0x3, 0x9)
sendmsg$AUDIT_USER(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x3ed, 0x4}, 0x10}}, 0x0)
[ 1405.388989][ T6965] xfs: Unknown parameter '�'
[ 1405.401666][ T6973] overlayfs: missing 'lowerdir'
06:45:41 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xc})
06:45:41 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x14f, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x20, &(0x7f0000000480))
06:45:41 executing program 5:
syz_io_uring_setup(0x6346, &(0x7f0000000100)={0x0, 0x0, 0x9}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000180), &(0x7f00000001c0))
06:45:42 executing program 3:
pipe2$9p(&(0x7f0000001b80)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0)
write$P9_RSYMLINK(r0, 0x0, 0x0)
06:45:42 executing program 2:
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
[ 1405.949288][ T6990] xfs: Unknown parameter '�'
06:45:42 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xd})
06:45:42 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
[ 1406.042971][ T6993] devtmpfs: Unknown parameter 'errors'
[ 1406.089723][ T6994] devtmpfs: Unknown parameter 'errors'
06:45:42 executing program 4:
shmctl$SHM_INFO(0x0, 0xe, &(0x7f00000000c0)=""/28)
06:45:42 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$sock(r0, &(0x7f0000001900)={0x0, 0x0, 0x0}, 0x0)
06:45:42 executing program 5:
sendmsg$ETHTOOL_MSG_CHANNELS_SET(0xffffffffffffffff, &(0x7f0000002540)={0x0, 0x0, 0x0}, 0x0)
munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000)
[ 1406.502396][ T7005] xfs: Unknown parameter ''
[ 1406.591562][ T7005] xfs: Unknown parameter ''
06:45:42 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(&(0x7f0000000040)=@md0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, &(0x7f0000000100)='\x00')
06:45:42 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='fusectl\x00', 0x0, 0x0)
06:45:42 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xe})
06:45:43 executing program 2:
get_mempolicy(&(0x7f00000002c0), 0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x3)
06:45:43 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
setxattr$security_ima(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0)
[ 1407.056543][ T7023] xfs: Unknown parameter '�'
[ 1407.151935][ T7023] xfs: Unknown parameter '�'
06:45:43 executing program 2:
syz_io_uring_setup(0x5cf2, &(0x7f0000000000), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
06:45:43 executing program 5:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x328c0, 0x0)
06:45:43 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0xf})
06:45:43 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
06:45:43 executing program 4:
r0 = epoll_create(0x7ff)
r1 = epoll_create(0xaa2c)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000002300))
r2 = inotify_init()
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r2)
06:45:43 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x0, 0x805}, 0x14}}, 0x0)
[ 1407.704064][ T7045] xfs: Unknown parameter '�'
06:45:43 executing program 3:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001380)='ext2\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x0, 0x0, 0x104000, &(0x7f0000002640)=ANY=[])
06:45:44 executing program 5:
syz_open_dev$usbmon(&(0x7f0000000040), 0x0, 0x40400)
06:45:44 executing program 4:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000001c80), 0x0, 0x0)
write$P9_RREADLINK(r0, 0x0, 0x0)
06:45:44 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x10})
06:45:44 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0}}, 0x0)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0)
06:45:44 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$sock(r0, &(0x7f0000001900)={0x0, 0x0, &(0x7f0000001880)=[{0x0}, {0x0}], 0x2}, 0x0)
06:45:44 executing program 4:
get_mempolicy(0x0, 0x0, 0x0, &(0x7f0000ffd000/0x2000)=nil, 0x3)
[ 1408.457722][ T7064] xfs: Unknown parameter '�'
06:45:44 executing program 5:
r0 = epoll_create(0x7ff)
r1 = epoll_create(0xaa2c)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000740), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f00000000c0))
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040))
06:45:44 executing program 1:
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x2bf, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000200)={0x0, 0x20, 0x1, 0xb1d8}, &(0x7f0000000240)=0x10)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f00000000c0)=0x5e, 0x4)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000100)={0x20, 0x4, 0x1, 0x8, 0x2, 0xff, 0x80, 0x70, 0x4, 0x5, 0x3, 0x5, 0x0, 0x6}, 0xe)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_HMAC_IDENT(r1, 0x84, 0x16, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000800c69ff0f738b51676ba3b1a43f2ff9093121cb6eef6c40a"], &(0x7f00000001c0)=0x6)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={0x0, 0x0, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)
[ 1408.581828][ T7064] xfs: Unknown parameter '�'
06:45:44 executing program 2:
pipe2$9p(0x0, 0x81800)
06:45:44 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x11})
06:45:45 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext3\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000640), 0x40000, &(0x7f0000000700)={[], [{@mask={'mask', 0x3d, '^MAY_APPEND'}}]})
06:45:45 executing program 5:
clone3(&(0x7f0000000180)={0x8000000, &(0x7f0000000000), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
06:45:45 executing program 3:
r0 = epoll_create(0x7ff)
r1 = epoll_create(0xaa2c)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000002300))
06:45:45 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0/file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40040, 0x0)
[ 1409.215568][ T7087] xfs: Unknown parameter '�'
[ 1409.326906][ T7087] xfs: Unknown parameter '�'
06:45:45 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000001380)='ext2\x00', &(0x7f00000013c0)='./file0\x00', 0x0, 0x2, &(0x7f0000002440)=[{&(0x7f0000001400), 0x0, 0x3f}, {&(0x7f0000002400)="ff", 0x1, 0x8000}], 0x100000, &(0x7f0000002640)=ANY=[@ANYBLOB='bh,obj_type=devtmpfs\x00,euid>', @ANYRESDEC=0xee00, @ANYBLOB="2c61756469742c657569643c771c988ddc998768b0eb16dcb389a7f14b01954e177538be2c7707bdc50e14284f1ef6a75ad5e64d541bf432e26780aa", @ANYRESDEC, @ANYBLOB=',audit,\x00'])
06:45:45 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x12})
06:45:45 executing program 5:
io_uring_setup(0x2cab, &(0x7f0000000040))
06:45:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x108}}, 0x40811)
06:45:45 executing program 3:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x6200, 0x0)
06:45:45 executing program 4:
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
recvfrom(r0, 0x0, 0x0, 0xd016500a108a8fd4, 0x0, 0x0)
[ 1409.851898][ T7114] loop2: detected capacity change from 0 to 128
[ 1409.954330][ T7120] xfs: Unknown parameter '�'
[ 1409.996262][ T7120] xfs: Unknown parameter '�'
06:45:46 executing program 1:
syz_io_uring_setup(0x5cf2, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x0, 0x31f}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
[ 1410.036864][ T7125] loop2: detected capacity change from 0 to 128
06:45:46 executing program 2:
recvmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
06:45:46 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x16})
06:45:46 executing program 4:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000680), 0x105000, 0x0)
06:45:46 executing program 3:
openat$nvram(0xffffffffffffff9c, 0x0, 0x105000, 0x0)
06:45:46 executing program 5:
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000001300)='hugetlb.2MB.limit_in_bytes\x00', 0x0, 0x0)
06:45:46 executing program 1:
shmctl$IPC_STAT(0x0, 0x2, &(0x7f0000000280)=""/158)
[ 1410.631024][ T7153] xfs: Unknown parameter '�'
[ 1410.685149][ T7153] xfs: Unknown parameter '�'
06:45:46 executing program 4:
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x32840, 0x0)
06:45:47 executing program 2:
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='devtmpfs\x00', 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x48842, 0x0, 0xf}, 0x18)
06:45:47 executing program 5:
syz_io_uring_setup(0x5cf2, &(0x7f0000000000)={0x0, 0x0, 0x2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0))
06:45:47 executing program 3:
syz_open_dev$usbmon(&(0x7f0000000040), 0xfff, 0x0)
06:45:47 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x21})
06:45:47 executing program 2:
socketpair(0x0, 0x0, 0x0, &(0x7f0000001bc0))
06:45:47 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c00)=@framed, &(0x7f0000001c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
06:45:47 executing program 4:
socketpair(0x25, 0x0, 0x0, &(0x7f0000001bc0))
[ 1411.362626][ T7182] xfs: Unknown parameter '!'
06:45:47 executing program 3:
perf_event_open$cgroup(&(0x7f0000000500)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
[ 1411.448287][ T7182] xfs: Unknown parameter '!'
06:45:47 executing program 5:
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000013c0), 0x0, 0x0)
ioctl$TUNSETTXFILTER(r0, 0x400454d1, 0x0)
ioctl$TUNSETSNDBUF(r0, 0x400454d4, 0x0)
06:45:47 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x22})
06:45:47 executing program 1:
perf_event_open$cgroup(&(0x7f0000002b00)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x4)
06:45:47 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c00)=@framed, &(0x7f0000001c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000001d80), 0x10}, 0x78)
06:45:47 executing program 2:
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x200002, 0x0)
openat$cgroup_type(r0, &(0x7f0000000040), 0x2, 0x0)
06:45:48 executing program 5:
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x62400, 0x0)
close(r0)
06:45:48 executing program 3:
perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xda, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='memory.events\x00', 0x26e1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff})
ioctl$TUNSETLINK(r1, 0x8912, 0x400308)
ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x5421, 0x400019)
write$cgroup_type(r0, &(0x7f0000000000), 0x248800)
[ 1412.109496][ T7209] xfs: Unknown parameter '"'
[ 1412.157719][ T7209] xfs: Unknown parameter '"'
06:45:48 executing program 1:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x4, &(0x7f0000001c00)=@framed={{}, [@ldst]}, &(0x7f0000001c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
06:45:48 executing program 2:
bpf$BPF_PROG_GET_FD_BY_ID(0x1e, &(0x7f0000000000)={0xffffffffffffffff}, 0x4)
06:45:48 executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c00)=@framed, &(0x7f0000001c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001d40), 0x8, 0x10, 0x0}, 0x78)
06:45:48 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x23})
06:45:48 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000017c0)={0xffffffffffffffff})
sendmsg$sock(r0, &(0x7f0000001b80)={0x0, 0x0, &(0x7f0000001a80)=[{0x0}, {0x0}], 0x2, &(0x7f0000001ac0)=[@timestamping={{0x14}}, @mark={{0x14}}], 0x30}, 0x0)
06:45:48 executing program 3:
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000012c0)={&(0x7f0000001280)='./file0\x00'}, 0x10)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
sendmsg$sock(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x3, &(0x7f0000001c00)=@framed, &(0x7f0000001c40)='GPL\x00', 0xd6b, 0xb5, &(0x7f0000001c80)=""/181, 0x0, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
06:45:49 executing program 2:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000012c0)={0x29}, 0x8)
06:45:49 executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000001800)={0x9, 0x10000, 0x8, 0x1c47, 0x40, 0x1}, 0x40)
bpf$OBJ_PIN_MAP(0x6, 0x0, 0x0)
[ 1412.799869][ T7231] xfs: Unknown parameter '#'
06:45:49 executing program 1:
getpid()
perf_event_open(0x0, 0x0, 0xf, 0xffffffffffffffff, 0x0)
perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0xdc, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x5000}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000000c0)='cgroup.controllers\x00', 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
close(r0)
perf_event_open(&(0x7f0000000640)={0x5, 0x80, 0x0, 0x81, 0x0, 0x9, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x5, 0x1, @perf_bp={&(0x7f0000000200)}, 0x8058, 0x4379, 0x11e2, 0x8, 0x1, 0x7fffffff, 0x2e13}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040))
socket$kcm(0x2, 0x0, 0x0)
[ 1412.875655][ T7231] xfs: Unknown parameter '#'
06:45:49 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x24})
06:45:49 executing program 5:
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000012c0), 0x8)
06:45:49 executing program 3:
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000017c0))
06:45:49 executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001dc0)={0x11, 0x4, &(0x7f0000001c00)=@framed={{}, [@ldst={0x3}]}, &(0x7f0000001c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78)
[ 1413.598568][ T7261] xfs: Unknown parameter '$'
[ 1413.721768][ T7261] xfs: Unknown parameter '$'
06:45:50 executing program 5:
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000017c0))
06:45:50 executing program 3:
perf_event_open(&(0x7f0000000140)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
06:45:50 executing program 0:
syz_mount_image$xfs(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f00000007c0), 0x0, &(0x7f0000000840)={[{@grpid}], [], 0x25})
06:45:50 executing program 1:
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000002980)='./cgroup/syz0\x00', 0x200002, 0x0)
06:45:50 executing program 2:
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000a00)={0xffffffffffffffff, 0x0}, 0x20)
06:45:50 executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000080)={0xf, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x40)
[ 1414.417817][ T7289] xfs: Unknown parameter '%'
[ 1414.571059][ T7289] xfs: Unknown parameter '%'
[ 1419.718197][ T2024] =====================================================
[ 1419.725146][ T2024] BUG: KMSAN: uninit-value in __list_add_valid+0x286/0x420
[ 1419.727933][ T2024] CPU: 0 PID: 2024 Comm: kswapd0 Tainted: G W 5.12.0-rc6-syzkaller #0
[ 1419.727933][ T2024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1419.727933][ T2024] Call Trace:
[ 1419.727933][ T2024] dump_stack+0x24c/0x2e0
[ 1419.727933][ T2024] kmsan_report+0xfb/0x1e0
[ 1419.727933][ T2024] __msan_warning+0x5c/0xa0
[ 1419.727933][ T2024] __list_add_valid+0x286/0x420
[ 1419.727933][ T2024] __down_read_common+0x4f4/0x1270
[ 1419.727933][ T2024] ? kmsan_get_metadata+0x116/0x180
[ 1419.727933][ T2024] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1419.727933][ T2024] down_read+0x2b/0x30
[ 1419.727933][ T2024] page_lock_anon_vma_read+0x3d6/0x610
[ 1419.727933][ T2024] ? page_get_anon_vma+0x390/0x390
[ 1419.727933][ T2024] rmap_walk_anon+0x112/0x1290
[ 1419.727933][ T2024] ? kmsan_get_metadata+0x116/0x180
[ 1419.727933][ T2024] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1419.727933][ T2024] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1419.727933][ T2024] ? total_mapcount+0x123/0xac0
[ 1419.727933][ T2024] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1419.727933][ T2024] page_referenced+0xaca/0xc30
[ 1419.727933][ T2024] ? page_referenced+0xc30/0xc30
[ 1419.845992][ T2024] ? page_get_anon_vma+0x390/0x390
[ 1419.845992][ T2024] shrink_page_list+0x1dd1/0x7840
[ 1419.845992][ T2024] shrink_inactive_list+0x83f/0x14f0
[ 1419.845992][ T2024] shrink_lruvec+0x738/0x1480
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] shrink_node_memcgs+0x5a3/0xc60
[ 1419.845992][ T2024] shrink_node+0x1a02/0x3400
[ 1419.845992][ T2024] balance_pgdat+0x146e/0x2570
[ 1419.845992][ T2024] ? find_next_bit+0x2eb/0x340
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] kswapd+0x50b/0x8a0
[ 1419.845992][ T2024] ? __kthread_parkme+0x22b/0x250
[ 1419.845992][ T2024] kthread+0x521/0x560
[ 1419.845992][ T2024] ? kswapd_run+0x3a0/0x3a0
[ 1419.845992][ T2024] ? kthread_blkcg+0x110/0x110
[ 1419.845992][ T2024] ret_from_fork+0x1f/0x30
[ 1419.845992][ T2024]
[ 1419.845992][ T2024] Local variable ----pvmw@remove_migration_pte created at:
[ 1419.845992][ T2024] remove_migration_pte+0xbe/0x1920
[ 1419.845992][ T2024] remove_migration_pte+0xbe/0x1920
[ 1419.845992][ T2024] =====================================================
[ 1419.845992][ T2024] Disabling lock debugging due to kernel taint
[ 1419.845992][ T2024] Kernel panic - not syncing: panic_on_kmsan set ...
[ 1419.845992][ T2024] CPU: 0 PID: 2024 Comm: kswapd0 Tainted: G B W 5.12.0-rc6-syzkaller #0
[ 1419.845992][ T2024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1419.845992][ T2024] Call Trace:
[ 1419.845992][ T2024] dump_stack+0x24c/0x2e0
[ 1419.845992][ T2024] panic+0x4c6/0xea7
[ 1419.845992][ T2024] ? add_taint+0x17c/0x210
[ 1419.845992][ T2024] ? __msan_metadata_ptr_for_store_1+0x13/0x20
[ 1419.845992][ T2024] kmsan_report+0x1de/0x1e0
[ 1419.845992][ T2024] __msan_warning+0x5c/0xa0
[ 1419.845992][ T2024] __list_add_valid+0x286/0x420
[ 1419.845992][ T2024] __down_read_common+0x4f4/0x1270
[ 1419.845992][ T2024] ? kmsan_get_metadata+0x116/0x180
[ 1419.845992][ T2024] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1419.845992][ T2024] down_read+0x2b/0x30
[ 1419.845992][ T2024] page_lock_anon_vma_read+0x3d6/0x610
[ 1419.845992][ T2024] ? page_get_anon_vma+0x390/0x390
[ 1419.845992][ T2024] rmap_walk_anon+0x112/0x1290
[ 1419.845992][ T2024] ? kmsan_get_metadata+0x116/0x180
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1419.845992][ T2024] ? __msan_metadata_ptr_for_load_4+0x10/0x20
[ 1419.845992][ T2024] ? total_mapcount+0x123/0xac0
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0
[ 1419.845992][ T2024] page_referenced+0xaca/0xc30
[ 1419.845992][ T2024] ? page_referenced+0xc30/0xc30
[ 1419.845992][ T2024] ? page_get_anon_vma+0x390/0x390
[ 1419.845992][ T2024] shrink_page_list+0x1dd1/0x7840
[ 1419.845992][ T2024] shrink_inactive_list+0x83f/0x14f0
[ 1419.845992][ T2024] shrink_lruvec+0x738/0x1480
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] shrink_node_memcgs+0x5a3/0xc60
[ 1419.845992][ T2024] shrink_node+0x1a02/0x3400
[ 1419.845992][ T2024] balance_pgdat+0x146e/0x2570
[ 1419.845992][ T2024] ? find_next_bit+0x2eb/0x340
[ 1419.845992][ T2024] ? kmsan_get_shadow_origin_ptr+0x84/0xb0
[ 1419.845992][ T2024] kswapd+0x50b/0x8a0
[ 1419.845992][ T2024] ? __kthread_parkme+0x22b/0x250
[ 1419.845992][ T2024] kthread+0x521/0x560
[ 1419.845992][ T2024] ? kswapd_run+0x3a0/0x3a0
[ 1419.845992][ T2024] ? kthread_blkcg+0x110/0x110
[ 1419.845992][ T2024] ret_from_fork+0x1f/0x30
[ 1419.845992][ T2024] Kernel Offset: disabled
[ 1419.845992][ T2024] Rebooting in 86400 seconds..