50 [ 2782.875151][ C0] unmap_vmas+0x3c8/0x500 [ 2782.875151][ C0] exit_mmap+0x5f1/0xb80 [ 2782.875151][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2782.875151][ C0] __mmput+0x1b7/0x630 [ 2782.875151][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2782.875151][ C0] mmput+0x8c/0xb0 [ 2782.875151][ C0] exit_mm+0x7a9/0x9a0 [ 2782.875151][ C0] do_exit+0xdbb/0x3c20 [ 2782.875151][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2782.875151][ C0] do_group_exit+0x1e1/0x3c0 [ 2782.875151][ C0] get_signal+0x2e5f/0x39e0 [ 2782.875151][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2782.875151][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2782.875151][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2782.875151][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2782.875151][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2782.875151][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2782.875151][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2782.875151][ C0] do_SYSENTER_32+0x73/0x90 [ 2782.875151][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2782.875151][ C0] RIP: 0023:0xf7f72549 [ 2782.875151][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2782.875151][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2782.875151][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2782.875151][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2782.875151][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2782.875151][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2782.875151][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2782.875151][ C0] ---[ end trace f7326eee4ef537ee ]--- [ 2783.141442][ C0] ------------[ cut here ]------------ [ 2783.147237][ C0] WARNING: CPU: 0 PID: 19316 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2783.149986][ C0] Modules linked in: [ 2783.149986][ C0] CPU: 0 PID: 19316 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2783.149986][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2783.149986][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2783.149986][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2783.149986][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2783.149986][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88816fc80000 [ 2783.149986][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2783.149986][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2783.149986][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2783.149986][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2783.149986][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2783.149986][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2783.149986][ C0] CR2: 00007fc931017028 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2783.149986][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2783.149986][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2783.149986][ C0] Call Trace: [ 2783.149986][ C0] [ 2783.149986][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2783.149986][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2783.149986][ C0] __run_hrtimer+0x48b/0xd20 [ 2783.149986][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2783.149986][ C0] ? hrtimer_init+0x570/0x570 [ 2783.149986][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2783.149986][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2783.149986][ C0] [ 2783.149986][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2783.149986][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x39/0xb0 [ 2783.149986][ C0] Code: 49 89 fe 48 81 fe 01 10 00 00 73 6e 80 3d d6 22 06 10 00 74 0e e8 67 d5 ff ff 83 b8 b0 0f 00 00 00 74 22 48 c7 c0 00 60 45 92 <48> c7 c3 00 70 45 92 45 84 ff 48 0f 45 d8 48 89 da 48 89 d8 5b 41 [ 2783.149986][ C0] RSP: 0018:ffff8881fe6e71f8 EFLAGS: 00000246 [ 2783.149986][ C0] RAX: ffffffff92456000 RBX: 0000000000000008 RCX: 000000000000002e [ 2783.149986][ C0] RDX: 000061800324f880 RSI: 0000000000000001 RDI: ffffea000324f880 [ 2783.149986][ C0] RBP: ffff8881fe6e7210 R08: ffffffff821f37ee R09: ffff88813fffa000 [ 2783.149986][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffffea000324f880 [ 2783.149986][ C0] R13: 00fff00000000008 R14: ffffea000324f880 R15: 0000000000000000 [ 2783.149986][ C0] ? zap_pte_range+0x173e/0x3cb0 [ 2783.149986][ C0] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2783.149986][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2783.149986][ C0] zap_pte_range+0x178e/0x3cb0 [ 2783.149986][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2783.149986][ C0] unmap_page_range+0x1154/0x1440 [ 2783.149986][ C0] unmap_single_vma+0x56b/0x750 [ 2783.149986][ C0] unmap_vmas+0x3c8/0x500 [ 2783.149986][ C0] exit_mmap+0x5f1/0xb80 [ 2783.149986][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2783.149986][ C0] __mmput+0x1b7/0x630 [ 2783.149986][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2783.149986][ C0] mmput+0x8c/0xb0 [ 2783.149986][ C0] exit_mm+0x7a9/0x9a0 [ 2783.149986][ C0] do_exit+0xdbb/0x3c20 [ 2783.149986][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2783.149986][ C0] do_group_exit+0x1e1/0x3c0 [ 2783.149986][ C0] get_signal+0x2e5f/0x39e0 [ 2783.149986][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2783.149986][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2783.149986][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2783.149986][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2783.149986][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2783.149986][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2783.149986][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2783.149986][ C0] do_SYSENTER_32+0x73/0x90 [ 2783.149986][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2783.149986][ C0] RIP: 0023:0xf7f72549 [ 2783.149986][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2783.149986][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2783.149986][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2783.149986][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2783.149986][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2783.149986][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2783.149986][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2783.149986][ C0] ---[ end trace f7326eee4ef537ef ]--- [ 2783.614403][ C0] ------------[ cut here ]------------ [ 2783.620240][ C0] WARNING: CPU: 0 PID: 19316 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2783.623015][ C0] Modules linked in: [ 2783.623015][ C0] CPU: 0 PID: 19316 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2783.623015][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2783.623015][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2783.623015][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2783.623015][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2783.623015][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88816fc80000 [ 2783.623015][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2783.623015][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2783.623015][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2783.623015][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2783.623015][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2783.623015][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2783.623015][ C0] CR2: 00007fc931017028 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2783.623015][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2783.623015][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2783.623015][ C0] Call Trace: [ 2783.623015][ C0] [ 2783.623015][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2783.623015][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2783.623015][ C0] __run_hrtimer+0x48b/0xd20 [ 2783.623015][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2783.623015][ C0] ? hrtimer_init+0x570/0x570 [ 2783.623015][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2783.623015][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2783.623015][ C0] [ 2783.623015][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2783.623015][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x39/0xb0 [ 2783.623015][ C0] Code: 49 89 fe 48 81 fe 01 10 00 00 73 6e 80 3d d6 22 06 10 00 74 0e e8 67 d5 ff ff 83 b8 b0 0f 00 00 00 74 22 48 c7 c0 00 60 45 92 <48> c7 c3 00 70 45 92 45 84 ff 48 0f 45 d8 48 89 da 48 89 d8 5b 41 [ 2783.623015][ C0] RSP: 0018:ffff8881fe6e71f8 EFLAGS: 00000246 [ 2783.849174][ C0] RAX: ffffffff92456000 RBX: 0000000000000008 RCX: 000000000000002e [ 2783.849174][ C0] RDX: 000061800324f880 RSI: 0000000000000001 RDI: ffffea000324f880 [ 2783.849174][ C0] RBP: ffff8881fe6e7210 R08: ffffffff821f37ee R09: ffff88813fffa000 [ 2783.868905][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffffea000324f880 [ 2783.868905][ C0] R13: 00fff00000000008 R14: ffffea000324f880 R15: 0000000000000000 [ 2783.868905][ C0] ? zap_pte_range+0x173e/0x3cb0 [ 2783.891650][ C0] ? kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2783.891650][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2783.891650][ C0] zap_pte_range+0x178e/0x3cb0 [ 2783.891650][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2783.891650][ C0] unmap_page_range+0x1154/0x1440 [ 2783.891650][ C0] unmap_single_vma+0x56b/0x750 [ 2783.891650][ C0] unmap_vmas+0x3c8/0x500 [ 2783.891650][ C0] exit_mmap+0x5f1/0xb80 [ 2783.891650][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2783.891650][ C0] __mmput+0x1b7/0x630 [ 2783.891650][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2783.891650][ C0] mmput+0x8c/0xb0 [ 2783.891650][ C0] exit_mm+0x7a9/0x9a0 [ 2783.891650][ C0] do_exit+0xdbb/0x3c20 [ 2783.891650][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2783.891650][ C0] do_group_exit+0x1e1/0x3c0 [ 2783.891650][ C0] get_signal+0x2e5f/0x39e0 [ 2783.891650][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2783.891650][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2783.891650][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2783.891650][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2783.891650][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2783.891650][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2783.891650][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2783.891650][ C0] do_SYSENTER_32+0x73/0x90 [ 2783.891650][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2783.891650][ C0] RIP: 0023:0xf7f72549 [ 2783.891650][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2783.891650][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2783.891650][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2783.891650][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2783.891650][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2783.891650][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2783.891650][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2783.891650][ C0] ---[ end trace f7326eee4ef537f0 ]--- [ 2784.167626][ C0] ------------[ cut here ]------------ [ 2784.167626][ C0] WARNING: CPU: 0 PID: 4912 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2784.167626][ C0] Modules linked in: [ 2784.167626][ C0] CPU: 0 PID: 4912 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2784.167626][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2784.167626][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2784.229440][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2784.249437][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2784.249437][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88804f0a5dc0 [ 2784.249437][ C0] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001 [ 2784.249437][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2784.249437][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2784.249437][ C0] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fc27b00 [ 2784.295564][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2784.295564][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2784.295564][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2784.322192][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2784.322192][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2784.322192][ C0] Call Trace: [ 2784.322192][ C0] [ 2784.349647][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2784.322192][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.359987][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2784.359987][ C0] __run_hrtimer+0x48b/0xd20 [ 2784.359987][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2784.359987][ C0] ? hrtimer_init+0x570/0x570 [ 2784.359987][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2784.359987][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2784.359987][ C0] [ 2784.359987][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2784.359987][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2784.359987][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2784.359987][ C0] RSP: 0018:ffff8881f19d71d0 EFLAGS: 00000246 [ 2784.359987][ C0] RAX: ffff8881f11d77a8 RBX: ffff8881f19d77a8 RCX: 00000001f11d77a8 [ 2784.359987][ C0] RDX: 0000000000000001 RSI: 00000000000003e0 RDI: ffff8881f19d77a8 [ 2784.359987][ C0] RBP: ffff8881f19d71e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2784.359987][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffffffffffffffff [ 2784.359987][ C0] R13: 0000000008049000 R14: 0000000000000001 R15: 0000000000000000 [ 2784.359987][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.359987][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2784.359987][ C0] zap_pte_range+0x1265/0x3cb0 [ 2784.359987][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.359987][ C0] unmap_page_range+0x1154/0x1440 [ 2784.502275][ C0] unmap_single_vma+0x56b/0x750 [ 2784.502275][ C0] unmap_vmas+0x3c8/0x500 [ 2784.502275][ C0] exit_mmap+0x5f1/0xb80 [ 2784.502275][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2784.502275][ C0] __mmput+0x1b7/0x630 [ 2784.502275][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2784.502275][ C0] mmput+0x8c/0xb0 [ 2784.502275][ C0] exit_mm+0x7a9/0x9a0 [ 2784.502275][ C0] do_exit+0xdbb/0x3c20 [ 2784.502275][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2784.502275][ C0] do_group_exit+0x1e1/0x3c0 [ 2784.502275][ C0] get_signal+0x2e5f/0x39e0 [ 2784.502275][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2784.502275][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2784.502275][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2784.502275][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2784.502275][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2784.502275][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2784.502275][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2784.592352][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2784.592352][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2784.592352][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2784.592352][ C0] do_SYSENTER_32+0x73/0x90 [ 2784.592352][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2784.592352][ C0] RIP: 0023:0xf7f72549 [ 2784.592352][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2784.592352][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2784.592352][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2784.592352][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2784.592352][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2784.592352][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2784.592352][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2784.592352][ C0] ---[ end trace f7326eee4ef537f1 ]--- [ 2784.684618][ C0] ------------[ cut here ]------------ [ 2784.690377][ C0] WARNING: CPU: 0 PID: 4912 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2784.696184][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2784.693159][ C0] Modules linked in: [ 2784.693159][ C0] CPU: 0 PID: 4912 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2784.693159][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2784.693159][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2784.693159][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2784.693159][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2784.693159][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88804f0a5dc0 [ 2784.693159][ C0] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2784.772237][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2784.772237][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2784.772237][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2784.802268][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2784.802268][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2784.802268][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2784.802268][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2784.832198][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2784.832198][ C0] Call Trace: [ 2784.832198][ C0] [ 2784.832198][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.832198][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2784.832198][ C0] __run_hrtimer+0x48b/0xd20 [ 2784.832198][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2784.832198][ C0] ? hrtimer_init+0x570/0x570 [ 2784.832198][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2784.832198][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2784.832198][ C0] [ 2784.832198][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2784.832198][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2784.832198][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2784.832198][ C0] RSP: 0018:ffff8881f19d71d0 EFLAGS: 00000246 [ 2784.832198][ C0] RAX: ffff8881f11d77a8 RBX: ffff8881f19d77a8 RCX: 00000001f11d77a8 [ 2784.832198][ C0] RDX: 0000000000000001 RSI: 00000000000003e0 RDI: ffff8881f19d77a8 [ 2784.832198][ C0] RBP: ffff8881f19d71e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2784.832198][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffffffffffffffff [ 2784.832198][ C0] R13: 0000000008049000 R14: 0000000000000001 R15: 0000000000000000 [ 2784.957029][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.967042][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2784.967042][ C0] zap_pte_range+0x1265/0x3cb0 [ 2784.967042][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2784.967042][ C0] unmap_page_range+0x1154/0x1440 [ 2784.967042][ C0] unmap_single_vma+0x56b/0x750 [ 2784.967042][ C0] unmap_vmas+0x3c8/0x500 [ 2784.967042][ C0] exit_mmap+0x5f1/0xb80 [ 2784.967042][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2784.967042][ C0] __mmput+0x1b7/0x630 [ 2784.967042][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2784.967042][ C0] mmput+0x8c/0xb0 [ 2784.967042][ C0] exit_mm+0x7a9/0x9a0 [ 2784.967042][ C0] do_exit+0xdbb/0x3c20 [ 2784.967042][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2784.967042][ C0] do_group_exit+0x1e1/0x3c0 [ 2784.967042][ C0] get_signal+0x2e5f/0x39e0 [ 2785.042368][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.042368][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.042368][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2785.042368][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2785.042368][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2785.042368][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.042368][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2785.042368][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2785.042368][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2785.042368][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2785.042368][ C0] do_SYSENTER_32+0x73/0x90 [ 2785.042368][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2785.042368][ C0] RIP: 0023:0xf7f72549 [ 2785.042368][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2785.042368][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2785.042368][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2785.042368][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2785.042368][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2785.042368][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2785.042368][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2785.042368][ C0] ---[ end trace f7326eee4ef537f2 ]--- [ 2785.042368][ C0] ------------[ cut here ]------------ [ 2785.042368][ C0] WARNING: CPU: 0 PID: 4912 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2785.042368][ C0] Modules linked in: [ 2785.042368][ C0] CPU: 0 PID: 4912 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2785.192250][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2785.192250][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2785.192250][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2785.222214][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2785.222214][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88804f0a5dc0 [ 2785.222214][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2785.252241][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2785.252241][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2785.252241][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2785.252241][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2785.252241][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2785.252241][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2785.252241][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2785.252241][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2785.252241][ C0] Call Trace: [ 2785.252241][ C0] [ 2785.252241][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.252241][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2785.252241][ C0] __run_hrtimer+0x48b/0xd20 [ 2785.252241][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2785.252241][ C0] ? hrtimer_init+0x570/0x570 [ 2785.252241][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2785.252241][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2785.252241][ C0] [ 2785.252241][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2785.252241][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2785.252241][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2785.252241][ C0] RSP: 0018:ffff8881f19d71d0 EFLAGS: 00000246 [ 2785.252241][ C0] RAX: ffff8881f11d77a8 RBX: ffff8881f19d77a8 RCX: 00000001f11d77a8 [ 2785.252241][ C0] RDX: 0000000000000001 RSI: 00000000000003e0 RDI: ffff8881f19d77a8 [ 2785.252241][ C0] RBP: ffff8881f19d71e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2785.252241][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffffffffffffffff [ 2785.252241][ C0] R13: 0000000008049000 R14: 0000000000000001 R15: 0000000000000000 [ 2785.252241][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.252241][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2785.252241][ C0] zap_pte_range+0x1265/0x3cb0 [ 2785.252241][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.252241][ C0] unmap_page_range+0x1154/0x1440 [ 2785.252241][ C0] unmap_single_vma+0x56b/0x750 [ 2785.252241][ C0] unmap_vmas+0x3c8/0x500 [ 2785.252241][ C0] exit_mmap+0x5f1/0xb80 [ 2785.252241][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2785.252241][ C0] __mmput+0x1b7/0x630 [ 2785.252241][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2785.252241][ C0] mmput+0x8c/0xb0 [ 2785.252241][ C0] exit_mm+0x7a9/0x9a0 [ 2785.252241][ C0] do_exit+0xdbb/0x3c20 [ 2785.252241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.252241][ C0] do_group_exit+0x1e1/0x3c0 [ 2785.252241][ C0] get_signal+0x2e5f/0x39e0 [ 2785.252241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.252241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.252241][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2785.252241][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2785.252241][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2785.252241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.252241][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2785.252241][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2785.252241][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2785.252241][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2785.252241][ C0] do_SYSENTER_32+0x73/0x90 [ 2785.252241][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2785.252241][ C0] RIP: 0023:0xf7f72549 [ 2785.252241][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2785.252241][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2785.252241][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2785.252241][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2785.252241][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2785.252241][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2785.252241][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2785.252241][ C0] ---[ end trace f7326eee4ef537f3 ]--- [ 2785.692425][ C0] ------------[ cut here ]------------ [ 2785.692425][ C0] WARNING: CPU: 0 PID: 7149 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2785.738882][ C0] Modules linked in: [ 2785.738882][ C0] CPU: 0 PID: 7149 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2785.738882][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2785.738882][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2785.738882][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2785.791241][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2785.791241][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881843cddc0 [ 2785.791241][ C0] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001 [ 2785.791241][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2785.791241][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2785.791241][ C0] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fc27b00 [ 2785.791241][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2785.791241][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2785.791241][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2785.791241][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2785.791241][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2785.791241][ C0] Call Trace: [ 2785.791241][ C0] [ 2785.791241][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.791241][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2785.791241][ C0] __run_hrtimer+0x48b/0xd20 [ 2785.791241][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2785.791241][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.791241][ C0] ? hrtimer_init+0x570/0x570 [ 2785.791241][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2785.791241][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2785.791241][ C0] [ 2785.791241][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2785.791241][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x4/0xb0 [ 2785.791241][ C0] Code: 37 aa 0f 00 75 10 48 8b 45 b8 c6 80 3c 1a 00 00 01 e9 63 fe ff ff 48 c7 c7 7f 3a 7a 90 31 c0 e8 eb e5 25 ff cc cc 55 48 89 e5 <41> 57 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 [ 2785.791241][ C0] RSP: 0018:ffff88819da7b080 EFLAGS: 00000246 [ 2785.791241][ C0] RAX: ffffffff822ecfeb RBX: 0000000000000177 RCX: ffff8881843cddc0 [ 2785.791241][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888040fe4bc0 [ 2785.791241][ C0] RBP: ffff88819da7b080 R08: ffffffff822eccf1 R09: ffff88813fffa000 [ 2785.791241][ C0] R10: 000000002ffba514 R11: 0000000000000000 R12: ffff8881843ce848 [ 2785.791241][ C0] R13: ffffea0003286290 R14: 0000000000000000 R15: ffffea00032862e0 [ 2785.791241][ C0] ? free_pages_and_swap_cache+0x281/0x650 [ 2785.791241][ C0] ? free_pages_and_swap_cache+0x57b/0x650 [ 2785.791241][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2785.791241][ C0] free_pages_and_swap_cache+0xf3/0x650 [ 2785.791241][ C0] tlb_flush_mmu+0x90c/0xa90 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] zap_pte_range+0x3aab/0x3cb0 [ 2785.791241][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2785.791241][ C0] unmap_page_range+0x1154/0x1440 [ 2785.791241][ C0] unmap_single_vma+0x56b/0x750 [ 2785.791241][ C0] unmap_vmas+0x3c8/0x500 [ 2785.791241][ C0] exit_mmap+0x5f1/0xb80 [ 2785.791241][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2785.791241][ C0] __mmput+0x1b7/0x630 [ 2785.791241][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2785.791241][ C0] mmput+0x8c/0xb0 [ 2785.791241][ C0] exit_mm+0x7a9/0x9a0 [ 2785.791241][ C0] do_exit+0xdbb/0x3c20 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] do_group_exit+0x1e1/0x3c0 [ 2785.791241][ C0] get_signal+0x2e5f/0x39e0 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] ? kmsan_internal_check_memory+0xb5/0x520 [ 2785.791241][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2785.791241][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2785.791241][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2785.791241][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2785.791241][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2785.791241][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2785.791241][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2785.791241][ C0] do_SYSENTER_32+0x73/0x90 [ 2785.791241][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2785.791241][ C0] RIP: 0023:0xf7f72549 [ 2785.791241][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2785.791241][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2785.791241][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2785.791241][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2785.791241][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2785.791241][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2785.791241][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2785.791241][ C0] ---[ end trace f7326eee4ef537f4 ]--- [ 2786.241754][ C0] ------------[ cut here ]------------ [ 2786.247489][ C0] WARNING: CPU: 0 PID: 7149 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2786.250271][ C0] Modules linked in: [ 2786.250271][ C0] CPU: 0 PID: 7149 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2786.250271][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2786.250271][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2786.250271][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2786.250271][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2786.250271][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881843cddc0 [ 2786.250271][ C0] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2786.250271][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2786.250271][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2786.250271][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2786.250271][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2786.250271][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2786.250271][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2786.250271][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2786.250271][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2786.250271][ C0] Call Trace: [ 2786.250271][ C0] [ 2786.250271][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2786.250271][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2786.250271][ C0] __run_hrtimer+0x48b/0xd20 [ 2786.250271][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2786.250271][ C0] ? hrtimer_init+0x570/0x570 [ 2786.250271][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2786.250271][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2786.250271][ C0] [ 2786.250271][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2786.250271][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x4/0xb0 [ 2786.250271][ C0] Code: 37 aa 0f 00 75 10 48 8b 45 b8 c6 80 3c 1a 00 00 01 e9 63 fe ff ff 48 c7 c7 7f 3a 7a 90 31 c0 e8 eb e5 25 ff cc cc 55 48 89 e5 <41> 57 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 [ 2786.250271][ C0] RSP: 0018:ffff88819da7b080 EFLAGS: 00000246 [ 2786.250271][ C0] RAX: ffffffff822ecfeb RBX: 0000000000000177 RCX: ffff8881843cddc0 [ 2786.250271][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888040fe4bc0 [ 2786.250271][ C0] RBP: ffff88819da7b080 R08: ffffffff822eccf1 R09: ffff88813fffa000 [ 2786.250271][ C0] R10: 000000002ffba514 R11: 0000000000000000 R12: ffff8881843ce848 [ 2786.250271][ C0] R13: ffffea0003286290 R14: 0000000000000000 R15: ffffea00032862e0 [ 2786.250271][ C0] ? free_pages_and_swap_cache+0x281/0x650 [ 2786.250271][ C0] ? free_pages_and_swap_cache+0x57b/0x650 [ 2786.250271][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2786.250271][ C0] free_pages_and_swap_cache+0xf3/0x650 [ 2786.250271][ C0] tlb_flush_mmu+0x90c/0xa90 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] zap_pte_range+0x3aab/0x3cb0 [ 2786.250271][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2786.250271][ C0] unmap_page_range+0x1154/0x1440 [ 2786.250271][ C0] unmap_single_vma+0x56b/0x750 [ 2786.250271][ C0] unmap_vmas+0x3c8/0x500 [ 2786.250271][ C0] exit_mmap+0x5f1/0xb80 [ 2786.250271][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2786.250271][ C0] __mmput+0x1b7/0x630 [ 2786.250271][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2786.250271][ C0] mmput+0x8c/0xb0 [ 2786.250271][ C0] exit_mm+0x7a9/0x9a0 [ 2786.250271][ C0] do_exit+0xdbb/0x3c20 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] do_group_exit+0x1e1/0x3c0 [ 2786.250271][ C0] get_signal+0x2e5f/0x39e0 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] ? kmsan_internal_check_memory+0xb5/0x520 [ 2786.250271][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2786.250271][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2786.250271][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.250271][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2786.250271][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2786.250271][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2786.250271][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2786.250271][ C0] do_SYSENTER_32+0x73/0x90 [ 2786.250271][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2786.250271][ C0] RIP: 0023:0xf7f72549 [ 2786.250271][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2786.250271][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2786.250271][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2786.250271][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2786.250271][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2786.250271][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2786.250271][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2786.250271][ C0] ---[ end trace f7326eee4ef537f5 ]--- [ 2786.747475][ C0] ------------[ cut here ]------------ [ 2786.753214][ C0] WARNING: CPU: 0 PID: 7149 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2786.755960][ C0] Modules linked in: [ 2786.755960][ C0] CPU: 0 PID: 7149 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2786.755960][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2786.755960][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2786.755960][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2786.755960][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2786.755960][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881843cddc0 [ 2786.755960][ C0] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2786.755960][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2786.755960][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2786.755960][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2786.755960][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2786.755960][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2786.755960][ C0] CR2: 00007fc931017028 CR3: 000000019e40a000 CR4: 00000000001526f0 [ 2786.755960][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2786.755960][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2786.755960][ C0] Call Trace: [ 2786.755960][ C0] [ 2786.755960][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2786.755960][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2786.755960][ C0] __run_hrtimer+0x48b/0xd20 [ 2786.755960][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2786.755960][ C0] ? hrtimer_init+0x570/0x570 [ 2786.755960][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2786.755960][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2786.755960][ C0] [ 2786.755960][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2786.755960][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x4/0xb0 [ 2786.755960][ C0] Code: 37 aa 0f 00 75 10 48 8b 45 b8 c6 80 3c 1a 00 00 01 e9 63 fe ff ff 48 c7 c7 7f 3a 7a 90 31 c0 e8 eb e5 25 ff cc cc 55 48 89 e5 <41> 57 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 [ 2786.755960][ C0] RSP: 0018:ffff88819da7b080 EFLAGS: 00000246 [ 2786.755960][ C0] RAX: ffffffff822ecfeb RBX: 0000000000000177 RCX: ffff8881843cddc0 [ 2786.755960][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888040fe4bc0 [ 2786.755960][ C0] RBP: ffff88819da7b080 R08: ffffffff822eccf1 R09: ffff88813fffa000 [ 2786.755960][ C0] R10: 000000002ffba514 R11: 0000000000000000 R12: ffff8881843ce848 [ 2786.755960][ C0] R13: ffffea0003286290 R14: 0000000000000000 R15: ffffea00032862e0 [ 2786.755960][ C0] ? free_pages_and_swap_cache+0x281/0x650 [ 2786.755960][ C0] ? free_pages_and_swap_cache+0x57b/0x650 [ 2786.755960][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2786.755960][ C0] free_pages_and_swap_cache+0xf3/0x650 [ 2786.755960][ C0] tlb_flush_mmu+0x90c/0xa90 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] zap_pte_range+0x3aab/0x3cb0 [ 2786.755960][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2786.755960][ C0] unmap_page_range+0x1154/0x1440 [ 2786.755960][ C0] unmap_single_vma+0x56b/0x750 [ 2786.755960][ C0] unmap_vmas+0x3c8/0x500 [ 2786.755960][ C0] exit_mmap+0x5f1/0xb80 [ 2786.755960][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2786.755960][ C0] __mmput+0x1b7/0x630 [ 2786.755960][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2786.755960][ C0] mmput+0x8c/0xb0 [ 2786.755960][ C0] exit_mm+0x7a9/0x9a0 [ 2786.755960][ C0] do_exit+0xdbb/0x3c20 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] do_group_exit+0x1e1/0x3c0 [ 2786.755960][ C0] get_signal+0x2e5f/0x39e0 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] ? kmsan_internal_check_memory+0xb5/0x520 [ 2786.755960][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2786.755960][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2786.755960][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2786.755960][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2786.755960][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2786.755960][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2786.755960][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2786.755960][ C0] do_SYSENTER_32+0x73/0x90 [ 2786.755960][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2786.755960][ C0] RIP: 0023:0xf7f72549 [ 2786.755960][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2786.755960][ C0] RSP: 002b:00000000f556c67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2786.755960][ C0] RAX: fffffffffffffe00 RBX: 000000000819afc8 RCX: 0000000000000080 [ 2786.755960][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819afcc [ 2786.755960][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2786.755960][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2786.755960][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2786.755960][ C0] ---[ end trace f7326eee4ef537f6 ]--- [ 2787.350489][ C0] ------------[ cut here ]------------ [ 2787.356235][ C0] WARNING: CPU: 0 PID: 24844 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2787.358992][ C0] Modules linked in: [ 2787.358992][ C0] CPU: 0 PID: 24844 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2787.358992][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2787.358992][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2787.358992][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2787.358992][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2787.358992][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88819c1f8000 [ 2787.358992][ C0] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001 [ 2787.358992][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2787.358992][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2787.442676][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2787.358992][ C0] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fc27b00 [ 2787.358992][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2787.358992][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2787.358992][ C0] CR2: 00000000090d52c5 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2787.358992][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2787.358992][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2787.358992][ C0] Call Trace: [ 2787.358992][ C0] [ 2787.358992][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.358992][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2787.358992][ C0] __run_hrtimer+0x48b/0xd20 [ 2787.358992][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2787.358992][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.358992][ C0] ? hrtimer_init+0x570/0x570 [ 2787.358992][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2787.358992][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2787.358992][ C0] [ 2787.358992][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2787.358992][ C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x95/0xa0 [ 2787.358992][ C0] Code: 95 01 00 00 00 48 c7 04 f9 05 00 00 00 48 89 54 f9 08 48 c1 e0 03 48 83 c8 18 48 89 34 01 4c 89 44 f9 18 49 ff c2 4c 89 11 5d 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 4c 8b 45 08 65 48 8b [ 2787.358992][ C0] RSP: 0018:ffff8881fa817228 EFLAGS: 00000293 [ 2787.358992][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88819c1f802e [ 2787.358992][ C0] RDX: ffff88819c1f8000 RSI: 0000000000000005 RDI: 00000000ffffffff [ 2787.358992][ C0] RBP: ffff8881fa817430 R08: ffffffff821f3aa5 R09: ffff88813fffa001 [ 2787.358992][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881f9eafac0 [ 2787.358992][ C0] R13: ffff88819c1f8a88 R14: 0000000000000000 R15: 0000000000000005 [ 2787.358992][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2787.358992][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2787.358992][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.358992][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.358992][ C0] unmap_page_range+0x1154/0x1440 [ 2787.358992][ C0] unmap_single_vma+0x56b/0x750 [ 2787.358992][ C0] unmap_vmas+0x3c8/0x500 [ 2787.358992][ C0] exit_mmap+0x5f1/0xb80 [ 2787.358992][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2787.358992][ C0] __mmput+0x1b7/0x630 [ 2787.358992][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2787.358992][ C0] mmput+0x8c/0xb0 [ 2787.358992][ C0] exit_mm+0x7a9/0x9a0 [ 2787.358992][ C0] do_exit+0xdbb/0x3c20 [ 2787.358992][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.358992][ C0] do_group_exit+0x1e1/0x3c0 [ 2787.358992][ C0] get_signal+0x2e5f/0x39e0 [ 2787.358992][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2787.358992][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2787.358992][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2787.358992][ C0] ? __schedule+0x54b/0x5c0 [ 2787.358992][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.358992][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.358992][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.358992][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2787.358992][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2787.358992][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2787.358992][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2787.358992][ C0] do_SYSENTER_32+0x73/0x90 [ 2787.358992][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2787.358992][ C0] RIP: 0023:0xf7f72549 [ 2787.358992][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2787.358992][ C0] RSP: 002b:00000000f556c68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2787.358992][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2787.358992][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2787.358992][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2787.358992][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2787.358992][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2787.358992][ C0] ---[ end trace f7326eee4ef537f7 ]--- [ 2787.840526][ C0] ------------[ cut here ]------------ [ 2787.846254][ C0] WARNING: CPU: 0 PID: 24844 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2787.849038][ C0] Modules linked in: [ 2787.849038][ C0] CPU: 0 PID: 24844 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2787.849038][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2787.849038][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2787.849038][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2787.849038][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2787.849038][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88819c1f8000 [ 2787.849038][ C0] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2787.849038][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2787.849038][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2787.849038][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2787.849038][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2787.849038][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2787.849038][ C0] CR2: 00000000090d52c5 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2787.849038][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2787.849038][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2787.849038][ C0] Call Trace: [ 2787.849038][ C0] [ 2787.849038][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.849038][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2787.849038][ C0] __run_hrtimer+0x48b/0xd20 [ 2787.849038][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2787.849038][ C0] ? hrtimer_init+0x570/0x570 [ 2787.849038][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2787.849038][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2787.849038][ C0] [ 2787.849038][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2787.849038][ C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x95/0xa0 [ 2787.849038][ C0] Code: 95 01 00 00 00 48 c7 04 f9 05 00 00 00 48 89 54 f9 08 48 c1 e0 03 48 83 c8 18 48 89 34 01 4c 89 44 f9 18 49 ff c2 4c 89 11 5d 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 4c 8b 45 08 65 48 8b [ 2787.849038][ C0] RSP: 0018:ffff8881fa817228 EFLAGS: 00000293 [ 2787.849038][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88819c1f802e [ 2787.849038][ C0] RDX: ffff88819c1f8000 RSI: 0000000000000005 RDI: 00000000ffffffff [ 2787.849038][ C0] RBP: ffff8881fa817430 R08: ffffffff821f3aa5 R09: ffff88813fffa001 [ 2787.849038][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881f9eafac0 [ 2787.849038][ C0] R13: ffff88819c1f8a88 R14: 0000000000000000 R15: 0000000000000005 [ 2787.849038][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2787.849038][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2787.849038][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.849038][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.849038][ C0] unmap_page_range+0x1154/0x1440 [ 2787.849038][ C0] unmap_single_vma+0x56b/0x750 [ 2787.849038][ C0] unmap_vmas+0x3c8/0x500 [ 2787.849038][ C0] exit_mmap+0x5f1/0xb80 [ 2787.849038][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2787.849038][ C0] __mmput+0x1b7/0x630 [ 2787.849038][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2787.849038][ C0] mmput+0x8c/0xb0 [ 2787.849038][ C0] exit_mm+0x7a9/0x9a0 [ 2787.849038][ C0] do_exit+0xdbb/0x3c20 [ 2787.849038][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.849038][ C0] do_group_exit+0x1e1/0x3c0 [ 2787.849038][ C0] get_signal+0x2e5f/0x39e0 [ 2787.849038][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2787.849038][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2787.849038][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2787.849038][ C0] ? __schedule+0x54b/0x5c0 [ 2787.849038][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.849038][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2787.849038][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2787.849038][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2787.849038][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2787.849038][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2787.849038][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2787.849038][ C0] do_SYSENTER_32+0x73/0x90 [ 2787.849038][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2787.849038][ C0] RIP: 0023:0xf7f72549 [ 2787.849038][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2787.849038][ C0] RSP: 002b:00000000f556c68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2787.849038][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2787.849038][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2787.849038][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2787.849038][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2787.849038][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2787.849038][ C0] ---[ end trace f7326eee4ef537f8 ]--- [ 2788.321218][ C0] ------------[ cut here ]------------ [ 2788.327161][ C0] WARNING: CPU: 0 PID: 24844 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2788.329756][ C0] Modules linked in: [ 2788.329756][ C0] CPU: 0 PID: 24844 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2788.329756][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2788.329756][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2788.329756][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2788.329756][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2788.329756][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88819c1f8000 [ 2788.329756][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2788.329756][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2788.329756][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2788.329756][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2788.329756][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2788.329756][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2788.329756][ C0] CR2: 00000000090d52c5 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2788.329756][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2788.329756][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2788.329756][ C0] Call Trace: [ 2788.329756][ C0] [ 2788.329756][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.329756][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2788.329756][ C0] __run_hrtimer+0x48b/0xd20 [ 2788.329756][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2788.329756][ C0] ? hrtimer_init+0x570/0x570 [ 2788.329756][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2788.329756][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2788.329756][ C0] [ 2788.329756][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2788.329756][ C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x95/0xa0 [ 2788.329756][ C0] Code: 95 01 00 00 00 48 c7 04 f9 05 00 00 00 48 89 54 f9 08 48 c1 e0 03 48 83 c8 18 48 89 34 01 4c 89 44 f9 18 49 ff c2 4c 89 11 5d 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 4c 8b 45 08 65 48 8b [ 2788.329756][ C0] RSP: 0018:ffff8881fa817228 EFLAGS: 00000293 [ 2788.329756][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88819c1f802e [ 2788.329756][ C0] RDX: ffff88819c1f8000 RSI: 0000000000000005 RDI: 00000000ffffffff [ 2788.329756][ C0] RBP: ffff8881fa817430 R08: ffffffff821f3aa5 R09: ffff88813fffa001 [ 2788.329756][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: ffff8881f9eafac0 [ 2788.329756][ C0] R13: ffff88819c1f8a88 R14: 0000000000000000 R15: 0000000000000005 [ 2788.329756][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2788.329756][ C0] ? zap_pte_range+0x19f5/0x3cb0 [ 2788.329756][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2788.329756][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.329756][ C0] unmap_page_range+0x1154/0x1440 [ 2788.329756][ C0] unmap_single_vma+0x56b/0x750 [ 2788.329756][ C0] unmap_vmas+0x3c8/0x500 [ 2788.329756][ C0] exit_mmap+0x5f1/0xb80 [ 2788.329756][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2788.329756][ C0] __mmput+0x1b7/0x630 [ 2788.329756][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2788.329756][ C0] mmput+0x8c/0xb0 [ 2788.329756][ C0] exit_mm+0x7a9/0x9a0 [ 2788.329756][ C0] do_exit+0xdbb/0x3c20 [ 2788.329756][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2788.329756][ C0] do_group_exit+0x1e1/0x3c0 [ 2788.329756][ C0] get_signal+0x2e5f/0x39e0 [ 2788.329756][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2788.329756][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2788.329756][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2788.329756][ C0] ? __schedule+0x54b/0x5c0 [ 2788.329756][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2788.329756][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.329756][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2788.329756][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2788.329756][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2788.329756][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2788.329756][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2788.329756][ C0] do_SYSENTER_32+0x73/0x90 [ 2788.329756][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2788.329756][ C0] RIP: 0023:0xf7f72549 [ 2788.329756][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2788.329756][ C0] RSP: 002b:00000000f556c68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2788.329756][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2788.329756][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2788.329756][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2788.329756][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2788.329756][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2788.329756][ C0] ---[ end trace f7326eee4ef537f9 ]--- [ 2788.895046][ C0] ------------[ cut here ]------------ [ 2788.900774][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2788.903559][ C0] Modules linked in: [ 2788.903559][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2788.903559][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2788.903559][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2788.903559][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2788.903559][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2788.903559][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2788.903559][ C0] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001 [ 2788.903559][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2788.903559][ C0] R10: 00000000b56c2fd0 R11: 00000289579b1fcc R12: 0000000000000000 [ 2788.903559][ C0] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fc27b00 [ 2788.903559][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2788.903559][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2788.903559][ C0] CR2: 000000002ce20000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2788.903559][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2788.903559][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2788.903559][ C0] Call Trace: [ 2788.903559][ C0] [ 2788.903559][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.903559][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2788.903559][ C0] __run_hrtimer+0x48b/0xd20 [ 2788.903559][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2788.903559][ C0] ? hrtimer_init+0x570/0x570 [ 2788.903559][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2788.903559][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2788.903559][ C0] [ 2788.903559][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2788.903559][ C0] RIP: 0010:metadata_is_contiguous+0x0/0x1b0 [ 2788.903559][ C0] Code: c7 12 17 7c 90 48 c7 c6 5b 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4a 0f 26 ff 0f 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 [ 2788.903559][ C0] RSP: 0000:ffff88810604b0d8 EFLAGS: 00000246 [ 2788.903559][ C0] RAX: ffff8881024f6848 RBX: 0000000000000008 RCX: 00000001ced8a5d0 [ 2788.903559][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d08c5a88 [ 2788.903559][ C0] RBP: ffff88810604b0f8 R08: ffffffff8218f478 R09: ffff88813fffa000 [ 2788.903559][ C0] R10: 0000000070f628b2 R11: 00000289565221de R12: ffff8881cf18a5d0 [ 2788.903559][ C0] R13: ffff8881d08c5a80 R14: ffff8881d08c5a88 R15: 0000000000000000 [ 2788.903559][ C0] ? vma_interval_tree_iter_next+0x198/0x810 [ 2788.903559][ C0] ? kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2788.903559][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2788.903559][ C0] vma_interval_tree_iter_next+0x1cc/0x810 [ 2788.903559][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2788.903559][ C0] rmap_walk_file+0xa3b/0x1150 [ 2788.903559][ C0] try_to_unmap+0x6f7/0xa50 [ 2788.903559][ C0] ? try_to_unmap+0xa50/0xa50 [ 2788.903559][ C0] ? try_to_unmap_one+0x4a90/0x4a90 [ 2788.903559][ C0] ? page_get_anon_vma+0x390/0x390 [ 2788.903559][ C0] shrink_page_list+0x3046/0x7840 [ 2788.903559][ C0] shrink_inactive_list+0x83f/0x14f0 [ 2788.903559][ C0] shrink_lruvec+0x738/0x1480 [ 2788.903559][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2788.903559][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.903559][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2788.903559][ C0] shrink_node+0x1a02/0x3400 [ 2788.903559][ C0] balance_pgdat+0x146e/0x2570 [ 2788.903559][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2788.903559][ C0] kswapd+0x50b/0x8a0 [ 2788.903559][ C0] ? __kthread_parkme+0x22b/0x250 [ 2788.903559][ C0] kthread+0x521/0x560 [ 2788.903559][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2788.903559][ C0] ? kthread_blkcg+0x110/0x110 [ 2788.903559][ C0] ret_from_fork+0x1f/0x30 [ 2788.903559][ C0] ---[ end trace f7326eee4ef537fa ]--- [ 2789.290735][ C0] ------------[ cut here ]------------ [ 2789.296442][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2789.299265][ C0] Modules linked in: [ 2789.299265][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2789.299265][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2789.299265][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2789.299265][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2789.299265][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2789.299265][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2789.299265][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2789.299265][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2789.299265][ C0] R10: 00000000b56c2fd0 R11: 000002896f311f76 R12: 0000000000000000 [ 2789.299265][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2789.299265][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2789.299265][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2789.299265][ C0] CR2: 000000002ce20000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2789.299265][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2789.299265][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2789.299265][ C0] Call Trace: [ 2789.299265][ C0] [ 2789.299265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.299265][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2789.299265][ C0] __run_hrtimer+0x48b/0xd20 [ 2789.299265][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2789.299265][ C0] ? hrtimer_init+0x570/0x570 [ 2789.299265][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2789.299265][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2789.299265][ C0] [ 2789.299265][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2789.299265][ C0] RIP: 0010:metadata_is_contiguous+0x0/0x1b0 [ 2789.299265][ C0] Code: c7 12 17 7c 90 48 c7 c6 5b 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4a 0f 26 ff 0f 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 [ 2789.299265][ C0] RSP: 0000:ffff88810604b0d8 EFLAGS: 00000246 [ 2789.299265][ C0] RAX: ffff8881024f6848 RBX: 0000000000000008 RCX: 00000001ced8a5d0 [ 2789.299265][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d08c5a88 [ 2789.299265][ C0] RBP: ffff88810604b0f8 R08: ffffffff8218f478 R09: ffff88813fffa000 [ 2789.299265][ C0] R10: 0000000070f628b2 R11: 00000289565221de R12: ffff8881cf18a5d0 [ 2789.299265][ C0] R13: ffff8881d08c5a80 R14: ffff8881d08c5a88 R15: 0000000000000000 [ 2789.299265][ C0] ? vma_interval_tree_iter_next+0x198/0x810 [ 2789.299265][ C0] ? kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2789.299265][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2789.299265][ C0] vma_interval_tree_iter_next+0x1cc/0x810 [ 2789.299265][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2789.299265][ C0] rmap_walk_file+0xa3b/0x1150 [ 2789.299265][ C0] try_to_unmap+0x6f7/0xa50 [ 2789.299265][ C0] ? try_to_unmap+0xa50/0xa50 [ 2789.299265][ C0] ? try_to_unmap_one+0x4a90/0x4a90 [ 2789.299265][ C0] ? page_get_anon_vma+0x390/0x390 [ 2789.299265][ C0] shrink_page_list+0x3046/0x7840 [ 2789.299265][ C0] shrink_inactive_list+0x83f/0x14f0 [ 2789.299265][ C0] shrink_lruvec+0x738/0x1480 [ 2789.299265][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2789.299265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.299265][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2789.299265][ C0] shrink_node+0x1a02/0x3400 [ 2789.299265][ C0] balance_pgdat+0x146e/0x2570 [ 2789.299265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.299265][ C0] kswapd+0x50b/0x8a0 [ 2789.299265][ C0] ? __kthread_parkme+0x22b/0x250 [ 2789.299265][ C0] kthread+0x521/0x560 [ 2789.299265][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2789.299265][ C0] ? kthread_blkcg+0x110/0x110 [ 2789.299265][ C0] ret_from_fork+0x1f/0x30 [ 2789.299265][ C0] ---[ end trace f7326eee4ef537fb ]--- [ 2789.688893][ C0] ------------[ cut here ]------------ [ 2789.694616][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2789.697420][ C0] Modules linked in: [ 2789.697420][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2789.697420][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2789.697420][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2789.697420][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2789.697420][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2789.697420][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2789.697420][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2789.697420][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2789.697420][ C0] R10: 00000000b56c2fd0 R11: 0000028986ec7c15 R12: 0000000000000000 [ 2789.697420][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2789.697420][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2789.697420][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2789.697420][ C0] CR2: 000000002ce20000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2789.697420][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2789.697420][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2789.697420][ C0] Call Trace: [ 2789.697420][ C0] [ 2789.697420][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.697420][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2789.697420][ C0] __run_hrtimer+0x48b/0xd20 [ 2789.697420][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2789.697420][ C0] ? hrtimer_init+0x570/0x570 [ 2789.697420][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2789.697420][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2789.697420][ C0] [ 2789.697420][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2789.697420][ C0] RIP: 0010:metadata_is_contiguous+0x0/0x1b0 [ 2789.697420][ C0] Code: c7 12 17 7c 90 48 c7 c6 5b 17 7c 90 48 89 da 4c 89 f9 31 c0 e8 4a 0f 26 ff 0f 0b 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <55> 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 [ 2789.697420][ C0] RSP: 0000:ffff88810604b0d8 EFLAGS: 00000246 [ 2789.697420][ C0] RAX: ffff8881024f6848 RBX: 0000000000000008 RCX: 00000001ced8a5d0 [ 2789.697420][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d08c5a88 [ 2789.697420][ C0] RBP: ffff88810604b0f8 R08: ffffffff8218f478 R09: ffff88813fffa000 [ 2789.697420][ C0] R10: 0000000070f628b2 R11: 00000289565221de R12: ffff8881cf18a5d0 [ 2789.697420][ C0] R13: ffff8881d08c5a80 R14: ffff8881d08c5a88 R15: 0000000000000000 [ 2789.697420][ C0] ? vma_interval_tree_iter_next+0x198/0x810 [ 2789.697420][ C0] ? kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2789.697420][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2789.697420][ C0] vma_interval_tree_iter_next+0x1cc/0x810 [ 2789.697420][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2789.697420][ C0] rmap_walk_file+0xa3b/0x1150 [ 2789.697420][ C0] try_to_unmap+0x6f7/0xa50 [ 2789.697420][ C0] ? try_to_unmap+0xa50/0xa50 [ 2789.697420][ C0] ? try_to_unmap_one+0x4a90/0x4a90 [ 2789.697420][ C0] ? page_get_anon_vma+0x390/0x390 [ 2789.697420][ C0] shrink_page_list+0x3046/0x7840 [ 2789.697420][ C0] shrink_inactive_list+0x83f/0x14f0 [ 2789.697420][ C0] shrink_lruvec+0x738/0x1480 [ 2789.697420][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2789.697420][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.697420][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2789.697420][ C0] shrink_node+0x1a02/0x3400 [ 2789.697420][ C0] balance_pgdat+0x146e/0x2570 [ 2789.697420][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2789.697420][ C0] kswapd+0x50b/0x8a0 [ 2789.697420][ C0] ? __kthread_parkme+0x22b/0x250 [ 2789.697420][ C0] kthread+0x521/0x560 [ 2789.697420][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2789.697420][ C0] ? kthread_blkcg+0x110/0x110 [ 2789.697420][ C0] ret_from_fork+0x1f/0x30 [ 2789.697420][ C0] ---[ end trace f7326eee4ef537fc ]--- [ 2790.096122][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2790.183472][ C0] ------------[ cut here ]------------ [ 2790.189228][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2790.191949][ C0] Modules linked in: [ 2790.201641][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2790.201641][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2790.201641][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2790.201641][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2790.201641][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2790.201641][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2790.201641][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2790.201641][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2790.201641][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2790.201641][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2790.201641][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2790.201641][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2790.300603][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2790.300603][ C0] CR2: 0000000008171d4c CR3: 0000000015702000 CR4: 00000000001526f0 [ 2790.300603][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2790.300603][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2790.300603][ C0] Call Trace: [ 2790.300603][ C0] [ 2790.300603][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.300603][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2790.300603][ C0] __run_hrtimer+0x48b/0xd20 [ 2790.300603][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2790.300603][ C0] ? hrtimer_init+0x570/0x570 [ 2790.300603][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2790.300603][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2790.300603][ C0] [ 2790.300603][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2790.300603][ C0] RIP: 0010:kmsan_get_metadata+0x136/0x180 [ 2790.300603][ C0] Code: 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 <48> 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 48 [ 2790.391993][ C0] RSP: 0018:ffff8881d2093220 EFLAGS: 00000202 [ 2790.391993][ C0] RAX: ffffea000918edf0 RBX: 00000000000008e8 RCX: ffffea000917adf0 [ 2790.391993][ C0] RDX: 00000001d20938e8 RSI: 00000000000003a0 RDI: ffff8881d20938e8 [ 2790.391993][ C0] RBP: ffff8881d2093238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2790.391993][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003bb976671e8cc3 [ 2790.442978][ C0] R13: 00402fc901aada67 R14: 0000000000000001 R15: 0000000000000000 [ 2790.442978][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.442978][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2790.442978][ C0] curve25519_generic+0xe66f/0x23dc0 [ 2790.442978][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2790.442978][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2790.442978][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2790.442978][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2790.442978][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.442978][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.442978][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.442978][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2790.442978][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.442978][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2790.522864][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2790.442978][ C0] process_one_work+0x1219/0x1fe0 [ 2790.442978][ C0] worker_thread+0x10ec/0x2340 [ 2790.442978][ C0] kthread+0x521/0x560 [ 2790.442978][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2790.442978][ C0] ? kthread_blkcg+0x110/0x110 [ 2790.442978][ C0] ret_from_fork+0x1f/0x30 [ 2790.442978][ C0] ---[ end trace f7326eee4ef537fd ]--- [ 2790.569111][ C0] ------------[ cut here ]------------ [ 2790.571995][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2790.575137][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2790.575320][ C0] Modules linked in: [ 2790.575378][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2790.575495][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2790.575579][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2790.610586][ T4778] EXT4-fs error (device sda1): ext4_lookup:1707: inode #915: comm systemd-timesyn: iget: checksum invalid [ 2790.592725][ C0] [ 2790.592725][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2790.592725][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2790.592725][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2790.592725][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2790.592725][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2790.592725][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2790.592725][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2790.592725][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2790.592725][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2790.592725][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2790.592725][ C0] CR2: 0000000008171d4c CR3: 0000000015702000 CR4: 00000000001526f0 [ 2790.592725][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2790.592725][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2790.592725][ C0] Call Trace: [ 2790.592725][ C0] [ 2790.592725][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.592725][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2790.592725][ C0] __run_hrtimer+0x48b/0xd20 [ 2790.592725][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2790.592725][ C0] ? hrtimer_init+0x570/0x570 [ 2790.592725][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2790.592725][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2790.592725][ C0] [ 2790.592725][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2790.592725][ C0] RIP: 0010:kmsan_get_metadata+0x136/0x180 [ 2790.592725][ C0] Code: 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 <48> 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 48 [ 2790.592725][ C0] RSP: 0018:ffff8881d2093220 EFLAGS: 00000202 [ 2790.592725][ C0] RAX: ffffea000918edf0 RBX: 00000000000008e8 RCX: ffffea000917adf0 [ 2790.592725][ C0] RDX: 00000001d20938e8 RSI: 00000000000003a0 RDI: ffff8881d20938e8 [ 2790.592725][ C0] RBP: ffff8881d2093238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2790.592725][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003bb976671e8cc3 [ 2790.592725][ C0] R13: 00402fc901aada67 R14: 0000000000000001 R15: 0000000000000000 [ 2790.592725][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.592725][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2790.592725][ C0] curve25519_generic+0xe66f/0x23dc0 [ 2790.592725][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2790.592725][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2790.592725][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2790.592725][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2790.592725][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.592725][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.592725][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.592725][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2790.592725][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2790.592725][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2790.592725][ C0] process_one_work+0x1219/0x1fe0 [ 2790.592725][ C0] worker_thread+0x10ec/0x2340 [ 2790.592725][ C0] kthread+0x521/0x560 [ 2790.592725][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2790.592725][ C0] ? kthread_blkcg+0x110/0x110 [ 2790.592725][ C0] ret_from_fork+0x1f/0x30 [ 2790.592725][ C0] ---[ end trace f7326eee4ef537fe ]--- [ 2790.592725][ C0] ------------[ cut here ]------------ [ 2790.592725][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2790.592725][ C0] Modules linked in: [ 2790.592725][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2790.592725][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2790.592725][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2790.592725][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2790.592725][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2790.592725][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2790.592725][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2790.592725][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2790.592725][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2790.592725][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2790.592725][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2790.592725][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2790.592725][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2790.592725][ C0] CR2: 0000000008171d4c CR3: 0000000015702000 CR4: 00000000001526f0 [ 2790.592725][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2790.592725][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2790.592725][ C0] Call Trace: [ 2790.592725][ C0] [ 2790.592725][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2790.592725][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2790.592725][ C0] __run_hrtimer+0x48b/0xd20 [ 2790.592725][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2790.592725][ C0] ? hrtimer_init+0x570/0x570 [ 2791.146678][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2791.146678][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2791.146678][ C0] [ 2791.146678][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2791.146678][ C0] RIP: 0010:kmsan_get_metadata+0x136/0x180 [ 2791.146678][ C0] Code: 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 <48> 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 48 [ 2791.146678][ C0] RSP: 0018:ffff8881d2093220 EFLAGS: 00000202 [ 2791.146678][ C0] RAX: ffffea000918edf0 RBX: 00000000000008e8 RCX: ffffea000917adf0 [ 2791.198201][ C0] RDX: 00000001d20938e8 RSI: 00000000000003a0 RDI: ffff8881d20938e8 [ 2791.198201][ C0] RBP: ffff8881d2093238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2791.198201][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003bb976671e8cc3 [ 2791.198201][ C0] R13: 00402fc901aada67 R14: 0000000000000001 R15: 0000000000000000 [ 2791.198201][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.198201][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2791.198201][ C0] curve25519_generic+0xe66f/0x23dc0 [ 2791.198201][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2791.198201][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2791.198201][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2791.198201][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2791.198201][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.198201][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.198201][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.198201][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2791.198201][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.198201][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2791.198201][ C0] process_one_work+0x1219/0x1fe0 [ 2791.198201][ C0] worker_thread+0x10ec/0x2340 [ 2791.198201][ C0] kthread+0x521/0x560 [ 2791.198201][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2791.198201][ C0] ? kthread_blkcg+0x110/0x110 [ 2791.198201][ C0] ret_from_fork+0x1f/0x30 [ 2791.198201][ C0] ---[ end trace f7326eee4ef537ff ]--- [ 2791.373705][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2791.425361][ C0] ------------[ cut here ]------------ [ 2791.425361][ C0] WARNING: CPU: 0 PID: 24868 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2791.425361][ C0] Modules linked in: [ 2791.425361][ C0] CPU: 0 PID: 24868 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2791.467395][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2791.467395][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2791.467395][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2791.467395][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2791.467395][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b8be80 [ 2791.467395][ C0] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2791.467395][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2791.467395][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2791.467395][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2791.467395][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2791.467395][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2791.467395][ C0] CR2: 00000000085a0004 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2791.467395][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2791.467395][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2791.467395][ C0] Call Trace: [ 2791.467395][ C0] [ 2791.467395][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.467395][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2791.467395][ C0] __run_hrtimer+0x48b/0xd20 [ 2791.467395][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2791.467395][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.467395][ C0] ? hrtimer_init+0x570/0x570 [ 2791.467395][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2791.467395][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2791.467395][ C0] [ 2791.467395][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2791.467395][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2791.467395][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2791.467395][ C0] RSP: 0018:ffff88801571b260 EFLAGS: 00000282 [ 2791.467395][ C0] RAX: ffff88809571b848 RBX: ffff88801571b848 RCX: ffff88813fffa020 [ 2791.467395][ C0] RDX: 000000001571b848 RSI: 0000000000000020 RDI: ffff88801571b848 [ 2791.467395][ C0] RBP: ffff88801571b260 R08: ffffea000000000f R09: ffff88813fffa000 [ 2791.467395][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2791.467395][ C0] R13: ffff8880b0b8c908 R14: 0000000000000001 R15: 0000000000000000 [ 2791.467395][ C0] kmsan_get_metadata+0x116/0x180 [ 2791.467395][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.467395][ C0] __msan_metadata_ptr_for_store_2+0x13/0x20 [ 2791.467395][ C0] zap_pte_range+0x1356/0x3cb0 [ 2791.467395][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.467395][ C0] unmap_page_range+0x1154/0x1440 [ 2791.467395][ C0] unmap_single_vma+0x56b/0x750 [ 2791.467395][ C0] unmap_vmas+0x3c8/0x500 [ 2791.467395][ C0] exit_mmap+0x5f1/0xb80 [ 2791.467395][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2791.467395][ C0] __mmput+0x1b7/0x630 [ 2791.467395][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2791.467395][ C0] mmput+0x8c/0xb0 [ 2791.467395][ C0] exit_mm+0x7a9/0x9a0 [ 2791.467395][ C0] do_exit+0xdbb/0x3c20 [ 2791.467395][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.467395][ C0] do_group_exit+0x1e1/0x3c0 [ 2791.467395][ C0] get_signal+0x2e5f/0x39e0 [ 2791.467395][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.467395][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2791.467395][ C0] ? __free_pages_ok+0x1327/0x1980 [ 2791.467395][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.467395][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2791.467395][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2791.467395][ C0] ? arch_do_signal_or_restart+0x69/0xe10 [ 2791.467395][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2791.467395][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.857926][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2791.857926][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.857926][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.857926][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2791.857926][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2791.857926][ C0] ret_from_fork+0x15/0x30 [ 2791.857926][ C0] RIP: 0023:0x8096724 [ 2791.857926][ C0] Code: Unable to access opcode bytes at RIP 0x80966fa. [ 2791.857926][ C0] RSP: 002b:00000000f559a7a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078 [ 2791.857926][ C0] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f559a7a4 [ 2791.857926][ C0] RDX: 00000000f559aba8 RSI: 00000000ffdd2e6c RDI: 00000000f559aba8 [ 2791.857926][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2791.857926][ C0] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 2791.857926][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2791.857926][ C0] ---[ end trace f7326eee4ef53800 ]--- [ 2791.953278][ C0] ------------[ cut here ]------------ [ 2791.959006][ C0] WARNING: CPU: 0 PID: 24868 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2791.961821][ C0] Modules linked in: [ 2791.961821][ C0] CPU: 0 PID: 24868 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2791.961821][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2791.961821][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2791.961821][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2791.961821][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2791.961821][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b8be80 [ 2791.961821][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2791.961821][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2791.961821][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2791.961821][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2791.961821][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2791.961821][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2791.961821][ C0] CR2: 00000000085a0004 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2791.961821][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2791.961821][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2791.961821][ C0] Call Trace: [ 2791.961821][ C0] [ 2791.961821][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.961821][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2791.961821][ C0] __run_hrtimer+0x48b/0xd20 [ 2791.961821][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2791.961821][ C0] ? hrtimer_init+0x570/0x570 [ 2791.961821][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2791.961821][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2791.961821][ C0] [ 2791.961821][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2791.961821][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2791.961821][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2791.961821][ C0] RSP: 0018:ffff88801571b260 EFLAGS: 00000282 [ 2791.961821][ C0] RAX: ffff88809571b848 RBX: ffff88801571b848 RCX: ffff88813fffa020 [ 2791.961821][ C0] RDX: 000000001571b848 RSI: 0000000000000020 RDI: ffff88801571b848 [ 2791.961821][ C0] RBP: ffff88801571b260 R08: ffffea000000000f R09: ffff88813fffa000 [ 2791.961821][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2791.961821][ C0] R13: ffff8880b0b8c908 R14: 0000000000000001 R15: 0000000000000000 [ 2791.961821][ C0] kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.961821][ C0] __msan_metadata_ptr_for_store_2+0x13/0x20 [ 2791.961821][ C0] zap_pte_range+0x1356/0x3cb0 [ 2791.961821][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2791.961821][ C0] unmap_page_range+0x1154/0x1440 [ 2791.961821][ C0] unmap_single_vma+0x56b/0x750 [ 2791.961821][ C0] unmap_vmas+0x3c8/0x500 [ 2791.961821][ C0] exit_mmap+0x5f1/0xb80 [ 2791.961821][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2791.961821][ C0] __mmput+0x1b7/0x630 [ 2791.961821][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2791.961821][ C0] mmput+0x8c/0xb0 [ 2791.961821][ C0] exit_mm+0x7a9/0x9a0 [ 2791.961821][ C0] do_exit+0xdbb/0x3c20 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] do_group_exit+0x1e1/0x3c0 [ 2791.961821][ C0] get_signal+0x2e5f/0x39e0 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2791.961821][ C0] ? __free_pages_ok+0x1327/0x1980 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2791.961821][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2791.961821][ C0] ? arch_do_signal_or_restart+0x69/0xe10 [ 2791.961821][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2791.961821][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2791.961821][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2791.961821][ C0] ret_from_fork+0x15/0x30 [ 2791.961821][ C0] RIP: 0023:0x8096724 [ 2791.961821][ C0] Code: Unable to access opcode bytes at RIP 0x80966fa. [ 2791.961821][ C0] RSP: 002b:00000000f559a7a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078 [ 2791.961821][ C0] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f559a7a4 [ 2791.961821][ C0] RDX: 00000000f559aba8 RSI: 00000000ffdd2e6c RDI: 00000000f559aba8 [ 2791.961821][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2791.961821][ C0] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 2791.961821][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2791.961821][ C0] ---[ end trace f7326eee4ef53801 ]--- [ 2792.444994][ C0] ------------[ cut here ]------------ [ 2792.450806][ C0] WARNING: CPU: 0 PID: 24868 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2792.453553][ C0] Modules linked in: [ 2792.453553][ C0] CPU: 0 PID: 24868 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2792.453553][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2792.453553][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2792.453553][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2792.453553][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2792.453553][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b8be80 [ 2792.453553][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2792.453553][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2792.453553][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2792.453553][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2792.453553][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2792.453553][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2792.453553][ C0] CR2: 00000000085a0004 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2792.453553][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2792.453553][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2792.453553][ C0] Call Trace: [ 2792.453553][ C0] [ 2792.453553][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2792.453553][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2792.453553][ C0] __run_hrtimer+0x48b/0xd20 [ 2792.453553][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2792.453553][ C0] ? hrtimer_init+0x570/0x570 [ 2792.453553][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2792.453553][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2792.453553][ C0] [ 2792.453553][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2792.453553][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2792.453553][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2792.453553][ C0] RSP: 0018:ffff88801571b260 EFLAGS: 00000282 [ 2792.453553][ C0] RAX: ffff88809571b848 RBX: ffff88801571b848 RCX: ffff88813fffa020 [ 2792.453553][ C0] RDX: 000000001571b848 RSI: 0000000000000020 RDI: ffff88801571b848 [ 2792.453553][ C0] RBP: ffff88801571b260 R08: ffffea000000000f R09: ffff88813fffa000 [ 2792.453553][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2792.453553][ C0] R13: ffff8880b0b8c908 R14: 0000000000000001 R15: 0000000000000000 [ 2792.453553][ C0] kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2792.453553][ C0] __msan_metadata_ptr_for_store_2+0x13/0x20 [ 2792.453553][ C0] zap_pte_range+0x1356/0x3cb0 [ 2792.453553][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2792.453553][ C0] unmap_page_range+0x1154/0x1440 [ 2792.453553][ C0] unmap_single_vma+0x56b/0x750 [ 2792.453553][ C0] unmap_vmas+0x3c8/0x500 [ 2792.453553][ C0] exit_mmap+0x5f1/0xb80 [ 2792.453553][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2792.453553][ C0] __mmput+0x1b7/0x630 [ 2792.453553][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2792.453553][ C0] mmput+0x8c/0xb0 [ 2792.453553][ C0] exit_mm+0x7a9/0x9a0 [ 2792.453553][ C0] do_exit+0xdbb/0x3c20 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] do_group_exit+0x1e1/0x3c0 [ 2792.453553][ C0] get_signal+0x2e5f/0x39e0 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2792.453553][ C0] ? __free_pages_ok+0x1327/0x1980 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2792.453553][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2792.453553][ C0] ? arch_do_signal_or_restart+0x69/0xe10 [ 2792.453553][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2792.453553][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2792.453553][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2792.453553][ C0] ret_from_fork+0x15/0x30 [ 2792.453553][ C0] RIP: 0023:0x8096724 [ 2792.453553][ C0] Code: Unable to access opcode bytes at RIP 0x80966fa. [ 2792.453553][ C0] RSP: 002b:00000000f559a7a4 EFLAGS: 00000292 ORIG_RAX: 0000000000000078 [ 2792.453553][ C0] RAX: 0000000000000000 RBX: 00000000003d0f00 RCX: 00000000f559a7a4 [ 2792.453553][ C0] RDX: 00000000f559aba8 RSI: 00000000ffdd2e6c RDI: 00000000f559aba8 [ 2792.453553][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2792.453553][ C0] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000000 [ 2792.453553][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2792.453553][ C0] ---[ end trace f7326eee4ef53802 ]--- [ 2792.992151][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2792.992151][ C0] ------------[ cut here ]------------ [ 2792.992151][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2792.992151][ C0] Modules linked in: [ 2792.992151][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2792.992151][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2792.992151][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2792.992151][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2792.992151][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2792.992151][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2792.992151][ C0] RDX: 0000000080010000 RSI: 0000000000000023 RDI: 0000000000000001 [ 2792.992151][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2792.992151][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2792.992151][ C0] R13: 0000000000000000 R14: 0000000000000023 R15: ffff88813fc27b00 [ 2792.992151][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2792.992151][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2792.992151][ C0] CR2: 00007fc93101a000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2792.992151][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2792.992151][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2792.992151][ C0] Call Trace: [ 2792.992151][ C0] [ 2792.992151][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2792.992151][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2792.992151][ C0] __run_hrtimer+0x48b/0xd20 [ 2792.992151][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2792.992151][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2792.992151][ C0] ? hrtimer_init+0x570/0x570 [ 2792.992151][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2792.992151][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2792.992151][ C0] [ 2792.992151][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2792.992151][ C0] RIP: 0010:virt_to_page_or_null+0x1/0xf0 [ 2792.992151][ C0] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 [ 2793.262163][ C0] RSP: 0018:ffff888115d1bd50 EFLAGS: 00000297 [ 2793.262163][ C0] RAX: 00000000007fffc4 RBX: ffff888111759f60 RCX: ffff888111759f00 [ 2793.262163][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888111759f60 [ 2793.262163][ C0] RBP: ffff888115d1bd78 R08: ffffffff81bc55db R09: ffff88813fffa000 [ 2793.262163][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88811175a9c8 [ 2793.292188][ C0] R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000 [ 2793.292188][ C0] ? __secure_computing+0x9b/0x4c0 [ 2793.292188][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.292188][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2793.292188][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2793.292188][ C0] __secure_computing+0x117/0x4c0 [ 2793.292188][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.292188][ C0] syscall_trace_enter+0x31e/0x840 [ 2793.292188][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2793.292188][ C0] syscall_enter_from_user_mode+0x4d/0x70 [ 2793.292188][ C0] do_syscall_64+0x4b/0x140 [ 2793.292188][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2793.292188][ C0] RIP: 0033:0x7fff3754d9fd [ 2793.292188][ C0] Code: 90 eb e5 48 8b 07 48 89 06 48 8b 47 08 48 89 46 08 8b 15 96 b6 ff ff 31 c0 39 da 74 a6 eb c9 a8 10 75 09 b8 e4 00 00 00 0f 05 97 4c 8d 05 6a b7 ff ff e9 da fe ff ff 48 8d 05 6e e6 ff ff 48 [ 2793.292188][ C0] RSP: 002b:00007fff374efd48 EFLAGS: 00000297 ORIG_RAX: 00000000000000e4 [ 2793.292188][ C0] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007fff3754d9fd [ 2793.292188][ C0] RDX: ffffffffffffffff RSI: 00007fff374efdc0 RDI: 0000000000000007 [ 2793.292188][ C0] RBP: 00007fff374efd90 R08: 00007fff37549080 R09: 0000000000000070 [ 2793.292188][ C0] R10: 0000000000000000 R11: 0000000000000297 R12: 00007fff374efe00 [ 2793.292188][ C0] R13: 0000000000000001 R14: 0000000000085122 R15: 0005c08767215640 [ 2793.292188][ C0] ---[ end trace f7326eee4ef53803 ]--- [ 2793.438523][ C0] ------------[ cut here ]------------ [ 2793.444212][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2793.447073][ C0] Modules linked in: [ 2793.447073][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2793.447073][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2793.447073][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2793.447073][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2793.447073][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2793.447073][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2793.447073][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2793.447073][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2793.447073][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2793.447073][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2793.447073][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2793.447073][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2793.447073][ C0] CR2: 00007fc93101a000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2793.447073][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2793.447073][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2793.447073][ C0] Call Trace: [ 2793.447073][ C0] [ 2793.447073][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2793.447073][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2793.447073][ C0] __run_hrtimer+0x48b/0xd20 [ 2793.447073][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2793.447073][ C0] ? hrtimer_init+0x570/0x570 [ 2793.447073][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2793.447073][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2793.447073][ C0] [ 2793.447073][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2793.447073][ C0] RIP: 0010:virt_to_page_or_null+0x1/0xf0 [ 2793.447073][ C0] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 [ 2793.447073][ C0] RSP: 0018:ffff888115d1bd50 EFLAGS: 00000297 [ 2793.447073][ C0] RAX: 00000000007fffc4 RBX: ffff888111759f60 RCX: ffff888111759f00 [ 2793.447073][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888111759f60 [ 2793.447073][ C0] RBP: ffff888115d1bd78 R08: ffffffff81bc55db R09: ffff88813fffa000 [ 2793.447073][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88811175a9c8 [ 2793.447073][ C0] R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000 [ 2793.447073][ C0] ? __secure_computing+0x9b/0x4c0 [ 2793.447073][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.447073][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2793.447073][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2793.447073][ C0] __secure_computing+0x117/0x4c0 [ 2793.447073][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.447073][ C0] syscall_trace_enter+0x31e/0x840 [ 2793.447073][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2793.447073][ C0] syscall_enter_from_user_mode+0x4d/0x70 [ 2793.447073][ C0] do_syscall_64+0x4b/0x140 [ 2793.447073][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2793.447073][ C0] RIP: 0033:0x7fff3754d9fd [ 2793.447073][ C0] Code: 90 eb e5 48 8b 07 48 89 06 48 8b 47 08 48 89 46 08 8b 15 96 b6 ff ff 31 c0 39 da 74 a6 eb c9 a8 10 75 09 b8 e4 00 00 00 0f 05 97 4c 8d 05 6a b7 ff ff e9 da fe ff ff 48 8d 05 6e e6 ff ff 48 [ 2793.447073][ C0] RSP: 002b:00007fff374efd48 EFLAGS: 00000297 ORIG_RAX: 00000000000000e4 [ 2793.447073][ C0] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007fff3754d9fd [ 2793.447073][ C0] RDX: ffffffffffffffff RSI: 00007fff374efdc0 RDI: 0000000000000007 [ 2793.447073][ C0] RBP: 00007fff374efd90 R08: 00007fff37549080 R09: 0000000000000070 [ 2793.447073][ C0] R10: 0000000000000000 R11: 0000000000000297 R12: 00007fff374efe00 [ 2793.447073][ C0] R13: 0000000000000001 R14: 0000000000085122 R15: 0005c08767215640 [ 2793.447073][ C0] ---[ end trace f7326eee4ef53804 ]--- [ 2793.832340][ C0] ------------[ cut here ]------------ [ 2793.838008][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2793.840906][ C0] Modules linked in: [ 2793.840906][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2793.840906][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2793.840906][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2793.840906][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2793.840906][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2793.840906][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2793.840906][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2793.840906][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2793.840906][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2793.840906][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2793.840906][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2793.840906][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2793.840906][ C0] CR2: 00007fc93101a000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2793.840906][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2793.840906][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2793.840906][ C0] Call Trace: [ 2793.840906][ C0] [ 2793.840906][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2793.840906][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2793.840906][ C0] __run_hrtimer+0x48b/0xd20 [ 2793.840906][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2793.840906][ C0] ? hrtimer_init+0x570/0x570 [ 2793.840906][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2793.840906][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2793.840906][ C0] [ 2793.840906][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2793.840906][ C0] RIP: 0010:virt_to_page_or_null+0x1/0xf0 [ 2793.840906][ C0] Code: af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b 41 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 <48> 89 e5 48 89 f8 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 [ 2793.840906][ C0] RSP: 0018:ffff888115d1bd50 EFLAGS: 00000297 [ 2793.840906][ C0] RAX: 00000000007fffc4 RBX: ffff888111759f60 RCX: ffff888111759f00 [ 2793.840906][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff888111759f60 [ 2793.840906][ C0] RBP: ffff888115d1bd78 R08: ffffffff81bc55db R09: ffff88813fffa000 [ 2793.840906][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88811175a9c8 [ 2793.840906][ C0] R13: 0000000000000002 R14: 0000000000000000 R15: 0000000000000000 [ 2793.840906][ C0] ? __secure_computing+0x9b/0x4c0 [ 2793.840906][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.840906][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2793.840906][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2793.840906][ C0] __secure_computing+0x117/0x4c0 [ 2793.840906][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2793.840906][ C0] syscall_trace_enter+0x31e/0x840 [ 2793.840906][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2793.840906][ C0] syscall_enter_from_user_mode+0x4d/0x70 [ 2793.840906][ C0] do_syscall_64+0x4b/0x140 [ 2793.840906][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2793.840906][ C0] RIP: 0033:0x7fff3754d9fd [ 2793.840906][ C0] Code: 90 eb e5 48 8b 07 48 89 06 48 8b 47 08 48 89 46 08 8b 15 96 b6 ff ff 31 c0 39 da 74 a6 eb c9 a8 10 75 09 b8 e4 00 00 00 0f 05 97 4c 8d 05 6a b7 ff ff e9 da fe ff ff 48 8d 05 6e e6 ff ff 48 [ 2793.840906][ C0] RSP: 002b:00007fff374efd48 EFLAGS: 00000297 ORIG_RAX: 00000000000000e4 [ 2793.840906][ C0] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007fff3754d9fd [ 2793.840906][ C0] RDX: ffffffffffffffff RSI: 00007fff374efdc0 RDI: 0000000000000007 [ 2793.840906][ C0] RBP: 00007fff374efd90 R08: 00007fff37549080 R09: 0000000000000070 [ 2793.840906][ C0] R10: 0000000000000000 R11: 0000000000000297 R12: 00007fff374efe00 [ 2793.840906][ C0] R13: 0000000000000001 R14: 0000000000085122 R15: 0005c08767215640 [ 2793.840906][ C0] ---[ end trace f7326eee4ef53805 ]--- [ 2794.313775][ C0] ------------[ cut here ]------------ [ 2794.319487][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2794.322291][ C0] Modules linked in: [ 2794.322291][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2794.322291][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2794.322291][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2794.322291][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2794.322291][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2794.322291][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2794.322291][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2794.322291][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2794.322291][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2794.322291][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2794.322291][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2794.322291][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2794.322291][ C0] CR2: 00007fc93101b018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2794.322291][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2794.322291][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2794.322291][ C0] Call Trace: [ 2794.322291][ C0] [ 2794.322291][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2794.322291][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2794.322291][ C0] __run_hrtimer+0x48b/0xd20 [ 2794.322291][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2794.322291][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2794.322291][ C0] ? hrtimer_init+0x570/0x570 [ 2794.322291][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2794.322291][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2794.322291][ C0] [ 2794.322291][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2794.322291][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x30/0xb0 [ 2794.322291][ C0] Code: 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 6e 80 3d d6 22 06 10 00 74 0e e8 67 d5 ff ff 83 b8 b0 0f 00 00 00 <74> 22 48 c7 c0 00 60 45 92 48 c7 c3 00 70 45 92 45 84 ff 48 0f 45 [ 2794.322291][ C0] RSP: 0018:ffff888115d1bbc8 EFLAGS: 00000246 [ 2794.322291][ C0] RAX: ffff88811175a9c8 RBX: 0000000000000008 RCX: 000000011591bdf0 [ 2794.322291][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88810250be20 [ 2794.322291][ C0] RBP: ffff888115d1bbe0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2794.322291][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000079000c9 [ 2794.322291][ C0] R13: 0000000000000000 R14: ffff88810250be20 R15: 0000000000000000 [ 2794.322291][ C0] ? kmsan_get_shadow_origin_ptr+0x29/0xb0 [ 2794.322291][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2794.322291][ C0] __list_del_entry_valid+0x11c/0x410 [ 2794.322291][ C0] do_epoll_wait+0xf53/0x3460 [ 2794.322291][ C0] __se_sys_epoll_wait+0x35f/0x450 [ 2794.322291][ C0] __x64_sys_epoll_wait+0x56/0x70 [ 2794.322291][ C0] do_syscall_64+0x9f/0x140 [ 2794.322291][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2794.322291][ C0] RIP: 0033:0x7fc932cb2303 [ 2794.322291][ C0] Code: 49 89 ca b8 e8 00 00 00 0f 05 48 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24 49 89 ca b8 e8 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 51 c2 00 00 48 89 d0 48 83 c4 08 48 3d 01 [ 2794.322291][ C0] RSP: 002b:00007fff374efdf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8 [ 2794.322291][ C0] RAX: ffffffffffffffda RBX: 0000560eff1e41e0 RCX: 00007fc932cb2303 [ 2794.322291][ C0] RDX: 0000000000000014 RSI: 00007fff374efe00 RDI: 0000000000000008 [ 2794.322291][ C0] RBP: 00007fff374efff0 R08: 00007fff37549080 R09: 0000000000000000 [ 2794.322291][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fff374efe00 [ 2794.322291][ C0] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c0876734e039 [ 2794.322291][ C0] ---[ end trace f7326eee4ef53806 ]--- [ 2794.322291][ C0] ------------[ cut here ]------------ [ 2794.322291][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2794.322291][ C0] Modules linked in: [ 2794.322291][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2794.322291][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2794.322291][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2794.322291][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2794.322291][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2794.322291][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2794.322291][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2794.322291][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2794.322291][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2794.322291][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2794.322291][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2794.322291][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2794.322291][ C0] CR2: 00007fc93101b018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2794.322291][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2794.322291][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2794.322291][ C0] Call Trace: [ 2794.322291][ C0] [ 2794.322291][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2794.322291][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2794.322291][ C0] __run_hrtimer+0x48b/0xd20 [ 2794.322291][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2794.322291][ C0] ? hrtimer_init+0x570/0x570 [ 2794.322291][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2794.322291][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2794.322291][ C0] [ 2794.322291][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2794.322291][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x30/0xb0 [ 2794.322291][ C0] Code: 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 6e 80 3d d6 22 06 10 00 74 0e e8 67 d5 ff ff 83 b8 b0 0f 00 00 00 <74> 22 48 c7 c0 00 60 45 92 48 c7 c3 00 70 45 92 45 84 ff 48 0f 45 [ 2794.322291][ C0] RSP: 0018:ffff888115d1bbc8 EFLAGS: 00000246 [ 2794.322291][ C0] RAX: ffff88811175a9c8 RBX: 0000000000000008 RCX: 000000011591bdf0 [ 2794.322291][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88810250be20 [ 2794.322291][ C0] RBP: ffff888115d1bbe0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2794.322291][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000079000c9 [ 2794.322291][ C0] R13: 0000000000000000 R14: ffff88810250be20 R15: 0000000000000000 [ 2794.322291][ C0] ? kmsan_get_shadow_origin_ptr+0x29/0xb0 [ 2794.322291][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2794.322291][ C0] __list_del_entry_valid+0x11c/0x410 [ 2794.322291][ C0] do_epoll_wait+0xf53/0x3460 [ 2794.322291][ C0] __se_sys_epoll_wait+0x35f/0x450 [ 2794.322291][ C0] __x64_sys_epoll_wait+0x56/0x70 [ 2794.322291][ C0] do_syscall_64+0x9f/0x140 [ 2794.322291][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2794.322291][ C0] RIP: 0033:0x7fc932cb2303 [ 2794.322291][ C0] Code: 49 89 ca b8 e8 00 00 00 0f 05 48 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24 49 89 ca b8 e8 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 51 c2 00 00 48 89 d0 48 83 c4 08 48 3d 01 [ 2794.322291][ C0] RSP: 002b:00007fff374efdf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8 [ 2794.322291][ C0] RAX: ffffffffffffffda RBX: 0000560eff1e41e0 RCX: 00007fc932cb2303 [ 2794.322291][ C0] RDX: 0000000000000014 RSI: 00007fff374efe00 RDI: 0000000000000008 [ 2794.322291][ C0] RBP: 00007fff374efff0 R08: 00007fff37549080 R09: 0000000000000000 [ 2794.322291][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fff374efe00 [ 2794.322291][ C0] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c0876734e039 [ 2794.322291][ C0] ---[ end trace f7326eee4ef53807 ]--- [ 2795.083606][ C0] ------------[ cut here ]------------ [ 2795.089312][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2795.092126][ C0] Modules linked in: [ 2795.092126][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2795.092126][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2795.092126][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2795.092126][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2795.092126][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2795.092126][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2795.092126][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2795.092126][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2795.092126][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2795.092126][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2795.092126][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2795.092126][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2795.092126][ C0] CR2: 00007fc93101b018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2795.092126][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2795.092126][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2795.092126][ C0] Call Trace: [ 2795.092126][ C0] [ 2795.092126][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2795.092126][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2795.092126][ C0] __run_hrtimer+0x48b/0xd20 [ 2795.092126][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2795.092126][ C0] ? hrtimer_init+0x570/0x570 [ 2795.092126][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2795.092126][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2795.092126][ C0] [ 2795.092126][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2795.092126][ C0] RIP: 0010:kmsan_get_shadow_origin_ptr+0x30/0xb0 [ 2795.092126][ C0] Code: 41 56 53 41 89 d7 48 89 f3 49 89 fe 48 81 fe 01 10 00 00 73 6e 80 3d d6 22 06 10 00 74 0e e8 67 d5 ff ff 83 b8 b0 0f 00 00 00 <74> 22 48 c7 c0 00 60 45 92 48 c7 c3 00 70 45 92 45 84 ff 48 0f 45 [ 2795.092126][ C0] RSP: 0018:ffff888115d1bbc8 EFLAGS: 00000246 [ 2795.092126][ C0] RAX: ffff88811175a9c8 RBX: 0000000000000008 RCX: 000000011591bdf0 [ 2795.092126][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88810250be20 [ 2795.092126][ C0] RBP: ffff888115d1bbe0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2795.092126][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000079000c9 [ 2795.092126][ C0] R13: 0000000000000000 R14: ffff88810250be20 R15: 0000000000000000 [ 2795.092126][ C0] ? kmsan_get_shadow_origin_ptr+0x29/0xb0 [ 2795.092126][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2795.092126][ C0] __list_del_entry_valid+0x11c/0x410 [ 2795.092126][ C0] do_epoll_wait+0xf53/0x3460 [ 2795.092126][ C0] __se_sys_epoll_wait+0x35f/0x450 [ 2795.092126][ C0] __x64_sys_epoll_wait+0x56/0x70 [ 2795.092126][ C0] do_syscall_64+0x9f/0x140 [ 2795.092126][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2795.092126][ C0] RIP: 0033:0x7fc932cb2303 [ 2795.092126][ C0] Code: 49 89 ca b8 e8 00 00 00 0f 05 48 3d 01 f0 ff ff 73 34 c3 48 83 ec 08 e8 0b c2 00 00 48 89 04 24 49 89 ca b8 e8 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 51 c2 00 00 48 89 d0 48 83 c4 08 48 3d 01 [ 2795.092126][ C0] RSP: 002b:00007fff374efdf0 EFLAGS: 00000293 ORIG_RAX: 00000000000000e8 [ 2795.092126][ C0] RAX: ffffffffffffffda RBX: 0000560eff1e41e0 RCX: 00007fc932cb2303 [ 2795.092126][ C0] RDX: 0000000000000014 RSI: 00007fff374efe00 RDI: 0000000000000008 [ 2795.092126][ C0] RBP: 00007fff374efff0 R08: 00007fff37549080 R09: 0000000000000000 [ 2795.092126][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007fff374efe00 [ 2795.092126][ C0] R13: 0000000000000001 R14: 0000000000000000 R15: 0005c0876734e039 [ 2795.092126][ C0] ---[ end trace f7326eee4ef53808 ]--- [ 2795.504430][ C0] ------------[ cut here ]------------ [ 2795.559228][ C0] WARNING: CPU: 0 PID: 9604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2795.563273][ C0] Modules linked in: [ 2795.563273][ C0] CPU: 0 PID: 9604 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2795.563273][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2795.563273][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2795.563273][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2795.563273][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2795.563273][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888152a19f40 [ 2795.622503][ C0] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2795.622503][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2795.622503][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2795.622503][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2795.622503][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2795.622503][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2795.622503][ C0] CR2: 00007fc93101b018 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2795.678506][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2795.622503][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2795.692404][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2795.692404][ C0] Call Trace: [ 2795.704514][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2795.692404][ C0] [ 2795.692404][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2795.714473][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2795.714473][ C0] __run_hrtimer+0x48b/0xd20 [ 2795.714473][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2795.714473][ C0] ? hrtimer_init+0x570/0x570 [ 2795.714473][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2795.742282][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2795.742282][ C0] [ 2795.742282][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2795.742282][ C0] RIP: 0010:kmsan_kfree_large+0x12f/0x160 03:37:49 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2795.742282][ C0] Code: ff ff e8 54 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 27 e8 ff da 0b ff 41 f7 c6 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 5d c3 48 ff c9 48 89 c8 e9 6c ff ff ff 0f 0b 0f 0b 48 c7 [ 2795.772272][ C0] RSP: 0018:ffff888152a23550 EFLAGS: 00000296 [ 2795.772272][ C0] RAX: ffff888152a1a9c8 RBX: ffff888152800000 RCX: 0000000000000401 [ 2795.772272][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8881529ff000 [ 2795.772272][ C0] RBP: ffff888152a23560 R08: ffffea000000000f R09: ffff88813fffa000 [ 2795.772272][ C0] R10: 000000004630407e R11: ffffffff8fc00715 R12: ffffea00069c8000 [ 2795.772272][ C0] R13: 0000000000000000 R14: 0000000000000246 R15: 0000000000000000 [ 2795.772272][ C0] ? __do_softirq+0x715/0x715 [ 2795.772272][ C0] kfree+0xefc/0x11f0 [ 2795.772272][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2795.772272][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2795.772272][ C0] ? kvfree+0x91/0xa0 [ 2795.772272][ C0] ? idr_destroy+0x4d7/0x530 [ 2795.772272][ C0] ? kvm_hv_destroy_vm+0x1d2/0x200 [ 2795.772272][ C0] ? __msan_get_context_state+0x9/0x20 [ 2795.772272][ C0] kvfree+0x91/0xa0 [ 2795.772272][ C0] kvm_arch_free_memslot+0x5c/0x270 [ 2795.772272][ C0] kvm_put_kvm+0x1631/0x1dc0 [ 2795.772272][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2795.772272][ C0] kvm_vm_release+0x67/0x90 [ 2795.772272][ C0] ? kvm_vm_compat_ioctl+0x410/0x410 [ 2795.772272][ C0] __fput+0x6bd/0xf00 [ 2795.772272][ C0] ____fput+0x37/0x40 [ 2795.772272][ C0] ? fput_many+0x360/0x360 [ 2795.772272][ C0] task_work_run+0x140/0x280 [ 2795.772272][ C0] do_exit+0xe7e/0x3c20 [ 2795.772272][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2795.772272][ C0] do_group_exit+0x1e1/0x3c0 [ 2795.772272][ C0] get_signal+0x2e5f/0x39e0 [ 2795.772272][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2795.772272][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2795.772272][ C0] ? up_read+0x40/0x2b0 [ 2795.772272][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2795.772272][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2795.772272][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2795.772272][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2795.772272][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2795.772272][ C0] do_SYSENTER_32+0x73/0x90 [ 2795.772272][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2795.772272][ C0] RIP: 0023:0xf7f72549 [ 2795.772272][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2795.772272][ C0] RSP: 002b:00000000f554b67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2795.772272][ C0] RAX: fffffffffffffe00 RBX: 000000000819b038 RCX: 0000000000000080 [ 2795.772272][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819b03c [ 2795.772272][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2795.772272][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2795.772272][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2795.772272][ C0] ---[ end trace f7326eee4ef53809 ]--- [ 2796.049122][ C0] ------------[ cut here ]------------ [ 2796.054909][ C0] WARNING: CPU: 0 PID: 9604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2796.057644][ C0] Modules linked in: [ 2796.057644][ C0] CPU: 0 PID: 9604 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2796.057644][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2796.057644][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2796.057644][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2796.057644][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2796.057644][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888152a19f40 [ 2796.057644][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2796.057644][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2796.057644][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2796.057644][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2796.057644][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2796.057644][ C0] CR2: 00007fc93101b018 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2796.057644][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2796.057644][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2796.057644][ C0] Call Trace: [ 2796.057644][ C0] [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2796.057644][ C0] __run_hrtimer+0x48b/0xd20 [ 2796.057644][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2796.057644][ C0] ? hrtimer_init+0x570/0x570 [ 2796.057644][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2796.057644][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2796.057644][ C0] [ 2796.057644][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2796.057644][ C0] RIP: 0010:kmsan_kfree_large+0x12f/0x160 [ 2796.057644][ C0] Code: ff ff e8 54 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 27 e8 ff da 0b ff 41 f7 c6 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 5d c3 48 ff c9 48 89 c8 e9 6c ff ff ff 0f 0b 0f 0b 48 c7 [ 2796.057644][ C0] RSP: 0018:ffff888152a23550 EFLAGS: 00000296 [ 2796.057644][ C0] RAX: ffff888152a1a9c8 RBX: ffff888152800000 RCX: 0000000000000401 [ 2796.057644][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8881529ff000 [ 2796.057644][ C0] RBP: ffff888152a23560 R08: ffffea000000000f R09: ffff88813fffa000 [ 2796.057644][ C0] R10: 000000004630407e R11: ffffffff8fc00715 R12: ffffea00069c8000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 0000000000000246 R15: 0000000000000000 [ 2796.057644][ C0] ? __do_softirq+0x715/0x715 [ 2796.057644][ C0] kfree+0xefc/0x11f0 [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2796.057644][ C0] ? kvfree+0x91/0xa0 [ 2796.057644][ C0] ? idr_destroy+0x4d7/0x530 [ 2796.057644][ C0] ? kvm_hv_destroy_vm+0x1d2/0x200 [ 2796.057644][ C0] ? __msan_get_context_state+0x9/0x20 [ 2796.057644][ C0] kvfree+0x91/0xa0 [ 2796.057644][ C0] kvm_arch_free_memslot+0x5c/0x270 [ 2796.057644][ C0] kvm_put_kvm+0x1631/0x1dc0 [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] kvm_vm_release+0x67/0x90 [ 2796.057644][ C0] ? kvm_vm_compat_ioctl+0x410/0x410 [ 2796.057644][ C0] __fput+0x6bd/0xf00 [ 2796.057644][ C0] ____fput+0x37/0x40 [ 2796.057644][ C0] ? fput_many+0x360/0x360 [ 2796.057644][ C0] task_work_run+0x140/0x280 [ 2796.057644][ C0] do_exit+0xe7e/0x3c20 [ 2796.057644][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2796.057644][ C0] do_group_exit+0x1e1/0x3c0 [ 2796.057644][ C0] get_signal+0x2e5f/0x39e0 [ 2796.057644][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2796.057644][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2796.057644][ C0] ? up_read+0x40/0x2b0 [ 2796.057644][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2796.057644][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2796.057644][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2796.057644][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2796.057644][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2796.057644][ C0] do_SYSENTER_32+0x73/0x90 [ 2796.057644][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2796.057644][ C0] RIP: 0023:0xf7f72549 [ 2796.057644][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2796.057644][ C0] RSP: 002b:00000000f554b67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2796.057644][ C0] RAX: fffffffffffffe00 RBX: 000000000819b038 RCX: 0000000000000080 [ 2796.057644][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819b03c [ 2796.057644][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 [ 2796.057644][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2796.057644][ C0] ---[ end trace f7326eee4ef5380a ]--- [ 2796.057644][ C0] ------------[ cut here ]------------ [ 2796.057644][ C0] WARNING: CPU: 0 PID: 9604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2796.057644][ C0] Modules linked in: [ 2796.057644][ C0] CPU: 0 PID: 9604 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2796.057644][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2796.057644][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2796.057644][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2796.057644][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2796.057644][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888152a19f40 [ 2796.057644][ C0] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2796.057644][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2796.057644][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2796.057644][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2796.057644][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2796.057644][ C0] CR2: 00007fc93101b018 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2796.057644][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2796.057644][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2796.057644][ C0] Call Trace: [ 2796.057644][ C0] [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2796.057644][ C0] __run_hrtimer+0x48b/0xd20 [ 2796.057644][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2796.057644][ C0] ? hrtimer_init+0x570/0x570 [ 2796.057644][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2796.057644][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2796.057644][ C0] [ 2796.057644][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2796.057644][ C0] RIP: 0010:kmsan_kfree_large+0x12f/0x160 [ 2796.057644][ C0] Code: ff ff e8 54 e4 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 27 e8 ff da 0b ff 41 f7 c6 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 5d c3 48 ff c9 48 89 c8 e9 6c ff ff ff 0f 0b 0f 0b 48 c7 [ 2796.057644][ C0] RSP: 0018:ffff888152a23550 EFLAGS: 00000296 [ 2796.057644][ C0] RAX: ffff888152a1a9c8 RBX: ffff888152800000 RCX: 0000000000000401 [ 2796.057644][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8881529ff000 [ 2796.057644][ C0] RBP: ffff888152a23560 R08: ffffea000000000f R09: ffff88813fffa000 [ 2796.057644][ C0] R10: 000000004630407e R11: ffffffff8fc00715 R12: ffffea00069c8000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 0000000000000246 R15: 0000000000000000 [ 2796.057644][ C0] ? __do_softirq+0x715/0x715 [ 2796.057644][ C0] kfree+0xefc/0x11f0 [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2796.057644][ C0] ? kvfree+0x91/0xa0 [ 2796.057644][ C0] ? idr_destroy+0x4d7/0x530 [ 2796.057644][ C0] ? kvm_hv_destroy_vm+0x1d2/0x200 [ 2796.057644][ C0] ? __msan_get_context_state+0x9/0x20 [ 2796.057644][ C0] kvfree+0x91/0xa0 [ 2796.057644][ C0] kvm_arch_free_memslot+0x5c/0x270 [ 2796.057644][ C0] kvm_put_kvm+0x1631/0x1dc0 [ 2796.057644][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2796.057644][ C0] kvm_vm_release+0x67/0x90 [ 2796.057644][ C0] ? kvm_vm_compat_ioctl+0x410/0x410 [ 2796.057644][ C0] __fput+0x6bd/0xf00 [ 2796.057644][ C0] ____fput+0x37/0x40 [ 2796.057644][ C0] ? fput_many+0x360/0x360 [ 2796.057644][ C0] task_work_run+0x140/0x280 [ 2796.057644][ C0] do_exit+0xe7e/0x3c20 [ 2796.057644][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2796.057644][ C0] do_group_exit+0x1e1/0x3c0 [ 2796.057644][ C0] get_signal+0x2e5f/0x39e0 [ 2796.057644][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2796.057644][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2796.057644][ C0] ? up_read+0x40/0x2b0 [ 2796.057644][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2796.057644][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2796.057644][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2796.057644][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2796.057644][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2796.057644][ C0] do_SYSENTER_32+0x73/0x90 [ 2796.057644][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2796.057644][ C0] RIP: 0023:0xf7f72549 [ 2796.057644][ C0] Code: Unable to access opcode bytes at RIP 0xf7f7251f. [ 2796.057644][ C0] RSP: 002b:00000000f554b67c EFLAGS: 00000296 ORIG_RAX: 00000000000000f0 [ 2796.057644][ C0] RAX: fffffffffffffe00 RBX: 000000000819b038 RCX: 0000000000000080 [ 2796.057644][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000000000819b03c [ 2796.057644][ C0] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000 03:37:50 executing program 1: mbind(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x0, 0x0, 0x0) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x4001, &(0x7f0000000080)=0x2, 0xff, 0x0) [ 2796.057644][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2796.057644][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2796.057644][ C0] ---[ end trace f7326eee4ef5380b ]--- [ 2797.081999][ C0] ------------[ cut here ]------------ [ 2797.081999][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2797.081999][ C0] Modules linked in: [ 2797.081999][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2797.081999][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2797.081999][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2797.081999][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2797.081999][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2797.081999][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2797.081999][ C0] RDX: 0000000080010000 RSI: 0000000000000022 RDI: 0000000000000001 [ 2797.081999][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2797.204775][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2797.204775][ C0] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fc27b00 [ 2797.204775][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2797.204775][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2797.204775][ C0] CR2: 00000000085a0004 CR3: 0000000013d1e000 CR4: 00000000001526f0 [ 2797.241995][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2797.241995][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2797.241995][ C0] Call Trace: [ 2797.241995][ C0] [ 2797.241995][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.241995][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2797.241995][ C0] __run_hrtimer+0x48b/0xd20 [ 2797.241995][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2797.241995][ C0] ? hrtimer_init+0x570/0x570 [ 2797.241995][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2797.241995][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2797.241995][ C0] [ 2797.241995][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2797.241995][ C0] RIP: 0010:virt_to_page_or_null+0x7d/0xf0 [ 2797.241995][ C0] Code: 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d 41 f6 c0 08 75 12 48 c1 ea 15 49 8b 4c 31 08 83 e2 3f 48 0f a3 [ 2797.241995][ C0] RSP: 0018:ffff88810604b0a8 EFLAGS: 00000246 [ 2797.241995][ C0] RAX: 0000000000000000 RBX: ffffea0009e93758 RCX: ffff8881024f5d2e [ 2797.241995][ C0] RDX: 0000618009e93758 RSI: 0000000000000001 RDI: ffffea0009e93758 [ 2797.241995][ C0] RBP: ffff88810604b0c8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2797.241995][ C0] R10: 0000000070f628b2 R11: 0000000000000000 R12: ffff8881024f6848 [ 2797.241995][ C0] R13: ffff8881024f6848 R14: 0000000000000000 R15: 0000000000000000 [ 2797.241995][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2797.241995][ C0] __msan_instrument_asm_store+0xb5/0x130 [ 2797.241995][ C0] _raw_spin_lock+0x2d/0x90 [ 2797.241995][ C0] page_vma_mapped_walk+0x1a5e/0x3680 [ 2797.241995][ C0] page_referenced_one+0x139/0xd80 [ 2797.241995][ C0] ? page_referenced+0xc30/0xc30 [ 2797.241995][ C0] rmap_walk_file+0x8a8/0x1150 [ 2797.241995][ C0] page_referenced+0x9ef/0xc30 [ 2797.241995][ C0] ? page_referenced+0xc30/0xc30 [ 2797.241995][ C0] ? page_get_anon_vma+0x390/0x390 [ 2797.241995][ C0] shrink_active_list+0x925/0x2150 [ 2797.241995][ C0] shrink_lruvec+0x6af/0x1480 [ 2797.241995][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2797.241995][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.241995][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2797.241995][ C0] shrink_node+0x1a02/0x3400 [ 2797.241995][ C0] balance_pgdat+0x146e/0x2570 [ 2797.241995][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.241995][ C0] kswapd+0x50b/0x8a0 [ 2797.241995][ C0] ? __kthread_parkme+0x22b/0x250 [ 2797.241995][ C0] kthread+0x521/0x560 [ 2797.241995][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2797.241995][ C0] ? kthread_blkcg+0x110/0x110 [ 2797.241995][ C0] ret_from_fork+0x1f/0x30 [ 2797.241995][ C0] ---[ end trace f7326eee4ef5380c ]--- [ 2797.500424][ C0] ------------[ cut here ]------------ [ 2797.506197][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2797.508931][ C0] Modules linked in: [ 2797.508931][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2797.508931][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2797.508931][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2797.508931][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2797.508931][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2797.508931][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2797.508931][ C0] RDX: 0000000080010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2797.508931][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2797.508931][ C0] R10: 000000004d1d8650 R11: 0000028b5886b0dd R12: 0000000000000000 [ 2797.508931][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2797.508931][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2797.508931][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2797.508931][ C0] CR2: 00000000085a0004 CR3: 0000000013d1e000 CR4: 00000000001526f0 [ 2797.508931][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2797.508931][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2797.508931][ C0] Call Trace: [ 2797.508931][ C0] [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2797.508931][ C0] __run_hrtimer+0x48b/0xd20 [ 2797.508931][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2797.508931][ C0] ? hrtimer_init+0x570/0x570 [ 2797.508931][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2797.508931][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2797.508931][ C0] [ 2797.508931][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2797.508931][ C0] RIP: 0010:virt_to_page_or_null+0x7d/0xf0 [ 2797.508931][ C0] Code: 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d 41 f6 c0 08 75 12 48 c1 ea 15 49 8b 4c 31 08 83 e2 3f 48 0f a3 [ 2797.508931][ C0] RSP: 0018:ffff88810604b0a8 EFLAGS: 00000246 [ 2797.508931][ C0] RAX: 0000000000000000 RBX: ffffea0009e93758 RCX: ffff8881024f5d2e [ 2797.508931][ C0] RDX: 0000618009e93758 RSI: 0000000000000001 RDI: ffffea0009e93758 [ 2797.508931][ C0] RBP: ffff88810604b0c8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2797.508931][ C0] R10: 0000000070f628b2 R11: 0000000000000000 R12: ffff8881024f6848 [ 2797.508931][ C0] R13: ffff8881024f6848 R14: 0000000000000000 R15: 0000000000000000 [ 2797.508931][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2797.508931][ C0] __msan_instrument_asm_store+0xb5/0x130 [ 2797.508931][ C0] _raw_spin_lock+0x2d/0x90 [ 2797.508931][ C0] page_vma_mapped_walk+0x1a5e/0x3680 [ 2797.508931][ C0] page_referenced_one+0x139/0xd80 [ 2797.508931][ C0] ? page_referenced+0xc30/0xc30 [ 2797.508931][ C0] rmap_walk_file+0x8a8/0x1150 [ 2797.508931][ C0] page_referenced+0x9ef/0xc30 [ 2797.508931][ C0] ? page_referenced+0xc30/0xc30 [ 2797.508931][ C0] ? page_get_anon_vma+0x390/0x390 [ 2797.508931][ C0] shrink_active_list+0x925/0x2150 [ 2797.508931][ C0] shrink_lruvec+0x6af/0x1480 [ 2797.508931][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2797.508931][ C0] shrink_node+0x1a02/0x3400 [ 2797.508931][ C0] balance_pgdat+0x146e/0x2570 [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] kswapd+0x50b/0x8a0 [ 2797.508931][ C0] ? __kthread_parkme+0x22b/0x250 [ 2797.508931][ C0] kthread+0x521/0x560 [ 2797.508931][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2797.508931][ C0] ? kthread_blkcg+0x110/0x110 [ 2797.508931][ C0] ret_from_fork+0x1f/0x30 [ 2797.508931][ C0] ---[ end trace f7326eee4ef5380d ]--- [ 2797.508931][ C0] ------------[ cut here ]------------ [ 2797.508931][ C0] WARNING: CPU: 0 PID: 2026 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2797.508931][ C0] Modules linked in: [ 2797.508931][ C0] CPU: 0 PID: 2026 Comm: kswapd1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2797.508931][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2797.508931][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2797.508931][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2797.508931][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2797.508931][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881024f5dc0 [ 2797.508931][ C0] RDX: 0000000080010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2797.508931][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2797.508931][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2797.508931][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2797.508931][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2797.508931][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2797.508931][ C0] CR2: 00000000085a0004 CR3: 0000000013d1e000 CR4: 00000000001526f0 [ 2797.508931][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2797.508931][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2797.508931][ C0] Call Trace: [ 2797.508931][ C0] [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2797.508931][ C0] __run_hrtimer+0x48b/0xd20 [ 2797.508931][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2797.508931][ C0] ? hrtimer_init+0x570/0x570 [ 2797.508931][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2797.508931][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2797.508931][ C0] [ 2797.508931][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2797.508931][ C0] RIP: 0010:virt_to_page_or_null+0x7d/0xf0 [ 2797.508931][ C0] Code: 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 41 f6 c0 02 75 04 31 c0 5d 41 f6 c0 08 75 12 48 c1 ea 15 49 8b 4c 31 08 83 e2 3f 48 0f a3 [ 2797.508931][ C0] RSP: 0018:ffff88810604b0a8 EFLAGS: 00000246 [ 2797.508931][ C0] RAX: 0000000000000000 RBX: ffffea0009e93758 RCX: ffff8881024f5d2e [ 2797.508931][ C0] RDX: 0000618009e93758 RSI: 0000000000000001 RDI: ffffea0009e93758 [ 2797.508931][ C0] RBP: ffff88810604b0c8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2797.508931][ C0] R10: 0000000070f628b2 R11: 0000000000000000 R12: ffff8881024f6848 [ 2797.508931][ C0] R13: ffff8881024f6848 R14: 0000000000000000 R15: 0000000000000000 [ 2797.508931][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2797.508931][ C0] __msan_instrument_asm_store+0xb5/0x130 [ 2797.508931][ C0] _raw_spin_lock+0x2d/0x90 [ 2797.508931][ C0] page_vma_mapped_walk+0x1a5e/0x3680 [ 2797.508931][ C0] page_referenced_one+0x139/0xd80 [ 2797.508931][ C0] ? page_referenced+0xc30/0xc30 [ 2797.508931][ C0] rmap_walk_file+0x8a8/0x1150 [ 2797.508931][ C0] page_referenced+0x9ef/0xc30 [ 2797.508931][ C0] ? page_referenced+0xc30/0xc30 [ 2797.508931][ C0] ? page_get_anon_vma+0x390/0x390 [ 2797.508931][ C0] shrink_active_list+0x925/0x2150 [ 2797.508931][ C0] shrink_lruvec+0x6af/0x1480 [ 2797.508931][ C0] ? css_next_descendant_pre+0x112/0x4e0 [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] shrink_node_memcgs+0x5a3/0xc60 [ 2797.508931][ C0] shrink_node+0x1a02/0x3400 [ 2797.508931][ C0] balance_pgdat+0x146e/0x2570 [ 2797.508931][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2797.508931][ C0] kswapd+0x50b/0x8a0 [ 2797.508931][ C0] ? __kthread_parkme+0x22b/0x250 [ 2797.508931][ C0] kthread+0x521/0x560 [ 2797.508931][ C0] ? kswapd_run+0x3a0/0x3a0 [ 2797.508931][ C0] ? kthread_blkcg+0x110/0x110 [ 2797.508931][ C0] ret_from_fork+0x1f/0x30 [ 2797.508931][ C0] ---[ end trace f7326eee4ef5380e ]--- [ 2798.281553][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2798.351999][ C0] ------------[ cut here ]------------ [ 2798.351999][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2798.368811][ C0] Modules linked in: [ 2798.368811][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2798.368811][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2798.368811][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2798.368811][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2798.368811][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2798.368811][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2798.432184][ C0] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2798.432184][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2798.432184][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2798.432184][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2798.432184][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2798.432184][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2798.432184][ C0] CR2: 00000000098df404 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2798.432184][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2798.432184][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2798.432184][ C0] Call Trace: [ 2798.432184][ C0] [ 2798.432184][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2798.432184][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2798.432184][ C0] __run_hrtimer+0x48b/0xd20 [ 2798.523459][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2798.523459][ C0] ? hrtimer_init+0x570/0x570 [ 2798.523459][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2798.523459][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2798.523459][ C0] [ 2798.523459][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2798.523459][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2798.523459][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2798.523459][ C0] RSP: 0018:ffff888115d1b9f8 EFLAGS: 00000282 [ 2798.523459][ C0] RAX: ffff8881a06c8028 RBX: ffff8881206c8028 RCX: ffff88813fffa240 [ 2798.523459][ C0] RDX: 00000001206c8028 RSI: 0000000000000240 RDI: ffff8881206c8028 [ 2798.523459][ C0] RBP: ffff888115d1b9f8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2798.523459][ C0] R10: 0000000000000002 R11: ffff888111759f40 R12: ffff8881206c8025 [ 2798.523459][ C0] R13: ffff88811175a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2798.620796][ C0] kmsan_get_metadata+0x116/0x180 [ 2798.620796][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2798.631812][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2798.620796][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2798.620796][ C0] link_path_walk+0x946/0x1540 [ 2798.620796][ C0] filename_parentat+0x307/0x1e50 [ 2798.651368][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2798.645751][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2798.645751][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2798.645751][ C0] ? filename_create+0xbb/0xd30 [ 2798.645751][ C0] filename_create+0x196/0xd30 [ 2798.645751][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2798.645751][ C0] ? getname_flags+0x74c/0xbe0 [ 2798.645751][ C0] do_mkdirat+0x10f/0x740 [ 2798.645751][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2798.645751][ C0] __se_sys_mkdir+0x76/0x90 [ 2798.645751][ C0] __x64_sys_mkdir+0x3e/0x60 [ 2798.645751][ C0] do_syscall_64+0x9f/0x140 [ 2798.645751][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2798.645751][ C0] RIP: 0033:0x7fc932ca4687 [ 2798.645751][ C0] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48 [ 2798.645751][ C0] RSP: 002b:00007fff374ed108 EFLAGS: 00000293 ORIG_RAX: 0000000000000053 [ 2798.645751][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932ca4687 [ 2798.645751][ C0] RDX: 0000000000000000 RSI: 00000000000001ed RDI: 0000560eff1e58a0 [ 2798.645751][ C0] RBP: 00007fff374ed140 R08: 0000560efeb543e5 R09: 0000000000000018 [ 2798.645751][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000 [ 2798.645751][ C0] R13: 0000000000000001 R14: 0000560eff1e58a0 R15: 00007fff374ed780 [ 2798.645751][ C0] ---[ end trace f7326eee4ef5380f ]--- [ 2798.806109][ C0] ------------[ cut here ]------------ [ 2798.811821][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2798.814525][ C0] Modules linked in: [ 2798.814525][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2798.814525][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2798.814525][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2798.814525][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2798.814525][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2798.814525][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2798.814525][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2798.814525][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2798.814525][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2798.814525][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2798.814525][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2798.814525][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2798.814525][ C0] CR2: 00000000098df404 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2798.814525][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2798.814525][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2798.814525][ C0] Call Trace: [ 2798.814525][ C0] [ 2798.814525][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2798.814525][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2798.814525][ C0] __run_hrtimer+0x48b/0xd20 [ 2798.814525][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2798.814525][ C0] ? hrtimer_init+0x570/0x570 [ 2798.814525][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2798.814525][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2798.814525][ C0] [ 2798.814525][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2798.814525][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2798.814525][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2798.814525][ C0] RSP: 0018:ffff888115d1b9f8 EFLAGS: 00000282 [ 2798.814525][ C0] RAX: ffff8881a06c8028 RBX: ffff8881206c8028 RCX: ffff88813fffa240 [ 2798.814525][ C0] RDX: 00000001206c8028 RSI: 0000000000000240 RDI: ffff8881206c8028 [ 2798.814525][ C0] RBP: ffff888115d1b9f8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2798.814525][ C0] R10: 0000000000000002 R11: ffff888111759f40 R12: ffff8881206c8025 [ 2798.814525][ C0] R13: ffff88811175a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2798.814525][ C0] kmsan_get_metadata+0x116/0x180 [ 2798.814525][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2798.814525][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2798.814525][ C0] link_path_walk+0x946/0x1540 [ 2798.814525][ C0] filename_parentat+0x307/0x1e50 [ 2798.814525][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2798.814525][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2798.814525][ C0] ? filename_create+0xbb/0xd30 [ 2798.814525][ C0] filename_create+0x196/0xd30 [ 2798.814525][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2798.814525][ C0] ? getname_flags+0x74c/0xbe0 [ 2798.814525][ C0] do_mkdirat+0x10f/0x740 [ 2798.814525][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2798.814525][ C0] __se_sys_mkdir+0x76/0x90 [ 2798.814525][ C0] __x64_sys_mkdir+0x3e/0x60 [ 2798.814525][ C0] do_syscall_64+0x9f/0x140 [ 2798.814525][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2798.814525][ C0] RIP: 0033:0x7fc932ca4687 [ 2798.814525][ C0] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48 [ 2798.814525][ C0] RSP: 002b:00007fff374ed108 EFLAGS: 00000293 ORIG_RAX: 0000000000000053 [ 2798.814525][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932ca4687 [ 2798.814525][ C0] RDX: 0000000000000000 RSI: 00000000000001ed RDI: 0000560eff1e58a0 [ 2798.814525][ C0] RBP: 00007fff374ed140 R08: 0000560efeb543e5 R09: 0000000000000018 [ 2798.814525][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000 [ 2798.814525][ C0] R13: 0000000000000001 R14: 0000560eff1e58a0 R15: 00007fff374ed780 [ 2798.814525][ C0] ---[ end trace f7326eee4ef53810 ]--- [ 2799.226280][ C0] ------------[ cut here ]------------ [ 2799.231982][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2799.234824][ C0] Modules linked in: [ 2799.234824][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2799.234824][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2799.234824][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2799.234824][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2799.234824][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2799.234824][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2799.234824][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2799.234824][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2799.234824][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2799.234824][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2799.234824][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2799.234824][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2799.234824][ C0] CR2: 00000000098df404 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2799.234824][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2799.234824][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2799.234824][ C0] Call Trace: [ 2799.234824][ C0] [ 2799.234824][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2799.234824][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2799.234824][ C0] __run_hrtimer+0x48b/0xd20 [ 2799.234824][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2799.234824][ C0] ? hrtimer_init+0x570/0x570 [ 2799.234824][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2799.234824][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2799.234824][ C0] [ 2799.234824][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2799.234824][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2799.234824][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2799.234824][ C0] RSP: 0018:ffff888115d1b9f8 EFLAGS: 00000282 [ 2799.234824][ C0] RAX: ffff8881a06c8028 RBX: ffff8881206c8028 RCX: ffff88813fffa240 [ 2799.234824][ C0] RDX: 00000001206c8028 RSI: 0000000000000240 RDI: ffff8881206c8028 [ 2799.234824][ C0] RBP: ffff888115d1b9f8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2799.234824][ C0] R10: 0000000000000002 R11: ffff888111759f40 R12: ffff8881206c8025 [ 2799.234824][ C0] R13: ffff88811175a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2799.234824][ C0] kmsan_get_metadata+0x116/0x180 [ 2799.234824][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2799.234824][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2799.234824][ C0] link_path_walk+0x946/0x1540 [ 2799.234824][ C0] filename_parentat+0x307/0x1e50 [ 2799.234824][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2799.234824][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2799.234824][ C0] ? filename_create+0xbb/0xd30 [ 2799.234824][ C0] filename_create+0x196/0xd30 [ 2799.234824][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2799.234824][ C0] ? getname_flags+0x74c/0xbe0 [ 2799.234824][ C0] do_mkdirat+0x10f/0x740 [ 2799.234824][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2799.234824][ C0] __se_sys_mkdir+0x76/0x90 [ 2799.234824][ C0] __x64_sys_mkdir+0x3e/0x60 [ 2799.234824][ C0] do_syscall_64+0x9f/0x140 [ 2799.234824][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2799.234824][ C0] RIP: 0033:0x7fc932ca4687 [ 2799.234824][ C0] Code: 00 b8 ff ff ff ff c3 0f 1f 40 00 48 8b 05 09 d8 2b 00 64 c7 00 5f 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d e1 d7 2b 00 f7 d8 64 89 01 48 [ 2799.234824][ C0] RSP: 002b:00007fff374ed108 EFLAGS: 00000293 ORIG_RAX: 0000000000000053 [ 2799.234824][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932ca4687 [ 2799.234824][ C0] RDX: 0000000000000000 RSI: 00000000000001ed RDI: 0000560eff1e58a0 [ 2799.234824][ C0] RBP: 00007fff374ed140 R08: 0000560efeb543e5 R09: 0000000000000018 [ 2799.234824][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 0000000000000000 [ 2799.234824][ C0] R13: 0000000000000001 R14: 0000560eff1e58a0 R15: 00007fff374ed780 [ 2799.234824][ C0] ---[ end trace f7326eee4ef53811 ]--- [ 2799.736505][ C0] ------------[ cut here ]------------ [ 2799.742197][ C0] WARNING: CPU: 0 PID: 8604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2799.745078][ C0] Modules linked in: [ 2799.745078][ C0] CPU: 0 PID: 8604 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2799.745078][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2799.745078][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2799.774978][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2799.774978][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2799.774978][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888073f98000 [ 2799.774978][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2799.812370][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2799.812370][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2799.812370][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2799.812370][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:0000000009999380 [ 2799.842159][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2799.842159][ C0] CR2: 000000000816c0d0 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2799.842159][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2799.842159][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2799.872309][ C0] Call Trace: [ 2799.872309][ C0] [ 2799.872309][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2799.872309][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2799.872309][ C0] __run_hrtimer+0x48b/0xd20 [ 2799.872309][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2799.872309][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2799.872309][ C0] ? hrtimer_init+0x570/0x570 [ 2799.872309][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2799.872309][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2799.872309][ C0] [ 2799.872309][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2799.872309][ C0] RIP: 0010:__sock_create+0x1d0/0x1040 [ 2799.872309][ C0] Code: 00 00 00 00 44 8b 65 cc 45 89 66 08 8b 45 c0 41 89 86 90 0c 00 00 bf 02 00 00 00 8b 5d ac 89 de e8 55 5b 69 f5 89 d8 83 f0 02 <45> 85 e4 0f 95 c1 44 85 f8 41 0f 94 c7 41 20 cf 83 fb 02 0f 94 c3 [ 2799.949038][ C0] RSP: 0018:ffff8880852d3c18 EFLAGS: 00000202 [ 2799.962172][ C0] RAX: 0000000000000008 RBX: 000000000000000a RCX: ffff888073f98000 [ 2799.964265][ C0] RDX: ffff888073f98000 RSI: 000000000000000a RDI: 0000000000000002 [ 2799.964265][ C0] RBP: ffff8880852d3ce8 R08: ffffffff8c52dcbb R09: 0000000000000000 [ 2799.964265][ C0] R10: 00000000a386cc89 R11: ffff888073f98000 R12: 0000000000000000 [ 2799.989094][ C0] R13: 00000000ffffffff R14: ffff888073f98a88 R15: 00000000ffffffff [ 2799.999419][ C0] ? __sock_create+0x1cb/0x1040 [ 2799.999419][ C0] ? __sock_create+0x1cb/0x1040 [ 2799.999419][ C0] __sys_socket+0x1c6/0x650 [ 2799.999419][ C0] __se_compat_sys_socketcall+0x3c9/0x16b0 [ 2799.999419][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2799.999419][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2799.999419][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2799.999419][ C0] ? syscall_enter_from_user_mode_work+0x56/0x100 [ 2799.999419][ C0] __ia32_compat_sys_socketcall+0x3e/0x60 [ 2799.999419][ C0] __do_fast_syscall_32+0x127/0x180 [ 2799.999419][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2799.999419][ C0] do_SYSENTER_32+0x73/0x90 [ 2799.999419][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2799.999419][ C0] RIP: 0023:0xf7fa0549 [ 2799.999419][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2799.999419][ C0] RSP: 002b:00000000ffdd2a40 EFLAGS: 00000286 ORIG_RAX: 0000000000000066 [ 2799.999419][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000ffdd2a50 [ 2799.999419][ C0] RDX: 000000000000000a RSI: 00000000ffffffff RDI: 000000000816c000 [ 2799.999419][ C0] RBP: 000000000816da20 R08: 0000000000000000 R09: 0000000000000000 [ 2799.999419][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2799.999419][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2799.999419][ C0] ---[ end trace f7326eee4ef53812 ]--- [ 2800.142989][ C0] ------------[ cut here ]------------ [ 2800.148659][ C0] WARNING: CPU: 0 PID: 8604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2800.151553][ C0] Modules linked in: [ 2800.151553][ C0] CPU: 0 PID: 8604 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2800.151553][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2800.151553][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2800.151553][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2800.151553][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2800.151553][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888073f98000 [ 2800.151553][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2800.151553][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2800.151553][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2800.151553][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2800.151553][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:0000000009999380 [ 2800.151553][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2800.151553][ C0] CR2: 000000000816c0d0 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2800.151553][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2800.151553][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2800.151553][ C0] Call Trace: [ 2800.151553][ C0] [ 2800.151553][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2800.151553][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2800.151553][ C0] __run_hrtimer+0x48b/0xd20 [ 2800.151553][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2800.151553][ C0] ? hrtimer_init+0x570/0x570 [ 2800.151553][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2800.151553][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2800.151553][ C0] [ 2800.151553][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2800.151553][ C0] RIP: 0010:__sock_create+0x1d0/0x1040 [ 2800.151553][ C0] Code: 00 00 00 00 44 8b 65 cc 45 89 66 08 8b 45 c0 41 89 86 90 0c 00 00 bf 02 00 00 00 8b 5d ac 89 de e8 55 5b 69 f5 89 d8 83 f0 02 <45> 85 e4 0f 95 c1 44 85 f8 41 0f 94 c7 41 20 cf 83 fb 02 0f 94 c3 [ 2800.151553][ C0] RSP: 0018:ffff8880852d3c18 EFLAGS: 00000202 [ 2800.151553][ C0] RAX: 0000000000000008 RBX: 000000000000000a RCX: ffff888073f98000 [ 2800.151553][ C0] RDX: ffff888073f98000 RSI: 000000000000000a RDI: 0000000000000002 [ 2800.151553][ C0] RBP: ffff8880852d3ce8 R08: ffffffff8c52dcbb R09: 0000000000000000 [ 2800.151553][ C0] R10: 00000000a386cc89 R11: ffff888073f98000 R12: 0000000000000000 [ 2800.151553][ C0] R13: 00000000ffffffff R14: ffff888073f98a88 R15: 00000000ffffffff [ 2800.151553][ C0] ? __sock_create+0x1cb/0x1040 [ 2800.151553][ C0] ? __sock_create+0x1cb/0x1040 [ 2800.151553][ C0] __sys_socket+0x1c6/0x650 [ 2800.151553][ C0] __se_compat_sys_socketcall+0x3c9/0x16b0 [ 2800.151553][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2800.151553][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2800.151553][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2800.151553][ C0] ? syscall_enter_from_user_mode_work+0x56/0x100 [ 2800.151553][ C0] __ia32_compat_sys_socketcall+0x3e/0x60 [ 2800.151553][ C0] __do_fast_syscall_32+0x127/0x180 [ 2800.151553][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2800.151553][ C0] do_SYSENTER_32+0x73/0x90 [ 2800.151553][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2800.151553][ C0] RIP: 0023:0xf7fa0549 [ 2800.151553][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2800.151553][ C0] RSP: 002b:00000000ffdd2a40 EFLAGS: 00000286 ORIG_RAX: 0000000000000066 [ 2800.151553][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000ffdd2a50 [ 2800.151553][ C0] RDX: 000000000000000a RSI: 00000000ffffffff RDI: 000000000816c000 [ 2800.151553][ C0] RBP: 000000000816da20 R08: 0000000000000000 R09: 0000000000000000 [ 2800.151553][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2800.151553][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2800.151553][ C0] ---[ end trace f7326eee4ef53813 ]--- [ 2800.544428][ C0] ------------[ cut here ]------------ [ 2800.550235][ C0] WARNING: CPU: 0 PID: 8604 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2800.552964][ C0] Modules linked in: [ 2800.552964][ C0] CPU: 0 PID: 8604 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2800.552964][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2800.552964][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2800.552964][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2800.552964][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2800.552964][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888073f98000 [ 2800.552964][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2800.552964][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2800.552964][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2800.552964][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2800.552964][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:0000000009999380 [ 2800.552964][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2800.552964][ C0] CR2: 000000000816c0d0 CR3: 0000000085291000 CR4: 00000000001526f0 [ 2800.552964][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2800.552964][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2800.552964][ C0] Call Trace: [ 2800.552964][ C0] [ 2800.552964][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2800.552964][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2800.552964][ C0] __run_hrtimer+0x48b/0xd20 [ 2800.552964][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2800.552964][ C0] ? hrtimer_init+0x570/0x570 [ 2800.552964][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2800.552964][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2800.552964][ C0] [ 2800.552964][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2800.552964][ C0] RIP: 0010:__sock_create+0x1d0/0x1040 [ 2800.552964][ C0] Code: 00 00 00 00 44 8b 65 cc 45 89 66 08 8b 45 c0 41 89 86 90 0c 00 00 bf 02 00 00 00 8b 5d ac 89 de e8 55 5b 69 f5 89 d8 83 f0 02 <45> 85 e4 0f 95 c1 44 85 f8 41 0f 94 c7 41 20 cf 83 fb 02 0f 94 c3 [ 2800.552964][ C0] RSP: 0018:ffff8880852d3c18 EFLAGS: 00000202 [ 2800.552964][ C0] RAX: 0000000000000008 RBX: 000000000000000a RCX: ffff888073f98000 [ 2800.552964][ C0] RDX: ffff888073f98000 RSI: 000000000000000a RDI: 0000000000000002 [ 2800.552964][ C0] RBP: ffff8880852d3ce8 R08: ffffffff8c52dcbb R09: 0000000000000000 [ 2800.552964][ C0] R10: 00000000a386cc89 R11: ffff888073f98000 R12: 0000000000000000 [ 2800.552964][ C0] R13: 00000000ffffffff R14: ffff888073f98a88 R15: 00000000ffffffff [ 2800.552964][ C0] ? __sock_create+0x1cb/0x1040 [ 2800.552964][ C0] ? __sock_create+0x1cb/0x1040 [ 2800.552964][ C0] __sys_socket+0x1c6/0x650 [ 2800.552964][ C0] __se_compat_sys_socketcall+0x3c9/0x16b0 [ 2800.552964][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2800.552964][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2800.552964][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2800.552964][ C0] ? syscall_enter_from_user_mode_work+0x56/0x100 [ 2800.552964][ C0] __ia32_compat_sys_socketcall+0x3e/0x60 [ 2800.552964][ C0] __do_fast_syscall_32+0x127/0x180 [ 2800.552964][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2800.552964][ C0] do_SYSENTER_32+0x73/0x90 [ 2800.552964][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2800.552964][ C0] RIP: 0023:0xf7fa0549 [ 2800.552964][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2800.552964][ C0] RSP: 002b:00000000ffdd2a40 EFLAGS: 00000286 ORIG_RAX: 0000000000000066 [ 2800.552964][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000ffdd2a50 [ 2800.552964][ C0] RDX: 000000000000000a RSI: 00000000ffffffff RDI: 000000000816c000 [ 2800.552964][ C0] RBP: 000000000816da20 R08: 0000000000000000 R09: 0000000000000000 [ 2800.552964][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2800.552964][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2800.552964][ C0] ---[ end trace f7326eee4ef53814 ]--- [ 2801.023632][ C0] ------------[ cut here ]------------ [ 2801.023632][ C0] WARNING: CPU: 0 PID: 7927 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2801.045329][ C0] Modules linked in: [ 2801.052093][ C0] CPU: 0 PID: 7927 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2801.056848][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2801.056848][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2801.056848][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2801.056848][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2801.056848][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888105455dc0 [ 2801.056848][ C0] RDX: 0000000080010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2801.056848][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2801.056848][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2801.056848][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2801.056848][ C0] FS: 00007f5295a36700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2801.056848][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2801.056848][ C0] CR2: 000000000a7b4404 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2801.056848][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2801.056848][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2801.056848][ C0] Call Trace: [ 2801.056848][ C0] [ 2801.056848][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.056848][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2801.056848][ C0] __run_hrtimer+0x48b/0xd20 [ 2801.056848][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2801.056848][ C0] ? hrtimer_init+0x570/0x570 [ 2801.056848][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2801.056848][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2801.056848][ C0] [ 2801.056848][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2801.056848][ C0] RIP: 0010:mutex_lock+0x6/0x80 [ 2801.056848][ C0] Code: 20 03 00 00 00 00 00 00 48 89 df 4c 89 f6 ba 02 01 00 00 e8 9c f2 ff ff 5b 41 5e 5d c3 cc cc cc cc cc cc cc 55 48 89 e5 41 57 <41> 56 41 55 41 54 53 49 89 fe e8 db da b7 f2 48 89 c3 4c 8b 20 44 [ 2801.056848][ C0] RSP: 0018:ffff8881242dbda0 EFLAGS: 00000286 [ 2801.056848][ C0] RAX: ffffffff82619268 RBX: ffff888105456848 RCX: ffff888105455dc0 [ 2801.056848][ C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff88810b512448 [ 2801.056848][ C0] RBP: ffff8881242dbda8 R08: ffffffff8261924c R09: ffff88813fffa000 [ 2801.056848][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88810b512448 [ 2801.056848][ C0] R13: 00000000043e00c7 R14: ffff88810b512403 R15: 0000000000000000 [ 2801.056848][ C0] ? __fdget_pos+0x15c/0x210 [ 2801.056848][ C0] ? __fdget_pos+0x178/0x210 [ 2801.056848][ C0] __fdget_pos+0x197/0x210 [ 2801.056848][ C0] ksys_write+0x8f/0x500 [ 2801.056848][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.056848][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.056848][ C0] __se_sys_write+0x92/0xb0 [ 2801.056848][ C0] __x64_sys_write+0x4a/0x70 [ 2801.056848][ C0] do_syscall_64+0x9f/0x140 [ 2801.056848][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2801.056848][ C0] RIP: 0033:0x7f529847a1cd [ 2801.056848][ C0] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2801.056848][ C0] RSP: 002b:00007f5295a35580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2801.056848][ C0] RAX: ffffffffffffffda RBX: 00007f528c020430 RCX: 00007f529847a1cd [ 2801.056848][ C0] RDX: 0000000000001000 RSI: 00007f528c020430 RDI: 0000000000000006 [ 2801.056848][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f528c0204c0 [ 2801.056848][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f528c0201b0 [ 2801.056848][ C0] R13: 00007f5295a355a0 R14: 0000000000000046 R15: 0000000000001000 [ 2801.056848][ C0] ---[ end trace f7326eee4ef53815 ]--- [ 2801.417655][ C0] ------------[ cut here ]------------ [ 2801.423343][ C0] WARNING: CPU: 0 PID: 7927 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2801.426133][ C0] Modules linked in: [ 2801.426133][ C0] CPU: 0 PID: 7927 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2801.426133][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2801.426133][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2801.426133][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2801.426133][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2801.426133][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888105455dc0 [ 2801.426133][ C0] RDX: 0000000080010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2801.426133][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2801.426133][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2801.426133][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2801.426133][ C0] FS: 00007f5295a36700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2801.426133][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2801.426133][ C0] CR2: 000000000a7b4404 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2801.426133][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2801.426133][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2801.426133][ C0] Call Trace: [ 2801.426133][ C0] [ 2801.426133][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.426133][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2801.426133][ C0] __run_hrtimer+0x48b/0xd20 [ 2801.426133][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2801.426133][ C0] ? hrtimer_init+0x570/0x570 [ 2801.426133][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2801.426133][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2801.426133][ C0] [ 2801.426133][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2801.426133][ C0] RIP: 0010:mutex_lock+0x6/0x80 [ 2801.426133][ C0] Code: 20 03 00 00 00 00 00 00 48 89 df 4c 89 f6 ba 02 01 00 00 e8 9c f2 ff ff 5b 41 5e 5d c3 cc cc cc cc cc cc cc 55 48 89 e5 41 57 <41> 56 41 55 41 54 53 49 89 fe e8 db da b7 f2 48 89 c3 4c 8b 20 44 [ 2801.426133][ C0] RSP: 0018:ffff8881242dbda0 EFLAGS: 00000286 [ 2801.426133][ C0] RAX: ffffffff82619268 RBX: ffff888105456848 RCX: ffff888105455dc0 [ 2801.426133][ C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff88810b512448 [ 2801.426133][ C0] RBP: ffff8881242dbda8 R08: ffffffff8261924c R09: ffff88813fffa000 [ 2801.426133][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88810b512448 [ 2801.426133][ C0] R13: 00000000043e00c7 R14: ffff88810b512403 R15: 0000000000000000 [ 2801.426133][ C0] ? __fdget_pos+0x15c/0x210 [ 2801.426133][ C0] ? __fdget_pos+0x178/0x210 [ 2801.426133][ C0] __fdget_pos+0x197/0x210 [ 2801.426133][ C0] ksys_write+0x8f/0x500 [ 2801.426133][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.426133][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.426133][ C0] __se_sys_write+0x92/0xb0 [ 2801.426133][ C0] __x64_sys_write+0x4a/0x70 [ 2801.426133][ C0] do_syscall_64+0x9f/0x140 [ 2801.426133][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2801.426133][ C0] RIP: 0033:0x7f529847a1cd [ 2801.426133][ C0] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2801.426133][ C0] RSP: 002b:00007f5295a35580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2801.426133][ C0] RAX: ffffffffffffffda RBX: 00007f528c020430 RCX: 00007f529847a1cd [ 2801.426133][ C0] RDX: 0000000000001000 RSI: 00007f528c020430 RDI: 0000000000000006 [ 2801.426133][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f528c0204c0 [ 2801.426133][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f528c0201b0 [ 2801.426133][ C0] R13: 00007f5295a355a0 R14: 0000000000000046 R15: 0000000000001000 [ 2801.426133][ C0] ---[ end trace f7326eee4ef53816 ]--- [ 2801.426133][ C0] ------------[ cut here ]------------ [ 2801.426133][ C0] WARNING: CPU: 0 PID: 7927 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2801.426133][ C0] Modules linked in: [ 2801.426133][ C0] CPU: 0 PID: 7927 Comm: rs:main Q:Reg Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2801.426133][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2801.426133][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2801.426133][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2801.426133][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2801.426133][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888105455dc0 [ 2801.426133][ C0] RDX: 0000000080010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2801.426133][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2801.426133][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2801.426133][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2801.426133][ C0] FS: 00007f5295a36700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2801.426133][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2801.426133][ C0] CR2: 000000000a7b4404 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2801.426133][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2801.426133][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2801.426133][ C0] Call Trace: [ 2801.426133][ C0] [ 2801.426133][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2801.426133][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2801.426133][ C0] __run_hrtimer+0x48b/0xd20 [ 2801.426133][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2801.426133][ C0] ? hrtimer_init+0x570/0x570 [ 2801.426133][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2801.426133][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2801.426133][ C0] [ 2801.426133][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2801.426133][ C0] RIP: 0010:mutex_lock+0x6/0x80 [ 2801.426133][ C0] Code: 20 03 00 00 00 00 00 00 48 89 df 4c 89 f6 ba 02 01 00 00 e8 9c f2 ff ff 5b 41 5e 5d c3 cc cc cc cc cc cc cc 55 48 89 e5 41 57 <41> 56 41 55 41 54 53 49 89 fe e8 db da b7 f2 48 89 c3 4c 8b 20 44 [ 2802.012427][ C0] RSP: 0018:ffff8881242dbda0 EFLAGS: 00000286 [ 2802.012427][ C0] RAX: ffffffff82619268 RBX: ffff888105456848 RCX: ffff888105455dc0 [ 2802.012427][ C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: ffff88810b512448 [ 2802.012427][ C0] RBP: ffff8881242dbda8 R08: ffffffff8261924c R09: ffff88813fffa000 [ 2802.012427][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88810b512448 [ 2802.012427][ C0] R13: 00000000043e00c7 R14: ffff88810b512403 R15: 0000000000000000 [ 2802.012427][ C0] ? __fdget_pos+0x15c/0x210 [ 2802.012427][ C0] ? __fdget_pos+0x178/0x210 [ 2802.012427][ C0] __fdget_pos+0x197/0x210 [ 2802.012427][ C0] ksys_write+0x8f/0x500 [ 2802.012427][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.012427][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.012427][ C0] __se_sys_write+0x92/0xb0 [ 2802.012427][ C0] __x64_sys_write+0x4a/0x70 [ 2802.012427][ C0] do_syscall_64+0x9f/0x140 [ 2802.012427][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2802.012427][ C0] RIP: 0033:0x7f529847a1cd [ 2802.012427][ C0] Code: c2 20 00 00 75 10 b8 01 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 ae fc ff ff 48 89 04 24 b8 01 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 f7 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2802.012427][ C0] RSP: 002b:00007f5295a35580 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 2802.012427][ C0] RAX: ffffffffffffffda RBX: 00007f528c020430 RCX: 00007f529847a1cd [ 2802.012427][ C0] RDX: 0000000000001000 RSI: 00007f528c020430 RDI: 0000000000000006 [ 2802.012427][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007f528c0204c0 [ 2802.012427][ C0] R10: 0000000000000000 R11: 0000000000000293 R12: 00007f528c0201b0 [ 2802.012427][ C0] R13: 00007f5295a355a0 R14: 0000000000000046 R15: 0000000000001000 [ 2802.012427][ C0] ---[ end trace f7326eee4ef53817 ]--- [ 2802.251779][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2802.272043][ C0] ------------[ cut here ]------------ [ 2802.272043][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2802.272043][ C0] Modules linked in: [ 2802.272043][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2802.272043][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2802.310064][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2802.272043][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2802.272043][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2802.272043][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2802.322236][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2802.352169][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2802.352169][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2802.352169][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2802.352169][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2802.352169][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2802.352169][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2802.403176][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2802.352169][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2802.352169][ C0] CR2: 000000000810e684 CR3: 00000000995b5000 CR4: 00000000001526f0 [ 2802.352169][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2802.352169][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2802.352169][ C0] Call Trace: [ 2802.352169][ C0] [ 2802.352169][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.352169][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2802.352169][ C0] __run_hrtimer+0x48b/0xd20 [ 2802.352169][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2802.352169][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2802.352169][ C0] ? hrtimer_init+0x570/0x570 [ 2802.352169][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2802.352169][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2802.352169][ C0] [ 2802.352169][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2802.352169][ C0] RIP: 0010:virt_to_page_or_null+0xc3/0xf0 [ 2802.352169][ C0] Code: ff ff 7f ff ff ff ff 48 39 cf 76 09 48 8b 0d a4 b4 23 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 <48> c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff [ 2802.352169][ C0] RSP: 0018:ffff8881f24eb210 EFLAGS: 00000206 [ 2802.352169][ C0] RAX: ffff8882724eb7d0 RBX: ffff8881f24eb7d0 RCX: 00000000009bb897 [ 2802.352169][ C0] RDX: 00000001f24eb7d0 RSI: 00000000000003e0 RDI: ffff8881f24eb7d0 [ 2802.352169][ C0] RBP: ffff8881f24eb210 R08: ffffea000000000f R09: ffff88813fffa000 [ 2802.352169][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 000019a97a71cc25 [ 2802.352169][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2802.352169][ C0] kmsan_get_metadata+0x116/0x180 [ 2802.352169][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2802.572202][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2802.572202][ C0] curve25519_generic+0x958e/0x23dc0 [ 2802.572202][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2802.572202][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2802.572202][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.572202][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.572202][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.572202][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2802.572202][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.572202][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.572202][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2802.572202][ C0] process_one_work+0x1219/0x1fe0 [ 2802.572202][ C0] worker_thread+0x10ec/0x2340 [ 2802.572202][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.572202][ C0] kthread+0x521/0x560 [ 2802.572202][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2802.572202][ C0] ? kthread_blkcg+0x110/0x110 [ 2802.572202][ C0] ret_from_fork+0x1f/0x30 [ 2802.572202][ C0] ---[ end trace f7326eee4ef53818 ]--- [ 2802.683134][ C0] ------------[ cut here ]------------ [ 2802.688814][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2802.691605][ C0] Modules linked in: [ 2802.691605][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2802.691605][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2802.691605][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2802.691605][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2802.691605][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2802.691605][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2802.691605][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2802.691605][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2802.691605][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2802.691605][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2802.691605][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2802.691605][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2802.691605][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2802.691605][ C0] CR2: 000000000810e684 CR3: 00000000995b5000 CR4: 00000000001526f0 [ 2802.691605][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2802.691605][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2802.691605][ C0] Call Trace: [ 2802.691605][ C0] [ 2802.691605][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.691605][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2802.691605][ C0] __run_hrtimer+0x48b/0xd20 [ 2802.691605][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2802.691605][ C0] ? hrtimer_init+0x570/0x570 [ 2802.691605][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2802.691605][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2802.691605][ C0] [ 2802.691605][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2802.691605][ C0] RIP: 0010:virt_to_page_or_null+0xc3/0xf0 [ 2802.691605][ C0] Code: ff ff 7f ff ff ff ff 48 39 cf 76 09 48 8b 0d a4 b4 23 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 <48> c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff [ 2802.892249][ C0] RSP: 0018:ffff8881f24eb210 EFLAGS: 00000206 [ 2802.892249][ C0] RAX: ffff8882724eb7d0 RBX: ffff8881f24eb7d0 RCX: 00000000009bb897 [ 2802.892249][ C0] RDX: 00000001f24eb7d0 RSI: 00000000000003e0 RDI: ffff8881f24eb7d0 [ 2802.892249][ C0] RBP: ffff8881f24eb210 R08: ffffea000000000f R09: ffff88813fffa000 [ 2802.892249][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 000019a97a71cc25 [ 2802.892249][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2802.892249][ C0] kmsan_get_metadata+0x116/0x180 [ 2802.892249][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2802.892249][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2802.892249][ C0] curve25519_generic+0x958e/0x23dc0 [ 2802.892249][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2802.892249][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2802.892249][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.892249][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.892249][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2802.892249][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2802.892249][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.892249][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.892249][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2802.892249][ C0] process_one_work+0x1219/0x1fe0 [ 2802.892249][ C0] worker_thread+0x10ec/0x2340 [ 2802.892249][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2802.892249][ C0] kthread+0x521/0x560 [ 2802.892249][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2802.892249][ C0] ? kthread_blkcg+0x110/0x110 [ 2802.892249][ C0] ret_from_fork+0x1f/0x30 [ 2802.892249][ C0] ---[ end trace f7326eee4ef53819 ]--- [ 2803.062589][ C0] ------------[ cut here ]------------ [ 2803.068290][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2803.072934][ C0] Modules linked in: [ 2803.072934][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2803.072934][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2803.072934][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2803.072934][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2803.072934][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2803.072934][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2803.072934][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2803.072934][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2803.072934][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2803.072934][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2803.072934][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2803.072934][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2803.072934][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2803.072934][ C0] CR2: 000000000810e684 CR3: 00000000995b5000 CR4: 00000000001526f0 [ 2803.072934][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2803.072934][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2803.072934][ C0] Call Trace: [ 2803.072934][ C0] [ 2803.072934][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2803.072934][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2803.072934][ C0] __run_hrtimer+0x48b/0xd20 [ 2803.072934][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2803.072934][ C0] ? hrtimer_init+0x570/0x570 [ 2803.072934][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2803.072934][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2803.072934][ C0] [ 2803.072934][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2803.072934][ C0] RIP: 0010:virt_to_page_or_null+0xc3/0xf0 [ 2803.072934][ C0] Code: ff ff 7f ff ff ff ff 48 39 cf 76 09 48 8b 0d a4 b4 23 0f eb 0a 48 b9 00 00 00 80 7f 77 00 00 48 01 c1 48 c1 e9 0c 48 8d 0c 89 <48> c1 e1 04 48 b8 00 00 00 00 00 ea ff ff 48 01 c8 5d c3 48 3d ff [ 2803.072934][ C0] RSP: 0018:ffff8881f24eb210 EFLAGS: 00000206 [ 2803.291996][ C0] RAX: ffff8882724eb7d0 RBX: ffff8881f24eb7d0 RCX: 00000000009bb897 [ 2803.291996][ C0] RDX: 00000001f24eb7d0 RSI: 00000000000003e0 RDI: ffff8881f24eb7d0 [ 2803.291996][ C0] RBP: ffff8881f24eb210 R08: ffffea000000000f R09: ffff88813fffa000 [ 2803.291996][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 000019a97a71cc25 [ 2803.291996][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2803.291996][ C0] kmsan_get_metadata+0x116/0x180 [ 2803.291996][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2803.291996][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2803.291996][ C0] curve25519_generic+0x958e/0x23dc0 [ 2803.291996][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2803.291996][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2803.291996][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.291996][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2803.291996][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2803.291996][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2803.291996][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.291996][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.291996][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2803.291996][ C0] process_one_work+0x1219/0x1fe0 [ 2803.291996][ C0] worker_thread+0x10ec/0x2340 [ 2803.291996][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.291996][ C0] kthread+0x521/0x560 [ 2803.291996][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2803.291996][ C0] ? kthread_blkcg+0x110/0x110 [ 2803.291996][ C0] ret_from_fork+0x1f/0x30 [ 2803.291996][ C0] ---[ end trace f7326eee4ef5381a ]--- [ 2803.535615][ C0] ------------[ cut here ]------------ [ 2803.541320][ C0] WARNING: CPU: 0 PID: 24884 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2803.544219][ C0] Modules linked in: [ 2803.544219][ C0] CPU: 0 PID: 24884 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2803.544219][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2803.544219][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2803.544219][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2803.544219][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2803.544219][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88816d821f40 [ 2803.544219][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2803.544219][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2803.544219][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2803.544219][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2803.544219][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000925c380 [ 2803.544219][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2803.544219][ C0] CR2: 0000000008192f40 CR3: 00000000ab7c0000 CR4: 00000000001526f0 [ 2803.544219][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2803.544219][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2803.544219][ C0] Call Trace: [ 2803.544219][ C0] [ 2803.544219][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2803.544219][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2803.544219][ C0] __run_hrtimer+0x48b/0xd20 [ 2803.544219][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2803.544219][ C0] ? hrtimer_init+0x570/0x570 [ 2803.544219][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2803.544219][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2803.544219][ C0] [ 2803.544219][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2803.544219][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2803.544219][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2803.544219][ C0] RSP: 0000:ffff8880a0ec3588 EFLAGS: 00000286 [ 2803.544219][ C0] RAX: ffff88816d8229c8 RBX: ffff88802b3b3000 RCX: 0000000000000401 [ 2803.544219][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88802b3b3000 [ 2803.544219][ C0] RBP: ffff8880a0ec35a0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2803.544219][ C0] R10: 000000004327f5e3 R11: ffff88816d821f40 R12: 0000000000000001 [ 2803.544219][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2803.544219][ C0] clear_page+0x34/0x40 [ 2803.544219][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2803.544219][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2803.544219][ C0] alloc_pages_vma+0x139b/0x1ec0 [ 2803.544219][ C0] wp_page_copy+0x3a2/0x3fa0 [ 2803.544219][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.544219][ C0] do_wp_page+0xd53/0x1eb0 [ 2803.544219][ C0] handle_mm_fault+0x4875/0x4ef0 [ 2803.544219][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2803.544219][ C0] do_user_addr_fault+0x159a/0x2650 [ 2803.544219][ C0] __exc_page_fault+0xe3/0x340 [ 2803.544219][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2803.544219][ C0] exc_page_fault+0x45/0x50 [ 2803.544219][ C0] asm_exc_page_fault+0x1e/0x30 [ 2803.544219][ C0] RIP: 0023:0x805b942 [ 2803.544219][ C0] Code: 39 c5 75 e4 8b 5c 24 10 e9 c8 fe ff ff 8d 76 00 8b 7c 24 18 89 ee e9 90 fd ff ff 8d 74 26 00 90 8b 44 24 24 8b 7c 24 18 89 ee <89> 1c 88 e9 60 fe ff ff c1 fe 03 89 f3 e9 99 fe ff ff 39 54 24 0c [ 2803.544219][ C0] RSP: 002b:00000000ff8b4fc0 EFLAGS: 00010246 [ 2803.544219][ C0] RAX: 0000000008190000 RBX: 0000000076178bd0 RCX: 0000000000000bd0 [ 2803.544219][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000008c52dd7e [ 2803.544219][ C0] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 2803.544219][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2803.544219][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2803.544219][ C0] ---[ end trace f7326eee4ef5381b ]--- [ 2803.544219][ C0] ------------[ cut here ]------------ [ 2803.544219][ C0] WARNING: CPU: 0 PID: 24884 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2803.544219][ C0] Modules linked in: [ 2803.544219][ C0] CPU: 0 PID: 24884 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2803.544219][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2803.544219][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2803.544219][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2803.544219][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2803.544219][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88816d821f40 [ 2803.544219][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2803.544219][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2803.544219][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2803.544219][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2803.544219][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000925c380 [ 2803.544219][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2803.544219][ C0] CR2: 0000000008192f40 CR3: 00000000ab7c0000 CR4: 00000000001526f0 [ 2803.544219][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2803.544219][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2803.544219][ C0] Call Trace: [ 2803.544219][ C0] [ 2803.544219][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2803.544219][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2803.544219][ C0] __run_hrtimer+0x48b/0xd20 [ 2803.544219][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2803.544219][ C0] ? hrtimer_init+0x570/0x570 [ 2803.544219][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2803.544219][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2803.544219][ C0] [ 2803.544219][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2803.544219][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2803.544219][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2803.544219][ C0] RSP: 0000:ffff8880a0ec3588 EFLAGS: 00000286 [ 2803.544219][ C0] RAX: ffff88816d8229c8 RBX: ffff88802b3b3000 RCX: 0000000000000401 [ 2803.544219][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88802b3b3000 [ 2803.544219][ C0] RBP: ffff8880a0ec35a0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2803.544219][ C0] R10: 000000004327f5e3 R11: ffff88816d821f40 R12: 0000000000000001 [ 2803.544219][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2803.544219][ C0] clear_page+0x34/0x40 [ 2803.544219][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2803.544219][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2803.544219][ C0] alloc_pages_vma+0x139b/0x1ec0 [ 2803.544219][ C0] wp_page_copy+0x3a2/0x3fa0 [ 2803.544219][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2803.544219][ C0] do_wp_page+0xd53/0x1eb0 [ 2803.544219][ C0] handle_mm_fault+0x4875/0x4ef0 [ 2803.544219][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2803.544219][ C0] do_user_addr_fault+0x159a/0x2650 [ 2803.544219][ C0] __exc_page_fault+0xe3/0x340 [ 2803.544219][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2803.544219][ C0] exc_page_fault+0x45/0x50 [ 2803.544219][ C0] asm_exc_page_fault+0x1e/0x30 [ 2803.544219][ C0] RIP: 0023:0x805b942 [ 2803.544219][ C0] Code: 39 c5 75 e4 8b 5c 24 10 e9 c8 fe ff ff 8d 76 00 8b 7c 24 18 89 ee e9 90 fd ff ff 8d 74 26 00 90 8b 44 24 24 8b 7c 24 18 89 ee <89> 1c 88 e9 60 fe ff ff c1 fe 03 89 f3 e9 99 fe ff ff 39 54 24 0c [ 2803.544219][ C0] RSP: 002b:00000000ff8b4fc0 EFLAGS: 00010246 [ 2803.544219][ C0] RAX: 0000000008190000 RBX: 0000000076178bd0 RCX: 0000000000000bd0 [ 2803.544219][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000008c52dd7e [ 2803.544219][ C0] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 2803.544219][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2803.544219][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2803.544219][ C0] ---[ end trace f7326eee4ef5381c ]--- [ 2804.349095][ C0] ------------[ cut here ]------------ [ 2804.354816][ C0] WARNING: CPU: 0 PID: 24884 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2804.357557][ C0] Modules linked in: [ 2804.357557][ C0] CPU: 0 PID: 24884 Comm: syz-executor.4 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2804.357557][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2804.357557][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2804.357557][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2804.357557][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2804.357557][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88816d821f40 [ 2804.357557][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2804.357557][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2804.357557][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2804.357557][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2804.357557][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000925c380 [ 2804.357557][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2804.357557][ C0] CR2: 0000000008192f40 CR3: 00000000ab7c0000 CR4: 00000000001526f0 [ 2804.357557][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2804.357557][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2804.357557][ C0] Call Trace: [ 2804.357557][ C0] [ 2804.357557][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2804.357557][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2804.357557][ C0] __run_hrtimer+0x48b/0xd20 [ 2804.357557][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2804.357557][ C0] ? hrtimer_init+0x570/0x570 [ 2804.357557][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2804.357557][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2804.357557][ C0] [ 2804.357557][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2804.357557][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2804.357557][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2804.357557][ C0] RSP: 0000:ffff8880a0ec3588 EFLAGS: 00000286 [ 2804.357557][ C0] RAX: ffff88816d8229c8 RBX: ffff88802b3b3000 RCX: 0000000000000401 [ 2804.357557][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff88802b3b3000 [ 2804.357557][ C0] RBP: ffff8880a0ec35a0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2804.357557][ C0] R10: 000000004327f5e3 R11: ffff88816d821f40 R12: 0000000000000001 [ 2804.357557][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2804.357557][ C0] clear_page+0x34/0x40 [ 2804.357557][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2804.357557][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2804.357557][ C0] alloc_pages_vma+0x139b/0x1ec0 [ 2804.357557][ C0] wp_page_copy+0x3a2/0x3fa0 [ 2804.357557][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2804.357557][ C0] do_wp_page+0xd53/0x1eb0 [ 2804.357557][ C0] handle_mm_fault+0x4875/0x4ef0 [ 2804.357557][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2804.357557][ C0] do_user_addr_fault+0x159a/0x2650 [ 2804.357557][ C0] __exc_page_fault+0xe3/0x340 [ 2804.357557][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2804.357557][ C0] exc_page_fault+0x45/0x50 [ 2804.357557][ C0] asm_exc_page_fault+0x1e/0x30 [ 2804.357557][ C0] RIP: 0023:0x805b942 [ 2804.357557][ C0] Code: 39 c5 75 e4 8b 5c 24 10 e9 c8 fe ff ff 8d 76 00 8b 7c 24 18 89 ee e9 90 fd ff ff 8d 74 26 00 90 8b 44 24 24 8b 7c 24 18 89 ee <89> 1c 88 e9 60 fe ff ff c1 fe 03 89 f3 e9 99 fe ff ff 39 54 24 0c [ 2804.357557][ C0] RSP: 002b:00000000ff8b4fc0 EFLAGS: 00010246 [ 2804.357557][ C0] RAX: 0000000008190000 RBX: 0000000076178bd0 RCX: 0000000000000bd0 [ 2804.357557][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000008c52dd7e [ 2804.357557][ C0] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 2804.357557][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2804.357557][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2804.357557][ C0] ---[ end trace f7326eee4ef5381d ]--- [ 2804.817883][ C0] ------------[ cut here ]------------ [ 2804.817883][ C0] WARNING: CPU: 0 PID: 24889 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2804.817883][ C0] Modules linked in: [ 2804.817883][ C0] CPU: 0 PID: 24889 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2804.817883][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2804.817883][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2804.817883][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2804.817883][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2804.817883][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b99f40 [ 2804.817883][ C0] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2804.817883][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2804.817883][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2804.817883][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2804.817883][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2804.817883][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2804.817883][ C0] CR2: 0000000020000080 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2804.817883][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2804.817883][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2804.817883][ C0] Call Trace: [ 2804.817883][ C0] [ 2804.817883][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2804.817883][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2804.817883][ C0] __run_hrtimer+0x48b/0xd20 [ 2804.817883][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2804.817883][ C0] ? hrtimer_init+0x570/0x570 [ 2804.817883][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2804.817883][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2804.817883][ C0] [ 2804.817883][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2804.817883][ C0] RIP: 0010:zap_pte_range+0x1333/0x3cb0 [ 2804.817883][ C0] Code: 89 3c 24 4c 8b a4 24 80 00 00 00 4d 85 e4 0f 85 74 02 00 00 4c 8b b4 24 28 01 00 00 45 8b 3e 4c 89 f7 e8 50 eb 1f 00 0f b7 18 <83> e3 f7 41 83 cf 08 8b 02 89 44 24 70 4d 85 e4 4c 8b 6c 24 10 0f [ 2804.817883][ C0] RSP: 0018:ffff8880b209b230 EFLAGS: 00000282 [ 2804.817883][ C0] RAX: ffff8880b189b7b0 RBX: 0000000000000000 RCX: 00000000b1c9b7b0 [ 2804.817883][ C0] RDX: ffff8880b1c9b7b0 RSI: 0000000000000160 RDI: ffff8880b209b7b0 [ 2804.817883][ C0] RBP: ffff8880b209b430 R08: ffffea000000000f R09: ffff88813fffa000 [ 2804.817883][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2804.817883][ C0] R13: 0000000000000000 R14: ffff8880b209b7b0 R15: 0000000000000009 [ 2804.817883][ C0] ? free_unref_page_commit+0x330/0x750 [ 2805.102324][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.102324][ C0] unmap_page_range+0x1154/0x1440 [ 2805.102324][ C0] unmap_single_vma+0x56b/0x750 [ 2805.102324][ C0] unmap_vmas+0x3c8/0x500 [ 2805.102324][ C0] exit_mmap+0x5f1/0xb80 [ 2805.102324][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.102324][ C0] __mmput+0x1b7/0x630 [ 2805.132157][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.132157][ C0] mmput+0x8c/0xb0 [ 2805.132157][ C0] exit_mm+0x7a9/0x9a0 [ 2805.132157][ C0] do_exit+0xdbb/0x3c20 [ 2805.132157][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.132157][ C0] do_group_exit+0x1e1/0x3c0 [ 2805.162343][ C0] get_signal+0x2e5f/0x39e0 [ 2805.162343][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2805.162343][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2805.162343][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2805.162343][ C0] ? __schedule+0x54b/0x5c0 [ 2805.162343][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.162343][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.162343][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.162343][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2805.162343][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2805.162343][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2805.162343][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2805.162343][ C0] do_SYSENTER_32+0x73/0x90 [ 2805.162343][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2805.162343][ C0] RIP: 0023:0xf7fa0549 [ 2805.162343][ C0] Code: Unable to access opcode bytes at RIP 0xf7fa051f. [ 2805.162343][ C0] RSP: 002b:00000000f559a68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2805.162343][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2805.162343][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2805.162343][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2805.162343][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2805.162343][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2805.162343][ C0] ---[ end trace f7326eee4ef5381e ]--- [ 2805.297283][ C0] ------------[ cut here ]------------ [ 2805.302987][ C0] WARNING: CPU: 0 PID: 24889 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2805.305730][ C0] Modules linked in: [ 2805.305730][ C0] CPU: 0 PID: 24889 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2805.305730][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2805.305730][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2805.305730][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2805.305730][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2805.305730][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b99f40 [ 2805.305730][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2805.305730][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2805.305730][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2805.305730][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2805.305730][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2805.305730][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2805.305730][ C0] CR2: 0000000020000080 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2805.305730][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2805.305730][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2805.305730][ C0] Call Trace: [ 2805.305730][ C0] [ 2805.305730][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.305730][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2805.305730][ C0] __run_hrtimer+0x48b/0xd20 [ 2805.305730][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2805.305730][ C0] ? hrtimer_init+0x570/0x570 [ 2805.305730][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2805.305730][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2805.305730][ C0] [ 2805.305730][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2805.305730][ C0] RIP: 0010:zap_pte_range+0x1333/0x3cb0 [ 2805.305730][ C0] Code: 89 3c 24 4c 8b a4 24 80 00 00 00 4d 85 e4 0f 85 74 02 00 00 4c 8b b4 24 28 01 00 00 45 8b 3e 4c 89 f7 e8 50 eb 1f 00 0f b7 18 <83> e3 f7 41 83 cf 08 8b 02 89 44 24 70 4d 85 e4 4c 8b 6c 24 10 0f [ 2805.305730][ C0] RSP: 0018:ffff8880b209b230 EFLAGS: 00000282 [ 2805.305730][ C0] RAX: ffff8880b189b7b0 RBX: 0000000000000000 RCX: 00000000b1c9b7b0 [ 2805.305730][ C0] RDX: ffff8880b1c9b7b0 RSI: 0000000000000160 RDI: ffff8880b209b7b0 [ 2805.305730][ C0] RBP: ffff8880b209b430 R08: ffffea000000000f R09: ffff88813fffa000 [ 2805.305730][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2805.305730][ C0] R13: 0000000000000000 R14: ffff8880b209b7b0 R15: 0000000000000009 [ 2805.305730][ C0] ? free_unref_page_commit+0x330/0x750 [ 2805.305730][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.305730][ C0] unmap_page_range+0x1154/0x1440 [ 2805.305730][ C0] unmap_single_vma+0x56b/0x750 [ 2805.305730][ C0] unmap_vmas+0x3c8/0x500 [ 2805.305730][ C0] exit_mmap+0x5f1/0xb80 [ 2805.305730][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.305730][ C0] __mmput+0x1b7/0x630 [ 2805.305730][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.305730][ C0] mmput+0x8c/0xb0 [ 2805.305730][ C0] exit_mm+0x7a9/0x9a0 [ 2805.305730][ C0] do_exit+0xdbb/0x3c20 [ 2805.305730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.305730][ C0] do_group_exit+0x1e1/0x3c0 [ 2805.305730][ C0] get_signal+0x2e5f/0x39e0 [ 2805.305730][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2805.305730][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2805.305730][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2805.305730][ C0] ? __schedule+0x54b/0x5c0 [ 2805.305730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.305730][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.305730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.305730][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2805.305730][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2805.305730][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2805.305730][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2805.305730][ C0] do_SYSENTER_32+0x73/0x90 [ 2805.305730][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2805.305730][ C0] RIP: 0023:0xf7fa0549 [ 2805.305730][ C0] Code: Unable to access opcode bytes at RIP 0xf7fa051f. [ 2805.305730][ C0] RSP: 002b:00000000f559a68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2805.305730][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2805.305730][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2805.305730][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2805.305730][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2805.305730][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2805.305730][ C0] ---[ end trace f7326eee4ef5381f ]--- [ 2805.305730][ C0] ------------[ cut here ]------------ [ 2805.305730][ C0] WARNING: CPU: 0 PID: 24889 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2805.772185][ C0] Modules linked in: [ 2805.772185][ C0] CPU: 0 PID: 24889 Comm: syz-executor.1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2805.772185][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2805.792265][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2805.792265][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2805.792265][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2805.792265][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880b0b99f40 [ 2805.792265][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2805.792265][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2805.792265][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2805.792265][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2805.792265][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2805.792265][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2805.792265][ C0] CR2: 0000000020000080 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2805.792265][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2805.792265][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2805.792265][ C0] Call Trace: [ 2805.792265][ C0] [ 2805.792265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.792265][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2805.792265][ C0] __run_hrtimer+0x48b/0xd20 [ 2805.792265][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2805.792265][ C0] ? hrtimer_init+0x570/0x570 [ 2805.792265][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2805.792265][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2805.792265][ C0] [ 2805.792265][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2805.792265][ C0] RIP: 0010:zap_pte_range+0x1333/0x3cb0 [ 2805.792265][ C0] Code: 89 3c 24 4c 8b a4 24 80 00 00 00 4d 85 e4 0f 85 74 02 00 00 4c 8b b4 24 28 01 00 00 45 8b 3e 4c 89 f7 e8 50 eb 1f 00 0f b7 18 <83> e3 f7 41 83 cf 08 8b 02 89 44 24 70 4d 85 e4 4c 8b 6c 24 10 0f [ 2805.792265][ C0] RSP: 0018:ffff8880b209b230 EFLAGS: 00000282 [ 2805.792265][ C0] RAX: ffff8880b189b7b0 RBX: 0000000000000000 RCX: 00000000b1c9b7b0 [ 2805.792265][ C0] RDX: ffff8880b1c9b7b0 RSI: 0000000000000160 RDI: ffff8880b209b7b0 [ 2805.792265][ C0] RBP: ffff8880b209b430 R08: ffffea000000000f R09: ffff88813fffa000 [ 2805.792265][ C0] R10: 00000000181d6f4f R11: 0000000000000000 R12: 0000000000000000 [ 2805.792265][ C0] R13: 0000000000000000 R14: ffff8880b209b7b0 R15: 0000000000000009 [ 2805.792265][ C0] ? free_unref_page_commit+0x330/0x750 [ 2805.792265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.792265][ C0] unmap_page_range+0x1154/0x1440 [ 2805.792265][ C0] unmap_single_vma+0x56b/0x750 [ 2805.792265][ C0] unmap_vmas+0x3c8/0x500 [ 2805.792265][ C0] exit_mmap+0x5f1/0xb80 [ 2805.792265][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.792265][ C0] __mmput+0x1b7/0x630 [ 2805.792265][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2805.792265][ C0] mmput+0x8c/0xb0 [ 2805.792265][ C0] exit_mm+0x7a9/0x9a0 [ 2805.792265][ C0] do_exit+0xdbb/0x3c20 [ 2805.792265][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.792265][ C0] do_group_exit+0x1e1/0x3c0 [ 2805.792265][ C0] get_signal+0x2e5f/0x39e0 [ 2805.792265][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2805.792265][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2805.792265][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2805.792265][ C0] ? __schedule+0x54b/0x5c0 [ 2805.792265][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.792265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2805.792265][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2805.792265][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2805.792265][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2805.792265][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2805.792265][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2805.792265][ C0] do_SYSENTER_32+0x73/0x90 [ 2805.792265][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2805.792265][ C0] RIP: 0023:0xf7fa0549 [ 2805.792265][ C0] Code: Unable to access opcode bytes at RIP 0xf7fa051f. [ 2805.792265][ C0] RSP: 002b:00000000f559a68c EFLAGS: 00000246 ORIG_RAX: 00000000000000f0 [ 2805.792265][ C0] RAX: 0000000000000001 RBX: 000000000819afcc RCX: 0000000000000081 [ 2805.792265][ C0] RDX: 00000000000f4240 RSI: 0000000000000000 RDI: 0000000000000000 [ 2805.792265][ C0] RBP: 0000000008052479 R08: 0000000000000000 R09: 0000000000000000 [ 2805.792265][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2805.792265][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2805.792265][ C0] ---[ end trace f7326eee4ef53820 ]--- [ 2806.272663][ C0] ------------[ cut here ]------------ [ 2806.272663][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2806.272663][ C0] Modules linked in: [ 2806.272663][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2806.333612][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2806.333612][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2806.333612][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2806.333612][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2806.333612][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2806.333612][ C0] RDX: 0000000080010000 RSI: 0000000000000021 RDI: 0000000000000001 [ 2806.333612][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2806.333612][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2806.333612][ C0] R13: 0000000000000000 R14: 0000000000000021 R15: ffff88813fc27b00 [ 2806.333612][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2806.333612][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2806.333612][ C0] CR2: 00007fc93108a018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2806.333612][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2806.333612][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2806.333612][ C0] Call Trace: [ 2806.333612][ C0] [ 2806.333612][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2806.333612][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2806.333612][ C0] __run_hrtimer+0x48b/0xd20 [ 2806.333612][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2806.333612][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2806.333612][ C0] ? hrtimer_init+0x570/0x570 [ 2806.333612][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2806.333612][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2806.333612][ C0] [ 2806.333612][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2806.333612][ C0] RIP: 0010:rw_verify_area+0x85/0x7b0 [ 2806.333612][ C0] Code: 24 08 41 8b 84 24 90 0c 00 00 89 45 d4 e8 23 9f 6a ff 48 89 5d 80 48 83 c3 20 4c 89 75 88 4d 85 f6 0f 85 23 02 00 00 48 8b 03 <48> 89 85 70 ff ff ff 48 89 df e8 bc 8a ed ff 48 8b 00 48 89 85 78 [ 2806.333612][ C0] RSP: 0018:ffff888115d1bc30 EFLAGS: 00000246 [ 2806.333612][ C0] RAX: ffff88810567d458 RBX: ffff8881055d2020 RCX: ffff888111759f40 [ 2806.333612][ C0] RDX: 0000000000000000 RSI: ffff8881055d2000 RDI: 0000000000000000 [ 2806.333612][ C0] RBP: ffff888115d1bcc0 R08: ffffffff8251b3e0 R09: ffff88813fffa000 [ 2806.333612][ C0] R10: 0000000084faa6f3 R11: ffff888111759f40 R12: ffff88811175a9c8 [ 2806.333612][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2806.333612][ C0] ? vfs_read+0x240/0x15a0 [ 2806.333612][ C0] vfs_read+0x303/0x15a0 [ 2806.333612][ C0] ? __fget_light+0x249/0x850 [ 2806.333612][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2806.333612][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2806.333612][ C0] ksys_read+0x275/0x500 [ 2806.333612][ C0] __se_sys_read+0x92/0xb0 [ 2806.333612][ C0] __x64_sys_read+0x4a/0x70 [ 2806.333612][ C0] do_syscall_64+0x9f/0x140 [ 2806.333612][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2806.333612][ C0] RIP: 0033:0x7fc932f7822d [ 2806.333612][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2806.333612][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2806.333612][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2806.333612][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 [ 2806.333612][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2806.333612][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2806.333612][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c08767ebedd5 [ 2806.333612][ C0] ---[ end trace f7326eee4ef53821 ]--- [ 2806.707423][ C0] ------------[ cut here ]------------ [ 2806.713960][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2806.715941][ C0] Modules linked in: [ 2806.715941][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2806.715941][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2806.715941][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2806.715941][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2806.715941][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2806.715941][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2806.715941][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2806.715941][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2806.715941][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2806.715941][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2806.715941][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2806.715941][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2806.715941][ C0] CR2: 00007fc93108a018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2806.715941][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2806.715941][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2806.715941][ C0] Call Trace: [ 2806.715941][ C0] [ 2806.715941][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2806.715941][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2806.715941][ C0] __run_hrtimer+0x48b/0xd20 [ 2806.715941][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2806.715941][ C0] ? hrtimer_init+0x570/0x570 [ 2806.715941][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2806.715941][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2806.715941][ C0] [ 2806.715941][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2806.715941][ C0] RIP: 0010:rw_verify_area+0x85/0x7b0 [ 2806.715941][ C0] Code: 24 08 41 8b 84 24 90 0c 00 00 89 45 d4 e8 23 9f 6a ff 48 89 5d 80 48 83 c3 20 4c 89 75 88 4d 85 f6 0f 85 23 02 00 00 48 8b 03 <48> 89 85 70 ff ff ff 48 89 df e8 bc 8a ed ff 48 8b 00 48 89 85 78 [ 2806.715941][ C0] RSP: 0018:ffff888115d1bc30 EFLAGS: 00000246 [ 2806.715941][ C0] RAX: ffff88810567d458 RBX: ffff8881055d2020 RCX: ffff888111759f40 [ 2806.715941][ C0] RDX: 0000000000000000 RSI: ffff8881055d2000 RDI: 0000000000000000 [ 2806.715941][ C0] RBP: ffff888115d1bcc0 R08: ffffffff8251b3e0 R09: ffff88813fffa000 [ 2806.715941][ C0] R10: 0000000084faa6f3 R11: ffff888111759f40 R12: ffff88811175a9c8 [ 2806.715941][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2806.715941][ C0] ? vfs_read+0x240/0x15a0 [ 2806.715941][ C0] vfs_read+0x303/0x15a0 [ 2806.715941][ C0] ? __fget_light+0x249/0x850 [ 2806.715941][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2806.715941][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2806.715941][ C0] ksys_read+0x275/0x500 [ 2806.715941][ C0] __se_sys_read+0x92/0xb0 [ 2806.715941][ C0] __x64_sys_read+0x4a/0x70 [ 2806.715941][ C0] do_syscall_64+0x9f/0x140 [ 2806.715941][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2806.715941][ C0] RIP: 0033:0x7fc932f7822d [ 2806.715941][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2806.715941][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2806.715941][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2806.715941][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 [ 2806.715941][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2806.715941][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2806.715941][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c08767ebedd5 [ 2806.715941][ C0] ---[ end trace f7326eee4ef53822 ]--- [ 2807.092611][ C0] ------------[ cut here ]------------ [ 2807.098281][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2807.101169][ C0] Modules linked in: [ 2807.101169][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2807.101169][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2807.101169][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2807.101169][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2807.101169][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2807.101169][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2807.101169][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2807.101169][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2807.101169][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2807.101169][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2807.101169][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2807.101169][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2807.101169][ C0] CR2: 00007fc93108a018 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2807.101169][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2807.101169][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2807.101169][ C0] Call Trace: [ 2807.101169][ C0] [ 2807.101169][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.101169][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2807.101169][ C0] __run_hrtimer+0x48b/0xd20 [ 2807.101169][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2807.101169][ C0] ? hrtimer_init+0x570/0x570 [ 2807.101169][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2807.101169][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2807.101169][ C0] [ 2807.101169][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2807.101169][ C0] RIP: 0010:rw_verify_area+0x85/0x7b0 [ 2807.101169][ C0] Code: 24 08 41 8b 84 24 90 0c 00 00 89 45 d4 e8 23 9f 6a ff 48 89 5d 80 48 83 c3 20 4c 89 75 88 4d 85 f6 0f 85 23 02 00 00 48 8b 03 <48> 89 85 70 ff ff ff 48 89 df e8 bc 8a ed ff 48 8b 00 48 89 85 78 [ 2807.101169][ C0] RSP: 0018:ffff888115d1bc30 EFLAGS: 00000246 [ 2807.101169][ C0] RAX: ffff88810567d458 RBX: ffff8881055d2020 RCX: ffff888111759f40 [ 2807.101169][ C0] RDX: 0000000000000000 RSI: ffff8881055d2000 RDI: 0000000000000000 [ 2807.101169][ C0] RBP: ffff888115d1bcc0 R08: ffffffff8251b3e0 R09: ffff88813fffa000 [ 2807.101169][ C0] R10: 0000000084faa6f3 R11: ffff888111759f40 R12: ffff88811175a9c8 [ 2807.101169][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2807.101169][ C0] ? vfs_read+0x240/0x15a0 [ 2807.101169][ C0] vfs_read+0x303/0x15a0 [ 2807.101169][ C0] ? __fget_light+0x249/0x850 [ 2807.101169][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2807.101169][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.101169][ C0] ksys_read+0x275/0x500 [ 2807.101169][ C0] __se_sys_read+0x92/0xb0 [ 2807.101169][ C0] __x64_sys_read+0x4a/0x70 [ 2807.101169][ C0] do_syscall_64+0x9f/0x140 [ 2807.101169][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2807.101169][ C0] RIP: 0033:0x7fc932f7822d [ 2807.101169][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2807.101169][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2807.101169][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2807.101169][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 03:38:01 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x4, 0x7f, 0x1, 0x1}, {0x2, 0x2}, {0x6, 0x0, 0x5, 0x20}]}) 03:38:01 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) 03:38:01 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2807.101169][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2807.101169][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2807.101169][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c08767ebedd5 [ 2807.101169][ C0] ---[ end trace f7326eee4ef53823 ]--- [ 2807.563908][ C0] ------------[ cut here ]------------ [ 2807.569622][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2807.572471][ C0] Modules linked in: [ 2807.572471][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2807.572471][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2807.572471][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2807.572471][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2807.572471][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2807.617673][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2807.617673][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2807.617673][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2807.617673][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2807.617673][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2807.617673][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2807.617673][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2807.617673][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2807.617673][ C0] CR2: 00007f5298a50000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2807.617673][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2807.617673][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2807.617673][ C0] Call Trace: [ 2807.617673][ C0] [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2807.617673][ C0] __run_hrtimer+0x48b/0xd20 [ 2807.617673][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? hrtimer_init+0x570/0x570 [ 2807.617673][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2807.617673][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2807.617673][ C0] [ 2807.617673][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2807.617673][ C0] RIP: 0010:kmsan_get_metadata+0xf/0x180 [ 2807.617673][ C0] Code: c7 c6 cd 1b 7c 90 4c 89 f2 48 89 d9 31 c0 e8 41 e5 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb <48> 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df 48 89 df e8 [ 2807.617673][ C0] RSP: 0018:ffff8881f24eb220 EFLAGS: 00000246 [ 2807.617673][ C0] RAX: 0000000000000001 RBX: ffff8881f24eb820 RCX: 00000001f20eb820 [ 2807.617673][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881f24eb820 [ 2807.617673][ C0] RBP: ffff8881f24eb238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2807.617673][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003f06f57b785ae2 [ 2807.617673][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 2807.617673][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2807.617673][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2807.617673][ C0] curve25519_generic+0x92b9/0x23dc0 [ 2807.617673][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2807.617673][ C0] process_one_work+0x1219/0x1fe0 [ 2807.617673][ C0] worker_thread+0x10ec/0x2340 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] kthread+0x521/0x560 [ 2807.617673][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2807.617673][ C0] ? kthread_blkcg+0x110/0x110 [ 2807.617673][ C0] ret_from_fork+0x1f/0x30 [ 2807.617673][ C0] ---[ end trace f7326eee4ef53824 ]--- [ 2807.617673][ C0] ------------[ cut here ]------------ [ 2807.617673][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2807.617673][ C0] Modules linked in: [ 2807.617673][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2807.617673][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2807.617673][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2807.617673][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2807.617673][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2807.617673][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2807.617673][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2807.617673][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2807.617673][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2807.617673][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2807.617673][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2807.617673][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2807.617673][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2807.617673][ C0] CR2: 00007f5298a50000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2807.617673][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2807.617673][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2807.617673][ C0] Call Trace: [ 2807.617673][ C0] [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2807.617673][ C0] __run_hrtimer+0x48b/0xd20 [ 2807.617673][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2807.617673][ C0] ? hrtimer_init+0x570/0x570 [ 2807.617673][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2807.617673][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2807.617673][ C0] [ 2807.617673][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2807.617673][ C0] RIP: 0010:kmsan_get_metadata+0xf/0x180 [ 2807.617673][ C0] Code: c7 c6 cd 1b 7c 90 4c 89 f2 48 89 d9 31 c0 e8 41 e5 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb <48> 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df 48 89 df e8 [ 2807.617673][ C0] RSP: 0018:ffff8881f24eb220 EFLAGS: 00000246 [ 2807.617673][ C0] RAX: 0000000000000001 RBX: ffff8881f24eb820 RCX: 00000001f20eb820 [ 2807.617673][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881f24eb820 [ 2807.617673][ C0] RBP: ffff8881f24eb238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2807.617673][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003f06f57b785ae2 [ 2807.617673][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 2807.617673][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2807.617673][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2807.617673][ C0] curve25519_generic+0x92b9/0x23dc0 [ 2807.617673][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2807.617673][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2807.617673][ C0] process_one_work+0x1219/0x1fe0 [ 2807.617673][ C0] worker_thread+0x10ec/0x2340 [ 2807.617673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2807.617673][ C0] kthread+0x521/0x560 [ 2807.617673][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2807.617673][ C0] ? kthread_blkcg+0x110/0x110 [ 2807.617673][ C0] ret_from_fork+0x1f/0x30 [ 2807.617673][ C0] ---[ end trace f7326eee4ef53825 ]--- [ 2808.342671][ C0] ------------[ cut here ]------------ [ 2808.348350][ C0] WARNING: CPU: 0 PID: 21790 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2808.351179][ C0] Modules linked in: [ 2808.351179][ C0] CPU: 0 PID: 21790 Comm: kworker/u4:11 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2808.351179][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2808.351179][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2808.351179][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2808.351179][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2808.351179][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2808.351179][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881fd880000 [ 2808.351179][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2808.351179][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2808.351179][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2808.351179][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2808.351179][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2808.351179][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2808.351179][ C0] CR2: 00007f5298a50000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2808.351179][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2808.351179][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2808.351179][ C0] Call Trace: [ 2808.351179][ C0] [ 2808.351179][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.351179][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2808.351179][ C0] __run_hrtimer+0x48b/0xd20 [ 2808.351179][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2808.351179][ C0] ? hrtimer_init+0x570/0x570 [ 2808.351179][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2808.351179][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2808.351179][ C0] [ 2808.351179][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2808.351179][ C0] RIP: 0010:kmsan_get_metadata+0xf/0x180 [ 2808.351179][ C0] Code: c7 c6 cd 1b 7c 90 4c 89 f2 48 89 d9 31 c0 e8 41 e5 25 ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb <48> 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df 48 89 df e8 [ 2808.351179][ C0] RSP: 0018:ffff8881f24eb220 EFLAGS: 00000246 [ 2808.351179][ C0] RAX: 0000000000000001 RBX: ffff8881f24eb820 RCX: 00000001f20eb820 [ 2808.351179][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881f24eb820 [ 2808.351179][ C0] RBP: ffff8881f24eb238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2808.351179][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 003f06f57b785ae2 [ 2808.351179][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000001 [ 2808.351179][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2808.351179][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2808.351179][ C0] curve25519_generic+0x92b9/0x23dc0 [ 2808.351179][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2808.351179][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.351179][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.351179][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.351179][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.351179][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2808.351179][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.351179][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.351179][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2808.351179][ C0] process_one_work+0x1219/0x1fe0 [ 2808.351179][ C0] worker_thread+0x10ec/0x2340 [ 2808.351179][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.351179][ C0] kthread+0x521/0x560 [ 2808.351179][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2808.351179][ C0] ? kthread_blkcg+0x110/0x110 [ 2808.351179][ C0] ret_from_fork+0x1f/0x30 [ 2808.351179][ C0] ---[ end trace f7326eee4ef53826 ]--- [ 2808.805493][ C0] ------------[ cut here ]------------ [ 2808.811206][ C0] WARNING: CPU: 0 PID: 23537 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2808.814043][ C0] Modules linked in: [ 2808.814043][ C0] CPU: 0 PID: 23537 Comm: kworker/u4:16 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2808.814043][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2808.814043][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2808.814043][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2808.814043][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2808.814043][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2808.814043][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881f623be80 [ 2808.814043][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2808.814043][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2808.814043][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2808.814043][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2808.814043][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2808.814043][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2808.814043][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2808.814043][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2808.814043][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2808.814043][ C0] Call Trace: [ 2808.814043][ C0] [ 2808.814043][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.814043][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2808.814043][ C0] __run_hrtimer+0x48b/0xd20 [ 2808.814043][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2808.814043][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.814043][ C0] ? hrtimer_init+0x570/0x570 [ 2808.814043][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2808.814043][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2808.814043][ C0] [ 2808.814043][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2808.814043][ C0] RIP: 0010:kmsan_get_metadata+0x11f/0x180 [ 2808.814043][ C0] Code: 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 <48> 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 [ 2808.814043][ C0] RSP: 0018:ffff8881fc193220 EFLAGS: 00000286 [ 2808.814043][ C0] RAX: ffffea0009ec7df0 RBX: ffff8881fc193768 RCX: ffffea0009e9fdf0 [ 2808.814043][ C0] RDX: 00000001fc193768 RSI: 00000000000003f0 RDI: ffff8881fc193768 [ 2808.814043][ C0] RBP: ffff8881fc193238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2808.814043][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0042afc30b78b2a4 [ 2808.814043][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2808.814043][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.814043][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2808.814043][ C0] curve25519_generic+0x1907/0x23dc0 [ 2808.814043][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2808.814043][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 2808.814043][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2808.814043][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2808.814043][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.814043][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2808.814043][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2808.814043][ C0] process_one_work+0x1219/0x1fe0 [ 2808.814043][ C0] worker_thread+0x10ec/0x2340 [ 2808.814043][ C0] kthread+0x521/0x560 [ 2808.814043][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2808.814043][ C0] ? kthread_blkcg+0x110/0x110 [ 2808.814043][ C0] ret_from_fork+0x1f/0x30 [ 2808.814043][ C0] ---[ end trace f7326eee4ef53827 ]--- [ 2809.172166][ C0] ------------[ cut here ]------------ [ 2809.177853][ C0] WARNING: CPU: 0 PID: 23537 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2809.180743][ C0] Modules linked in: [ 2809.180743][ C0] CPU: 0 PID: 23537 Comm: kworker/u4:16 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2809.180743][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2809.180743][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2809.180743][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2809.180743][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2809.180743][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2809.180743][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881f623be80 [ 2809.180743][ C0] RDX: 0000000000010000 RSI: 0000000000000016 RDI: 0000000000000001 [ 2809.180743][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2809.180743][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2809.180743][ C0] R13: 0000000000000000 R14: 0000000000000016 R15: ffff88813fc27b00 [ 2809.180743][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2809.180743][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2809.180743][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2809.180743][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2809.180743][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2809.180743][ C0] Call Trace: [ 2809.180743][ C0] [ 2809.180743][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.180743][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2809.180743][ C0] __run_hrtimer+0x48b/0xd20 [ 2809.180743][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2809.180743][ C0] ? hrtimer_init+0x570/0x570 [ 2809.180743][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2809.180743][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2809.180743][ C0] [ 2809.180743][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2809.180743][ C0] RIP: 0010:kmsan_get_metadata+0x11f/0x180 [ 2809.180743][ C0] Code: 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 <48> 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 [ 2809.180743][ C0] RSP: 0018:ffff8881fc193220 EFLAGS: 00000286 [ 2809.180743][ C0] RAX: ffffea0009ec7df0 RBX: ffff8881fc193768 RCX: ffffea0009e9fdf0 [ 2809.180743][ C0] RDX: 00000001fc193768 RSI: 00000000000003f0 RDI: ffff8881fc193768 [ 2809.180743][ C0] RBP: ffff8881fc193238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2809.180743][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0042afc30b78b2a4 [ 2809.180743][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2809.180743][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.180743][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2809.180743][ C0] curve25519_generic+0x1907/0x23dc0 [ 2809.180743][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2809.180743][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 2809.180743][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.180743][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2809.180743][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.180743][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.180743][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2809.180743][ C0] process_one_work+0x1219/0x1fe0 [ 2809.180743][ C0] worker_thread+0x10ec/0x2340 [ 2809.180743][ C0] kthread+0x521/0x560 [ 2809.180743][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2809.180743][ C0] ? kthread_blkcg+0x110/0x110 [ 2809.180743][ C0] ret_from_fork+0x1f/0x30 [ 2809.180743][ C0] ---[ end trace f7326eee4ef53828 ]--- [ 2809.529797][ C0] ------------[ cut here ]------------ [ 2809.535470][ C0] WARNING: CPU: 0 PID: 23537 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2809.538347][ C0] Modules linked in: [ 2809.538347][ C0] CPU: 0 PID: 23537 Comm: kworker/u4:16 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2809.538347][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2809.538347][ C0] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 2809.538347][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2809.538347][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2809.538347][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2809.538347][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881f623be80 [ 2809.538347][ C0] RDX: 0000000000010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2809.538347][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2809.538347][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2809.538347][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2809.538347][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2809.538347][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2809.538347][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2809.538347][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2809.538347][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2809.538347][ C0] Call Trace: [ 2809.538347][ C0] [ 2809.538347][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.538347][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2809.538347][ C0] __run_hrtimer+0x48b/0xd20 [ 2809.538347][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2809.538347][ C0] ? hrtimer_init+0x570/0x570 [ 2809.538347][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2809.538347][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2809.538347][ C0] [ 2809.538347][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2809.538347][ C0] RIP: 0010:kmsan_get_metadata+0x11f/0x180 [ 2809.538347][ C0] Code: 02 00 45 84 f6 48 0f 45 c2 48 01 c8 49 63 cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 <48> 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 [ 2809.538347][ C0] RSP: 0018:ffff8881fc193220 EFLAGS: 00000286 [ 2809.538347][ C0] RAX: ffffea0009ec7df0 RBX: ffff8881fc193768 RCX: ffffea0009e9fdf0 [ 2809.538347][ C0] RDX: 00000001fc193768 RSI: 00000000000003f0 RDI: ffff8881fc193768 [ 2809.538347][ C0] RBP: ffff8881fc193238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2809.538347][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0042afc30b78b2a4 [ 2809.538347][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2809.538347][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.538347][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2809.538347][ C0] curve25519_generic+0x1907/0x23dc0 [ 2809.538347][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2809.538347][ C0] ? asm_sysvec_call_function_single+0x12/0x20 [ 2809.538347][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.538347][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2809.538347][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.538347][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.538347][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2809.538347][ C0] process_one_work+0x1219/0x1fe0 [ 2809.538347][ C0] worker_thread+0x10ec/0x2340 [ 2809.538347][ C0] kthread+0x521/0x560 [ 2809.538347][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2809.538347][ C0] ? kthread_blkcg+0x110/0x110 [ 2809.538347][ C0] ret_from_fork+0x1f/0x30 [ 2809.538347][ C0] ---[ end trace f7326eee4ef53829 ]--- [ 2809.953722][ T3128] ieee802154 phy0 wpan0: encryption failed: -22 [ 2809.983044][ C0] ------------[ cut here ]------------ [ 2809.988752][ C0] WARNING: CPU: 0 PID: 25846 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2809.991625][ C0] Modules linked in: [ 2809.991625][ C0] CPU: 0 PID: 25846 Comm: kworker/u4:8 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2809.991625][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2809.991625][ C0] Workqueue: bat_events batadv_purge_orig [ 2809.991625][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2809.991625][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2809.991625][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2809.991625][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ea135dc0 [ 2809.991625][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2809.991625][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2809.991625][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2809.991625][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2809.991625][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2809.991625][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2809.991625][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2809.991625][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2809.991625][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2809.991625][ C0] Call Trace: [ 2809.991625][ C0] [ 2809.991625][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2809.991625][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2809.991625][ C0] __run_hrtimer+0x48b/0xd20 [ 2809.991625][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2809.991625][ C0] ? hrtimer_init+0x570/0x570 [ 2809.991625][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2809.991625][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2809.991625][ C0] [ 2809.991625][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2809.991625][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2809.991625][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2809.991625][ C0] RSP: 0018:ffff88803f57fa50 EFLAGS: 00000246 [ 2809.991625][ C0] RAX: 0000000000000001 RBX: ffff8880a62309c8 RCX: 00000000a5e309c0 [ 2809.991625][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880a62309c8 [ 2809.991625][ C0] RBP: ffff88803f57fa68 R08: ffffea000000000f R09: ffff88813fffa000 [ 2809.991625][ C0] R10: 00000000296f7f23 R11: 0000000000000000 R12: ffff88816b714000 [ 2809.991625][ C0] R13: ffff8881ea136848 R14: 0000000000000000 R15: 0000000000000000 [ 2809.991625][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2809.991625][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2809.991625][ C0] batadv_purge_orig_ref+0x177/0x4b10 [ 2809.991625][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2809.991625][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.991625][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2809.991625][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.991625][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2809.991625][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2809.991625][ C0] batadv_purge_orig+0x3d/0xa0 [ 2809.991625][ C0] ? batadv_originator_init+0x370/0x370 [ 2809.991625][ C0] process_one_work+0x1219/0x1fe0 [ 2809.991625][ C0] worker_thread+0x10ec/0x2340 [ 2809.991625][ C0] kthread+0x521/0x560 [ 2809.991625][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2809.991625][ C0] ? kthread_blkcg+0x110/0x110 [ 2809.991625][ C0] ret_from_fork+0x1f/0x30 [ 2809.991625][ C0] ---[ end trace f7326eee4ef5382a ]--- [ 2810.340680][ C0] ------------[ cut here ]------------ [ 2810.346354][ C0] WARNING: CPU: 0 PID: 25846 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2810.349226][ C0] Modules linked in: [ 2810.349226][ C0] CPU: 0 PID: 25846 Comm: kworker/u4:8 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2810.349226][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2810.349226][ C0] Workqueue: bat_events batadv_purge_orig [ 2810.349226][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2810.349226][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2810.349226][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2810.349226][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ea135dc0 [ 2810.349226][ C0] RDX: 0000000000010000 RSI: 0000000000000016 RDI: 0000000000000001 [ 2810.349226][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2810.349226][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2810.349226][ C0] R13: 0000000000000000 R14: 0000000000000016 R15: ffff88813fc27b00 [ 2810.349226][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2810.349226][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2810.349226][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2810.349226][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2810.349226][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2810.349226][ C0] Call Trace: [ 2810.349226][ C0] [ 2810.349226][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2810.349226][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2810.349226][ C0] __run_hrtimer+0x48b/0xd20 [ 2810.349226][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2810.349226][ C0] ? hrtimer_init+0x570/0x570 [ 2810.349226][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2810.349226][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2810.349226][ C0] [ 2810.349226][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2810.349226][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2810.349226][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2810.349226][ C0] RSP: 0018:ffff88803f57fa50 EFLAGS: 00000246 [ 2810.349226][ C0] RAX: 0000000000000001 RBX: ffff8880a62309c8 RCX: 00000000a5e309c0 [ 2810.349226][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880a62309c8 [ 2810.349226][ C0] RBP: ffff88803f57fa68 R08: ffffea000000000f R09: ffff88813fffa000 [ 2810.349226][ C0] R10: 00000000296f7f23 R11: 0000000000000000 R12: ffff88816b714000 [ 2810.349226][ C0] R13: ffff8881ea136848 R14: 0000000000000000 R15: 0000000000000000 [ 2810.349226][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2810.349226][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.349226][ C0] batadv_purge_orig_ref+0x177/0x4b10 [ 2810.349226][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.349226][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.349226][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2810.349226][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.349226][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.349226][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.349226][ C0] batadv_purge_orig+0x3d/0xa0 [ 2810.349226][ C0] ? batadv_originator_init+0x370/0x370 [ 2810.349226][ C0] process_one_work+0x1219/0x1fe0 [ 2810.349226][ C0] worker_thread+0x10ec/0x2340 [ 2810.349226][ C0] kthread+0x521/0x560 [ 2810.349226][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2810.349226][ C0] ? kthread_blkcg+0x110/0x110 [ 2810.349226][ C0] ret_from_fork+0x1f/0x30 [ 2810.349226][ C0] ---[ end trace f7326eee4ef5382b ]--- [ 2810.697537][ C0] ------------[ cut here ]------------ [ 2810.703212][ C0] WARNING: CPU: 0 PID: 25846 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2810.706072][ C0] Modules linked in: [ 2810.706072][ C0] CPU: 0 PID: 25846 Comm: kworker/u4:8 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2810.706072][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2810.706072][ C0] Workqueue: bat_events batadv_purge_orig [ 2810.706072][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2810.706072][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2810.706072][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2810.706072][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ea135dc0 [ 2810.706072][ C0] RDX: 0000000000010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2810.706072][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2810.706072][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2810.706072][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2810.706072][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2810.706072][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2810.706072][ C0] CR2: 00007f5298a50000 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2810.706072][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2810.706072][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2810.706072][ C0] Call Trace: [ 2810.706072][ C0] [ 2810.706072][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2810.706072][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2810.706072][ C0] __run_hrtimer+0x48b/0xd20 [ 2810.706072][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2810.706072][ C0] ? hrtimer_init+0x570/0x570 [ 2810.706072][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2810.706072][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2810.706072][ C0] [ 2810.706072][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2810.706072][ C0] RIP: 0010:kmsan_get_metadata+0x21/0x180 [ 2810.706072][ C0] Code: ff 0f 0b 66 0f 1f 44 00 00 55 48 89 e5 41 57 41 56 53 41 89 d6 48 89 fb 48 83 e3 fc 85 d2 48 0f 44 df 40 f6 c7 03 48 0f 44 df <48> 89 df e8 c7 df ff ff 84 c0 75 0c 48 89 df e8 eb df ff ff 84 c0 [ 2810.706072][ C0] RSP: 0018:ffff88803f57fa50 EFLAGS: 00000246 [ 2810.706072][ C0] RAX: 0000000000000001 RBX: ffff8880a62309c8 RCX: 00000000a5e309c0 [ 2810.706072][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8880a62309c8 [ 2810.706072][ C0] RBP: ffff88803f57fa68 R08: ffffea000000000f R09: ffff88813fffa000 [ 2810.706072][ C0] R10: 00000000296f7f23 R11: 0000000000000000 R12: ffff88816b714000 [ 2810.706072][ C0] R13: ffff8881ea136848 R14: 0000000000000000 R15: 0000000000000000 [ 2810.706072][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2810.706072][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.706072][ C0] batadv_purge_orig_ref+0x177/0x4b10 [ 2810.706072][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.706072][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.706072][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2810.706072][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.706072][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2810.706072][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2810.706072][ C0] batadv_purge_orig+0x3d/0xa0 [ 2810.706072][ C0] ? batadv_originator_init+0x370/0x370 [ 2810.706072][ C0] process_one_work+0x1219/0x1fe0 [ 2810.706072][ C0] worker_thread+0x10ec/0x2340 [ 2810.706072][ C0] kthread+0x521/0x560 [ 2810.706072][ C0] ? process_one_work+0x1fe0/0x1fe0 03:38:03 executing program 1: r0 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000080)=@req={0x3fc, 0x0, 0x0, 0xff}, 0x10) sendmmsg(r0, &(0x7f0000006300)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000100)=@tipc=@id, 0x80, 0x0}}], 0x2, 0x0) [ 2810.706072][ C0] ? kthread_blkcg+0x110/0x110 [ 2810.706072][ C0] ret_from_fork+0x1f/0x30 [ 2810.706072][ C0] ---[ end trace f7326eee4ef5382c ]--- [ 2811.146448][ C0] ------------[ cut here ]------------ [ 2811.146465][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2811.146465][ C0] Modules linked in: [ 2811.146465][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2811.146465][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2811.146465][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2811.146465][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2811.146465][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2811.146465][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.146465][ C0] RDX: 0000000080010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2811.146465][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2811.146465][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2811.242203][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2811.242203][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2811.242203][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2811.242203][ C0] CR2: 000000c00131f000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2811.242203][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2811.242203][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2811.242203][ C0] Call Trace: [ 2811.242203][ C0] [ 2811.242203][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.242203][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2811.242203][ C0] __run_hrtimer+0x48b/0xd20 [ 2811.242203][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2811.242203][ C0] ? hrtimer_init+0x570/0x570 [ 2811.242203][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2811.242203][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2811.242203][ C0] [ 2811.242203][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2811.242203][ C0] RIP: 0010:devkmsg_read+0x909/0x1250 [ 2811.242203][ C0] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 1b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89 [ 2811.242203][ C0] RSP: 0018:ffff888115d1bb90 EFLAGS: 00000246 [ 2811.242203][ C0] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.242203][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2811.242203][ C0] RBP: ffff888115d1bcc0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2811.242203][ C0] R10: 0000000000000000 R11: 00000000000000ff R12: ffff88811175a9c8 [ 2811.242203][ C0] R13: ffff888115df8000 R14: 0000000000000000 R15: 000000000000003a [ 2811.242203][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.242203][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.242203][ C0] ? devkmsg_llseek+0x2f0/0x2f0 [ 2811.242203][ C0] vfs_read+0x533/0x15a0 [ 2811.242203][ C0] ? __fget_light+0x249/0x850 [ 2811.242203][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2811.242203][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.242203][ C0] ksys_read+0x275/0x500 [ 2811.242203][ C0] __se_sys_read+0x92/0xb0 [ 2811.242203][ C0] __x64_sys_read+0x4a/0x70 [ 2811.242203][ C0] do_syscall_64+0x9f/0x140 [ 2811.242203][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2811.242203][ C0] RIP: 0033:0x7fc932f7822d [ 2811.242203][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2811.242203][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2811.242203][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2811.242203][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 [ 2811.242203][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2811.242203][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2811.242203][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c0876835b827 [ 2811.242203][ C0] ---[ end trace f7326eee4ef5382d ]--- [ 2811.537574][ C0] ------------[ cut here ]------------ [ 2811.543246][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2811.546016][ C0] Modules linked in: [ 2811.546016][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2811.546016][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2811.546016][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2811.546016][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2811.546016][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2811.546016][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.546016][ C0] RDX: 0000000080010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2811.546016][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2811.546016][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2811.546016][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2811.546016][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2811.546016][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2811.546016][ C0] CR2: 000000c00131f000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2811.546016][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2811.546016][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2811.546016][ C0] Call Trace: [ 2811.546016][ C0] [ 2811.546016][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.546016][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2811.546016][ C0] __run_hrtimer+0x48b/0xd20 [ 2811.546016][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2811.546016][ C0] ? hrtimer_init+0x570/0x570 [ 2811.546016][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2811.546016][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2811.546016][ C0] [ 2811.546016][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2811.546016][ C0] RIP: 0010:devkmsg_read+0x909/0x1250 [ 2811.546016][ C0] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 1b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89 [ 2811.546016][ C0] RSP: 0018:ffff888115d1bb90 EFLAGS: 00000246 [ 2811.546016][ C0] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.546016][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2811.546016][ C0] RBP: ffff888115d1bcc0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2811.546016][ C0] R10: 0000000000000000 R11: 00000000000000ff R12: ffff88811175a9c8 [ 2811.546016][ C0] R13: ffff888115df8000 R14: 0000000000000000 R15: 000000000000003a [ 2811.546016][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.546016][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.546016][ C0] ? devkmsg_llseek+0x2f0/0x2f0 [ 2811.546016][ C0] vfs_read+0x533/0x15a0 [ 2811.546016][ C0] ? __fget_light+0x249/0x850 [ 2811.546016][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2811.546016][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.546016][ C0] ksys_read+0x275/0x500 [ 2811.546016][ C0] __se_sys_read+0x92/0xb0 [ 2811.546016][ C0] __x64_sys_read+0x4a/0x70 [ 2811.546016][ C0] do_syscall_64+0x9f/0x140 [ 2811.546016][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2811.546016][ C0] RIP: 0033:0x7fc932f7822d [ 2811.546016][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2811.546016][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2811.546016][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2811.546016][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 [ 2811.546016][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2811.546016][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2811.546016][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c0876835b827 [ 2811.546016][ C0] ---[ end trace f7326eee4ef5382e ]--- [ 2811.928086][ C0] ------------[ cut here ]------------ [ 2811.933756][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2811.936636][ C0] Modules linked in: [ 2811.936636][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2811.936636][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2811.936636][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2811.936636][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2811.936636][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2811.936636][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.936636][ C0] RDX: 0000000080010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2811.936636][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2811.936636][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2811.936636][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2811.936636][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2811.936636][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2811.936636][ C0] CR2: 000000c00131f000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2811.936636][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2811.936636][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2811.936636][ C0] Call Trace: [ 2811.936636][ C0] [ 2811.936636][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.936636][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2811.936636][ C0] __run_hrtimer+0x48b/0xd20 [ 2811.936636][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2811.936636][ C0] ? hrtimer_init+0x570/0x570 [ 2811.936636][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2811.936636][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2811.936636][ C0] [ 2811.936636][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2811.936636][ C0] RIP: 0010:devkmsg_read+0x909/0x1250 [ 2811.936636][ C0] Code: 00 48 8b 44 24 38 49 89 45 00 48 c7 c7 14 52 40 92 e8 1b d7 b0 00 c6 00 00 c6 05 15 0a b2 10 00 e8 2c 73 01 00 fb 4d 89 34 24 <8b> 44 24 08 41 89 84 24 88 0c 00 00 4c 8b ac 24 b0 00 00 00 4d 89 [ 2811.936636][ C0] RSP: 0018:ffff888115d1bb90 EFLAGS: 00000246 [ 2811.936636][ C0] RAX: 00007ffffffff000 RBX: 0000000000000000 RCX: ffff888111759f40 [ 2811.936636][ C0] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2811.936636][ C0] RBP: ffff888115d1bcc0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2811.936636][ C0] R10: 0000000000000000 R11: 00000000000000ff R12: ffff88811175a9c8 [ 2811.936636][ C0] R13: ffff888115df8000 R14: 0000000000000000 R15: 000000000000003a [ 2811.936636][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.936636][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2811.936636][ C0] ? devkmsg_llseek+0x2f0/0x2f0 [ 2811.936636][ C0] vfs_read+0x533/0x15a0 [ 2811.936636][ C0] ? __fget_light+0x249/0x850 [ 2811.936636][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2811.936636][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2811.936636][ C0] ksys_read+0x275/0x500 [ 2811.936636][ C0] __se_sys_read+0x92/0xb0 [ 2811.936636][ C0] __x64_sys_read+0x4a/0x70 [ 2811.936636][ C0] do_syscall_64+0x9f/0x140 [ 2811.936636][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2811.936636][ C0] RIP: 0033:0x7fc932f7822d [ 2811.936636][ C0] Code: c1 20 00 00 75 10 b8 00 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 4e fc ff ff 48 89 04 24 b8 00 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 97 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2811.936636][ C0] RSP: 002b:00007fff374ed6f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000000 [ 2811.936636][ C0] RAX: ffffffffffffffda RBX: 00007fff374f0170 RCX: 00007fc932f7822d [ 2811.936636][ C0] RDX: 0000000000002000 RSI: 00007fff374edf70 RDI: 0000000000000009 [ 2811.936636][ C0] RBP: 0000000000000000 R08: 0000000000000008 R09: 0000560eff1e5a38 [ 2811.936636][ C0] R10: 0000560eff1e5a00 R11: 0000000000000293 R12: 00007fff374edf70 [ 2811.936636][ C0] R13: 00007fff374f00c8 R14: 0000560efeb5c958 R15: 0005c0876835b827 [ 2811.936636][ C0] ---[ end trace f7326eee4ef5382f ]--- [ 2812.408949][ C0] ------------[ cut here ]------------ [ 2812.414683][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2812.417498][ C0] Modules linked in: [ 2812.417498][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2812.433258][ T7917] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2692: comm cron: iget: checksum invalid [ 2812.417498][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2812.417498][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2812.417498][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2812.417498][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2812.417498][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2812.417498][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2812.417498][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2812.417498][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2812.417498][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2812.417498][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a5a4380 [ 2812.417498][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2812.417498][ C0] CR2: 0000000020000000 CR3: 000000009ac11000 CR4: 00000000001526f0 [ 2812.417498][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2812.417498][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2812.417498][ C0] Call Trace: [ 2812.417498][ C0] [ 2812.417498][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2812.417498][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2812.417498][ C0] __run_hrtimer+0x48b/0xd20 [ 2812.417498][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2812.417498][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2812.417498][ C0] ? hrtimer_init+0x570/0x570 [ 2812.417498][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2812.417498][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2812.417498][ C0] [ 2812.417498][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2812.417498][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2812.417498][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2812.417498][ C0] RSP: 0000:ffff8880a5517710 EFLAGS: 00000292 [ 2812.417498][ C0] RAX: ffff88813ecaa9c8 RBX: ffff8880b39f5000 RCX: 0000000000000401 [ 2812.417498][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880b39f5000 [ 2812.417498][ C0] RBP: ffff8880a5517728 R08: ffffea000000000f R09: ffff88813fffa000 [ 2812.417498][ C0] R10: 000000008d490c19 R11: ffffffff8fe59abc R12: 0000000000000001 [ 2812.417498][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2812.417498][ C0] clear_page+0x34/0x40 [ 2812.417498][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2812.417498][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2812.417498][ C0] alloc_pages_vma+0x19d1/0x1ec0 [ 2812.417498][ C0] do_huge_pmd_anonymous_page+0x18f9/0x2180 [ 2812.417498][ C0] ? do_wp_page+0xd53/0x1eb0 [ 2812.417498][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2812.417498][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2812.417498][ C0] handle_mm_fault+0x4a25/0x4ef0 [ 2812.417498][ C0] do_user_addr_fault+0x159a/0x2650 [ 2812.417498][ C0] __exc_page_fault+0xe3/0x340 [ 2812.417498][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2812.417498][ C0] exc_page_fault+0x45/0x50 [ 2812.417498][ C0] asm_exc_page_fault+0x1e/0x30 [ 2812.417498][ C0] RIP: 0023:0x8056f3b [ 2812.417498][ C0] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83 [ 2812.417498][ C0] RSP: 002b:00000000ffd755e0 EFLAGS: 00010246 [ 2812.417498][ C0] RAX: 0000000020000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 2812.417498][ C0] RDX: 0000000000000000 RSI: 0000000000000500 RDI: 0000000000000000 [ 2812.417498][ C0] RBP: 000000000819afc0 R08: 0000000000000000 R09: 0000000000000000 [ 2812.417498][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2812.417498][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2812.417498][ C0] ---[ end trace f7326eee4ef53830 ]--- [ 2812.826108][ C0] ------------[ cut here ]------------ [ 2812.832687][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2812.834673][ C0] Modules linked in: [ 2812.834673][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2812.834673][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2812.834673][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2812.834673][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2812.834673][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2812.834673][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2812.834673][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2812.834673][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2812.834673][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2812.834673][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2812.834673][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a5a4380 [ 2812.834673][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2812.834673][ C0] CR2: 0000000020000000 CR3: 000000009ac11000 CR4: 00000000001526f0 [ 2812.834673][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2812.834673][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2812.834673][ C0] Call Trace: [ 2812.834673][ C0] [ 2812.834673][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2812.834673][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2812.834673][ C0] __run_hrtimer+0x48b/0xd20 [ 2812.834673][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2812.834673][ C0] ? hrtimer_init+0x570/0x570 [ 2812.834673][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2812.834673][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2812.834673][ C0] [ 2812.834673][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2812.834673][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2812.834673][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2812.834673][ C0] RSP: 0000:ffff8880a5517710 EFLAGS: 00000292 [ 2812.834673][ C0] RAX: ffff88813ecaa9c8 RBX: ffff8880b39f5000 RCX: 0000000000000401 [ 2812.834673][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880b39f5000 [ 2812.834673][ C0] RBP: ffff8880a5517728 R08: ffffea000000000f R09: ffff88813fffa000 [ 2812.834673][ C0] R10: 000000008d490c19 R11: ffffffff8fe59abc R12: 0000000000000001 [ 2812.834673][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2812.834673][ C0] clear_page+0x34/0x40 [ 2812.834673][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2812.834673][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2812.834673][ C0] alloc_pages_vma+0x19d1/0x1ec0 [ 2812.834673][ C0] do_huge_pmd_anonymous_page+0x18f9/0x2180 [ 2812.834673][ C0] ? do_wp_page+0xd53/0x1eb0 [ 2812.834673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2812.834673][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2812.834673][ C0] handle_mm_fault+0x4a25/0x4ef0 [ 2812.834673][ C0] do_user_addr_fault+0x159a/0x2650 [ 2812.834673][ C0] __exc_page_fault+0xe3/0x340 [ 2812.834673][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2812.834673][ C0] exc_page_fault+0x45/0x50 [ 2812.834673][ C0] asm_exc_page_fault+0x1e/0x30 [ 2812.834673][ C0] RIP: 0023:0x8056f3b [ 2812.834673][ C0] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83 [ 2812.834673][ C0] RSP: 002b:00000000ffd755e0 EFLAGS: 00010246 [ 2812.834673][ C0] RAX: 0000000020000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 2812.834673][ C0] RDX: 0000000000000000 RSI: 0000000000000500 RDI: 0000000000000000 [ 2812.834673][ C0] RBP: 000000000819afc0 R08: 0000000000000000 R09: 0000000000000000 [ 2812.834673][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2812.834673][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2812.834673][ C0] ---[ end trace f7326eee4ef53831 ]--- [ 2813.242693][ C0] ------------[ cut here ]------------ [ 2813.248379][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2813.251264][ C0] Modules linked in: [ 2813.251264][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2813.251264][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2813.251264][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2813.251264][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2813.251264][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2813.251264][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2813.251264][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2813.251264][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2813.251264][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2813.251264][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2813.251264][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a5a4380 [ 2813.251264][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2813.251264][ C0] CR2: 0000000020000000 CR3: 000000009ac11000 CR4: 00000000001526f0 [ 2813.251264][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2813.251264][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2813.251264][ C0] Call Trace: [ 2813.251264][ C0] [ 2813.251264][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2813.251264][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2813.251264][ C0] __run_hrtimer+0x48b/0xd20 [ 2813.251264][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2813.251264][ C0] ? hrtimer_init+0x570/0x570 [ 2813.251264][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2813.251264][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2813.251264][ C0] [ 2813.251264][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2813.251264][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2813.251264][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2813.251264][ C0] RSP: 0000:ffff8880a5517710 EFLAGS: 00000292 [ 2813.251264][ C0] RAX: ffff88813ecaa9c8 RBX: ffff8880b39f5000 RCX: 0000000000000401 [ 2813.251264][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880b39f5000 [ 2813.251264][ C0] RBP: ffff8880a5517728 R08: ffffea000000000f R09: ffff88813fffa000 [ 2813.251264][ C0] R10: 000000008d490c19 R11: ffffffff8fe59abc R12: 0000000000000001 [ 2813.251264][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2813.251264][ C0] clear_page+0x34/0x40 [ 2813.251264][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2813.251264][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2813.251264][ C0] alloc_pages_vma+0x19d1/0x1ec0 [ 2813.251264][ C0] do_huge_pmd_anonymous_page+0x18f9/0x2180 [ 2813.251264][ C0] ? do_wp_page+0xd53/0x1eb0 [ 2813.251264][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2813.251264][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2813.251264][ C0] handle_mm_fault+0x4a25/0x4ef0 [ 2813.251264][ C0] do_user_addr_fault+0x159a/0x2650 [ 2813.251264][ C0] __exc_page_fault+0xe3/0x340 [ 2813.251264][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2813.251264][ C0] exc_page_fault+0x45/0x50 [ 2813.251264][ C0] asm_exc_page_fault+0x1e/0x30 [ 2813.251264][ C0] RIP: 0023:0x8056f3b [ 2813.251264][ C0] Code: d0 74 1f 89 d0 83 f0 01 09 c8 0f 85 c5 fe ff ff 8b 44 24 20 c7 44 24 24 00 00 00 00 0f c8 89 44 24 20 8b 44 24 1c 8b 74 24 20 <89> 30 e9 07 fb ff ff 0f b6 4c 24 10 8b 5c 24 28 89 cf c1 ef 05 83 [ 2813.251264][ C0] RSP: 002b:00000000ffd755e0 EFLAGS: 00010246 [ 2813.251264][ C0] RAX: 0000000020000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 2813.251264][ C0] RDX: 0000000000000000 RSI: 0000000000000500 RDI: 0000000000000000 [ 2813.251264][ C0] RBP: 000000000819afc0 R08: 0000000000000000 R09: 0000000000000000 [ 2813.251264][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000 [ 2813.251264][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2813.251264][ C0] ---[ end trace f7326eee4ef53832 ]--- [ 2813.733670][ C0] ------------[ cut here ]------------ [ 2813.739386][ C0] WARNING: CPU: 0 PID: 21789 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2813.742314][ C0] Modules linked in: [ 2813.742314][ C0] CPU: 0 PID: 21789 Comm: kworker/u4:7 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2813.742314][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2813.762222][ C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 2813.762222][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2813.762222][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2813.762222][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2813.762222][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888186459f40 [ 2813.762222][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2813.762222][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2813.762222][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2813.762222][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2813.762222][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2813.762222][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2813.762222][ C0] CR2: 0000000000919fe6 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2813.762222][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2813.762222][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2813.762222][ C0] Call Trace: [ 2813.762222][ C0] [ 2813.762222][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2813.762222][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2813.762222][ C0] __run_hrtimer+0x48b/0xd20 [ 2813.762222][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2813.762222][ C0] ? hrtimer_init+0x570/0x570 [ 2813.762222][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2813.762222][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2813.762222][ C0] [ 2813.762222][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2813.762222][ C0] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x13/0x30 [ 2813.762222][ C0] Code: a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 <48> b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f [ 2813.762222][ C0] RSP: 0018:ffff8881f9f479e8 EFLAGS: 00000287 [ 2813.762222][ C0] RAX: 0000000000ffff88 RBX: ffff8881289bf400 RCX: ffff888186459f00 [ 2813.762222][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881289bf400 [ 2813.762222][ C0] RBP: ffff8881f9f479e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2813.762222][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2813.762222][ C0] R13: ffff8881289bf400 R14: 0000000000000000 R15: 0000000000000000 [ 2813.762222][ C0] kmsan_get_metadata+0x29/0x180 [ 2813.762222][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2813.762222][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2813.762222][ C0] batadv_iv_ogm_schedule+0xf5d/0x16b0 [ 2813.762222][ C0] batadv_iv_send_outstanding_bat_ogm_packet+0xd6e/0xef0 [ 2813.762222][ C0] ? batadv_iv_ogm_queue_add+0x1c40/0x1c40 [ 2813.762222][ C0] process_one_work+0x1219/0x1fe0 [ 2813.762222][ C0] worker_thread+0x10ec/0x2340 [ 2813.762222][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2813.762222][ C0] kthread+0x521/0x560 [ 2813.762222][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2813.762222][ C0] ? kthread_blkcg+0x110/0x110 [ 2813.762222][ C0] ret_from_fork+0x1f/0x30 [ 2813.762222][ C0] ---[ end trace f7326eee4ef53833 ]--- [ 2813.762222][ C0] ------------[ cut here ]------------ [ 2813.762222][ C0] WARNING: CPU: 0 PID: 21789 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2813.762222][ C0] Modules linked in: [ 2813.762222][ C0] CPU: 0 PID: 21789 Comm: kworker/u4:7 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2813.762222][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2813.762222][ C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 2813.762222][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2813.762222][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2813.762222][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2813.762222][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888186459f40 [ 2813.762222][ C0] RDX: 0000000000010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2813.762222][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2813.762222][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2813.762222][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2813.762222][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2813.762222][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2813.762222][ C0] CR2: 0000000000919fe6 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2813.762222][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2813.762222][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2813.762222][ C0] Call Trace: [ 2813.762222][ C0] [ 2813.762222][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2813.762222][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2813.762222][ C0] __run_hrtimer+0x48b/0xd20 [ 2813.762222][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2813.762222][ C0] ? hrtimer_init+0x570/0x570 [ 2813.762222][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2813.762222][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2813.762222][ C0] [ 2813.762222][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2813.762222][ C0] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x13/0x30 [ 2813.762222][ C0] Code: a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 <48> b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f [ 2813.762222][ C0] RSP: 0018:ffff8881f9f479e8 EFLAGS: 00000287 [ 2813.762222][ C0] RAX: 0000000000ffff88 RBX: ffff8881289bf400 RCX: ffff888186459f00 [ 2813.762222][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881289bf400 [ 2813.762222][ C0] RBP: ffff8881f9f479e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2813.762222][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2813.762222][ C0] R13: ffff8881289bf400 R14: 0000000000000000 R15: 0000000000000000 [ 2813.762222][ C0] kmsan_get_metadata+0x29/0x180 [ 2813.762222][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2813.762222][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2813.762222][ C0] batadv_iv_ogm_schedule+0xf5d/0x16b0 [ 2813.762222][ C0] batadv_iv_send_outstanding_bat_ogm_packet+0xd6e/0xef0 [ 2813.762222][ C0] ? batadv_iv_ogm_queue_add+0x1c40/0x1c40 [ 2813.762222][ C0] process_one_work+0x1219/0x1fe0 [ 2813.762222][ C0] worker_thread+0x10ec/0x2340 [ 2813.762222][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2813.762222][ C0] kthread+0x521/0x560 [ 2813.762222][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2813.762222][ C0] ? kthread_blkcg+0x110/0x110 [ 2813.762222][ C0] ret_from_fork+0x1f/0x30 [ 2813.762222][ C0] ---[ end trace f7326eee4ef53834 ]--- [ 2814.420280][ C0] ------------[ cut here ]------------ [ 2814.425968][ C0] WARNING: CPU: 0 PID: 21789 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2814.428756][ C0] Modules linked in: [ 2814.428756][ C0] CPU: 0 PID: 21789 Comm: kworker/u4:7 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2814.428756][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2814.428756][ C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet [ 2814.428756][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2814.428756][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2814.428756][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2814.428756][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888186459f40 [ 2814.428756][ C0] RDX: 0000000000010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2814.428756][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2814.428756][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2814.428756][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2814.428756][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2814.428756][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2814.428756][ C0] CR2: 0000000000919fe6 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2814.428756][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2814.428756][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2814.428756][ C0] Call Trace: [ 2814.428756][ C0] [ 2814.428756][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2814.428756][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2814.428756][ C0] __run_hrtimer+0x48b/0xd20 [ 2814.428756][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2814.428756][ C0] ? hrtimer_init+0x570/0x570 [ 2814.428756][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2814.428756][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2814.428756][ C0] [ 2814.428756][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2814.428756][ C0] RIP: 0010:kmsan_internal_is_vmalloc_addr+0x13/0x30 [ 2814.428756][ C0] Code: a3 0a 72 02 31 c0 5d c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 48 89 f8 48 c1 e8 28 3d c8 ff ff 00 0f 97 c1 <48> b8 ff ff ff ff ff d0 ff ff 48 39 c7 0f 92 c0 20 c8 5d c3 66 0f [ 2814.428756][ C0] RSP: 0018:ffff8881f9f479e8 EFLAGS: 00000287 [ 2814.428756][ C0] RAX: 0000000000ffff88 RBX: ffff8881289bf400 RCX: ffff888186459f00 [ 2814.428756][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881289bf400 [ 2814.428756][ C0] RBP: ffff8881f9f479e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2814.428756][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2814.428756][ C0] R13: ffff8881289bf400 R14: 0000000000000000 R15: 0000000000000000 [ 2814.428756][ C0] kmsan_get_metadata+0x29/0x180 [ 2814.428756][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2814.428756][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2814.428756][ C0] batadv_iv_ogm_schedule+0xf5d/0x16b0 [ 2814.428756][ C0] batadv_iv_send_outstanding_bat_ogm_packet+0xd6e/0xef0 [ 2814.428756][ C0] ? batadv_iv_ogm_queue_add+0x1c40/0x1c40 [ 2814.428756][ C0] process_one_work+0x1219/0x1fe0 [ 2814.428756][ C0] worker_thread+0x10ec/0x2340 [ 2814.428756][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2814.428756][ C0] kthread+0x521/0x560 [ 2814.428756][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2814.428756][ C0] ? kthread_blkcg+0x110/0x110 [ 2814.428756][ C0] ret_from_fork+0x1f/0x30 [ 2814.428756][ C0] ---[ end trace f7326eee4ef53835 ]--- [ 2814.851100][ C0] ------------[ cut here ]------------ [ 2814.856849][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2814.865474][ C0] Modules linked in: [ 2814.865474][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2814.878254][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2814.865474][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2814.865474][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2814.865474][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2814.905934][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2814.865474][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2814.865474][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2814.865474][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2814.865474][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2814.865474][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2814.972645][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2814.972645][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2814.972645][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2814.992377][ C0] CR2: 0000000000d8c000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2814.992377][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2814.992377][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2814.992377][ C0] Call Trace: [ 2814.992377][ C0] [ 2814.992377][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2814.992377][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2814.992377][ C0] __run_hrtimer+0x48b/0xd20 [ 2814.992377][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2814.992377][ C0] ? hrtimer_init+0x570/0x570 [ 2814.992377][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2814.992377][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2814.992377][ C0] [ 2814.992377][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2814.992377][ C0] RIP: 0010:workingset_refault+0x6dc/0x1700 [ 2814.992377][ C0] Code: c0 00 75 02 8b 3a e8 43 6f 25 00 e9 4e fe ff ff 89 df e8 37 6f 25 00 4d 85 e4 0f 84 49 ff ff ff e8 39 7e a2 ff fb 4c 8b 75 b0 <48> 8b 9d 60 ff ff ff 0f 1f 44 00 00 e8 23 7e a2 ff 48 81 c3 b8 00 [ 2814.992377][ C0] RSP: 0000:ffff88812049f400 EFLAGS: 00000293 [ 2814.992377][ C0] RAX: ffffffff8219b5b7 RBX: 0000000000000000 RCX: ffff888124399f40 [ 2814.992377][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2814.992377][ C0] RBP: ffff88812049f518 R08: ffffffff8219b4de R09: ffff88813fffa000 [ 2814.992377][ C0] R10: 00000000918a8436 R11: ffffffff8fc00715 R12: 0000000000000200 [ 2814.992377][ C0] R13: 0000000000000000 R14: ffff88812439a9c8 R15: 000000000000000b [ 2814.992377][ C0] ? __do_softirq+0x715/0x715 [ 2814.992377][ C0] ? workingset_refault+0x5fe/0x1700 [ 2814.992377][ C0] ? workingset_refault+0x6d7/0x1700 [ 2814.992377][ C0] add_to_page_cache_lru+0x403/0x530 [ 2814.992377][ C0] page_cache_ra_unbounded+0x7c3/0xf40 [ 2814.992377][ C0] ondemand_readahead+0x1390/0x1dc0 [ 2814.992377][ C0] page_cache_async_ra+0x582/0x5a0 [ 2814.992377][ C0] do_async_mmap_readahead+0x6bf/0x7a0 [ 2814.992377][ C0] filemap_fault+0x2fb/0x2520 [ 2814.992377][ C0] ext4_filemap_fault+0xbb/0x130 [ 2814.992377][ C0] ? ext4_page_mkwrite+0x3470/0x3470 [ 2814.992377][ C0] do_read_fault+0x9f6/0x11e0 [ 2814.992377][ C0] ? lock_page_maybe_drop_mmap+0x850/0x850 [ 2814.992377][ C0] handle_mm_fault+0x3be2/0x4ef0 [ 2814.992377][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2814.992377][ C0] do_user_addr_fault+0x159a/0x2650 [ 2814.992377][ C0] __exc_page_fault+0xe3/0x340 [ 2814.992377][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2814.992377][ C0] exc_page_fault+0x45/0x50 [ 2814.992377][ C0] asm_exc_page_fault+0x1e/0x30 [ 2814.992377][ C0] RIP: 0033:0x420a5d [ 2814.992377][ C0] Code: 0c 48 ff c7 d1 eb 48 83 c6 08 0f 1f 00 48 83 ff 08 0f 8d f9 00 00 00 48 39 f1 0f 86 f0 00 00 00 0f ba e3 00 73 db 4c 8d 04 16 <4d> 8b 00 4d 85 c0 74 cf 48 89 7c 24 40 4c 89 44 24 38 48 89 74 24 [ 2814.992377][ C0] RSP: 002b:000000c000039e18 EFLAGS: 00010207 [ 2814.992377][ C0] RAX: 00007fcdd5415000 RBX: 0000000000000021 RCX: 0000000000040000 [ 2814.992377][ C0] RDX: 0000000000d8bd00 RSI: 0000000000000300 RDI: 0000000000000000 [ 2814.992377][ C0] RBP: 000000c000039e68 R08: 0000000000d8c000 R09: 00000000000000b5 [ 2814.992377][ C0] R10: 00000000018717e8 R11: 0000000000000101 R12: 0000000000000003 [ 2815.292297][ C0] R13: 000000c000000c00 R14: 000002930872f94f R15: 000000c001b6f4b8 [ 2815.292297][ C0] ---[ end trace f7326eee4ef53836 ]--- [ 2815.292297][ C0] ------------[ cut here ]------------ [ 2815.292297][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2815.292297][ C0] Modules linked in: [ 2815.292297][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2815.292297][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2815.292297][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2815.292297][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2815.292297][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2815.292297][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2815.292297][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2815.292297][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2815.292297][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2815.292297][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2815.292297][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2815.292297][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2815.292297][ C0] CR2: 0000000000d8c000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2815.292297][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2815.292297][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2815.292297][ C0] Call Trace: [ 2815.292297][ C0] [ 2815.292297][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2815.292297][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2815.292297][ C0] __run_hrtimer+0x48b/0xd20 [ 2815.292297][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2815.292297][ C0] ? hrtimer_init+0x570/0x570 [ 2815.292297][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2815.292297][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2815.292297][ C0] [ 2815.292297][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2815.292297][ C0] RIP: 0010:workingset_refault+0x6dc/0x1700 [ 2815.292297][ C0] Code: c0 00 75 02 8b 3a e8 43 6f 25 00 e9 4e fe ff ff 89 df e8 37 6f 25 00 4d 85 e4 0f 84 49 ff ff ff e8 39 7e a2 ff fb 4c 8b 75 b0 <48> 8b 9d 60 ff ff ff 0f 1f 44 00 00 e8 23 7e a2 ff 48 81 c3 b8 00 [ 2815.292297][ C0] RSP: 0000:ffff88812049f400 EFLAGS: 00000293 [ 2815.292297][ C0] RAX: ffffffff8219b5b7 RBX: 0000000000000000 RCX: ffff888124399f40 [ 2815.292297][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2815.292297][ C0] RBP: ffff88812049f518 R08: ffffffff8219b4de R09: ffff88813fffa000 [ 2815.292297][ C0] R10: 00000000918a8436 R11: ffffffff8fc00715 R12: 0000000000000200 [ 2815.292297][ C0] R13: 0000000000000000 R14: ffff88812439a9c8 R15: 000000000000000b [ 2815.292297][ C0] ? __do_softirq+0x715/0x715 [ 2815.292297][ C0] ? workingset_refault+0x5fe/0x1700 [ 2815.292297][ C0] ? workingset_refault+0x6d7/0x1700 [ 2815.292297][ C0] add_to_page_cache_lru+0x403/0x530 [ 2815.292297][ C0] page_cache_ra_unbounded+0x7c3/0xf40 [ 2815.292297][ C0] ondemand_readahead+0x1390/0x1dc0 [ 2815.292297][ C0] page_cache_async_ra+0x582/0x5a0 [ 2815.292297][ C0] do_async_mmap_readahead+0x6bf/0x7a0 [ 2815.292297][ C0] filemap_fault+0x2fb/0x2520 [ 2815.292297][ C0] ext4_filemap_fault+0xbb/0x130 [ 2815.292297][ C0] ? ext4_page_mkwrite+0x3470/0x3470 [ 2815.292297][ C0] do_read_fault+0x9f6/0x11e0 [ 2815.292297][ C0] ? lock_page_maybe_drop_mmap+0x850/0x850 [ 2815.292297][ C0] handle_mm_fault+0x3be2/0x4ef0 [ 2815.292297][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2815.292297][ C0] do_user_addr_fault+0x159a/0x2650 [ 2815.292297][ C0] __exc_page_fault+0xe3/0x340 [ 2815.292297][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2815.292297][ C0] exc_page_fault+0x45/0x50 [ 2815.292297][ C0] asm_exc_page_fault+0x1e/0x30 [ 2815.292297][ C0] RIP: 0033:0x420a5d [ 2815.292297][ C0] Code: 0c 48 ff c7 d1 eb 48 83 c6 08 0f 1f 00 48 83 ff 08 0f 8d f9 00 00 00 48 39 f1 0f 86 f0 00 00 00 0f ba e3 00 73 db 4c 8d 04 16 <4d> 8b 00 4d 85 c0 74 cf 48 89 7c 24 40 4c 89 44 24 38 48 89 74 24 [ 2815.292297][ C0] RSP: 002b:000000c000039e18 EFLAGS: 00010207 [ 2815.292297][ C0] RAX: 00007fcdd5415000 RBX: 0000000000000021 RCX: 0000000000040000 [ 2815.292297][ C0] RDX: 0000000000d8bd00 RSI: 0000000000000300 RDI: 0000000000000000 [ 2815.292297][ C0] RBP: 000000c000039e68 R08: 0000000000d8c000 R09: 00000000000000b5 [ 2815.292297][ C0] R10: 00000000018717e8 R11: 0000000000000101 R12: 0000000000000003 [ 2815.292297][ C0] R13: 000000c000000c00 R14: 000002930872f94f R15: 000000c001b6f4b8 [ 2815.292297][ C0] ---[ end trace f7326eee4ef53837 ]--- [ 2815.740420][ C0] ------------[ cut here ]------------ [ 2815.746144][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2815.748939][ C0] Modules linked in: [ 2815.748939][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2815.748939][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2815.748939][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2815.748939][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2815.748939][ C0] RSP: 0000:ffff88813fc05cb0 EFLAGS: 00010046 [ 2815.748939][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2815.748939][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2815.748939][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2815.748939][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2815.748939][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2815.748939][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2815.748939][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2815.748939][ C0] CR2: 0000000000d8c000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2815.748939][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2815.748939][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2815.748939][ C0] Call Trace: [ 2815.748939][ C0] [ 2815.748939][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2815.748939][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2815.748939][ C0] __run_hrtimer+0x48b/0xd20 [ 2815.748939][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2815.748939][ C0] ? hrtimer_init+0x570/0x570 [ 2815.748939][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2815.748939][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2815.748939][ C0] [ 2815.748939][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2815.748939][ C0] RIP: 0010:workingset_refault+0x6dc/0x1700 [ 2815.748939][ C0] Code: c0 00 75 02 8b 3a e8 43 6f 25 00 e9 4e fe ff ff 89 df e8 37 6f 25 00 4d 85 e4 0f 84 49 ff ff ff e8 39 7e a2 ff fb 4c 8b 75 b0 <48> 8b 9d 60 ff ff ff 0f 1f 44 00 00 e8 23 7e a2 ff 48 81 c3 b8 00 [ 2815.748939][ C0] RSP: 0000:ffff88812049f400 EFLAGS: 00000293 [ 2815.748939][ C0] RAX: ffffffff8219b5b7 RBX: 0000000000000000 RCX: ffff888124399f40 [ 2815.748939][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2815.748939][ C0] RBP: ffff88812049f518 R08: ffffffff8219b4de R09: ffff88813fffa000 [ 2815.748939][ C0] R10: 00000000918a8436 R11: ffffffff8fc00715 R12: 0000000000000200 [ 2815.748939][ C0] R13: 0000000000000000 R14: ffff88812439a9c8 R15: 000000000000000b [ 2815.748939][ C0] ? __do_softirq+0x715/0x715 [ 2815.748939][ C0] ? workingset_refault+0x5fe/0x1700 [ 2815.748939][ C0] ? workingset_refault+0x6d7/0x1700 [ 2815.748939][ C0] add_to_page_cache_lru+0x403/0x530 [ 2815.748939][ C0] page_cache_ra_unbounded+0x7c3/0xf40 [ 2815.748939][ C0] ondemand_readahead+0x1390/0x1dc0 [ 2815.748939][ C0] page_cache_async_ra+0x582/0x5a0 [ 2815.748939][ C0] do_async_mmap_readahead+0x6bf/0x7a0 [ 2815.748939][ C0] filemap_fault+0x2fb/0x2520 [ 2815.748939][ C0] ext4_filemap_fault+0xbb/0x130 [ 2815.748939][ C0] ? ext4_page_mkwrite+0x3470/0x3470 [ 2815.748939][ C0] do_read_fault+0x9f6/0x11e0 [ 2815.748939][ C0] ? lock_page_maybe_drop_mmap+0x850/0x850 [ 2815.748939][ C0] handle_mm_fault+0x3be2/0x4ef0 [ 2815.748939][ C0] ? kmsan_get_metadata+0xc0/0x180 [ 2815.748939][ C0] do_user_addr_fault+0x159a/0x2650 [ 2815.748939][ C0] __exc_page_fault+0xe3/0x340 [ 2815.748939][ C0] ? asm_exc_page_fault+0x8/0x30 [ 2815.748939][ C0] exc_page_fault+0x45/0x50 [ 2815.748939][ C0] asm_exc_page_fault+0x1e/0x30 [ 2815.748939][ C0] RIP: 0033:0x420a5d [ 2815.748939][ C0] Code: 0c 48 ff c7 d1 eb 48 83 c6 08 0f 1f 00 48 83 ff 08 0f 8d f9 00 00 00 48 39 f1 0f 86 f0 00 00 00 0f ba e3 00 73 db 4c 8d 04 16 <4d> 8b 00 4d 85 c0 74 cf 48 89 7c 24 40 4c 89 44 24 38 48 89 74 24 [ 2815.748939][ C0] RSP: 002b:000000c000039e18 EFLAGS: 00010207 [ 2815.748939][ C0] RAX: 00007fcdd5415000 RBX: 0000000000000021 RCX: 0000000000040000 [ 2815.748939][ C0] RDX: 0000000000d8bd00 RSI: 0000000000000300 RDI: 0000000000000000 [ 2815.748939][ C0] RBP: 000000c000039e68 R08: 0000000000d8c000 R09: 00000000000000b5 [ 2815.748939][ C0] R10: 00000000018717e8 R11: 0000000000000101 R12: 0000000000000003 [ 2815.748939][ C0] R13: 000000c000000c00 R14: 000002930872f94f R15: 000000c001b6f4b8 [ 2815.748939][ C0] ---[ end trace f7326eee4ef53838 ]--- [ 2816.264485][ C0] ------------[ cut here ]------------ [ 2816.270261][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2816.273015][ C0] Modules linked in: [ 2816.273015][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2816.273015][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2816.273015][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 03:38:10 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2816.273015][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2816.273015][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2816.332489][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2816.332489][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2816.332489][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2816.332489][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2816.332489][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2816.332489][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2816.332489][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2816.332489][ C0] CR2: 0000000000d8c000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2816.332489][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2816.332489][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2816.332489][ C0] Call Trace: [ 2816.332489][ C0] [ 2816.332489][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.332489][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2816.332489][ C0] __run_hrtimer+0x48b/0xd20 [ 2816.427423][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2816.427423][ C0] ? hrtimer_init+0x570/0x570 [ 2816.427423][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2816.427423][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2816.427423][ C0] [ 2816.427423][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2816.427423][ C0] RIP: 0010:kmsan_get_metadata+0x12d/0x180 [ 2816.427423][ C0] Code: cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e <81> e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 [ 2816.427423][ C0] RSP: 0018:ffff8880a55171d0 EFLAGS: 00000286 [ 2816.427423][ C0] RAX: ffffea000061d960 RBX: ffff888013d1e0f0 RCX: ffffea0000609960 [ 2816.427423][ C0] RDX: 0000000013d1e0f0 RSI: 0000000000000020 RDI: ffff888013d1e0f0 [ 2816.427423][ C0] RBP: ffff8880a55171e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2816.427423][ C0] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: ffff888013d1e0f0 [ 2816.427423][ C0] R13: ffff88813ecaa9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2816.427423][ C0] ? __do_softirq+0x715/0x715 [ 2816.427423][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2816.427423][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2816.542279][ C0] zap_pte_range+0x4f0/0x3cb0 [ 2816.542279][ C0] ? free_unref_page_commit+0x330/0x750 [ 2816.542279][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.542279][ C0] unmap_page_range+0x1154/0x1440 [ 2816.542279][ C0] unmap_single_vma+0x56b/0x750 [ 2816.542279][ C0] unmap_vmas+0x3c8/0x500 [ 2816.542279][ C0] exit_mmap+0x5f1/0xb80 [ 2816.542279][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2816.542279][ C0] __mmput+0x1b7/0x630 [ 2816.542279][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2816.542279][ C0] mmput+0x8c/0xb0 [ 2816.542279][ C0] exit_mm+0x7a9/0x9a0 [ 2816.542279][ C0] do_exit+0xdbb/0x3c20 [ 2816.542279][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.542279][ C0] ? memcg_slab_free_hook+0x3a/0xb20 [ 2816.542279][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2816.542279][ C0] do_group_exit+0x1e1/0x3c0 [ 2816.542279][ C0] get_signal+0x2e5f/0x39e0 [ 2816.542279][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2816.542279][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.542279][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2816.542279][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2816.542279][ C0] ? __msan_get_context_state+0x9/0x20 [ 2816.542279][ C0] ? rcu_all_qs+0x23/0x260 [ 2816.542279][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2816.542279][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.542279][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2816.542279][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2816.542279][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2816.542279][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2816.542279][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2816.542279][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2816.542279][ C0] do_SYSENTER_32+0x73/0x90 [ 2816.542279][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2816.542279][ C0] RIP: 0023:0xf7fc2549 [ 2816.542279][ C0] Code: Unable to access opcode bytes at RIP 0xf7fc251f. [ 2816.542279][ C0] RSP: 002b:00000000ffd75630 EFLAGS: 00000282 ORIG_RAX: 0000000000000006 [ 2816.542279][ C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000000002 [ 2816.542279][ C0] RDX: 0000000000000000 RSI: 000000000816c000 RDI: 0000000000000000 [ 2816.542279][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2816.542279][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2816.542279][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2816.542279][ C0] ---[ end trace f7326eee4ef53839 ]--- [ 2816.542279][ C0] ------------[ cut here ]------------ [ 2816.542279][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2816.542279][ C0] Modules linked in: [ 2816.542279][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2816.542279][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2816.812303][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2816.812303][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2816.812303][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2816.812303][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2816.812303][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2816.812303][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2816.812303][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2816.812303][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2816.812303][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2816.812303][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2816.892262][ C0] CR2: 0000000000d8c000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2816.892262][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2816.892262][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2816.892262][ C0] Call Trace: [ 2816.892262][ C0] [ 2816.892262][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.892262][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2816.892262][ C0] __run_hrtimer+0x48b/0xd20 [ 2816.892262][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2816.892262][ C0] ? hrtimer_init+0x570/0x570 [ 2816.892262][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2816.892262][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2816.892262][ C0] [ 2816.892262][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2816.892262][ C0] RIP: 0010:kmsan_get_metadata+0x12d/0x180 [ 2816.892262][ C0] Code: cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e <81> e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 [ 2816.892262][ C0] RSP: 0018:ffff8880a55171d0 EFLAGS: 00000286 [ 2816.892262][ C0] RAX: ffffea000061d960 RBX: ffff888013d1e0f0 RCX: ffffea0000609960 [ 2816.892262][ C0] RDX: 0000000013d1e0f0 RSI: 0000000000000020 RDI: ffff888013d1e0f0 [ 2816.892262][ C0] RBP: ffff8880a55171e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2816.892262][ C0] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: ffff888013d1e0f0 [ 2816.892262][ C0] R13: ffff88813ecaa9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2816.892262][ C0] ? __do_softirq+0x715/0x715 [ 2816.892262][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2816.892262][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2816.892262][ C0] zap_pte_range+0x4f0/0x3cb0 [ 2816.892262][ C0] ? free_unref_page_commit+0x330/0x750 [ 2816.892262][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.892262][ C0] unmap_page_range+0x1154/0x1440 [ 2816.892262][ C0] unmap_single_vma+0x56b/0x750 [ 2816.892262][ C0] unmap_vmas+0x3c8/0x500 [ 2816.892262][ C0] exit_mmap+0x5f1/0xb80 [ 2816.892262][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2816.892262][ C0] __mmput+0x1b7/0x630 [ 2816.892262][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2816.892262][ C0] mmput+0x8c/0xb0 [ 2816.892262][ C0] exit_mm+0x7a9/0x9a0 [ 2816.892262][ C0] do_exit+0xdbb/0x3c20 [ 2816.892262][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2816.892262][ C0] ? memcg_slab_free_hook+0x3a/0xb20 [ 2816.892262][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.132197][ C0] do_group_exit+0x1e1/0x3c0 [ 2817.132197][ C0] get_signal+0x2e5f/0x39e0 [ 2817.132197][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.132197][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.132197][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2817.132197][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2817.132197][ C0] ? __msan_get_context_state+0x9/0x20 [ 2817.132197][ C0] ? rcu_all_qs+0x23/0x260 [ 2817.132197][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.132197][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.132197][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2817.132197][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.132197][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2817.132197][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2817.132197][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2817.132197][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2817.132197][ C0] do_SYSENTER_32+0x73/0x90 [ 2817.132197][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2817.132197][ C0] RIP: 0023:0xf7fc2549 [ 2817.132197][ C0] Code: Unable to access opcode bytes at RIP 0xf7fc251f. [ 2817.132197][ C0] RSP: 002b:00000000ffd75630 EFLAGS: 00000282 ORIG_RAX: 0000000000000006 [ 2817.132197][ C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000000002 [ 2817.132197][ C0] RDX: 0000000000000000 RSI: 000000000816c000 RDI: 0000000000000000 [ 2817.132197][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2817.132197][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2817.132197][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2817.132197][ C0] ---[ end trace f7326eee4ef5383a ]--- [ 2817.290410][ C0] ------------[ cut here ]------------ [ 2817.296414][ C0] WARNING: CPU: 0 PID: 24892 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2817.298902][ C0] Modules linked in: [ 2817.298902][ C0] CPU: 0 PID: 24892 Comm: syz-executor.5 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2817.298902][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2817.298902][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2817.298902][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2817.298902][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2817.298902][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88813eca9f40 [ 2817.298902][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2817.298902][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2817.298902][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2817.298902][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2817.298902][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2817.298902][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2817.298902][ C0] CR2: 0000000000d8c000 CR3: 0000000011629000 CR4: 00000000001526f0 [ 2817.298902][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2817.298902][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2817.298902][ C0] Call Trace: [ 2817.298902][ C0] [ 2817.298902][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.298902][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2817.298902][ C0] __run_hrtimer+0x48b/0xd20 [ 2817.298902][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2817.298902][ C0] ? hrtimer_init+0x570/0x570 [ 2817.298902][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2817.298902][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2817.298902][ C0] [ 2817.298902][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2817.298902][ C0] RIP: 0010:kmsan_get_metadata+0x12d/0x180 [ 2817.298902][ C0] Code: cf 48 03 04 cd 30 46 a2 90 75 5f 48 89 df e8 6a 00 00 00 48 85 c0 74 50 48 8b 48 40 48 85 c9 74 47 48 8b 40 48 48 85 c0 74 3e <81> e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 [ 2817.298902][ C0] RSP: 0018:ffff8880a55171d0 EFLAGS: 00000286 [ 2817.298902][ C0] RAX: ffffea000061d960 RBX: ffff888013d1e0f0 RCX: ffffea0000609960 [ 2817.298902][ C0] RDX: 0000000013d1e0f0 RSI: 0000000000000020 RDI: ffff888013d1e0f0 [ 2817.298902][ C0] RBP: ffff8880a55171e8 R08: ffffea000000000f R09: ffff88813fffa000 [ 2817.298902][ C0] R10: 00000000181d6f4f R11: ffffffff8fc00715 R12: ffff888013d1e0f0 [ 2817.298902][ C0] R13: ffff88813ecaa9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2817.298902][ C0] ? __do_softirq+0x715/0x715 [ 2817.298902][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2817.298902][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2817.298902][ C0] zap_pte_range+0x4f0/0x3cb0 [ 2817.298902][ C0] ? free_unref_page_commit+0x330/0x750 [ 2817.298902][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.298902][ C0] unmap_page_range+0x1154/0x1440 [ 2817.298902][ C0] unmap_single_vma+0x56b/0x750 [ 2817.298902][ C0] unmap_vmas+0x3c8/0x500 [ 2817.298902][ C0] exit_mmap+0x5f1/0xb80 [ 2817.298902][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2817.298902][ C0] __mmput+0x1b7/0x630 [ 2817.298902][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2817.298902][ C0] mmput+0x8c/0xb0 [ 2817.298902][ C0] exit_mm+0x7a9/0x9a0 [ 2817.298902][ C0] do_exit+0xdbb/0x3c20 [ 2817.298902][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.298902][ C0] ? memcg_slab_free_hook+0x3a/0xb20 [ 2817.298902][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.298902][ C0] do_group_exit+0x1e1/0x3c0 [ 2817.298902][ C0] get_signal+0x2e5f/0x39e0 [ 2817.298902][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.298902][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.298902][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2817.298902][ C0] arch_do_signal_or_restart+0xa4/0xe10 [ 2817.298902][ C0] ? __msan_get_context_state+0x9/0x20 [ 2817.298902][ C0] ? rcu_all_qs+0x23/0x260 [ 2817.298902][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.298902][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2817.298902][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2817.298902][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2817.298902][ C0] exit_to_user_mode_prepare+0x2d2/0x560 [ 2817.298902][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2817.298902][ C0] __do_fast_syscall_32+0x14f/0x180 [ 2817.298902][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2817.298902][ C0] do_SYSENTER_32+0x73/0x90 [ 2817.298902][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2817.298902][ C0] RIP: 0023:0xf7fc2549 [ 2817.298902][ C0] Code: Unable to access opcode bytes at RIP 0xf7fc251f. [ 2817.298902][ C0] RSP: 002b:00000000ffd75630 EFLAGS: 00000282 ORIG_RAX: 0000000000000006 [ 2817.298902][ C0] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000000002 [ 2817.298902][ C0] RDX: 0000000000000000 RSI: 000000000816c000 RDI: 0000000000000000 [ 2817.298902][ C0] RBP: 000000000816c000 R08: 0000000000000000 R09: 0000000000000000 [ 2817.298902][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2817.298902][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2817.298902][ C0] ---[ end trace f7326eee4ef5383b ]--- [ 2817.890711][ C0] ------------[ cut here ]------------ [ 2817.896376][ C0] WARNING: CPU: 0 PID: 8222 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2817.899288][ C0] Modules linked in: [ 2817.899288][ C0] CPU: 0 PID: 8222 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2817.899288][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2817.899288][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2817.899288][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2817.942307][ C0] RSP: 0000:ffff88811eeefbe8 EFLAGS: 00010046 [ 2817.942307][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812439ddc0 [ 2817.942307][ C0] RDX: 0000000000010000 RSI: 0000000000000024 RDI: 0000000000000001 [ 2817.942307][ C0] RBP: ffff88811eeefc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2817.942307][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2817.942307][ C0] R13: 0000000000000000 R14: 0000000000000024 R15: ffff88813fc27b00 [ 2817.942307][ C0] FS: 000000c00002ec90(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2817.942307][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2817.942307][ C0] CR2: 00007f5298a53000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2817.942307][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2817.942307][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2818.032192][ C0] Call Trace: [ 2818.032192][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.032192][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2818.032192][ C0] __run_hrtimer+0x48b/0xd20 [ 2818.032192][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2818.032192][ C0] ? hrtimer_init+0x570/0x570 [ 2818.062234][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2818.062234][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2818.062234][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2818.062234][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2818.062234][ C0] RIP: 0033:0x420d75 [ 2818.062234][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2818.092232][ C0] RSP: 002b:000000c00003bea8 EFLAGS: 00000247 [ 2818.092232][ C0] RAX: 0000000000203003 RBX: 00007fcdd471b0a0 RCX: 0000000000000003 [ 2818.092232][ C0] RDX: 0000000000000030 RSI: 0000000000000003 RDI: 000000c00fa41350 [ 2818.092232][ C0] RBP: 000000c00003bf28 R08: 00007fcdd4748fff R09: 000000c00fa41410 [ 2818.092232][ C0] R10: 000000c00001d698 R11: 0000000000000008 R12: 0000000000000059 [ 2818.092232][ C0] R13: 0000000000000001 R14: 000002969a9565f0 R15: 000080c002723fff [ 2818.092232][ C0] ---[ end trace f7326eee4ef5383c ]--- [ 2818.160454][ C0] ------------[ cut here ]------------ [ 2818.166098][ C0] WARNING: CPU: 0 PID: 8222 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2818.169053][ C0] Modules linked in: [ 2818.169053][ C0] CPU: 0 PID: 8222 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2818.169053][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2818.169053][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2818.169053][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2818.169053][ C0] RSP: 0000:ffff88811eeefbe8 EFLAGS: 00010046 [ 2818.169053][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812439ddc0 [ 2818.169053][ C0] RDX: 0000000000010000 RSI: 0000000000000010 RDI: 0000000000000001 [ 2818.169053][ C0] RBP: ffff88811eeefc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2818.169053][ C0] R10: 0000000009a0de84 R11: 0000000000000000 R12: 0000000000000000 [ 2818.169053][ C0] R13: 0000000000000000 R14: 0000000000000010 R15: ffff88813fc27b00 [ 2818.262396][ C0] FS: 000000c00002ec90(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2818.262396][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2818.262396][ C0] CR2: 00007f5298a53000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2818.262396][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2818.262396][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2818.262396][ C0] Call Trace: [ 2818.262396][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.262396][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2818.262396][ C0] __run_hrtimer+0x48b/0xd20 [ 2818.262396][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2818.262396][ C0] ? hrtimer_init+0x570/0x570 [ 2818.262396][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2818.262396][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2818.262396][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2818.262396][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2818.262396][ C0] RIP: 0033:0x420d75 [ 2818.262396][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2818.262396][ C0] RSP: 002b:000000c00003bea8 EFLAGS: 00000247 [ 2818.262396][ C0] RAX: 0000000000203003 RBX: 00007fcdd471b0a0 RCX: 0000000000000003 [ 2818.262396][ C0] RDX: 0000000000000030 RSI: 0000000000000003 RDI: 000000c00fa41350 [ 2818.262396][ C0] RBP: 000000c00003bf28 R08: 00007fcdd4748fff R09: 000000c00fa41410 [ 2818.262396][ C0] R10: 000000c00001d698 R11: 0000000000000008 R12: 0000000000000059 [ 2818.262396][ C0] R13: 0000000000000001 R14: 000002969a9565f0 R15: 000080c002723fff [ 2818.262396][ C0] ---[ end trace f7326eee4ef5383d ]--- [ 2818.425169][ C0] ------------[ cut here ]------------ [ 2818.430830][ C0] WARNING: CPU: 0 PID: 8222 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2818.433722][ C0] Modules linked in: [ 2818.433722][ C0] CPU: 0 PID: 8222 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2818.433722][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2818.433722][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2818.433722][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2818.482322][ C0] RSP: 0000:ffff88811eeefbe8 EFLAGS: 00010046 [ 2818.482322][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812439ddc0 [ 2818.482322][ C0] RDX: 0000000000010000 RSI: 0000000000000010 RDI: 0000000000000001 [ 2818.482322][ C0] RBP: ffff88811eeefc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2818.482322][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2818.482322][ C0] R13: 0000000000000000 R14: 0000000000000010 R15: ffff88813fc27b00 [ 2818.482322][ C0] FS: 000000c00002ec90(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2818.482322][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2818.482322][ C0] CR2: 00007f5298a53000 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2818.482322][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2818.482322][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2818.482322][ C0] Call Trace: [ 2818.482322][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.482322][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2818.482322][ C0] __run_hrtimer+0x48b/0xd20 [ 2818.482322][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2818.482322][ C0] ? hrtimer_init+0x570/0x570 [ 2818.482322][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2818.482322][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2818.482322][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2818.482322][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2818.482322][ C0] RIP: 0033:0x420d75 [ 2818.482322][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2818.482322][ C0] RSP: 002b:000000c00003bea8 EFLAGS: 00000247 [ 2818.482322][ C0] RAX: 0000000000203003 RBX: 00007fcdd471b0a0 RCX: 0000000000000003 [ 2818.482322][ C0] RDX: 0000000000000030 RSI: 0000000000000003 RDI: 000000c00fa41350 03:38:12 executing program 3: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2818.482322][ C0] RBP: 000000c00003bf28 R08: 00007fcdd4748fff R09: 000000c00fa41410 [ 2818.482322][ C0] R10: 000000c00001d698 R11: 0000000000000008 R12: 0000000000000059 [ 2818.482322][ C0] R13: 0000000000000001 R14: 000002969a9565f0 R15: 000080c002723fff [ 2818.482322][ C0] ---[ end trace f7326eee4ef5383e ]--- 03:38:12 executing program 5: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2818.778111][ C0] ------------[ cut here ]------------ [ 2818.783852][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2818.786669][ C0] Modules linked in: [ 2818.786669][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2818.786669][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2818.812550][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2818.812550][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2818.812550][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2818.812550][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2818.812550][ C0] RDX: 0000000080010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2818.812550][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2818.812550][ C0] R10: 00000000b56c2fd0 R11: 00000000e5b906e6 R12: 0000000000000000 [ 2818.812550][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2818.812550][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2818.812550][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2818.812550][ C0] CR2: 000000c00d93c000 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2818.812550][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2818.812550][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2818.812550][ C0] Call Trace: [ 2818.812550][ C0] [ 2818.812550][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.812550][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2818.812550][ C0] __run_hrtimer+0x48b/0xd20 [ 2818.812550][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2818.812550][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2818.812550][ C0] ? hrtimer_init+0x570/0x570 [ 2818.812550][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2818.812550][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2818.812550][ C0] [ 2818.812550][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2818.972265][ C0] RIP: 0010:virt_to_page_or_null+0x56/0xf0 [ 2818.972265][ C0] Code: 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 <4d> 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 [ 2818.972265][ C0] RSP: 0018:ffff888115d3f928 EFLAGS: 00000246 [ 2818.972265][ C0] RAX: ffff888195d8d940 RBX: ffff888115d8d940 RCX: ffff88823fff4000 [ 2818.972265][ C0] RDX: 0000000115d8d940 RSI: 0000000000000000 RDI: ffff888115d8d940 [ 2818.972265][ C0] RBP: ffff888115d3f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2818.972265][ C0] R10: 0000000000000003 R11: ffff888112209f40 R12: ffff888115d8d940 [ 2818.972265][ C0] R13: ffff88811220a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2818.972265][ C0] kmsan_get_metadata+0x116/0x180 [ 2818.972265][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2818.972265][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2818.972265][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2818.972265][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2818.972265][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2818.972265][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2818.972265][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2818.972265][ C0] security_inode_getattr+0x141/0x280 [ 2818.972265][ C0] vfs_statx+0x29c/0x890 [ 2818.972265][ C0] __se_sys_newlstat+0xce/0x920 [ 2818.972265][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2818.972265][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2818.972265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.972265][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2818.972265][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2818.972265][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2818.972265][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2818.972265][ C0] do_syscall_64+0x9f/0x140 [ 2818.972265][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2818.972265][ C0] RIP: 0033:0x7f6216067335 [ 2818.972265][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2818.972265][ C0] RSP: 002b:00007fff23a81f58 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2818.972265][ C0] RAX: ffffffffffffffda RBX: 000055de45953380 RCX: 00007f6216067335 [ 2818.972265][ C0] RDX: 00007fff23a81f90 RSI: 00007fff23a81f90 RDI: 000055de45952380 [ 2818.972265][ C0] RBP: 00007fff23a82050 R08: 00007f62163261d8 R09: 0000000000001010 [ 2818.972265][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45952380 [ 2818.972265][ C0] R13: 000055de459523a0 R14: 000055de45938c9b R15: 000055de45938ca0 [ 2818.972265][ C0] ---[ end trace f7326eee4ef5383f ]--- [ 2819.222055][ C0] ------------[ cut here ]------------ [ 2819.227738][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2819.230609][ C0] Modules linked in: [ 2819.230609][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2819.230609][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2819.230609][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2819.230609][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2819.230609][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2819.230609][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2819.230609][ C0] RDX: 0000000080010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2819.230609][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2819.230609][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2819.230609][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2819.230609][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2819.230609][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2819.230609][ C0] CR2: 000000c00d93c000 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2819.230609][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2819.230609][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2819.230609][ C0] Call Trace: [ 2819.230609][ C0] [ 2819.230609][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.230609][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2819.230609][ C0] __run_hrtimer+0x48b/0xd20 [ 2819.230609][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2819.230609][ C0] ? hrtimer_init+0x570/0x570 [ 2819.230609][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2819.230609][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2819.230609][ C0] [ 2819.230609][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2819.230609][ C0] RIP: 0010:virt_to_page_or_null+0x56/0xf0 [ 2819.230609][ C0] Code: 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 <4d> 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 [ 2819.230609][ C0] RSP: 0018:ffff888115d3f928 EFLAGS: 00000246 [ 2819.230609][ C0] RAX: ffff888195d8d940 RBX: ffff888115d8d940 RCX: ffff88823fff4000 [ 2819.230609][ C0] RDX: 0000000115d8d940 RSI: 0000000000000000 RDI: ffff888115d8d940 [ 2819.230609][ C0] RBP: ffff888115d3f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2819.230609][ C0] R10: 0000000000000003 R11: ffff888112209f40 R12: ffff888115d8d940 [ 2819.230609][ C0] R13: ffff88811220a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2819.230609][ C0] kmsan_get_metadata+0x116/0x180 [ 2819.230609][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2819.230609][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2819.230609][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2819.230609][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2819.230609][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2819.230609][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2819.230609][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2819.230609][ C0] security_inode_getattr+0x141/0x280 [ 2819.230609][ C0] vfs_statx+0x29c/0x890 [ 2819.230609][ C0] __se_sys_newlstat+0xce/0x920 [ 2819.230609][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2819.230609][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2819.230609][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.230609][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2819.230609][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2819.230609][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.230609][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2819.230609][ C0] do_syscall_64+0x9f/0x140 [ 2819.230609][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2819.230609][ C0] RIP: 0033:0x7f6216067335 [ 2819.230609][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2819.230609][ C0] RSP: 002b:00007fff23a81f58 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2819.230609][ C0] RAX: ffffffffffffffda RBX: 000055de45953380 RCX: 00007f6216067335 [ 2819.230609][ C0] RDX: 00007fff23a81f90 RSI: 00007fff23a81f90 RDI: 000055de45952380 [ 2819.230609][ C0] RBP: 00007fff23a82050 R08: 00007f62163261d8 R09: 0000000000001010 [ 2819.230609][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45952380 [ 2819.230609][ C0] R13: 000055de459523a0 R14: 000055de45938c9b R15: 000055de45938ca0 [ 2819.230609][ C0] ---[ end trace f7326eee4ef53840 ]--- [ 2819.659904][ C0] ------------[ cut here ]------------ [ 2819.665640][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2819.668454][ C0] Modules linked in: [ 2819.668454][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2819.668454][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2819.668454][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2819.668454][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2819.668454][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2819.668454][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2819.668454][ C0] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2819.668454][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2819.668454][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2819.668454][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2819.668454][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2819.668454][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2819.668454][ C0] CR2: 000000c00d93c000 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2819.668454][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2819.668454][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2819.668454][ C0] Call Trace: [ 2819.668454][ C0] [ 2819.668454][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.668454][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2819.668454][ C0] __run_hrtimer+0x48b/0xd20 [ 2819.668454][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2819.668454][ C0] ? hrtimer_init+0x570/0x570 [ 2819.668454][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2819.668454][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2819.668454][ C0] [ 2819.668454][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2819.668454][ C0] RIP: 0010:virt_to_page_or_null+0x56/0xf0 [ 2819.668454][ C0] Code: 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 <4d> 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 [ 2819.668454][ C0] RSP: 0018:ffff888115d3f928 EFLAGS: 00000246 [ 2819.668454][ C0] RAX: ffff888195d8d940 RBX: ffff888115d8d940 RCX: ffff88823fff4000 [ 2819.668454][ C0] RDX: 0000000115d8d940 RSI: 0000000000000000 RDI: ffff888115d8d940 [ 2819.668454][ C0] RBP: ffff888115d3f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2819.668454][ C0] R10: 0000000000000003 R11: ffff888112209f40 R12: ffff888115d8d940 [ 2819.668454][ C0] R13: ffff88811220a9c8 R14: 0000000000000000 R15: 0000000000000000 [ 2819.668454][ C0] kmsan_get_metadata+0x116/0x180 [ 2819.668454][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2819.668454][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2819.668454][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2819.668454][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2819.668454][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2819.668454][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2819.668454][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2819.668454][ C0] security_inode_getattr+0x141/0x280 [ 2819.668454][ C0] vfs_statx+0x29c/0x890 [ 2819.668454][ C0] __se_sys_newlstat+0xce/0x920 [ 2819.668454][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2819.668454][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2819.668454][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.668454][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2819.668454][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2819.668454][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2819.668454][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2819.668454][ C0] do_syscall_64+0x9f/0x140 [ 2819.668454][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2819.668454][ C0] RIP: 0033:0x7f6216067335 [ 2819.668454][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2819.668454][ C0] RSP: 002b:00007fff23a81f58 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2819.668454][ C0] RAX: ffffffffffffffda RBX: 000055de45953380 RCX: 00007f6216067335 [ 2819.668454][ C0] RDX: 00007fff23a81f90 RSI: 00007fff23a81f90 RDI: 000055de45952380 [ 2819.668454][ C0] RBP: 00007fff23a82050 R08: 00007f62163261d8 R09: 0000000000001010 [ 2819.668454][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45952380 [ 2819.668454][ C0] R13: 000055de459523a0 R14: 000055de45938c9b R15: 000055de45938ca0 [ 2819.668454][ C0] ---[ end trace f7326eee4ef53841 ]--- [ 2820.191883][ C0] ------------[ cut here ]------------ [ 2820.197588][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2820.200444][ C0] Modules linked in: [ 2820.200444][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2820.200444][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2820.200444][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2820.200444][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2820.252132][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2820.252132][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2820.252132][ C0] RDX: 0000000080010000 RSI: 0000000000000020 RDI: 0000000000000001 [ 2820.252132][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2820.252132][ C0] R10: 00000000b56c2fd0 R11: 00000000d744fcc9 R12: 0000000000000000 [ 2820.252132][ C0] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fc27b00 [ 2820.252132][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2820.252132][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2820.252132][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2820.252132][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2820.252132][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2820.252132][ C0] Call Trace: [ 2820.252132][ C0] [ 2820.252132][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.252132][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2820.252132][ C0] __run_hrtimer+0x48b/0xd20 [ 2820.252132][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2820.252132][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2820.252132][ C0] ? hrtimer_init+0x570/0x570 [ 2820.252132][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2820.252132][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2820.252132][ C0] [ 2820.252132][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2820.252132][ C0] RIP: 0010:virt_to_page_or_null+0x31/0xf0 [ 2820.252132][ C0] Code: 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee <48> 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 [ 2820.252132][ C0] RSP: 0018:ffff888115d3f820 EFLAGS: 00000246 [ 2820.252132][ C0] RAX: ffff88819cb95fe4 RBX: ffff88811cb95fe4 RCX: ffff888112209f2e [ 2820.252132][ C0] RDX: 000000011cb95fe4 RSI: 0000000000000000 RDI: ffff88811cb95fe4 [ 2820.252132][ C0] RBP: ffff888115d3f820 R08: ffffea000000000f R09: ffff88813fffa000 [ 2820.252132][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2820.252132][ C0] R13: ffff8881f79f3b47 R14: 0000000000000000 R15: 0000000000000000 [ 2820.252132][ C0] kmsan_get_metadata+0x116/0x180 [ 2820.252132][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2820.252132][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2820.252132][ C0] tomoyo_encode2+0x6ce/0xa50 [ 2820.252132][ C0] tomoyo_realpath_from_path+0xb05/0xc20 [ 2820.252132][ C0] tomoyo_path_perm+0x30f/0xc50 [ 2820.252132][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2820.252132][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2820.252132][ C0] security_inode_getattr+0x141/0x280 [ 2820.252132][ C0] vfs_statx+0x29c/0x890 [ 2820.252132][ C0] __se_sys_newlstat+0xce/0x920 [ 2820.252132][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2820.252132][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2820.252132][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.252132][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2820.252132][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2820.252132][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.252132][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2820.252132][ C0] do_syscall_64+0x9f/0x140 [ 2820.252132][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2820.252132][ C0] RIP: 0033:0x7f6216067335 [ 2820.252132][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2820.252132][ C0] RSP: 002b:00007fff23a83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2820.252132][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2820.252132][ C0] RDX: 00007fff23a83070 RSI: 00007fff23a83070 RDI: 000055de45945170 [ 2820.252132][ C0] RBP: 00007fff23a83130 R08: 00007f6216326218 R09: 0000000000001010 [ 2820.252132][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2820.252132][ C0] R13: 000055de45945190 R14: 000055de4595239b R15: 000055de459523a0 [ 2820.252132][ C0] ---[ end trace f7326eee4ef53842 ]--- [ 2820.634248][ C0] ------------[ cut here ]------------ [ 2820.639975][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2820.642782][ C0] Modules linked in: [ 2820.642782][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2820.642782][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2820.642782][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2820.642782][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2820.642782][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2820.642782][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2820.642782][ C0] RDX: 0000000080010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2820.642782][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2820.642782][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2820.642782][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2820.642782][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2820.642782][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2820.642782][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2820.642782][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2820.642782][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2820.642782][ C0] Call Trace: [ 2820.642782][ C0] [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2820.642782][ C0] __run_hrtimer+0x48b/0xd20 [ 2820.642782][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2820.642782][ C0] ? hrtimer_init+0x570/0x570 [ 2820.642782][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2820.642782][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2820.642782][ C0] [ 2820.642782][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2820.642782][ C0] RIP: 0010:virt_to_page_or_null+0x31/0xf0 [ 2820.642782][ C0] Code: 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee <48> 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 [ 2820.642782][ C0] RSP: 0018:ffff888115d3f820 EFLAGS: 00000246 [ 2820.642782][ C0] RAX: ffff88819cb95fe4 RBX: ffff88811cb95fe4 RCX: ffff888112209f2e [ 2820.642782][ C0] RDX: 000000011cb95fe4 RSI: 0000000000000000 RDI: ffff88811cb95fe4 [ 2820.642782][ C0] RBP: ffff888115d3f820 R08: ffffea000000000f R09: ffff88813fffa000 [ 2820.642782][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2820.642782][ C0] R13: ffff8881f79f3b47 R14: 0000000000000000 R15: 0000000000000000 [ 2820.642782][ C0] kmsan_get_metadata+0x116/0x180 [ 2820.642782][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2820.642782][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2820.642782][ C0] tomoyo_encode2+0x6ce/0xa50 [ 2820.642782][ C0] tomoyo_realpath_from_path+0xb05/0xc20 [ 2820.642782][ C0] tomoyo_path_perm+0x30f/0xc50 [ 2820.642782][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2820.642782][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2820.642782][ C0] security_inode_getattr+0x141/0x280 [ 2820.642782][ C0] vfs_statx+0x29c/0x890 [ 2820.642782][ C0] __se_sys_newlstat+0xce/0x920 [ 2820.642782][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2820.642782][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2820.642782][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2820.642782][ C0] do_syscall_64+0x9f/0x140 [ 2820.642782][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2820.642782][ C0] RIP: 0033:0x7f6216067335 [ 2820.642782][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2820.642782][ C0] RSP: 002b:00007fff23a83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2820.642782][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2820.642782][ C0] RDX: 00007fff23a83070 RSI: 00007fff23a83070 RDI: 000055de45945170 [ 2820.642782][ C0] RBP: 00007fff23a83130 R08: 00007f6216326218 R09: 0000000000001010 [ 2820.642782][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2820.642782][ C0] R13: 000055de45945190 R14: 000055de4595239b R15: 000055de459523a0 [ 2820.642782][ C0] ---[ end trace f7326eee4ef53843 ]--- [ 2820.642782][ C0] ------------[ cut here ]------------ [ 2820.642782][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2820.642782][ C0] Modules linked in: [ 2820.642782][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2820.642782][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2820.642782][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2820.642782][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2820.642782][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2820.642782][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2820.642782][ C0] RDX: 0000000080010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2820.642782][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2820.642782][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2820.642782][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2820.642782][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2820.642782][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2820.642782][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2820.642782][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2820.642782][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2820.642782][ C0] Call Trace: [ 2820.642782][ C0] [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2820.642782][ C0] __run_hrtimer+0x48b/0xd20 [ 2820.642782][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2820.642782][ C0] ? hrtimer_init+0x570/0x570 [ 2820.642782][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2820.642782][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2820.642782][ C0] [ 2820.642782][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2820.642782][ C0] RIP: 0010:virt_to_page_or_null+0x31/0xf0 [ 2820.642782][ C0] Code: 48 2d 00 00 00 80 0f 83 c3 00 00 00 48 ba 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee <48> 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b 48 8b 0d 6a ef 05 10 48 [ 2820.642782][ C0] RSP: 0018:ffff888115d3f820 EFLAGS: 00000246 [ 2820.642782][ C0] RAX: ffff88819cb95fe4 RBX: ffff88811cb95fe4 RCX: ffff888112209f2e [ 2820.642782][ C0] RDX: 000000011cb95fe4 RSI: 0000000000000000 RDI: ffff88811cb95fe4 [ 2820.642782][ C0] RBP: ffff888115d3f820 R08: ffffea000000000f R09: ffff88813fffa000 [ 2820.642782][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2820.642782][ C0] R13: ffff8881f79f3b47 R14: 0000000000000000 R15: 0000000000000000 [ 2820.642782][ C0] kmsan_get_metadata+0x116/0x180 [ 2820.642782][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2820.642782][ C0] __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2820.642782][ C0] tomoyo_encode2+0x6ce/0xa50 [ 2820.642782][ C0] tomoyo_realpath_from_path+0xb05/0xc20 [ 2820.642782][ C0] tomoyo_path_perm+0x30f/0xc50 [ 2820.642782][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2820.642782][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2820.642782][ C0] security_inode_getattr+0x141/0x280 [ 2820.642782][ C0] vfs_statx+0x29c/0x890 [ 2820.642782][ C0] __se_sys_newlstat+0xce/0x920 [ 2820.642782][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2820.642782][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2820.642782][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2820.642782][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2820.642782][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2820.642782][ C0] do_syscall_64+0x9f/0x140 [ 2820.642782][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2820.642782][ C0] RIP: 0033:0x7f6216067335 [ 2820.642782][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2820.642782][ C0] RSP: 002b:00007fff23a83038 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2820.642782][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2820.642782][ C0] RDX: 00007fff23a83070 RSI: 00007fff23a83070 RDI: 000055de45945170 [ 2820.642782][ C0] RBP: 00007fff23a83130 R08: 00007f6216326218 R09: 0000000000001010 [ 2820.642782][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2820.642782][ C0] R13: 000055de45945190 R14: 000055de4595239b R15: 000055de459523a0 [ 2820.642782][ C0] ---[ end trace f7326eee4ef53844 ]--- [ 2821.568294][ C0] ------------[ cut here ]------------ [ 2821.568294][ C0] WARNING: CPU: 0 PID: 21826 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2821.568294][ C0] Modules linked in: [ 2821.568294][ C0] CPU: 0 PID: 21826 Comm: kworker/u4:12 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2821.568294][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2821.568294][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 2821.568294][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2821.568294][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2821.662720][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2821.662720][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881bbb3ddc0 [ 2821.662720][ C0] RDX: 0000000080010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2821.662720][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2821.662720][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2821.702424][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2821.702424][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2821.702424][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2821.702424][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2821.702424][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2821.702424][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2821.702424][ C0] Call Trace: [ 2821.702424][ C0] [ 2821.702424][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.702424][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2821.702424][ C0] __run_hrtimer+0x48b/0xd20 [ 2821.702424][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2821.702424][ C0] ? hrtimer_init+0x570/0x570 [ 2821.702424][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2821.702424][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2821.702424][ C0] [ 2821.702424][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2821.702424][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2821.702424][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2821.702424][ C0] RSP: 0018:ffff8881f9ed32f0 EFLAGS: 00000286 [ 2821.702424][ C0] RAX: ffff888279ed3654 RBX: ffff8881f9ed3654 RCX: ffff88813fffa3f0 [ 2821.702424][ C0] RDX: 00000001f9ed3654 RSI: 00000000000003f0 RDI: ffff8881f9ed3654 [ 2821.702424][ C0] RBP: ffff8881f9ed32f0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2821.702424][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2821.702424][ C0] R13: 00000000ecaf6a8b R14: 0000000000000000 R15: 0000000000000000 [ 2821.702424][ C0] kmsan_get_metadata+0x116/0x180 [ 2821.702424][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2821.702424][ C0] __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2821.702424][ C0] blake2s_compress_generic+0x3edb/0x7140 [ 2821.702424][ C0] ? kmsan_memcpy_memmove_metadata+0x110/0x2d0 [ 2821.702424][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.702424][ C0] blake2s_update+0x218/0x530 [ 2821.702424][ C0] blake2s256_hmac+0x755/0xd60 [ 2821.702424][ C0] kdf+0x176/0x5b0 [ 2821.702424][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2821.702424][ C0] ? __crypto_memneq+0x3d7/0x470 [ 2821.702424][ C0] wg_noise_handshake_create_initiation+0xffa/0x1610 [ 2821.702424][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.702424][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2821.702424][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2821.702424][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2821.702424][ C0] process_one_work+0x1219/0x1fe0 [ 2821.702424][ C0] worker_thread+0x10ec/0x2340 [ 2821.702424][ C0] kthread+0x521/0x560 [ 2821.702424][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2821.702424][ C0] ? kthread_blkcg+0x110/0x110 [ 2821.702424][ C0] ret_from_fork+0x1f/0x30 [ 2821.702424][ C0] ---[ end trace f7326eee4ef53845 ]--- [ 2821.986464][ C0] ------------[ cut here ]------------ [ 2821.992177][ C0] WARNING: CPU: 0 PID: 21826 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2821.994983][ C0] Modules linked in: [ 2821.994983][ C0] CPU: 0 PID: 21826 Comm: kworker/u4:12 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2821.994983][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2821.994983][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 2821.994983][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2821.994983][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2821.994983][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2821.994983][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881bbb3ddc0 [ 2821.994983][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2821.994983][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2821.994983][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2821.994983][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2821.994983][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2821.994983][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2821.994983][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2821.994983][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2821.994983][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2821.994983][ C0] Call Trace: [ 2821.994983][ C0] [ 2821.994983][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.994983][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2821.994983][ C0] __run_hrtimer+0x48b/0xd20 [ 2821.994983][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2821.994983][ C0] ? hrtimer_init+0x570/0x570 [ 2821.994983][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2821.994983][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2821.994983][ C0] [ 2821.994983][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2821.994983][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2821.994983][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2821.994983][ C0] RSP: 0018:ffff8881f9ed32f0 EFLAGS: 00000286 [ 2821.994983][ C0] RAX: ffff888279ed3654 RBX: ffff8881f9ed3654 RCX: ffff88813fffa3f0 [ 2821.994983][ C0] RDX: 00000001f9ed3654 RSI: 00000000000003f0 RDI: ffff8881f9ed3654 [ 2821.994983][ C0] RBP: ffff8881f9ed32f0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2821.994983][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2821.994983][ C0] R13: 00000000ecaf6a8b R14: 0000000000000000 R15: 0000000000000000 [ 2821.994983][ C0] kmsan_get_metadata+0x116/0x180 [ 2821.994983][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2821.994983][ C0] __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2821.994983][ C0] blake2s_compress_generic+0x3edb/0x7140 [ 2821.994983][ C0] ? kmsan_memcpy_memmove_metadata+0x110/0x2d0 [ 2821.994983][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.994983][ C0] blake2s_update+0x218/0x530 [ 2821.994983][ C0] blake2s256_hmac+0x755/0xd60 [ 2821.994983][ C0] kdf+0x176/0x5b0 [ 2821.994983][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2821.994983][ C0] ? __crypto_memneq+0x3d7/0x470 [ 2821.994983][ C0] wg_noise_handshake_create_initiation+0xffa/0x1610 [ 2821.994983][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2821.994983][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2821.994983][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2821.994983][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2821.994983][ C0] process_one_work+0x1219/0x1fe0 [ 2821.994983][ C0] worker_thread+0x10ec/0x2340 [ 2821.994983][ C0] kthread+0x521/0x560 [ 2821.994983][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2821.994983][ C0] ? kthread_blkcg+0x110/0x110 [ 2821.994983][ C0] ret_from_fork+0x1f/0x30 [ 2821.994983][ C0] ---[ end trace f7326eee4ef53846 ]--- [ 2822.372218][ C0] ------------[ cut here ]------------ [ 2822.377899][ C0] WARNING: CPU: 0 PID: 21826 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2822.380773][ C0] Modules linked in: [ 2822.380773][ C0] CPU: 0 PID: 21826 Comm: kworker/u4:12 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2822.380773][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2822.380773][ C0] Workqueue: wg-kex-wg2 wg_packet_handshake_send_worker [ 2822.380773][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2822.380773][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2822.380773][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2822.380773][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881bbb3ddc0 [ 2822.380773][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2822.380773][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2822.380773][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2822.380773][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2822.380773][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2822.380773][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2822.380773][ C0] CR2: 000000000816d410 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2822.380773][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2822.380773][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2822.380773][ C0] Call Trace: [ 2822.380773][ C0] [ 2822.380773][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2822.380773][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2822.380773][ C0] __run_hrtimer+0x48b/0xd20 [ 2822.380773][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2822.380773][ C0] ? hrtimer_init+0x570/0x570 [ 2822.380773][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2822.380773][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2822.380773][ C0] [ 2822.380773][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2822.380773][ C0] RIP: 0010:virt_to_page_or_null+0x74/0xf0 [ 2822.380773][ C0] Code: 2f 48 89 d6 48 c1 ee 23 4c 8b 0c f1 4d 85 c9 74 1f 48 89 d1 48 c1 e9 1b 0f b6 f1 48 c1 e6 04 4c 89 c9 48 01 f1 74 09 4c 8b 01 <41> f6 c0 02 75 04 31 c0 5d c3 41 f6 c0 08 75 12 48 c1 ea 15 49 8b [ 2822.380773][ C0] RSP: 0018:ffff8881f9ed32f0 EFLAGS: 00000286 [ 2822.380773][ C0] RAX: ffff888279ed3654 RBX: ffff8881f9ed3654 RCX: ffff88813fffa3f0 [ 2822.380773][ C0] RDX: 00000001f9ed3654 RSI: 00000000000003f0 RDI: ffff8881f9ed3654 [ 2822.380773][ C0] RBP: ffff8881f9ed32f0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2822.380773][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2822.380773][ C0] R13: 00000000ecaf6a8b R14: 0000000000000000 R15: 0000000000000000 [ 2822.380773][ C0] kmsan_get_metadata+0x116/0x180 [ 2822.380773][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2822.380773][ C0] __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2822.380773][ C0] blake2s_compress_generic+0x3edb/0x7140 [ 2822.380773][ C0] ? kmsan_memcpy_memmove_metadata+0x110/0x2d0 [ 2822.380773][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2822.380773][ C0] blake2s_update+0x218/0x530 [ 2822.380773][ C0] blake2s256_hmac+0x755/0xd60 [ 2822.380773][ C0] kdf+0x176/0x5b0 [ 2822.380773][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2822.380773][ C0] ? __crypto_memneq+0x3d7/0x470 [ 2822.380773][ C0] wg_noise_handshake_create_initiation+0xffa/0x1610 [ 2822.380773][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2822.380773][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2822.380773][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2822.380773][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2822.380773][ C0] process_one_work+0x1219/0x1fe0 [ 2822.380773][ C0] worker_thread+0x10ec/0x2340 [ 2822.380773][ C0] kthread+0x521/0x560 [ 2822.380773][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2822.380773][ C0] ? kthread_blkcg+0x110/0x110 [ 2822.380773][ C0] ret_from_fork+0x1f/0x30 [ 2822.380773][ C0] ---[ end trace f7326eee4ef53847 ]--- [ 2822.849023][ C0] ------------[ cut here ]------------ [ 2822.854700][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2822.857732][ C0] Modules linked in: [ 2822.857732][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2822.857732][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2822.857732][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2822.857732][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2822.857732][ C0] RSP: 0000:ffff88812049fbe8 EFLAGS: 00010046 [ 2822.857732][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2822.857732][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2822.857732][ C0] RBP: ffff88812049fc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2822.857732][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2822.857732][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2822.857732][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2822.857732][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2822.857732][ C0] CR2: 000000c002b35010 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2822.857732][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2822.857732][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2822.857732][ C0] Call Trace: [ 2822.857732][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2822.857732][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2822.857732][ C0] __run_hrtimer+0x48b/0xd20 [ 2822.857732][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2822.857732][ C0] ? hrtimer_init+0x570/0x570 [ 2822.857732][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2822.857732][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2822.857732][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2822.857732][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2822.857732][ C0] RIP: 0033:0x420d75 [ 2822.857732][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2822.857732][ C0] RSP: 002b:000000c000039ea8 EFLAGS: 00000203 [ 2822.857732][ C0] RAX: 0000000000203003 RBX: 00007fcdd4670f1a RCX: 0000000000000001 [ 2822.857732][ C0] RDX: 0000000000000080 RSI: 0000000000000001 RDI: 000000c0053e4ac0 [ 2822.857732][ C0] RBP: 000000c000039f28 R08: 00007fcdd4748fff R09: 000000c00e4fe300 [ 2822.857732][ C0] R10: 000000c00001fe98 R11: 0000000000000048 R12: 00000000000000fa [ 2822.857732][ C0] R13: 0000000000000000 R14: 0000000000b7c4e0 R15: 0000000002030008 [ 2822.857732][ C0] ---[ end trace f7326eee4ef53848 ]--- [ 2822.857732][ C0] ------------[ cut here ]------------ [ 2822.857732][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2822.857732][ C0] Modules linked in: [ 2822.857732][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2822.857732][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2822.857732][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2822.857732][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2822.857732][ C0] RSP: 0000:ffff88812049fbe8 EFLAGS: 00010046 [ 2822.857732][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2822.857732][ C0] RDX: 0000000000010000 RSI: 0000000000000011 RDI: 0000000000000001 [ 2822.857732][ C0] RBP: ffff88812049fc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2822.857732][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2822.857732][ C0] R13: 0000000000000000 R14: 0000000000000011 R15: ffff88813fc27b00 [ 2822.857732][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2822.857732][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2822.857732][ C0] CR2: 000000c002b35010 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2822.857732][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2822.857732][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2822.857732][ C0] Call Trace: [ 2822.857732][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2822.857732][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2822.857732][ C0] __run_hrtimer+0x48b/0xd20 [ 2822.857732][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2822.857732][ C0] ? hrtimer_init+0x570/0x570 [ 2822.857732][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2822.857732][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2822.857732][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2822.857732][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2822.857732][ C0] RIP: 0033:0x420d75 [ 2822.857732][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2822.857732][ C0] RSP: 002b:000000c000039ea8 EFLAGS: 00000203 [ 2822.857732][ C0] RAX: 0000000000203003 RBX: 00007fcdd4670f1a RCX: 0000000000000001 [ 2822.857732][ C0] RDX: 0000000000000080 RSI: 0000000000000001 RDI: 000000c0053e4ac0 [ 2822.857732][ C0] RBP: 000000c000039f28 R08: 00007fcdd4748fff R09: 000000c00e4fe300 [ 2822.857732][ C0] R10: 000000c00001fe98 R11: 0000000000000048 R12: 00000000000000fa [ 2822.857732][ C0] R13: 0000000000000000 R14: 0000000000b7c4e0 R15: 0000000002030008 [ 2822.857732][ C0] ---[ end trace f7326eee4ef53849 ]--- [ 2823.412123][ C0] ------------[ cut here ]------------ [ 2823.417847][ C0] WARNING: CPU: 0 PID: 8221 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2823.420654][ C0] Modules linked in: [ 2823.420654][ C0] CPU: 0 PID: 8221 Comm: syz-fuzzer Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2823.420654][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2823.420654][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2823.420654][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2823.420654][ C0] RSP: 0000:ffff88812049fbe8 EFLAGS: 00010046 [ 2823.420654][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888124399f40 [ 2823.420654][ C0] RDX: 0000000000010000 RSI: 0000000000000011 RDI: 0000000000000001 [ 2823.420654][ C0] RBP: ffff88812049fc68 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2823.420654][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2823.420654][ C0] R13: 0000000000000000 R14: 0000000000000011 R15: ffff88813fc27b00 [ 2823.420654][ C0] FS: 000000c00002e890(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2823.420654][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2823.420654][ C0] CR2: 000000c002b35010 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2823.420654][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2823.420654][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2823.420654][ C0] Call Trace: [ 2823.420654][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2823.420654][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2823.420654][ C0] __run_hrtimer+0x48b/0xd20 [ 2823.420654][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2823.420654][ C0] ? hrtimer_init+0x570/0x570 [ 2823.420654][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2823.420654][ C0] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 2823.420654][ C0] sysvec_apic_timer_interrupt+0x6a/0xf0 [ 2823.420654][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2823.420654][ C0] RIP: 0033:0x420d75 [ 2823.420654][ C0] Code: 0f b6 3b 49 89 cb 89 f1 41 89 fc d3 ef 49 83 fb 08 74 0a 0f ba e7 04 0f 83 c2 00 00 00 41 0f a3 cc 73 b5 4b 8d 3c 0b 48 8b 3f <48> 85 ff 74 a9 49 89 fc 4c 29 cf 48 39 d7 72 9e 48 89 5c 24 78 4c [ 2823.420654][ C0] RSP: 002b:000000c000039ea8 EFLAGS: 00000203 [ 2823.420654][ C0] RAX: 0000000000203003 RBX: 00007fcdd4670f1a RCX: 0000000000000001 [ 2823.420654][ C0] RDX: 0000000000000080 RSI: 0000000000000001 RDI: 000000c0053e4ac0 [ 2823.420654][ C0] RBP: 000000c000039f28 R08: 00007fcdd4748fff R09: 000000c00e4fe300 [ 2823.420654][ C0] R10: 000000c00001fe98 R11: 0000000000000048 R12: 00000000000000fa [ 2823.420654][ C0] R13: 0000000000000000 R14: 0000000000b7c4e0 R15: 0000000002030008 [ 2823.420654][ C0] ---[ end trace f7326eee4ef5384a ]--- [ 2823.713909][ T4778] EXT4-fs error (device sda1): ext4_lookup:1707: inode #915: comm systemd-timesyn: iget: checksum invalid [ 2823.765654][ C0] ------------[ cut here ]------------ [ 2823.771338][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2823.774387][ C0] Modules linked in: [ 2823.782396][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2823.792364][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2823.792364][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2823.792364][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2823.822266][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2823.822266][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2823.822266][ C0] RDX: 0000000000010000 RSI: 0000000000000015 RDI: 0000000000000001 [ 2823.822266][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2823.822266][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2823.822266][ C0] R13: 0000000000000000 R14: 0000000000000015 R15: ffff88813fc27b00 [ 2823.822266][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2823.822266][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2823.822266][ C0] CR2: 000000c002b35010 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2823.822266][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2823.822266][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2823.822266][ C0] Call Trace: [ 2823.822266][ C0] [ 2823.822266][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2823.822266][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2823.822266][ C0] __run_hrtimer+0x48b/0xd20 [ 2823.822266][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2823.822266][ C0] ? hrtimer_init+0x570/0x570 [ 2823.822266][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2823.822266][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2823.822266][ C0] [ 2823.822266][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2823.822266][ C0] RIP: 0010:finish_lock_switch+0x19a/0x1c0 [ 2823.822266][ C0] Code: 40 c3 00 4d 85 e4 0f 85 f3 fe ff ff 48 83 7d c8 00 75 22 48 8b 5d c0 48 89 df e8 e1 3a c3 00 c6 00 00 c6 03 00 fb 48 83 c4 28 <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 8b 7d d4 e8 93 40 c3 00 eb d4 8b [ 2823.972239][ C0] RSP: 0018:ffff8881242d7d58 EFLAGS: 00000282 [ 2823.972239][ C0] RAX: ffff88823fee6840 RBX: ffff88813fc95840 RCX: 000000023fe46840 [ 2823.972239][ C0] RDX: ffff88823fe46840 RSI: 0000000000000270 RDI: ffff88813fc95840 [ 2824.002326][ C0] RBP: ffff8881242d7d80 R08: ffffea000000000f R09: ffff88813fffa000 [ 2824.002326][ C0] R10: 000000008bee845a R11: 000002917328a658 R12: 0000000000000000 [ 2824.002326][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000000 [ 2824.002326][ C0] finish_task_switch+0xd8/0x2d0 [ 2824.002326][ C0] __schedule+0x54b/0x5c0 [ 2824.032250][ C0] schedule+0x270/0x330 [ 2824.032250][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2824.032250][ C0] exit_to_user_mode_prepare+0x1b3/0x560 [ 2824.032250][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2824.032250][ C0] do_syscall_64+0xc5/0x140 [ 2824.032250][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2824.032250][ C0] RIP: 0033:0x7f5298477845 [ 2824.032250][ C0] Code: 00 00 00 74 17 49 8b 48 20 44 8b 59 10 41 83 e3 30 41 83 fb 20 74 1e be 85 00 00 00 41 ba 01 00 00 00 41 b9 01 00 00 04 0f 05 <48> 3d 01 f0 ff ff 73 1f 31 c0 c3 be 8c 00 00 00 49 89 c8 4d 31 d2 [ 2824.032250][ C0] RSP: 002b:00007f5295e163a8 EFLAGS: 00000283 ORIG_RAX: 00000000000000ca [ 2824.094382][ C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00007f5298477845 [ 2824.094382][ C0] RDX: 0000000000000001 RSI: 0000000000000085 RDI: 000055f9c7fa028c [ 2824.094382][ C0] RBP: 0000000000000001 R08: 000055f9c7fa0288 R09: 0000000004000001 [ 2824.094382][ C0] R10: 0000000000000001 R11: 0000000000000283 R12: 0000000000000000 [ 2824.094382][ C0] R13: 0000000000000001 R14: 000055f9c6e71770 R15: 000055f9c7fa00e0 [ 2824.094382][ C0] ---[ end trace f7326eee4ef5384b ]--- [ 2824.094382][ C0] ------------[ cut here ]------------ [ 2824.094382][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2824.094382][ C0] Modules linked in: [ 2824.094382][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2824.094382][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2824.172306][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2824.172306][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2824.172306][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2824.172306][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2824.172306][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2824.172306][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2824.172306][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2824.172306][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2824.172306][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2824.172306][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2824.172306][ C0] CR2: 000000c002b35010 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2824.172306][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2824.172306][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2824.172306][ C0] Call Trace: [ 2824.172306][ C0] [ 2824.172306][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2824.172306][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2824.172306][ C0] __run_hrtimer+0x48b/0xd20 [ 2824.172306][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2824.172306][ C0] ? hrtimer_init+0x570/0x570 [ 2824.172306][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2824.172306][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2824.172306][ C0] [ 2824.172306][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2824.172306][ C0] RIP: 0010:finish_lock_switch+0x19a/0x1c0 [ 2824.172306][ C0] Code: 40 c3 00 4d 85 e4 0f 85 f3 fe ff ff 48 83 7d c8 00 75 22 48 8b 5d c0 48 89 df e8 e1 3a c3 00 c6 00 00 c6 03 00 fb 48 83 c4 28 <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 8b 7d d4 e8 93 40 c3 00 eb d4 8b [ 2824.172306][ C0] RSP: 0018:ffff8881242d7d58 EFLAGS: 00000282 [ 2824.172306][ C0] RAX: ffff88823fee6840 RBX: ffff88813fc95840 RCX: 000000023fe46840 [ 2824.172306][ C0] RDX: ffff88823fe46840 RSI: 0000000000000270 RDI: ffff88813fc95840 [ 2824.172306][ C0] RBP: ffff8881242d7d80 R08: ffffea000000000f R09: ffff88813fffa000 [ 2824.172306][ C0] R10: 000000008bee845a R11: 000002917328a658 R12: 0000000000000000 [ 2824.172306][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000000 [ 2824.172306][ C0] finish_task_switch+0xd8/0x2d0 [ 2824.172306][ C0] __schedule+0x54b/0x5c0 [ 2824.172306][ C0] schedule+0x270/0x330 [ 2824.172306][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2824.172306][ C0] exit_to_user_mode_prepare+0x1b3/0x560 [ 2824.172306][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2824.172306][ C0] do_syscall_64+0xc5/0x140 [ 2824.172306][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2824.172306][ C0] RIP: 0033:0x7f5298477845 [ 2824.172306][ C0] Code: 00 00 00 74 17 49 8b 48 20 44 8b 59 10 41 83 e3 30 41 83 fb 20 74 1e be 85 00 00 00 41 ba 01 00 00 00 41 b9 01 00 00 04 0f 05 <48> 3d 01 f0 ff ff 73 1f 31 c0 c3 be 8c 00 00 00 49 89 c8 4d 31 d2 [ 2824.172306][ C0] RSP: 002b:00007f5295e163a8 EFLAGS: 00000283 ORIG_RAX: 00000000000000ca [ 2824.172306][ C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00007f5298477845 [ 2824.172306][ C0] RDX: 0000000000000001 RSI: 0000000000000085 RDI: 000055f9c7fa028c [ 2824.172306][ C0] RBP: 0000000000000001 R08: 000055f9c7fa0288 R09: 0000000004000001 [ 2824.172306][ C0] R10: 0000000000000001 R11: 0000000000000283 R12: 0000000000000000 [ 2824.172306][ C0] R13: 0000000000000001 R14: 000055f9c6e71770 R15: 000055f9c7fa00e0 [ 2824.172306][ C0] ---[ end trace f7326eee4ef5384c ]--- [ 2824.535389][ C0] ------------[ cut here ]------------ [ 2824.541194][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2824.543932][ C0] Modules linked in: [ 2824.543932][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2824.543932][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2824.543932][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2824.543932][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2824.543932][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2824.543932][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2824.543932][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2824.543932][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2824.543932][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2824.543932][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2824.543932][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2824.543932][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2824.543932][ C0] CR2: 000000c002b35010 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2824.543932][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2824.543932][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2824.543932][ C0] Call Trace: [ 2824.543932][ C0] [ 2824.543932][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2824.543932][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2824.543932][ C0] __run_hrtimer+0x48b/0xd20 [ 2824.543932][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2824.543932][ C0] ? hrtimer_init+0x570/0x570 [ 2824.543932][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2824.733378][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2824.733378][ C0] [ 2824.733378][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2824.733378][ C0] RIP: 0010:finish_lock_switch+0x19a/0x1c0 [ 2824.733378][ C0] Code: 40 c3 00 4d 85 e4 0f 85 f3 fe ff ff 48 83 7d c8 00 75 22 48 8b 5d c0 48 89 df e8 e1 3a c3 00 c6 00 00 c6 03 00 fb 48 83 c4 28 <5b> 41 5c 41 5d 41 5e 41 5f 5d c3 8b 7d d4 e8 93 40 c3 00 eb d4 8b [ 2824.733378][ C0] RSP: 0018:ffff8881242d7d58 EFLAGS: 00000282 [ 2824.733378][ C0] RAX: ffff88823fee6840 RBX: ffff88813fc95840 RCX: 000000023fe46840 [ 2824.733378][ C0] RDX: ffff88823fe46840 RSI: 0000000000000270 RDI: ffff88813fc95840 [ 2824.733378][ C0] RBP: ffff8881242d7d80 R08: ffffea000000000f R09: ffff88813fffa000 [ 2824.733378][ C0] R10: 000000008bee845a R11: 000002917328a658 R12: 0000000000000000 [ 2824.733378][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000000 [ 2824.733378][ C0] finish_task_switch+0xd8/0x2d0 [ 2824.733378][ C0] __schedule+0x54b/0x5c0 [ 2824.733378][ C0] schedule+0x270/0x330 [ 2824.733378][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2824.733378][ C0] exit_to_user_mode_prepare+0x1b3/0x560 [ 2824.733378][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2824.733378][ C0] do_syscall_64+0xc5/0x140 [ 2824.733378][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2824.733378][ C0] RIP: 0033:0x7f5298477845 [ 2824.733378][ C0] Code: 00 00 00 74 17 49 8b 48 20 44 8b 59 10 41 83 e3 30 41 83 fb 20 74 1e be 85 00 00 00 41 ba 01 00 00 00 41 b9 01 00 00 04 0f 05 <48> 3d 01 f0 ff ff 73 1f 31 c0 c3 be 8c 00 00 00 49 89 c8 4d 31 d2 [ 2824.733378][ C0] RSP: 002b:00007f5295e163a8 EFLAGS: 00000283 ORIG_RAX: 00000000000000ca [ 2824.733378][ C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 00007f5298477845 [ 2824.733378][ C0] RDX: 0000000000000001 RSI: 0000000000000085 RDI: 000055f9c7fa028c [ 2824.733378][ C0] RBP: 0000000000000001 R08: 000055f9c7fa0288 R09: 0000000004000001 [ 2824.733378][ C0] R10: 0000000000000001 R11: 0000000000000283 R12: 0000000000000000 [ 2824.733378][ C0] R13: 0000000000000001 R14: 000055f9c6e71770 R15: 000055f9c7fa00e0 [ 2824.733378][ C0] ---[ end trace f7326eee4ef5384d ]--- [ 2825.007954][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2825.060550][ C0] ------------[ cut here ]------------ [ 2825.060604][ C0] WARNING: CPU: 0 PID: 4696 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2825.060819][ C0] Modules linked in: [ 2825.060885][ C0] CPU: 0 PID: 4696 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2825.061011][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2825.061088][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2825.061229][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2825.061342][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2825.061445][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888112209f40 [ 2825.061538][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2825.061617][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2825.061717][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2825.061793][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2825.061877][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2825.061993][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2825.062089][ C0] CR2: 00007fff23a80ff0 CR3: 0000000115e66000 CR4: 00000000001526f0 [ 2825.062180][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2825.062255][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2825.062326][ C0] Call Trace: [ 2825.062361][ C0] [ 2825.062401][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2825.062541][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2825.062674][ C0] __run_hrtimer+0x48b/0xd20 [ 2825.062859][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2825.063013][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2825.063185][ C0] ? hrtimer_init+0x570/0x570 [ 2825.063332][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2825.063485][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2825.063666][ C0] [ 2825.063709][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2825.063854][ C0] RIP: 0010:console_unlock+0x1929/0x1d70 [ 2825.063999][ C0] Code: db 74 0c 4d 85 ff 75 19 e8 64 45 2d 00 eb 18 8b 7c 24 64 e8 49 36 b0 00 4d 85 ff 74 eb 0f 1f 40 00 e8 4b 45 2d 00 fb 44 89 f0 <34> 01 22 44 24 2f 44 89 f3 0a 5c 24 1f 3c 01 74 10 f6 c3 01 74 21 [ 2825.064119][ C0] RSP: 0018:ffff888115d3efb0 EFLAGS: 00000293 [ 2825.064222][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888112209f40 [ 2825.064307][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2825.064386][ C0] RBP: ffff888115d3f128 R08: ffffffff818eee73 R09: ffff88813fffa000 [ 2825.064489][ C0] R10: 000000008d490c00 R11: 00000000ffffffff R12: 0000000000000000 [ 2825.064573][ C0] R13: ffff88811220a9c8 R14: 0000000000000000 R15: 0000000000000200 [ 2825.064669][ C0] ? console_unlock+0x18f3/0x1d70 [ 2825.064848][ C0] ? console_trylock+0x288/0x2c0 [ 2825.064988][ C0] vprintk_emit+0x3cd/0x8b0 [ 2825.065144][ C0] vprintk_default+0x86/0xa0 [ 2825.065283][ C0] vprintk_func+0x2ed/0x2f0 [ 2825.065431][ C0] printk+0x180/0x1cd [ 2825.065566][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2825.065698][ C0] __ext4_error_inode+0x739/0xa70 [ 2825.065872][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2825.066011][ C0] __ext4_iget+0x2190/0x86a0 [ 2825.066176][ C0] ? kfree+0x29/0x11f0 [ 2825.066348][ C0] ext4_lookup+0xc73/0x16b0 [ 2825.066509][ C0] ? ext4_add_entry+0x6ad0/0x6ad0 [ 2825.066639][ C0] __lookup_slow+0x616/0x810 [ 2825.066787][ C0] walk_component+0x70a/0xbb0 [ 2825.066951][ C0] path_lookupat+0x34f/0x1120 [ 2825.067092][ C0] filename_lookup+0x312/0xc60 [ 2825.067245][ C0] ? getname_flags+0x74c/0xbe0 [ 2825.067383][ C0] user_path_at_empty+0x123/0x140 [ 2825.067528][ C0] vfs_statx+0x1e9/0x890 [ 2825.067691][ C0] __se_sys_newstat+0xce/0x920 [ 2825.067844][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2825.068002][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2825.068137][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2825.068277][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2825.068412][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2825.068581][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2825.068734][ C0] __x64_sys_newstat+0x3e/0x60 [ 2825.068885][ C0] do_syscall_64+0x9f/0x140 [ 2825.069030][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2825.069078][ C0] RIP: 0033:0x7f6216067295 [ 2825.069078][ C0] Code: 00 00 00 e8 5d 01 00 00 48 83 c4 18 c3 0f 1f 84 00 00 00 00 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 04 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 d1 db 2b 00 f7 d8 64 89 [ 2825.069078][ C0] RSP: 002b:00007fff23a82ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000004 [ 2825.069078][ C0] RAX: ffffffffffffffda RBX: 000055de443c5530 RCX: 00007f6216067295 [ 2825.069078][ C0] RDX: 00007fff23a83010 RSI: 00007fff23a83010 RDI: 000055de443a4f26 [ 2825.069078][ C0] RBP: 000055de45938d18 R08: c0c2feff00000000 R09: 0000000000000006 [ 2825.069078][ C0] R10: 0005bd58a6d1ac84 R11: 0000000000000246 R12: 00007fff23a83010 [ 2825.069078][ C0] R13: 0000000000000001 R14: 00007fff23a83068 R15: 0000000000000000 [ 2825.069078][ C0] ---[ end trace f7326eee4ef5384e ]--- [ 2825.620609][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:38:23 executing program 4: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) 03:38:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), r1) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x58, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5}, {0x5}, {0x5}, {0x5}, {0x5}, {0x5}]}]}, 0x58}}, 0x0) 03:38:23 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000100)=0x2e4, 0x4) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x5000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c910ccab00220bc31d41e44f96f67971b8ed8a3dc9eb4133a903d58da02dd1eca653150422bc91e9585fbf8", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xe0}, {&(0x7f00000012c0), 0xd40}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6f8968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9af7278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) 03:38:24 executing program 1: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}}, 0x0) 03:38:24 executing program 0: r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_x_sa2={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x70}}, 0x0) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x2, 0x1, 0x0, 0x3, 0xc, 0x0, 0x3, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @ipv4}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) [ 2826.523892][T24914] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 2826.540829][T24914] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 2826.928381][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2826.969208][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2828.628335][T10899] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2828.755235][T10899] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2828.962651][T10899] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2829.101376][T10899] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 2829.301994][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2829.355579][T10899] tipc: Left network mode [ 2829.355697][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2829.987363][ C0] ------------[ cut here ]------------ [ 2829.993065][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2829.996014][ C0] Modules linked in: [ 2829.996014][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2829.996014][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2829.996014][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2829.996014][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2830.034925][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2830.034925][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.034925][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2830.034925][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2830.072203][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2830.072203][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2830.072203][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2830.072203][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2830.102175][ C0] CR2: 00000000080eafc1 CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2830.102175][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2830.102175][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2830.102175][ C0] Call Trace: [ 2830.102175][ C0] [ 2830.102175][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2830.102175][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2830.102175][ C0] __run_hrtimer+0x48b/0xd20 [ 2830.102175][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2830.102175][ C0] ? hrtimer_init+0x570/0x570 [ 2830.102175][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2830.102175][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2830.102175][ C0] [ 2830.102175][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2830.102175][ C0] RIP: 0010:do_syslog+0x21cf/0x30b0 [ 2830.102175][ C0] Code: 05 e8 b5 95 2d 00 48 c7 c7 14 52 40 92 e8 c9 80 b0 00 c6 00 00 c6 05 c3 b3 b1 10 00 e8 da 1c 01 00 fb 48 8b 84 24 a8 00 00 00 <49> 89 45 00 8b 84 24 8c 00 00 00 41 89 85 88 0c 00 00 48 8b bc 24 [ 2830.102175][ C0] RSP: 0018:ffff88809bb97c40 EFLAGS: 00000246 [ 2830.102175][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.102175][ C0] RDX: 00000000c0000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2830.102175][ C0] RBP: ffff88809bb97e38 R08: ffffea000000000f R09: ffff88813fffa000 [ 2830.102175][ C0] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000 [ 2830.102175][ C0] R13: ffff888104b2e848 R14: 0000000000000000 R15: 0000000000000000 [ 2830.102175][ C0] ? kmsan_get_shadow_origin_ptr+0x70/0xb0 [ 2830.102175][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2830.102175][ C0] ? __msan_get_context_state+0x9/0x20 [ 2830.102175][ C0] ? rcu_all_qs+0x23/0x260 [ 2830.102175][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.102175][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.102175][ C0] __se_sys_syslog+0x96/0xc0 [ 2830.102175][ C0] __ia32_sys_syslog+0x4a/0x70 [ 2830.102175][ C0] __do_fast_syscall_32+0x127/0x180 [ 2830.102175][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2830.102175][ C0] do_SYSENTER_32+0x73/0x90 [ 2830.102175][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2830.102175][ C0] RIP: 0023:0xf7f20549 [ 2830.102175][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2830.102175][ C0] RSP: 002b:00000000ff9af4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 2830.102175][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000ff9af594 [ 2830.102175][ C0] RDX: 000000000000003f RSI: 00000000080eafd0 RDI: 0000000000000040 [ 2830.102175][ C0] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000 [ 2830.102175][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2830.102175][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2830.102175][ C0] ---[ end trace f7326eee4ef5384f ]--- [ 2830.385408][ C0] ------------[ cut here ]------------ [ 2830.391124][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2830.393940][ C0] Modules linked in: [ 2830.393940][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2830.393940][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2830.393940][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2830.393940][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2830.393940][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2830.393940][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.393940][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2830.393940][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2830.393940][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2830.393940][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2830.393940][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2830.393940][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2830.393940][ C0] CR2: 00000000080eafc1 CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2830.393940][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2830.393940][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2830.393940][ C0] Call Trace: [ 2830.393940][ C0] [ 2830.393940][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2830.393940][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2830.393940][ C0] __run_hrtimer+0x48b/0xd20 [ 2830.393940][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2830.393940][ C0] ? hrtimer_init+0x570/0x570 [ 2830.393940][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2830.393940][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2830.393940][ C0] [ 2830.393940][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2830.393940][ C0] RIP: 0010:do_syslog+0x21cf/0x30b0 [ 2830.393940][ C0] Code: 05 e8 b5 95 2d 00 48 c7 c7 14 52 40 92 e8 c9 80 b0 00 c6 00 00 c6 05 c3 b3 b1 10 00 e8 da 1c 01 00 fb 48 8b 84 24 a8 00 00 00 <49> 89 45 00 8b 84 24 8c 00 00 00 41 89 85 88 0c 00 00 48 8b bc 24 [ 2830.393940][ C0] RSP: 0018:ffff88809bb97c40 EFLAGS: 00000246 [ 2830.393940][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.393940][ C0] RDX: 00000000c0000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2830.393940][ C0] RBP: ffff88809bb97e38 R08: ffffea000000000f R09: ffff88813fffa000 [ 2830.393940][ C0] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000 [ 2830.393940][ C0] R13: ffff888104b2e848 R14: 0000000000000000 R15: 0000000000000000 [ 2830.393940][ C0] ? kmsan_get_shadow_origin_ptr+0x70/0xb0 [ 2830.393940][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2830.393940][ C0] ? __msan_get_context_state+0x9/0x20 [ 2830.393940][ C0] ? rcu_all_qs+0x23/0x260 [ 2830.393940][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.393940][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.393940][ C0] __se_sys_syslog+0x96/0xc0 [ 2830.393940][ C0] __ia32_sys_syslog+0x4a/0x70 [ 2830.393940][ C0] __do_fast_syscall_32+0x127/0x180 [ 2830.393940][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2830.393940][ C0] do_SYSENTER_32+0x73/0x90 [ 2830.393940][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2830.393940][ C0] RIP: 0023:0xf7f20549 [ 2830.393940][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2830.393940][ C0] RSP: 002b:00000000ff9af4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 2830.393940][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000ff9af594 [ 2830.393940][ C0] RDX: 000000000000003f RSI: 00000000080eafd0 RDI: 0000000000000040 [ 2830.393940][ C0] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000 [ 2830.393940][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2830.393940][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2830.393940][ C0] ---[ end trace f7326eee4ef53850 ]--- [ 2830.784692][ C0] ------------[ cut here ]------------ [ 2830.790366][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2830.793242][ C0] Modules linked in: [ 2830.793242][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2830.793242][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2830.793242][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2830.793242][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2830.793242][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2830.793242][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.793242][ C0] RDX: 0000000000010000 RSI: 0000000000000018 RDI: 0000000000000001 [ 2830.793242][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2830.793242][ C0] R10: 00000000b56c2fd0 R11: ffff888104b2ddc0 R12: 0000000000000000 [ 2830.793242][ C0] R13: 0000000000000000 R14: 0000000000000018 R15: ffff88813fc27b00 [ 2830.793242][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2830.793242][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2830.793242][ C0] CR2: 00000000080eafc1 CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2830.793242][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2830.793242][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2830.793242][ C0] Call Trace: [ 2830.793242][ C0] [ 2830.793242][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2830.793242][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2830.793242][ C0] __run_hrtimer+0x48b/0xd20 [ 2830.793242][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2830.793242][ C0] ? hrtimer_init+0x570/0x570 [ 2830.793242][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2830.793242][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2830.793242][ C0] [ 2830.793242][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2830.793242][ C0] RIP: 0010:do_syslog+0x21cf/0x30b0 [ 2830.793242][ C0] Code: 05 e8 b5 95 2d 00 48 c7 c7 14 52 40 92 e8 c9 80 b0 00 c6 00 00 c6 05 c3 b3 b1 10 00 e8 da 1c 01 00 fb 48 8b 84 24 a8 00 00 00 <49> 89 45 00 8b 84 24 8c 00 00 00 41 89 85 88 0c 00 00 48 8b bc 24 [ 2830.793242][ C0] RSP: 0018:ffff88809bb97c40 EFLAGS: 00000246 [ 2830.793242][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2830.793242][ C0] RDX: 00000000c0000000 RSI: 0000000000000004 RDI: 000000000001b420 [ 2830.793242][ C0] RBP: ffff88809bb97e38 R08: ffffea000000000f R09: ffff88813fffa000 [ 2830.793242][ C0] R10: 0000000000000003 R11: 00000000ffffffff R12: 0000000000000000 [ 2830.793242][ C0] R13: ffff888104b2e848 R14: 0000000000000000 R15: 0000000000000000 [ 2830.793242][ C0] ? kmsan_get_shadow_origin_ptr+0x70/0xb0 [ 2830.793242][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2830.793242][ C0] ? __msan_get_context_state+0x9/0x20 [ 2830.793242][ C0] ? rcu_all_qs+0x23/0x260 [ 2830.793242][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.793242][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2830.793242][ C0] __se_sys_syslog+0x96/0xc0 [ 2830.793242][ C0] __ia32_sys_syslog+0x4a/0x70 [ 2830.793242][ C0] __do_fast_syscall_32+0x127/0x180 [ 2830.793242][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2830.793242][ C0] do_SYSENTER_32+0x73/0x90 [ 2830.793242][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2830.793242][ C0] RIP: 0023:0xf7f20549 [ 2830.793242][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2830.793242][ C0] RSP: 002b:00000000ff9af4bc EFLAGS: 00000246 ORIG_RAX: 0000000000000067 [ 2830.793242][ C0] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000ff9af594 [ 2830.793242][ C0] RDX: 000000000000003f RSI: 00000000080eafd0 RDI: 0000000000000040 [ 2830.793242][ C0] RBP: 0000000000000010 R08: 0000000000000000 R09: 0000000000000000 [ 2830.793242][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2830.793242][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2830.793242][ C0] ---[ end trace f7326eee4ef53851 ]--- [ 2831.272803][ C0] ------------[ cut here ]------------ [ 2831.278868][ C0] WARNING: CPU: 0 PID: 10742 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2831.281381][ C0] Modules linked in: [ 2831.281381][ C0] CPU: 0 PID: 10742 Comm: kworker/u4:10 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2831.281381][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2831.281381][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2831.281381][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2831.281381][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2831.281381][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2831.281381][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88817be7be80 [ 2831.281381][ C0] RDX: 0000000000010000 RSI: 000000000000001d RDI: 0000000000000001 [ 2831.281381][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2831.281381][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2831.374424][ C0] R13: 0000000000000000 R14: 000000000000001d R15: ffff88813fc27b00 [ 2831.382398][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2831.385516][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2831.397864][T24945] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2945: comm systemd-udevd: iget: checksum invalid [ 2831.385516][ C0] CR2: 000000c00b3048e0 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2831.385516][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2831.385516][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2831.385516][ C0] Call Trace: [ 2831.385516][ C0] [ 2831.385516][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.385516][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2831.385516][ C0] __run_hrtimer+0x48b/0xd20 [ 2831.385516][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2831.385516][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.385516][ C0] ? hrtimer_init+0x570/0x570 [ 2831.385516][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2831.385516][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2831.477504][T24947] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3035: comm systemd-udevd: iget: checksum invalid [ 2831.385516][ C0] [ 2831.385516][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2831.385516][ C0] RIP: 0010:kmsan_get_metadata+0x14b/0x180 [ 2831.385516][ C0] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 [ 2831.385516][ C0] RSP: 0018:ffff8881f2527220 EFLAGS: 00000206 [ 2831.385516][ C0] RAX: 00000000009ba5c3 RBX: 0000000000000910 RCX: ffffea0009ba5c30 [ 2831.385516][ C0] RDX: 00000001f2527910 RSI: 00000000000003e0 RDI: ffff8881f2527910 [ 2831.385516][ C0] RBP: ffff8881f2527238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2831.385516][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000 [ 2831.385516][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2831.385516][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.385516][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2831.385516][ C0] curve25519_generic+0x347f/0x23dc0 [ 2831.581996][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2831.385516][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2831.385516][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.385516][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.385516][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.385516][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.385516][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2831.385516][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.385516][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.385516][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2831.637831][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2831.385516][ C0] process_one_work+0x1219/0x1fe0 [ 2831.385516][ C0] worker_thread+0x10ec/0x2340 [ 2831.385516][ C0] kthread+0x521/0x560 [ 2831.385516][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2831.385516][ C0] ? kthread_blkcg+0x110/0x110 [ 2831.385516][ C0] ret_from_fork+0x1f/0x30 [ 2831.385516][ C0] ---[ end trace f7326eee4ef53852 ]--- [ 2831.685670][ C0] ------------[ cut here ]------------ [ 2831.691348][ C0] WARNING: CPU: 0 PID: 10742 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2831.694238][ C0] Modules linked in: [ 2831.694238][ C0] CPU: 0 PID: 10742 Comm: kworker/u4:10 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2831.694238][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2831.694238][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2831.694238][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2831.694238][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2831.694238][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2831.694238][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88817be7be80 [ 2831.694238][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2831.772386][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2831.772386][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2831.772386][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2831.772386][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2831.772386][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2831.772386][ C0] CR2: 000000c00b3048e0 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2831.772386][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2831.772386][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2831.832016][T24946] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2945: comm systemd-udevd: iget: checksum invalid [ 2831.772386][ C0] Call Trace: [ 2831.772386][ C0] [ 2831.772386][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.772386][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2831.772386][ C0] __run_hrtimer+0x48b/0xd20 [ 2831.772386][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2831.772386][ C0] ? hrtimer_init+0x570/0x570 [ 2831.772386][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2831.772386][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2831.887115][ C0] [ 2831.887115][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2831.887115][ C0] RIP: 0010:kmsan_get_metadata+0x14b/0x180 [ 2831.887115][ C0] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 [ 2831.887115][ C0] RSP: 0018:ffff8881f2527220 EFLAGS: 00000206 [ 2831.887115][ C0] RAX: 00000000009ba5c3 RBX: 0000000000000910 RCX: ffffea0009ba5c30 [ 2831.887115][ C0] RDX: 00000001f2527910 RSI: 00000000000003e0 RDI: ffff8881f2527910 [ 2831.887115][ C0] RBP: ffff8881f2527238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2831.887115][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000 [ 2831.887115][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2831.887115][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.887115][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2831.887115][ C0] curve25519_generic+0x347f/0x23dc0 [ 2831.887115][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2831.887115][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.887115][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.887115][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.887115][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2831.887115][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2831.887115][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.887115][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2831.887115][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2831.887115][ C0] process_one_work+0x1219/0x1fe0 [ 2831.887115][ C0] worker_thread+0x10ec/0x2340 [ 2831.887115][ C0] kthread+0x521/0x560 [ 2831.887115][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2831.887115][ C0] ? kthread_blkcg+0x110/0x110 [ 2831.887115][ C0] ret_from_fork+0x1f/0x30 [ 2831.887115][ C0] ---[ end trace f7326eee4ef53853 ]--- [ 2832.068994][ C0] ------------[ cut here ]------------ [ 2832.074699][ C0] WARNING: CPU: 0 PID: 10742 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2832.077449][ C0] Modules linked in: [ 2832.077449][ C0] CPU: 0 PID: 10742 Comm: kworker/u4:10 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2832.077449][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2832.102354][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2832.102354][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2832.118483][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2832.118483][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2832.118483][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88817be7be80 [ 2832.118483][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2832.118483][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2832.118483][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2832.118483][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2832.118483][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2832.118483][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2832.118483][ C0] CR2: 000000c00b3048e0 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2832.118483][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2832.118483][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2832.118483][ C0] Call Trace: [ 2832.118483][ C0] [ 2832.118483][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.118483][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2832.118483][ C0] __run_hrtimer+0x48b/0xd20 [ 2832.118483][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2832.118483][ C0] ? hrtimer_init+0x570/0x570 [ 2832.118483][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2832.118483][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2832.118483][ C0] [ 2832.118483][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2832.118483][ C0] RIP: 0010:kmsan_get_metadata+0x14b/0x180 [ 2832.118483][ C0] Code: c9 74 47 48 8b 40 48 48 85 c0 74 3e 81 e3 ff 0f 00 00 45 84 f6 48 0f 45 c8 48 b8 00 00 00 00 00 16 00 00 48 01 c8 48 c1 e8 04 <48> b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 [ 2832.118483][ C0] RSP: 0018:ffff8881f2527220 EFLAGS: 00000206 [ 2832.118483][ C0] RAX: 00000000009ba5c3 RBX: 0000000000000910 RCX: ffffea0009ba5c30 [ 2832.118483][ C0] RDX: 00000001f2527910 RSI: 00000000000003e0 RDI: ffff8881f2527910 [ 2832.312295][ C0] RBP: ffff8881f2527238 R08: ffffea000000000f R09: ffff88813fffa000 [ 2832.312295][ C0] R10: 0000000000000009 R11: 00000000ffffffff R12: 0000000000000000 [ 2832.312295][ C0] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000 [ 2832.312295][ C0] kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.312295][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2832.312295][ C0] curve25519_generic+0x347f/0x23dc0 [ 2832.312295][ C0] wg_noise_handshake_create_initiation+0x5be/0x1610 [ 2832.312295][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.312295][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.312295][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.312295][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.312295][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2832.312295][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.312295][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.312295][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2832.312295][ C0] process_one_work+0x1219/0x1fe0 [ 2832.312295][ C0] worker_thread+0x10ec/0x2340 [ 2832.312295][ C0] kthread+0x521/0x560 [ 2832.312295][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2832.312295][ C0] ? kthread_blkcg+0x110/0x110 [ 2832.312295][ C0] ret_from_fork+0x1f/0x30 [ 2832.312295][ C0] ---[ end trace f7326eee4ef53854 ]--- [ 2832.442113][T24949] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3035: comm systemd-udevd: iget: checksum invalid [ 2832.473653][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2832.503900][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2832.525569][ C0] ------------[ cut here ]------------ [ 2832.531267][ C0] WARNING: CPU: 0 PID: 24940 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2832.534112][ C0] Modules linked in: [ 2832.534112][ C0] CPU: 0 PID: 24940 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2832.534112][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2832.534112][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2832.534112][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2832.534112][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2832.534112][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888040f2be80 [ 2832.534112][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2832.534112][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2832.534112][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2832.534112][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2832.534112][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2832.534112][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2832.534112][ C0] CR2: 00007fff23a7fbac CR3: 00000000a6025000 CR4: 00000000001526f0 [ 2832.534112][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2832.534112][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2832.534112][ C0] Call Trace: [ 2832.534112][ C0] [ 2832.534112][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.534112][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2832.534112][ C0] __run_hrtimer+0x48b/0xd20 [ 2832.534112][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2832.534112][ C0] ? hrtimer_init+0x570/0x570 [ 2832.534112][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2832.705821][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2832.705821][ C0] [ 2832.705821][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2832.705821][ C0] RIP: 0010:virt_to_page_or_null+0x3f/0xf0 [ 2832.705821][ C0] Code: 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b <48> 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c [ 2832.705821][ C0] RSP: 0018:ffff88809ac0f928 EFLAGS: 00000246 [ 2832.705821][ C0] RAX: ffff8881a04d6f80 RBX: ffff8881204d6f80 RCX: 0000000000000000 [ 2832.705821][ C0] RDX: 00000001204d6f80 RSI: 0000000000000000 RDI: ffff8881204d6f80 [ 2832.705821][ C0] RBP: ffff88809ac0f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2832.705821][ C0] R10: 0000000000000003 R11: ffff888040f2be80 R12: ffff8881204d6f80 [ 2832.705821][ C0] R13: ffff888040f2c908 R14: 0000000000000000 R15: 0000000000000000 [ 2832.705821][ C0] kmsan_get_metadata+0x116/0x180 [ 2832.705821][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2832.705821][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2832.705821][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2832.705821][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2832.705821][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2832.822165][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2832.822165][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2832.822165][ C0] security_inode_getattr+0x141/0x280 [ 2832.822165][ C0] vfs_statx+0x29c/0x890 [ 2832.822165][ C0] __se_sys_newlstat+0xce/0x920 [ 2832.822165][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2832.822165][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.822165][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.822165][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2832.822165][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2832.822165][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.822165][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2832.822165][ C0] do_syscall_64+0x9f/0x140 [ 2832.822165][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2832.822165][ C0] RIP: 0033:0x7f6216067335 [ 2832.822165][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2832.822165][ C0] RSP: 002b:00007fff23a7ea78 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2832.822165][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2832.822165][ C0] RDX: 00007fff23a7eab0 RSI: 00007fff23a7eab0 RDI: 000055de45945170 [ 2832.822165][ C0] RBP: 00007fff23a7eb70 R08: 00007f6216326218 R09: 0000000000001010 [ 2832.822165][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2832.822165][ C0] R13: 000055de45945187 R14: 000055de45938c7d R15: 000055de45938c87 [ 2832.822165][ C0] ---[ end trace f7326eee4ef53855 ]--- [ 2832.971513][ C0] ------------[ cut here ]------------ [ 2832.977227][ C0] WARNING: CPU: 0 PID: 24940 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2832.980055][ C0] Modules linked in: [ 2832.980055][ C0] CPU: 0 PID: 24940 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2832.980055][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2832.980055][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2832.980055][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2832.980055][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2832.980055][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888040f2be80 [ 2832.980055][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2832.980055][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2832.980055][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2832.980055][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2832.980055][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2832.980055][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2832.980055][ C0] CR2: 00007fff23a7fbac CR3: 00000000a6025000 CR4: 00000000001526f0 [ 2832.980055][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2832.980055][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2832.980055][ C0] Call Trace: [ 2832.980055][ C0] [ 2832.980055][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.980055][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2832.980055][ C0] __run_hrtimer+0x48b/0xd20 [ 2832.980055][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2832.980055][ C0] ? hrtimer_init+0x570/0x570 [ 2832.980055][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2832.980055][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2832.980055][ C0] [ 2832.980055][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2832.980055][ C0] RIP: 0010:virt_to_page_or_null+0x3f/0xf0 [ 2832.980055][ C0] Code: 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b <48> 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c [ 2832.980055][ C0] RSP: 0018:ffff88809ac0f928 EFLAGS: 00000246 [ 2832.980055][ C0] RAX: ffff8881a04d6f80 RBX: ffff8881204d6f80 RCX: 0000000000000000 [ 2832.980055][ C0] RDX: 00000001204d6f80 RSI: 0000000000000000 RDI: ffff8881204d6f80 [ 2832.980055][ C0] RBP: ffff88809ac0f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2832.980055][ C0] R10: 0000000000000003 R11: ffff888040f2be80 R12: ffff8881204d6f80 [ 2832.980055][ C0] R13: ffff888040f2c908 R14: 0000000000000000 R15: 0000000000000000 [ 2832.980055][ C0] kmsan_get_metadata+0x116/0x180 [ 2832.980055][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2832.980055][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2832.980055][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2832.980055][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2832.980055][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2832.980055][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2832.980055][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2832.980055][ C0] security_inode_getattr+0x141/0x280 [ 2832.980055][ C0] vfs_statx+0x29c/0x890 [ 2832.980055][ C0] __se_sys_newlstat+0xce/0x920 [ 2832.980055][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2832.980055][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2832.980055][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.980055][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2832.980055][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2832.980055][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2832.980055][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2832.980055][ C0] do_syscall_64+0x9f/0x140 [ 2832.980055][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2832.980055][ C0] RIP: 0033:0x7f6216067335 [ 2832.980055][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2832.980055][ C0] RSP: 002b:00007fff23a7ea78 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2832.980055][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2832.980055][ C0] RDX: 00007fff23a7eab0 RSI: 00007fff23a7eab0 RDI: 000055de45945170 [ 2832.980055][ C0] RBP: 00007fff23a7eb70 R08: 00007f6216326218 R09: 0000000000001010 [ 2832.980055][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2832.980055][ C0] R13: 000055de45945187 R14: 000055de45938c7d R15: 000055de45938c87 [ 2832.980055][ C0] ---[ end trace f7326eee4ef53856 ]--- [ 2833.412308][ C0] ------------[ cut here ]------------ [ 2833.418008][ C0] WARNING: CPU: 0 PID: 24940 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2833.420883][ C0] Modules linked in: [ 2833.420883][ C0] CPU: 0 PID: 24940 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2833.420883][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2833.420883][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2833.420883][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2833.420883][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2833.420883][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888040f2be80 [ 2833.420883][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2833.420883][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2833.420883][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2833.420883][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2833.420883][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2833.420883][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2833.420883][ C0] CR2: 00007fff23a7fbac CR3: 00000000a6025000 CR4: 00000000001526f0 [ 2833.420883][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2833.420883][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2833.420883][ C0] Call Trace: [ 2833.420883][ C0] [ 2833.420883][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2833.420883][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2833.420883][ C0] __run_hrtimer+0x48b/0xd20 [ 2833.420883][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2833.420883][ C0] ? hrtimer_init+0x570/0x570 [ 2833.420883][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2833.420883][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2833.420883][ C0] [ 2833.420883][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2833.420883][ C0] RIP: 0010:virt_to_page_or_null+0x3f/0xf0 [ 2833.420883][ C0] Code: 00 00 00 00 80 77 00 00 48 01 fa 48 39 c2 77 55 8a 0d a2 1d aa 0f 48 89 d6 48 d3 ee 48 85 f6 75 44 48 89 d1 48 c1 e9 2e 75 3b <48> 8b 0d 6a ef 05 10 48 85 c9 74 2f 48 89 d6 48 c1 ee 23 4c 8b 0c [ 2833.420883][ C0] RSP: 0018:ffff88809ac0f928 EFLAGS: 00000246 [ 2833.420883][ C0] RAX: ffff8881a04d6f80 RBX: ffff8881204d6f80 RCX: 0000000000000000 [ 2833.420883][ C0] RDX: 00000001204d6f80 RSI: 0000000000000000 RDI: ffff8881204d6f80 [ 2833.420883][ C0] RBP: ffff88809ac0f928 R08: ffffea000000000f R09: ffff88813fffa000 [ 2833.420883][ C0] R10: 0000000000000003 R11: ffff888040f2be80 R12: ffff8881204d6f80 [ 2833.420883][ C0] R13: ffff888040f2c908 R14: 0000000000000000 R15: 0000000000000000 [ 2833.420883][ C0] kmsan_get_metadata+0x116/0x180 [ 2833.420883][ C0] kmsan_get_shadow_origin_ptr+0x6f/0xb0 [ 2833.420883][ C0] __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2833.420883][ C0] tomoyo_check_acl+0x2f9/0x5d0 [ 2833.420883][ C0] ? tomoyo_execute_permission+0x5e0/0x5e0 [ 2833.420883][ C0] tomoyo_path_perm+0x82f/0xc50 [ 2833.420883][ C0] tomoyo_inode_getattr+0x54/0x60 [ 2833.420883][ C0] ? tomoyo_path_rename+0x260/0x260 [ 2833.420883][ C0] security_inode_getattr+0x141/0x280 [ 2833.420883][ C0] vfs_statx+0x29c/0x890 [ 2833.420883][ C0] __se_sys_newlstat+0xce/0x920 [ 2833.420883][ C0] ? __secure_computing+0x2f1/0x4c0 [ 2833.420883][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2833.420883][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2833.420883][ C0] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 2833.420883][ C0] ? syscall_trace_enter+0x3d4/0x840 [ 2833.420883][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2833.420883][ C0] __x64_sys_newlstat+0x3e/0x60 [ 2833.420883][ C0] do_syscall_64+0x9f/0x140 [ 2833.420883][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2833.420883][ C0] RIP: 0033:0x7f6216067335 [ 2833.420883][ C0] Code: 69 db 2b 00 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 83 ff 01 48 89 f0 77 30 48 89 c7 48 89 d6 b8 06 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 03 f3 c3 90 48 8b 15 31 db 2b 00 f7 d8 64 89 [ 2833.420883][ C0] RSP: 002b:00007fff23a7ea78 EFLAGS: 00000246 ORIG_RAX: 0000000000000006 [ 2833.420883][ C0] RAX: ffffffffffffffda RBX: 000055de45946170 RCX: 00007f6216067335 [ 2833.420883][ C0] RDX: 00007fff23a7eab0 RSI: 00007fff23a7eab0 RDI: 000055de45945170 [ 2833.420883][ C0] RBP: 00007fff23a7eb70 R08: 00007f6216326218 R09: 0000000000001010 [ 2833.420883][ C0] R10: 00007f6216325b58 R11: 0000000000000246 R12: 000055de45945170 [ 2833.420883][ C0] R13: 000055de45945187 R14: 000055de45938c7d R15: 000055de45938c87 [ 2833.420883][ C0] ---[ end trace f7326eee4ef53857 ]--- [ 2833.941228][ C0] ------------[ cut here ]------------ [ 2833.946966][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2833.949746][ C0] Modules linked in: [ 2833.949746][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2833.949746][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2833.949746][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2833.949746][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2833.949746][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2833.949746][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2833.949746][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2833.949746][ C0] RDX: 0000000000010000 RSI: 0000000000000020 RDI: 0000000000000001 [ 2833.949746][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2833.949746][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2833.949746][ C0] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fc27b00 [ 2833.949746][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2833.949746][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2833.949746][ C0] CR2: 000000000810e845 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2833.949746][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2833.949746][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2833.949746][ C0] Call Trace: [ 2833.949746][ C0] [ 2833.949746][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2833.949746][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2833.949746][ C0] __run_hrtimer+0x48b/0xd20 [ 2833.949746][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2833.949746][ C0] ? hrtimer_init+0x570/0x570 [ 2833.949746][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2833.949746][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2833.949746][ C0] [ 2833.949746][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2833.949746][ C0] RIP: 0010:metadata_is_contiguous+0x1f/0x1b0 [ 2834.142207][ C0] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 99 90 49 c7 c6 74 9e 79 90 <85> d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 67 01 00 00 49 89 f4 48 [ 2834.142207][ C0] RSP: 0018:ffff8881d20931e8 EFLAGS: 00000296 [ 2834.142207][ C0] RAX: ffffffff90990281 RBX: 0000000000000008 RCX: 0000000000000000 [ 2834.172380][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d2093930 [ 2834.172380][ C0] RBP: ffff8881d2093238 R08: 0000000000000000 R09: 0000000000000000 [ 2834.172380][ C0] R10: 0000000000000000 R11: 0004df7734ff0757 R12: 00eacae5d00df17c [ 2834.172380][ C0] R13: 0000000000000000 R14: ffffffff90799e74 R15: 0000000000000001 [ 2834.172380][ C0] kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2834.172380][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2834.172380][ C0] curve25519_generic+0x31b5/0x23dc0 [ 2834.172380][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2834.172380][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2834.172380][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2834.172380][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2834.172380][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.172380][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.172380][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2834.172380][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2834.172380][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.172380][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2834.172380][ C0] process_one_work+0x1219/0x1fe0 [ 2834.172380][ C0] worker_thread+0x10ec/0x2340 [ 2834.172380][ C0] kthread+0x521/0x560 [ 2834.172380][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2834.172380][ C0] ? kthread_blkcg+0x110/0x110 [ 2834.172380][ C0] ret_from_fork+0x1f/0x30 [ 2834.172380][ C0] ---[ end trace f7326eee4ef53858 ]--- [ 2834.313813][ C0] ------------[ cut here ]------------ [ 2834.319483][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2834.322379][ C0] Modules linked in: [ 2834.322379][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2834.322379][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2834.322379][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2834.322379][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2834.322379][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2834.322379][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2834.322379][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2834.322379][ C0] RDX: 0000000000010000 RSI: 0000000000000016 RDI: 0000000000000001 [ 2834.322379][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2834.322379][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2834.322379][ C0] R13: 0000000000000000 R14: 0000000000000016 R15: ffff88813fc27b00 [ 2834.322379][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2834.322379][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2834.322379][ C0] CR2: 000000000810e845 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2834.322379][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2834.322379][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2834.322379][ C0] Call Trace: [ 2834.322379][ C0] [ 2834.322379][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2834.322379][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2834.322379][ C0] __run_hrtimer+0x48b/0xd20 [ 2834.322379][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2834.322379][ C0] ? hrtimer_init+0x570/0x570 [ 2834.322379][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2834.322379][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2834.322379][ C0] [ 2834.322379][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2834.322379][ C0] RIP: 0010:metadata_is_contiguous+0x1f/0x1b0 [ 2834.322379][ C0] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 99 90 49 c7 c6 74 9e 79 90 <85> d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 67 01 00 00 49 89 f4 48 [ 2834.322379][ C0] RSP: 0018:ffff8881d20931e8 EFLAGS: 00000296 [ 2834.322379][ C0] RAX: ffffffff90990281 RBX: 0000000000000008 RCX: 0000000000000000 [ 2834.322379][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d2093930 [ 2834.322379][ C0] RBP: ffff8881d2093238 R08: 0000000000000000 R09: 0000000000000000 [ 2834.322379][ C0] R10: 0000000000000000 R11: 0004df7734ff0757 R12: 00eacae5d00df17c [ 2834.322379][ C0] R13: 0000000000000000 R14: ffffffff90799e74 R15: 0000000000000001 [ 2834.322379][ C0] kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2834.322379][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2834.322379][ C0] curve25519_generic+0x31b5/0x23dc0 [ 2834.322379][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2834.322379][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2834.322379][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2834.322379][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2834.322379][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.322379][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.322379][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2834.322379][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2834.322379][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.322379][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2834.322379][ C0] process_one_work+0x1219/0x1fe0 [ 2834.322379][ C0] worker_thread+0x10ec/0x2340 [ 2834.322379][ C0] kthread+0x521/0x560 [ 2834.322379][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2834.322379][ C0] ? kthread_blkcg+0x110/0x110 [ 2834.322379][ C0] ret_from_fork+0x1f/0x30 [ 2834.322379][ C0] ---[ end trace f7326eee4ef53859 ]--- [ 2834.322379][ C0] ------------[ cut here ]------------ [ 2834.322379][ C0] WARNING: CPU: 0 PID: 13857 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2834.322379][ C0] Modules linked in: [ 2834.322379][ C0] CPU: 0 PID: 13857 Comm: kworker/u4:1 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2834.322379][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2834.322379][ C0] Workqueue: wg-kex-wg1 wg_packet_handshake_send_worker [ 2834.322379][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2834.322379][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2834.322379][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2834.322379][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8881ce6d9f40 [ 2834.322379][ C0] RDX: 0000000000010000 RSI: 0000000000000017 RDI: 0000000000000001 [ 2834.322379][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2834.322379][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2834.322379][ C0] R13: 0000000000000000 R14: 0000000000000017 R15: ffff88813fc27b00 [ 2834.322379][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2834.322379][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2834.322379][ C0] CR2: 000000000810e845 CR3: 00000001240c8000 CR4: 00000000001526f0 [ 2834.322379][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2834.322379][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2834.322379][ C0] Call Trace: [ 2834.322379][ C0] [ 2834.322379][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2834.322379][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2834.322379][ C0] __run_hrtimer+0x48b/0xd20 [ 2834.322379][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2834.322379][ C0] ? hrtimer_init+0x570/0x570 [ 2834.322379][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2834.322379][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2834.322379][ C0] [ 2834.322379][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2834.892168][ C0] RIP: 0010:metadata_is_contiguous+0x1f/0x1b0 [ 2834.892168][ C0] Code: 1f 84 00 00 00 00 00 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 28 48 c7 c0 81 02 99 90 49 c7 c6 74 9e 79 90 <85> d2 4c 0f 45 f0 41 b7 01 48 85 f6 0f 84 67 01 00 00 49 89 f4 48 [ 2834.892168][ C0] RSP: 0018:ffff8881d20931e8 EFLAGS: 00000296 [ 2834.892168][ C0] RAX: ffffffff90990281 RBX: 0000000000000008 RCX: 0000000000000000 [ 2834.892168][ C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff8881d2093930 [ 2834.892168][ C0] RBP: ffff8881d2093238 R08: 0000000000000000 R09: 0000000000000000 [ 2834.892168][ C0] R10: 0000000000000000 R11: 0004df7734ff0757 R12: 00eacae5d00df17c [ 2834.892168][ C0] R13: 0000000000000000 R14: ffffffff90799e74 R15: 0000000000000001 [ 2834.892168][ C0] kmsan_get_shadow_origin_ptr+0x61/0xb0 [ 2834.892168][ C0] __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2834.892168][ C0] curve25519_generic+0x31b5/0x23dc0 [ 2834.892168][ C0] ? __msan_metadata_ptr_for_store_4+0x13/0x20 [ 2834.892168][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2834.982730][ C0] ? wg_noise_handshake_create_initiation+0xb20/0x1610 [ 2834.982730][ C0] wg_noise_handshake_create_initiation+0xb4f/0x1610 [ 2834.982730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.982730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.982730][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2834.982730][ C0] wg_packet_handshake_send_worker+0x1f2/0x3f0 [ 2834.982730][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2834.982730][ C0] ? wg_prev_queue_dequeue+0x570/0x570 [ 2834.982730][ C0] process_one_work+0x1219/0x1fe0 [ 2834.982730][ C0] worker_thread+0x10ec/0x2340 [ 2834.982730][ C0] kthread+0x521/0x560 [ 2834.982730][ C0] ? process_one_work+0x1fe0/0x1fe0 [ 2834.982730][ C0] ? kthread_blkcg+0x110/0x110 [ 2834.982730][ C0] ret_from_fork+0x1f/0x30 [ 2834.982730][ C0] ---[ end trace f7326eee4ef5385a ]--- [ 2835.110888][ C0] ------------[ cut here ]------------ [ 2835.110888][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2835.110888][ C0] Modules linked in: [ 2835.110888][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2835.110888][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2835.110888][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2835.110888][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2835.110888][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2835.110888][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2835.110888][ C0] RDX: 0000000080010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2835.110888][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2835.110888][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2835.110888][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2835.110888][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2835.110888][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2835.110888][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2835.110888][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2835.110888][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2835.110888][ C0] Call Trace: [ 2835.110888][ C0] [ 2835.110888][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2835.110888][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2835.110888][ C0] __run_hrtimer+0x48b/0xd20 [ 2835.110888][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2835.110888][ C0] ? hrtimer_init+0x570/0x570 [ 2835.110888][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2835.110888][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2835.340956][ C0] [ 2835.340956][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2835.340956][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2835.340956][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2835.368956][ C0] RSP: 0018:ffff88809bb97400 EFLAGS: 00000296 [ 2835.368956][ C0] RAX: ffff888104b2e848 RBX: ffff8880a783d000 RCX: 0000000000000401 [ 2835.368956][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880a783d000 [ 2835.368956][ C0] RBP: ffff88809bb97418 R08: ffffea000000000f R09: ffff88813fffa000 [ 2835.368956][ C0] R10: 000000004327f5e3 R11: 0000000000000000 R12: 0000000000000001 [ 2835.368956][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2835.368956][ C0] clear_page+0x34/0x40 [ 2835.368956][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2835.368956][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2835.368956][ C0] alloc_pages_current+0x7b6/0xb60 [ 2835.368956][ C0] ? __msan_get_context_state+0x9/0x20 [ 2835.368956][ C0] __vmalloc_node_range+0x987/0x1310 [ 2835.368956][ C0] vmalloc_user+0xd7/0xf0 [ 2835.368956][ C0] ? kcov_mmap+0x2e/0x140 [ 2835.368956][ C0] kcov_mmap+0x2e/0x140 [ 2835.368956][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2835.368956][ C0] ? kcov_ioctl+0x820/0x820 [ 2835.368956][ C0] mmap_region+0x34f7/0x46c0 [ 2835.368956][ C0] do_mmap+0x1978/0x2650 [ 2835.368956][ C0] vm_mmap_pgoff+0x365/0x570 [ 2835.368956][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2835.368956][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2835.368956][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2835.368956][ C0] __do_fast_syscall_32+0x127/0x180 [ 2835.368956][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2835.368956][ C0] do_SYSENTER_32+0x73/0x90 [ 2835.368956][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2835.368956][ C0] RIP: 0023:0xf7f20549 [ 2835.368956][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2835.368956][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2835.368956][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2835.368956][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000eb [ 2835.368956][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2835.368956][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2835.368956][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2835.368956][ C0] ---[ end trace f7326eee4ef5385b ]--- [ 2835.589066][ C0] ------------[ cut here ]------------ [ 2835.594783][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2835.597576][ C0] Modules linked in: [ 2835.597576][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2835.597576][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2835.597576][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2835.597576][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2835.597576][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2835.597576][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2835.597576][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2835.597576][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2835.597576][ C0] R10: 000000004d1d8650 R11: 00000000b123f581 R12: 0000000000000000 [ 2835.597576][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2835.597576][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2835.597576][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2835.597576][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2835.597576][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2835.597576][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2835.597576][ C0] Call Trace: [ 2835.597576][ C0] [ 2835.597576][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2835.597576][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2835.597576][ C0] __run_hrtimer+0x48b/0xd20 [ 2835.597576][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2835.597576][ C0] ? hrtimer_init+0x570/0x570 [ 2835.597576][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2835.597576][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2835.597576][ C0] [ 2835.597576][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2835.597576][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2835.597576][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2835.597576][ C0] RSP: 0018:ffff88809bb97400 EFLAGS: 00000296 [ 2835.597576][ C0] RAX: ffff888104b2e848 RBX: ffff8880a783d000 RCX: 0000000000000401 [ 2835.597576][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880a783d000 [ 2835.597576][ C0] RBP: ffff88809bb97418 R08: ffffea000000000f R09: ffff88813fffa000 [ 2835.597576][ C0] R10: 000000004327f5e3 R11: 0000000000000000 R12: 0000000000000001 [ 2835.597576][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2835.597576][ C0] clear_page+0x34/0x40 [ 2835.597576][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2835.597576][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2835.597576][ C0] alloc_pages_current+0x7b6/0xb60 [ 2835.597576][ C0] ? __msan_get_context_state+0x9/0x20 [ 2835.597576][ C0] __vmalloc_node_range+0x987/0x1310 [ 2835.597576][ C0] vmalloc_user+0xd7/0xf0 [ 2835.597576][ C0] ? kcov_mmap+0x2e/0x140 [ 2835.597576][ C0] kcov_mmap+0x2e/0x140 [ 2835.597576][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2835.597576][ C0] ? kcov_ioctl+0x820/0x820 [ 2835.597576][ C0] mmap_region+0x34f7/0x46c0 [ 2835.597576][ C0] do_mmap+0x1978/0x2650 [ 2835.597576][ C0] vm_mmap_pgoff+0x365/0x570 [ 2835.597576][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2835.597576][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2835.597576][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2835.597576][ C0] __do_fast_syscall_32+0x127/0x180 [ 2835.597576][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2835.597576][ C0] do_SYSENTER_32+0x73/0x90 [ 2835.597576][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2835.597576][ C0] RIP: 0023:0xf7f20549 [ 2835.597576][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2835.597576][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2835.597576][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2835.597576][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000eb [ 2835.597576][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2835.597576][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2835.597576][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2835.597576][ C0] ---[ end trace f7326eee4ef5385c ]--- [ 2836.019434][ C0] ------------[ cut here ]------------ [ 2836.025155][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2836.027974][ C0] Modules linked in: [ 2836.027974][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2836.027974][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2836.027974][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2836.027974][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2836.027974][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2836.027974][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2836.027974][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2836.027974][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2836.027974][ C0] R10: 00000000b56c2fd0 R11: ffff888104b2ddc0 R12: 0000000000000000 [ 2836.027974][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2836.027974][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2836.027974][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2836.027974][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2836.027974][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2836.027974][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2836.027974][ C0] Call Trace: [ 2836.027974][ C0] [ 2836.027974][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2836.173391][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2836.174168][ C0] __run_hrtimer+0x48b/0xd20 [ 2836.174168][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2836.185621][ C0] ? hrtimer_init+0x570/0x570 [ 2836.192400][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2836.192400][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2836.192400][ C0] [ 2836.205378][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2836.205378][ C0] RIP: 0010:kmsan_unpoison_shadow+0x82/0xa0 [ 2836.212448][ C0] Code: ff ff e8 d1 da ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 7c d1 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 f0 ea 25 [ 2836.232433][ C0] RSP: 0018:ffff88809bb97400 EFLAGS: 00000296 [ 2836.232433][ C0] RAX: ffff888104b2e848 RBX: ffff8880a783d000 RCX: 0000000000000401 [ 2836.245415][ C0] RDX: 0000000000000400 RSI: 0000000000000000 RDI: ffff8880a783d000 [ 2836.245415][ C0] RBP: ffff88809bb97418 R08: ffffea000000000f R09: ffff88813fffa000 [ 2836.245415][ C0] R10: 000000004327f5e3 R11: 0000000000000000 R12: 0000000000000001 [ 2836.271673][ C0] R13: 0000000000000000 R14: 0000000000001000 R15: 0000000000000246 [ 2836.274337][ C0] clear_page+0x34/0x40 [ 2836.274337][ C0] get_page_from_freelist+0x15d7/0x26d0 [ 2836.285883][ C0] __alloc_pages_nodemask+0x6bf/0xf90 [ 2836.292317][ C0] alloc_pages_current+0x7b6/0xb60 [ 2836.292317][ C0] ? __msan_get_context_state+0x9/0x20 [ 2836.292317][ C0] __vmalloc_node_range+0x987/0x1310 [ 2836.305653][ C0] vmalloc_user+0xd7/0xf0 [ 2836.305653][ C0] ? kcov_mmap+0x2e/0x140 [ 2836.312314][ C0] kcov_mmap+0x2e/0x140 [ 2836.312314][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2836.325568][ C0] ? kcov_ioctl+0x820/0x820 [ 2836.325568][ C0] mmap_region+0x34f7/0x46c0 [ 2836.332293][ C0] do_mmap+0x1978/0x2650 [ 2836.332293][ C0] vm_mmap_pgoff+0x365/0x570 [ 2836.332293][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2836.345754][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2836.352328][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2836.352328][ C0] __do_fast_syscall_32+0x127/0x180 [ 2836.352328][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2836.365630][ C0] do_SYSENTER_32+0x73/0x90 [ 2836.365630][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2836.372775][ C0] RIP: 0023:0xf7f20549 [ 2836.372775][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2836.392931][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2836.405729][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2836.412403][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000eb [ 2836.412403][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2836.425555][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2836.432563][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2836.432563][ C0] ---[ end trace f7326eee4ef5385d ]--- [ 2836.540635][ C0] ------------[ cut here ]------------ [ 2836.546423][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2836.549310][ C0] Modules linked in: [ 2836.549310][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2836.549310][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2836.549310][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2836.549310][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2836.549310][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2836.549310][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2836.549310][ C0] RDX: 0000000000010000 RSI: 000000000000001f RDI: 0000000000000001 [ 2836.549310][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2836.549310][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2836.549310][ C0] R13: 0000000000000000 R14: 000000000000001f R15: ffff88813fc27b00 [ 2836.549310][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2836.549310][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2836.549310][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2836.549310][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2836.549310][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2836.549310][ C0] Call Trace: [ 2836.549310][ C0] [ 2836.549310][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2836.549310][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2836.549310][ C0] __run_hrtimer+0x48b/0xd20 [ 2836.549310][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2836.549310][ C0] ? hrtimer_init+0x570/0x570 [ 2836.549310][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2836.549310][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2836.549310][ C0] [ 2836.549310][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2836.549310][ C0] RIP: 0010:memset_erms+0xb/0x10 [ 2836.549310][ C0] Code: 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 f3 48 ab 89 d1 f3 aa 4c 89 c8 c3 90 49 89 f9 40 88 f0 48 89 d1 f3 aa <4c> 89 c8 c3 90 49 89 fa 40 0f b6 ce 48 b8 01 01 01 01 01 01 01 01 [ 2836.549310][ C0] RSP: 0018:ffff88809bb976e0 EFLAGS: 00000286 [ 2836.549310][ C0] RAX: ffff88809b3978ff RBX: 0000000000000008 RCX: 0000000000000000 [ 2836.549310][ C0] RDX: 0000000000000008 RSI: 00000000ffffffff RDI: ffff88809b397808 [ 2836.549310][ C0] RBP: ffff88809bb97710 R08: ffffea000000000f R09: ffff88809b397800 [ 2836.549310][ C0] R10: 00000000a51590e3 R11: ffffffff7fffffff R12: 00000000ffffffff [ 2836.549310][ C0] R13: 0000000000000008 R14: 0000000000000001 R15: ffff88809bb97800 [ 2836.549310][ C0] ? kmsan_internal_memset_shadow+0x4e/0xb0 [ 2836.549310][ C0] __msan_poison_alloca+0x50/0x110 [ 2836.549310][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2836.549310][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2836.549310][ C0] insert_page_into_pte_locked+0x53a/0x8d0 [ 2836.549310][ C0] vm_insert_page+0x872/0xae0 [ 2836.832211][ C0] kcov_mmap+0x10d/0x140 [ 2836.832211][ C0] ? kcov_ioctl+0x820/0x820 [ 2836.832211][ C0] mmap_region+0x34f7/0x46c0 [ 2836.832211][ C0] do_mmap+0x1978/0x2650 [ 2836.832211][ C0] vm_mmap_pgoff+0x365/0x570 [ 2836.832211][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2836.832211][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2836.832211][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2836.832211][ C0] __do_fast_syscall_32+0x127/0x180 [ 2836.832211][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2836.832211][ C0] do_SYSENTER_32+0x73/0x90 [ 2836.832211][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2836.832211][ C0] RIP: 0023:0xf7f20549 [ 2836.832211][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2836.907398][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2836.907398][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2836.907398][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000ef [ 2836.907398][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2836.907398][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2836.907398][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2836.907398][ C0] ---[ end trace f7326eee4ef5385e ]--- [ 2836.966473][ C0] ------------[ cut here ]------------ [ 2836.972285][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2836.974951][ C0] Modules linked in: [ 2836.974951][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2836.974951][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2836.974951][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2836.974951][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2836.974951][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2836.974951][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2836.974951][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2836.974951][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2836.974951][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2836.974951][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2836.974951][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2836.974951][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2836.974951][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2836.974951][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2836.974951][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2836.974951][ C0] Call Trace: [ 2836.974951][ C0] [ 2836.974951][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2836.974951][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2836.974951][ C0] __run_hrtimer+0x48b/0xd20 [ 2836.974951][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2836.974951][ C0] ? hrtimer_init+0x570/0x570 [ 2836.974951][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2836.974951][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2836.974951][ C0] [ 2836.974951][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2836.974951][ C0] RIP: 0010:memset_erms+0xb/0x10 [ 2836.974951][ C0] Code: 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 f3 48 ab 89 d1 f3 aa 4c 89 c8 c3 90 49 89 f9 40 88 f0 48 89 d1 f3 aa <4c> 89 c8 c3 90 49 89 fa 40 0f b6 ce 48 b8 01 01 01 01 01 01 01 01 [ 2836.974951][ C0] RSP: 0018:ffff88809bb976e0 EFLAGS: 00000286 [ 2836.974951][ C0] RAX: ffff88809b3978ff RBX: 0000000000000008 RCX: 0000000000000000 [ 2836.974951][ C0] RDX: 0000000000000008 RSI: 00000000ffffffff RDI: ffff88809b397808 [ 2836.974951][ C0] RBP: ffff88809bb97710 R08: ffffea000000000f R09: ffff88809b397800 [ 2836.974951][ C0] R10: 00000000a51590e3 R11: ffffffff7fffffff R12: 00000000ffffffff [ 2836.974951][ C0] R13: 0000000000000008 R14: 0000000000000001 R15: ffff88809bb97800 [ 2837.221994][ C0] ? kmsan_internal_memset_shadow+0x4e/0xb0 [ 2837.230837][ C0] __msan_poison_alloca+0x50/0x110 [ 2837.234555][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2837.234555][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2837.243663][ C0] insert_page_into_pte_locked+0x53a/0x8d0 [ 2837.243663][ C0] vm_insert_page+0x872/0xae0 [ 2837.254505][ C0] kcov_mmap+0x10d/0x140 [ 2837.254505][ C0] ? kcov_ioctl+0x820/0x820 [ 2837.264325][ C0] mmap_region+0x34f7/0x46c0 [ 2837.264325][ C0] do_mmap+0x1978/0x2650 [ 2837.264325][ C0] vm_mmap_pgoff+0x365/0x570 [ 2837.274558][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2837.274558][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2837.283503][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2837.283503][ C0] __do_fast_syscall_32+0x127/0x180 [ 2837.294604][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2837.294604][ C0] do_SYSENTER_32+0x73/0x90 [ 2837.303986][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2837.303986][ C0] RIP: 0023:0xf7f20549 [ 2837.314535][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2837.334622][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2837.334622][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2837.343464][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000ef [ 2837.354570][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2837.363571][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2837.363571][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2837.374552][ C0] ---[ end trace f7326eee4ef5385f ]--- [ 2837.383462][ C0] ------------[ cut here ]------------ [ 2837.389286][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2837.394575][ C0] Modules linked in: [ 2837.403443][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2837.414699][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2837.423806][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2837.423806][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2837.443498][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2837.454695][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2837.454695][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2837.463532][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2837.474536][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2837.483560][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2837.483560][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2837.494551][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2837.503757][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2837.514757][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2837.514757][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2837.523813][ C0] Call Trace: [ 2837.523813][ C0] [ 2837.523813][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2837.523813][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2837.523813][ C0] __run_hrtimer+0x48b/0xd20 [ 2837.523813][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2837.523813][ C0] ? hrtimer_init+0x570/0x570 [ 2837.523813][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2837.523813][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2837.523813][ C0] [ 2837.523813][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2837.523813][ C0] RIP: 0010:memset_erms+0xb/0x10 [ 2837.523813][ C0] Code: 03 40 0f b6 f6 48 b8 01 01 01 01 01 01 01 01 48 0f af c6 f3 48 ab 89 d1 f3 aa 4c 89 c8 c3 90 49 89 f9 40 88 f0 48 89 d1 f3 aa <4c> 89 c8 c3 90 49 89 fa 40 0f b6 ce 48 b8 01 01 01 01 01 01 01 01 [ 2837.603347][ C0] RSP: 0018:ffff88809bb976e0 EFLAGS: 00000286 [ 2837.603347][ C0] RAX: ffff88809b3978ff RBX: 0000000000000008 RCX: 0000000000000000 [ 2837.615808][ C0] RDX: 0000000000000008 RSI: 00000000ffffffff RDI: ffff88809b397808 [ 2837.622404][ C0] RBP: ffff88809bb97710 R08: ffffea000000000f R09: ffff88809b397800 [ 2837.622404][ C0] R10: 00000000a51590e3 R11: ffffffff7fffffff R12: 00000000ffffffff [ 2837.635882][ C0] R13: 0000000000000008 R14: 0000000000000001 R15: ffff88809bb97800 [ 2837.642325][ C0] ? kmsan_internal_memset_shadow+0x4e/0xb0 [ 2837.642325][ C0] __msan_poison_alloca+0x50/0x110 [ 2837.642325][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2837.657719][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2837.662425][ C0] insert_page_into_pte_locked+0x53a/0x8d0 [ 2837.662425][ C0] vm_insert_page+0x872/0xae0 [ 2837.675617][ C0] kcov_mmap+0x10d/0x140 [ 2837.675617][ C0] ? kcov_ioctl+0x820/0x820 [ 2837.682316][ C0] mmap_region+0x34f7/0x46c0 [ 2837.682316][ C0] do_mmap+0x1978/0x2650 [ 2837.682316][ C0] vm_mmap_pgoff+0x365/0x570 [ 2837.695756][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2837.702324][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2837.702324][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2837.702324][ C0] __do_fast_syscall_32+0x127/0x180 [ 2837.715677][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2837.715677][ C0] do_SYSENTER_32+0x73/0x90 [ 2837.722440][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2837.722440][ C0] RIP: 0023:0xf7f20549 [ 2837.722440][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2837.742709][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2837.755720][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2837.764394][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000ef [ 2837.775594][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2837.782442][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2837.782442][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2837.795584][ C0] ---[ end trace f7326eee4ef53860 ]--- [ 2837.884546][ C0] ------------[ cut here ]------------ [ 2837.884546][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2837.884546][ C0] Modules linked in: [ 2837.884546][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2837.884546][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2837.884546][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2837.884546][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2837.884546][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2837.884546][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2837.884546][ C0] RDX: 0000000080010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2837.884546][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2837.884546][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2837.884546][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2837.884546][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2837.884546][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2837.884546][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2837.884546][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2837.884546][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2837.884546][ C0] Call Trace: [ 2837.884546][ C0] [ 2837.884546][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2837.884546][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2837.884546][ C0] __run_hrtimer+0x48b/0xd20 [ 2837.884546][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2837.884546][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2837.884546][ C0] ? hrtimer_init+0x570/0x570 [ 2837.884546][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2837.884546][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2837.884546][ C0] [ 2837.884546][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2837.884546][ C0] RIP: 0010:kmsan_get_metadata+0x16e/0x180 [ 2837.884546][ C0] Code: 48 01 c8 48 c1 e8 04 48 b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b <41> 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 [ 2837.884546][ C0] RSP: 0018:ffff88809bb97568 EFLAGS: 00000286 [ 2837.884546][ C0] RAX: ffff88809b797760 RBX: 000000000000000b RCX: 000000009b797760 [ 2837.884546][ C0] RDX: 000000009bb97760 RSI: 0000000000000130 RDI: ffff88809bb97760 [ 2837.884546][ C0] RBP: ffff88809bb97578 R08: ffffea000000000f R09: ffff88813fffa000 [ 2837.884546][ C0] R10: 0000000038165302 R11: 0000000000000000 R12: 0000000000000008 [ 2837.884546][ C0] R13: 0000000007aa0001 R14: 0000000000000001 R15: 0000000000000000 [ 2837.884546][ C0] kmsan_internal_set_origin+0x85/0xc0 [ 2837.884546][ C0] __msan_poison_alloca+0xec/0x110 [ 2837.884546][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2837.884546][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2837.884546][ C0] __map_kernel_range_noflush+0xa1e/0x11d0 [ 2837.884546][ C0] __vmalloc_node_range+0xceb/0x1310 [ 2837.884546][ C0] vmalloc_user+0xd7/0xf0 [ 2837.884546][ C0] ? kcov_mmap+0x2e/0x140 [ 2837.884546][ C0] kcov_mmap+0x2e/0x140 [ 2837.884546][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2837.884546][ C0] ? kcov_ioctl+0x820/0x820 [ 2837.884546][ C0] mmap_region+0x34f7/0x46c0 [ 2837.884546][ C0] do_mmap+0x1978/0x2650 [ 2837.884546][ C0] vm_mmap_pgoff+0x365/0x570 [ 2837.884546][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2837.884546][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2837.884546][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2837.884546][ C0] __do_fast_syscall_32+0x127/0x180 [ 2837.884546][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2838.252176][ C0] do_SYSENTER_32+0x73/0x90 [ 2838.252176][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2838.252176][ C0] RIP: 0023:0xf7f20549 [ 2838.252176][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2838.252176][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2838.252176][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2838.252176][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000f4 [ 2838.252176][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2838.252176][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2838.252176][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2838.252176][ C0] ---[ end trace f7326eee4ef53861 ]--- [ 2838.339462][ C0] ------------[ cut here ]------------ [ 2838.346562][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2838.347975][ C0] Modules linked in: [ 2838.347975][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2838.347975][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2838.347975][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2838.347975][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2838.347975][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2838.347975][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2838.347975][ C0] RDX: 0000000000010000 RSI: 000000000000001b RDI: 0000000000000001 [ 2838.347975][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2838.347975][ C0] R10: 000000004d1d8650 R11: ffff888104b2ddc0 R12: 0000000000000000 [ 2838.347975][ C0] R13: 0000000000000000 R14: 000000000000001b R15: ffff88813fc27b00 [ 2838.347975][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2838.347975][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2838.347975][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2838.347975][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2838.347975][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2838.347975][ C0] Call Trace: [ 2838.347975][ C0] [ 2838.347975][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2838.347975][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2838.347975][ C0] __run_hrtimer+0x48b/0xd20 [ 2838.347975][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2838.347975][ C0] ? hrtimer_init+0x570/0x570 [ 2838.347975][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2838.347975][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2838.347975][ C0] [ 2838.347975][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2838.347975][ C0] RIP: 0010:kmsan_get_metadata+0x16e/0x180 [ 2838.347975][ C0] Code: 48 01 c8 48 c1 e8 04 48 b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b <41> 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 [ 2838.347975][ C0] RSP: 0018:ffff88809bb97568 EFLAGS: 00000286 [ 2838.347975][ C0] RAX: ffff88809b797760 RBX: 000000000000000b RCX: 000000009b797760 [ 2838.347975][ C0] RDX: 000000009bb97760 RSI: 0000000000000130 RDI: ffff88809bb97760 [ 2838.347975][ C0] RBP: ffff88809bb97578 R08: ffffea000000000f R09: ffff88813fffa000 [ 2838.347975][ C0] R10: 0000000038165302 R11: 0000000000000000 R12: 0000000000000008 [ 2838.347975][ C0] R13: 0000000007aa0001 R14: 0000000000000001 R15: 0000000000000000 [ 2838.347975][ C0] kmsan_internal_set_origin+0x85/0xc0 [ 2838.347975][ C0] __msan_poison_alloca+0xec/0x110 [ 2838.347975][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.347975][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.347975][ C0] __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.347975][ C0] __vmalloc_node_range+0xceb/0x1310 [ 2838.347975][ C0] vmalloc_user+0xd7/0xf0 [ 2838.347975][ C0] ? kcov_mmap+0x2e/0x140 [ 2838.347975][ C0] kcov_mmap+0x2e/0x140 [ 2838.347975][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2838.347975][ C0] ? kcov_ioctl+0x820/0x820 [ 2838.347975][ C0] mmap_region+0x34f7/0x46c0 [ 2838.347975][ C0] do_mmap+0x1978/0x2650 [ 2838.347975][ C0] vm_mmap_pgoff+0x365/0x570 [ 2838.347975][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2838.347975][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2838.347975][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2838.347975][ C0] __do_fast_syscall_32+0x127/0x180 [ 2838.347975][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2838.347975][ C0] do_SYSENTER_32+0x73/0x90 [ 2838.347975][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2838.347975][ C0] RIP: 0023:0xf7f20549 [ 2838.347975][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2838.347975][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2838.347975][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2838.347975][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000f4 [ 2838.347975][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2838.347975][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2838.347975][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2838.347975][ C0] ---[ end trace f7326eee4ef53862 ]--- [ 2838.779168][ C0] ------------[ cut here ]------------ [ 2838.784873][ C0] WARNING: CPU: 0 PID: 24944 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2838.787652][ C0] Modules linked in: [ 2838.787652][ C0] CPU: 0 PID: 24944 Comm: syz-executor.2 Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2838.787652][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2838.787652][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2838.787652][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2838.787652][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2838.787652][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888104b2ddc0 [ 2838.787652][ C0] RDX: 0000000000010000 RSI: 000000000000001a RDI: 0000000000000001 [ 2838.787652][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2838.787652][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2838.787652][ C0] R13: 0000000000000000 R14: 000000000000001a R15: ffff88813fc27b00 [ 2838.787652][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:000000000a91f380 [ 2838.787652][ C0] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 2838.787652][ C0] CR2: 000000000819b01c CR3: 00000000a562e000 CR4: 00000000001526f0 [ 2838.787652][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2838.787652][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2838.787652][ C0] Call Trace: [ 2838.787652][ C0] [ 2838.787652][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2838.787652][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2838.787652][ C0] __run_hrtimer+0x48b/0xd20 [ 2838.787652][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2838.787652][ C0] ? hrtimer_init+0x570/0x570 [ 2838.787652][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2838.787652][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2838.787652][ C0] [ 2838.787652][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2838.787652][ C0] RIP: 0010:kmsan_get_metadata+0x16e/0x180 [ 2838.787652][ C0] Code: 48 01 c8 48 c1 e8 04 48 b9 00 d0 cc cc cc cc cc cc 48 0f af c8 48 09 d9 48 b8 00 00 00 00 80 88 ff ff e9 fd fe ff ff 31 c0 5b <41> 5e 41 5f 5d c3 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 55 48 89 e5 [ 2838.787652][ C0] RSP: 0018:ffff88809bb97568 EFLAGS: 00000286 [ 2838.787652][ C0] RAX: ffff88809b797760 RBX: 000000000000000b RCX: 000000009b797760 [ 2838.787652][ C0] RDX: 000000009bb97760 RSI: 0000000000000130 RDI: ffff88809bb97760 [ 2838.787652][ C0] RBP: ffff88809bb97578 R08: ffffea000000000f R09: ffff88813fffa000 [ 2838.787652][ C0] R10: 0000000038165302 R11: 0000000000000000 R12: 0000000000000008 [ 2838.787652][ C0] R13: 0000000007aa0001 R14: 0000000000000001 R15: 0000000000000000 [ 2838.787652][ C0] kmsan_internal_set_origin+0x85/0xc0 [ 2838.787652][ C0] __msan_poison_alloca+0xec/0x110 [ 2838.787652][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.787652][ C0] ? __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.787652][ C0] __map_kernel_range_noflush+0xa1e/0x11d0 [ 2838.787652][ C0] __vmalloc_node_range+0xceb/0x1310 [ 2838.787652][ C0] vmalloc_user+0xd7/0xf0 [ 2838.787652][ C0] ? kcov_mmap+0x2e/0x140 [ 2838.787652][ C0] kcov_mmap+0x2e/0x140 [ 2838.787652][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2838.787652][ C0] ? kcov_ioctl+0x820/0x820 [ 2838.787652][ C0] mmap_region+0x34f7/0x46c0 [ 2838.787652][ C0] do_mmap+0x1978/0x2650 [ 2838.787652][ C0] vm_mmap_pgoff+0x365/0x570 [ 2838.787652][ C0] ksys_mmap_pgoff+0x59b/0xac0 [ 2838.787652][ C0] __se_sys_mmap_pgoff+0x11e/0x130 [ 2838.787652][ C0] __ia32_sys_mmap_pgoff+0x6e/0x90 [ 2838.787652][ C0] __do_fast_syscall_32+0x127/0x180 [ 2838.787652][ C0] do_fast_syscall_32+0x6a/0xc0 [ 2838.787652][ C0] do_SYSENTER_32+0x73/0x90 [ 2838.787652][ C0] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2838.787652][ C0] RIP: 0023:0xf7f20549 [ 2838.787652][ C0] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2838.787652][ C0] RSP: 002b:00000000ff9af4ac EFLAGS: 00000246 ORIG_RAX: 00000000000000c0 [ 2838.787652][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000200000 [ 2838.787652][ C0] RDX: 0000000000000003 RSI: 0000000000000001 RDI: 00000000000000f4 [ 2838.787652][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 2838.787652][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2838.787652][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2838.787652][ C0] ---[ end trace f7326eee4ef53863 ]--- [ 2839.307589][ C0] ------------[ cut here ]------------ [ 2839.313275][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2839.321994][ C0] Modules linked in: [ 2839.321994][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2839.332622][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2839.344423][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2839.344423][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2839.344423][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2839.344423][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2839.344423][ C0] RDX: 0000000000010000 RSI: 0000000000000020 RDI: 0000000000000001 [ 2839.344423][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2839.344423][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2839.344423][ C0] R13: 0000000000000000 R14: 0000000000000020 R15: ffff88813fc27b00 [ 2839.344423][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2839.344423][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2839.344423][ C0] CR2: 00007fc930834000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2839.344423][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2839.344423][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2839.344423][ C0] Call Trace: [ 2839.344423][ C0] [ 2839.344423][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2839.344423][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2839.344423][ C0] __run_hrtimer+0x48b/0xd20 [ 2839.344423][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2839.344423][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2839.344423][ C0] ? hrtimer_init+0x570/0x570 [ 2839.344423][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2839.344423][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2839.344423][ C0] [ 2839.344423][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2839.344423][ C0] RIP: 0010:kmsan_slab_free+0x9e/0xc0 [ 2839.344423][ C0] Code: ff ff e8 75 e6 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 20 dd 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 94 f6 25 [ 2839.344423][ C0] RSP: 0018:ffff888115d1bb28 EFLAGS: 00000286 [ 2839.344423][ C0] RAX: ffff88811175a9c8 RBX: ffff888100013f00 RCX: 0000000000000007 [ 2839.344423][ C0] RDX: 0000000000000006 RSI: 0000000000000000 RDI: ffff8881e290c600 [ 2839.344423][ C0] RBP: ffff888115d1bb40 R08: ffffea000000000f R09: ffff88813fffa000 [ 2839.344423][ C0] R10: 00000000f614d523 R11: ffffffff8fc00715 R12: 0000000000000000 [ 2839.344423][ C0] R13: 0000000000000000 R14: ffff8881e290c600 R15: 0000000000000246 [ 2839.344423][ C0] ? __do_softirq+0x715/0x715 [ 2839.344423][ C0] kmem_cache_free+0x30d/0xf10 [ 2839.344423][ C0] ? security_file_free+0x1b4/0x200 [ 2839.344423][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2839.344423][ C0] ? __msan_instrument_asm_store+0x107/0x130 [ 2839.344423][ C0] security_file_free+0x1b4/0x200 [ 2839.344423][ C0] __fput+0xc3c/0xf00 [ 2839.344423][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2839.344423][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2839.344423][ C0] ____fput+0x37/0x40 [ 2839.344423][ C0] ? fput_many+0x360/0x360 [ 2839.344423][ C0] task_work_run+0x140/0x280 [ 2839.344423][ C0] exit_to_user_mode_prepare+0x486/0x560 [ 2839.344423][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2839.344423][ C0] do_syscall_64+0xc5/0x140 [ 2839.344423][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2839.344423][ C0] RIP: 0033:0x7fc932f7885d [ 2839.344423][ C0] Code: bb 20 00 00 75 10 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 67 f6 ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2839.344423][ C0] RSP: 002b:00007fff374ecf00 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 2839.344423][ C0] RAX: fffffffffffffffe RBX: 00007fff374ed210 RCX: 00007fc932f7885d [ 2839.344423][ C0] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000560eff1e6870 [ 2839.344423][ C0] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff [ 2839.344423][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff [ 2839.344423][ C0] R13: 0000560eff1e2040 R14: 00007fff374ed1d0 R15: 0000560eff1e5e80 [ 2839.344423][ C0] ---[ end trace f7326eee4ef53864 ]--- [ 2839.725547][ C0] ------------[ cut here ]------------ [ 2839.731234][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2839.734085][ C0] Modules linked in: [ 2839.734085][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2839.734085][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2839.734085][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2839.734085][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2839.734085][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2839.734085][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2839.734085][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2839.734085][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2839.734085][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2839.734085][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2839.734085][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2839.734085][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2839.734085][ C0] CR2: 00007fc930834000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2839.734085][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2839.734085][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2839.734085][ C0] Call Trace: [ 2839.734085][ C0] [ 2839.734085][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2839.734085][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2839.734085][ C0] __run_hrtimer+0x48b/0xd20 [ 2839.734085][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2839.734085][ C0] ? hrtimer_init+0x570/0x570 [ 2839.734085][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2839.734085][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2839.734085][ C0] [ 2839.734085][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2839.734085][ C0] RIP: 0010:kmsan_slab_free+0x9e/0xc0 [ 2839.734085][ C0] Code: ff ff e8 75 e6 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 20 dd 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 94 f6 25 [ 2839.734085][ C0] RSP: 0018:ffff888115d1bb28 EFLAGS: 00000286 [ 2839.734085][ C0] RAX: ffff88811175a9c8 RBX: ffff888100013f00 RCX: 0000000000000007 [ 2839.734085][ C0] RDX: 0000000000000006 RSI: 0000000000000000 RDI: ffff8881e290c600 [ 2839.734085][ C0] RBP: ffff888115d1bb40 R08: ffffea000000000f R09: ffff88813fffa000 [ 2839.734085][ C0] R10: 00000000f614d523 R11: ffffffff8fc00715 R12: 0000000000000000 [ 2839.734085][ C0] R13: 0000000000000000 R14: ffff8881e290c600 R15: 0000000000000246 [ 2839.734085][ C0] ? __do_softirq+0x715/0x715 [ 2839.734085][ C0] kmem_cache_free+0x30d/0xf10 [ 2839.734085][ C0] ? security_file_free+0x1b4/0x200 [ 2839.734085][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2839.734085][ C0] ? __msan_instrument_asm_store+0x107/0x130 [ 2839.734085][ C0] security_file_free+0x1b4/0x200 [ 2839.734085][ C0] __fput+0xc3c/0xf00 [ 2839.734085][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2839.734085][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2839.734085][ C0] ____fput+0x37/0x40 [ 2839.734085][ C0] ? fput_many+0x360/0x360 [ 2839.734085][ C0] task_work_run+0x140/0x280 [ 2839.734085][ C0] exit_to_user_mode_prepare+0x486/0x560 [ 2839.734085][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2839.734085][ C0] do_syscall_64+0xc5/0x140 [ 2839.734085][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2839.734085][ C0] RIP: 0033:0x7fc932f7885d [ 2839.734085][ C0] Code: bb 20 00 00 75 10 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 67 f6 ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2839.734085][ C0] RSP: 002b:00007fff374ecf00 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 2839.734085][ C0] RAX: fffffffffffffffe RBX: 00007fff374ed210 RCX: 00007fc932f7885d [ 2839.734085][ C0] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000560eff1e6870 [ 2839.734085][ C0] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff [ 2839.734085][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff [ 2839.734085][ C0] R13: 0000560eff1e2040 R14: 00007fff374ed1d0 R15: 0000560eff1e5e80 [ 2839.734085][ C0] ---[ end trace f7326eee4ef53865 ]--- [ 2840.140145][ C0] ------------[ cut here ]------------ [ 2840.145986][ C0] WARNING: CPU: 0 PID: 4685 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2840.148672][ C0] Modules linked in: [ 2840.148672][ C0] CPU: 0 PID: 4685 Comm: systemd-journal Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2840.148672][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2840.148672][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2840.148672][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2840.148672][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2840.148672][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff888111759f40 [ 2840.148672][ C0] RDX: 0000000000010000 RSI: 0000000000000019 RDI: 0000000000000001 [ 2840.148672][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2840.148672][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2840.148672][ C0] R13: 0000000000000000 R14: 0000000000000019 R15: ffff88813fc27b00 [ 2840.148672][ C0] FS: 00007fc9339e98c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2840.148672][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2840.148672][ C0] CR2: 00007fc930834000 CR3: 0000000115d96000 CR4: 00000000001526f0 [ 2840.148672][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2840.148672][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2840.148672][ C0] Call Trace: [ 2840.148672][ C0] [ 2840.148672][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.148672][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2840.148672][ C0] __run_hrtimer+0x48b/0xd20 [ 2840.148672][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2840.148672][ C0] ? hrtimer_init+0x570/0x570 [ 2840.148672][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2840.148672][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2840.148672][ C0] [ 2840.148672][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2840.148672][ C0] RIP: 0010:kmsan_slab_free+0x9e/0xc0 [ 2840.148672][ C0] Code: ff ff e8 75 e6 ff ff 8b b0 b0 0f 00 00 ff ce 89 b0 b0 0f 00 00 75 1c e8 20 dd 0b ff 41 f7 c7 00 02 00 00 74 01 fb 48 83 c4 08 <5b> 41 5e 41 5f 5d c3 0f 0b 48 c7 c7 f9 18 7c 90 31 c0 e8 94 f6 25 [ 2840.148672][ C0] RSP: 0018:ffff888115d1bb28 EFLAGS: 00000286 [ 2840.148672][ C0] RAX: ffff88811175a9c8 RBX: ffff888100013f00 RCX: 0000000000000007 [ 2840.148672][ C0] RDX: 0000000000000006 RSI: 0000000000000000 RDI: ffff8881e290c600 [ 2840.148672][ C0] RBP: ffff888115d1bb40 R08: ffffea000000000f R09: ffff88813fffa000 [ 2840.148672][ C0] R10: 00000000f614d523 R11: ffffffff8fc00715 R12: 0000000000000000 [ 2840.148672][ C0] R13: 0000000000000000 R14: ffff8881e290c600 R15: 0000000000000246 [ 2840.148672][ C0] ? __do_softirq+0x715/0x715 [ 2840.148672][ C0] kmem_cache_free+0x30d/0xf10 [ 2840.148672][ C0] ? security_file_free+0x1b4/0x200 [ 2840.148672][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2840.148672][ C0] ? __msan_instrument_asm_store+0x107/0x130 [ 2840.148672][ C0] security_file_free+0x1b4/0x200 [ 2840.148672][ C0] __fput+0xc3c/0xf00 [ 2840.148672][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2840.148672][ C0] ? kmsan_internal_unpoison_shadow+0x42/0x70 [ 2840.148672][ C0] ____fput+0x37/0x40 [ 2840.148672][ C0] ? fput_many+0x360/0x360 [ 2840.148672][ C0] task_work_run+0x140/0x280 [ 2840.148672][ C0] exit_to_user_mode_prepare+0x486/0x560 [ 2840.148672][ C0] syscall_exit_to_user_mode+0x35/0x60 [ 2840.148672][ C0] do_syscall_64+0xc5/0x140 [ 2840.148672][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2840.148672][ C0] RIP: 0033:0x7fc932f7885d [ 2840.148672][ C0] Code: bb 20 00 00 75 10 b8 02 00 00 00 0f 05 48 3d 01 f0 ff ff 73 31 c3 48 83 ec 08 e8 1e f6 ff ff 48 89 04 24 b8 02 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 67 f6 ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 2840.148672][ C0] RSP: 002b:00007fff374ecf00 EFLAGS: 00000293 ORIG_RAX: 0000000000000002 [ 2840.148672][ C0] RAX: fffffffffffffffe RBX: 00007fff374ed210 RCX: 00007fc932f7885d [ 2840.148672][ C0] RDX: 00000000000001a0 RSI: 0000000000080042 RDI: 0000560eff1e6870 [ 2840.148672][ C0] RBP: 000000000000000d R08: 00000000000001e0 R09: 00000000ffffffff [ 2840.148672][ C0] R10: 0000000000000069 R11: 0000000000000293 R12: 00000000ffffffff [ 2840.148672][ C0] R13: 0000560eff1e2040 R14: 00007fff374ed1d0 R15: 0000560eff1e5e80 [ 2840.148672][ C0] ---[ end trace f7326eee4ef53866 ]--- [ 2840.608806][T24951] EXT4-fs error: 2 callbacks suppressed [ 2840.608887][T24951] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2945: comm systemd-udevd: iget: checksum invalid [ 2840.630339][T24950] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2945: comm systemd-udevd: iget: checksum invalid [ 2840.646467][ C0] ------------[ cut here ]------------ [ 2840.652181][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2840.655004][ C0] Modules linked in: [ 2840.655004][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2840.671736][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2840.680427][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2840.680427][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2840.680427][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2840.712260][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2840.712260][ C0] RDX: 0000000000010000 RSI: 000000000000001e RDI: 0000000000000001 [ 2840.712260][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2840.712260][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2840.712260][ C0] R13: 0000000000000000 R14: 000000000000001e R15: ffff88813fc27b00 [ 2840.712260][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2840.712260][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2840.712260][ C0] CR2: 000000c00b32c420 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2840.712260][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2840.712260][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2840.712260][ C0] Call Trace: [ 2840.712260][ C0] [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2840.712260][ C0] __run_hrtimer+0x48b/0xd20 [ 2840.712260][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2840.712260][ C0] ? hrtimer_init+0x570/0x570 [ 2840.712260][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2840.712260][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2840.712260][ C0] [ 2840.712260][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2840.712260][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80 [ 2840.712260][ C0] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 da b6 f2 eb be 44 89 f7 e8 17 da b6 [ 2840.712260][ C0] RSP: 0018:ffff8881242d78a8 EFLAGS: 00000206 [ 2840.712260][ C0] RAX: ffff888104c565b4 RBX: 0000000000000000 RCX: 00000001050565b4 [ 2840.712260][ C0] RDX: ffff8881050565b4 RSI: 0000000000000200 RDI: ffff8881054565b4 [ 2840.712260][ C0] RBP: ffff8881242d78c0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2840.712260][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881054565b4 [ 2840.712260][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000200 [ 2840.712260][ C0] try_to_wake_up+0xadf/0x1540 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2840.712260][ C0] ? wake_q_add_safe+0xb4/0x1e0 [ 2840.712260][ C0] wake_up_process+0x34/0x40 [ 2840.712260][ C0] wake_up_q+0x5f/0x90 [ 2840.712260][ C0] futex_wake+0xc25/0xc80 [ 2840.712260][ C0] do_futex+0x1c67/0x5d40 [ 2840.712260][ C0] ? __perf_event_task_sched_out+0x2e40/0x2f80 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2840.712260][ C0] ? __perf_event_task_sched_in+0xbc7/0xdb0 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2840.712260][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2840.712260][ C0] __se_sys_futex+0x5cf/0xba0 [ 2840.712260][ C0] __x64_sys_futex+0x6e/0x90 [ 2840.712260][ C0] do_syscall_64+0x9f/0x140 [ 2840.712260][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2840.712260][ C0] RIP: 0033:0x7f529847a01a [ 2840.712260][ C0] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89 [ 2840.712260][ C0] RSP: 002b:00007f5295e16370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca [ 2840.712260][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f529847a01a [ 2840.712260][ C0] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 000055f9c7fa00b0 [ 2840.712260][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001 [ 2840.712260][ C0] R10: 0000000000000001 R11: 0000000000000206 R12: 000055f9c709f520 [ 2840.712260][ C0] R13: 000055f9c7f9fe80 R14: 000055f9c6e71770 R15: 000055f9c7f9fd70 [ 2840.712260][ C0] ---[ end trace f7326eee4ef53867 ]--- [ 2840.712260][ C0] ------------[ cut here ]------------ [ 2840.712260][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2840.712260][ C0] Modules linked in: [ 2840.712260][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2840.712260][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2840.712260][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2840.712260][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2840.712260][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2840.712260][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2840.712260][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2840.712260][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2840.712260][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2840.712260][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2840.712260][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2840.712260][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2840.712260][ C0] CR2: 000000c00b32c420 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2840.712260][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2840.712260][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2840.712260][ C0] Call Trace: [ 2840.712260][ C0] [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2840.712260][ C0] __run_hrtimer+0x48b/0xd20 [ 2840.712260][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2840.712260][ C0] ? hrtimer_init+0x570/0x570 [ 2840.712260][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2840.712260][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2840.712260][ C0] [ 2840.712260][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2840.712260][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80 [ 2840.712260][ C0] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 da b6 f2 eb be 44 89 f7 e8 17 da b6 [ 2840.712260][ C0] RSP: 0018:ffff8881242d78a8 EFLAGS: 00000206 [ 2840.712260][ C0] RAX: ffff888104c565b4 RBX: 0000000000000000 RCX: 00000001050565b4 [ 2840.712260][ C0] RDX: ffff8881050565b4 RSI: 0000000000000200 RDI: ffff8881054565b4 [ 2840.712260][ C0] RBP: ffff8881242d78c0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2840.712260][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881054565b4 [ 2840.712260][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000200 [ 2840.712260][ C0] try_to_wake_up+0xadf/0x1540 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2840.712260][ C0] ? wake_q_add_safe+0xb4/0x1e0 [ 2840.712260][ C0] wake_up_process+0x34/0x40 [ 2840.712260][ C0] wake_up_q+0x5f/0x90 [ 2840.712260][ C0] futex_wake+0xc25/0xc80 [ 2840.712260][ C0] do_futex+0x1c67/0x5d40 [ 2840.712260][ C0] ? __perf_event_task_sched_out+0x2e40/0x2f80 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2840.712260][ C0] ? __perf_event_task_sched_in+0xbc7/0xdb0 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2840.712260][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2840.712260][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2840.712260][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2840.712260][ C0] __se_sys_futex+0x5cf/0xba0 [ 2840.712260][ C0] __x64_sys_futex+0x6e/0x90 [ 2840.712260][ C0] do_syscall_64+0x9f/0x140 [ 2840.712260][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2840.712260][ C0] RIP: 0033:0x7f529847a01a [ 2840.712260][ C0] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89 [ 2840.712260][ C0] RSP: 002b:00007f5295e16370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca [ 2840.712260][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f529847a01a [ 2840.712260][ C0] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 000055f9c7fa00b0 [ 2840.712260][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001 [ 2840.712260][ C0] R10: 0000000000000001 R11: 0000000000000206 R12: 000055f9c709f520 [ 2840.712260][ C0] R13: 000055f9c7f9fe80 R14: 000055f9c6e71770 R15: 000055f9c7f9fd70 [ 2840.712260][ C0] ---[ end trace f7326eee4ef53868 ]--- [ 2841.577853][ C0] ------------[ cut here ]------------ [ 2841.583534][ C0] WARNING: CPU: 0 PID: 7926 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2841.586361][ C0] Modules linked in: [ 2841.586361][ C0] CPU: 0 PID: 7926 Comm: in:imklog Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2841.586361][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2841.586361][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2841.586361][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2841.586361][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2841.586361][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88812078ddc0 [ 2841.586361][ C0] RDX: 0000000000010000 RSI: 000000000000001c RDI: 0000000000000001 [ 2841.586361][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2841.586361][ C0] R10: 000000004d1d8650 R11: 0000000000000000 R12: 0000000000000000 [ 2841.586361][ C0] R13: 0000000000000000 R14: 000000000000001c R15: ffff88813fc27b00 [ 2841.586361][ C0] FS: 00007f5295e37700(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2841.586361][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2841.586361][ C0] CR2: 000000c00b32c420 CR3: 00000001241c4000 CR4: 00000000001526f0 [ 2841.586361][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2841.586361][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2841.586361][ C0] Call Trace: [ 2841.586361][ C0] [ 2841.586361][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2841.586361][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2841.586361][ C0] __run_hrtimer+0x48b/0xd20 [ 2841.586361][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2841.586361][ C0] ? hrtimer_init+0x570/0x570 [ 2841.586361][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2841.586361][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2841.586361][ C0] [ 2841.586361][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2841.586361][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x62/0x80 [ 2841.586361][ C0] Code: 00 00 41 c6 04 24 00 81 e3 00 02 00 00 41 81 e7 00 02 00 00 48 85 db 74 0a f7 d3 44 21 fb 48 85 db 74 16 4d 85 ff 74 01 fb 5b <41> 5c 41 5e 41 5f 5d c3 e8 21 da b6 f2 eb be 44 89 f7 e8 17 da b6 [ 2841.586361][ C0] RSP: 0018:ffff8881242d78a8 EFLAGS: 00000206 [ 2841.586361][ C0] RAX: ffff888104c565b4 RBX: 0000000000000000 RCX: 00000001050565b4 [ 2841.586361][ C0] RDX: ffff8881050565b4 RSI: 0000000000000200 RDI: ffff8881054565b4 [ 2841.586361][ C0] RBP: ffff8881242d78c0 R08: ffffea000000000f R09: ffff88813fffa000 [ 2841.586361][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffff8881054565b4 [ 2841.586361][ C0] R13: ffff88813fc95840 R14: 0000000000000000 R15: 0000000000000200 [ 2841.586361][ C0] try_to_wake_up+0xadf/0x1540 [ 2841.586361][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2841.586361][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2841.586361][ C0] ? wake_q_add_safe+0xb4/0x1e0 [ 2841.586361][ C0] wake_up_process+0x34/0x40 [ 2841.586361][ C0] wake_up_q+0x5f/0x90 [ 2841.586361][ C0] futex_wake+0xc25/0xc80 [ 2841.586361][ C0] do_futex+0x1c67/0x5d40 [ 2841.586361][ C0] ? __perf_event_task_sched_out+0x2e40/0x2f80 [ 2841.586361][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2841.586361][ C0] ? __msan_metadata_ptr_for_load_4+0x10/0x20 [ 2841.586361][ C0] ? __perf_event_task_sched_in+0xbc7/0xdb0 [ 2841.586361][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2841.586361][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2841.586361][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2841.586361][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2841.586361][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2841.586361][ C0] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 2841.586361][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2841.586361][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2841.586361][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2841.586361][ C0] ? __msan_poison_alloca+0xec/0x110 [ 2841.586361][ C0] __se_sys_futex+0x5cf/0xba0 [ 2841.586361][ C0] __x64_sys_futex+0x6e/0x90 [ 2841.586361][ C0] do_syscall_64+0x9f/0x140 [ 2841.586361][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2841.586361][ C0] RIP: 0033:0x7f529847a01a [ 2841.586361][ C0] Code: 00 00 b8 ca 00 00 00 0f 05 5a 5e c3 0f 1f 40 00 56 52 c7 07 00 00 00 00 81 f6 81 00 00 00 ba 01 00 00 00 b8 ca 00 00 00 0f 05 <5a> 5e c3 0f 1f 00 41 54 41 55 49 89 fc 49 89 f5 48 83 ec 18 48 89 [ 2841.586361][ C0] RSP: 002b:00007f5295e16370 EFLAGS: 00000206 ORIG_RAX: 00000000000000ca [ 2841.586361][ C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f529847a01a [ 2841.586361][ C0] RDX: 0000000000000001 RSI: 0000000000000081 RDI: 000055f9c7fa00b0 [ 2841.586361][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000004000001 [ 2841.586361][ C0] R10: 0000000000000001 R11: 0000000000000206 R12: 000055f9c709f520 [ 2841.586361][ C0] R13: 000055f9c7f9fe80 R14: 000055f9c6e71770 R15: 000055f9c7f9fd70 [ 2841.586361][ C0] ---[ end trace f7326eee4ef53869 ]--- [ 2842.041994][T24952] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3035: comm systemd-udevd: iget: checksum invalid [ 2842.122003][T24953] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3035: comm systemd-udevd: iget: checksum invalid [ 2842.143104][ C0] ------------[ cut here ]------------ [ 2842.143156][ C0] WARNING: CPU: 0 PID: 24953 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2842.143370][ C0] Modules linked in: [ 2842.143432][ C0] CPU: 0 PID: 24953 Comm: systemd-udevd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2842.143558][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2842.143624][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2842.143746][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2842.143859][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2842.143949][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff8880995eddc0 [ 2842.144040][ C0] RDX: 0000000000010000 RSI: 0000000000000022 RDI: 0000000000000001 [ 2842.144117][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2842.144224][ C0] R10: 00000000b56c2fd0 R11: 0000000000000000 R12: 0000000000000000 [ 2842.144300][ C0] R13: 0000000000000000 R14: 0000000000000022 R15: ffff88813fc27b00 [ 2842.144381][ C0] FS: 00007f62171f58c0(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2842.144487][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2842.144578][ C0] CR2: 00007f6215fbf930 CR3: 00000000a9f27000 CR4: 00000000001526f0 [ 2842.144674][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2842.144751][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2842.144832][ C0] Call Trace: [ 2842.144868][ C0] [ 2842.144910][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2842.145058][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2842.145195][ C0] __run_hrtimer+0x48b/0xd20 [ 2842.145366][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2842.145521][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2842.145680][ C0] ? hrtimer_init+0x570/0x570 [ 2842.145824][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2842.145977][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2842.146157][ C0] [ 2842.146199][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2842.146329][ C0] RIP: 0010:console_unlock+0x1929/0x1d70 [ 2842.146469][ C0] Code: db 74 0c 4d 85 ff 75 19 e8 64 45 2d 00 eb 18 8b 7c 24 64 e8 49 36 b0 00 4d 85 ff 74 eb 0f 1f 40 00 e8 4b 45 2d 00 fb 44 89 f0 <34> 01 22 44 24 2f 44 89 f3 0a 5c 24 1f 3c 01 74 10 f6 c3 01 74 21 [ 2842.146552][ C0] RSP: 0018:ffff8880a5752fb0 EFLAGS: 00000293 [ 2842.146637][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8880995eddc0 [ 2842.146726][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2842.146808][ C0] RBP: ffff8880a5753128 R08: ffffffff818eee73 R09: ffff88813fffa000 [ 2842.146908][ C0] R10: 000000008d490c00 R11: 00000000ffffffff R12: 0000000000000000 [ 2842.146994][ C0] R13: ffff8880995ee848 R14: 0000000000000000 R15: 0000000000000200 [ 2842.147067][ C0] ? console_unlock+0x18f3/0x1d70 [ 2842.147208][ C0] ? console_trylock+0x288/0x2c0 [ 2842.147331][ C0] vprintk_emit+0x3cd/0x8b0 [ 2842.147480][ C0] vprintk_default+0x86/0xa0 [ 2842.147614][ C0] vprintk_func+0x2ed/0x2f0 [ 2842.147759][ C0] printk+0x180/0x1cd [ 2842.147893][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2842.148033][ C0] __ext4_error_inode+0x739/0xa70 [ 2842.148218][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2842.148360][ C0] __ext4_iget+0x2190/0x86a0 [ 2842.148519][ C0] ? kfree+0x29/0x11f0 [ 2842.148689][ C0] ext4_lookup+0xc73/0x16b0 [ 2842.148850][ C0] ? ext4_add_entry+0x6ad0/0x6ad0 [ 2842.148974][ C0] path_openat+0x2cbc/0x6be0 [ 2842.149096][ C0] ? prepare_creds+0xae0/0xb00 [ 2842.149267][ C0] ? __se_sys_execve+0xe2/0x110 [ 2842.149467][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2842.149607][ C0] do_filp_open+0x2b8/0x710 [ 2842.149756][ C0] ? kmsan_memcpy_memmove_metadata+0x110/0x2d0 [ 2842.149907][ C0] do_open_execat+0x234/0xbc0 [ 2842.150062][ C0] ? kmsan_internal_set_origin+0x85/0xc0 [ 2842.150209][ C0] bprm_execve+0x725/0xe70 [ 2842.150386][ C0] do_execveat_common+0xa1e/0xc40 [ 2842.150577][ C0] __se_sys_execve+0xe2/0x110 [ 2842.150745][ C0] __x64_sys_execve+0x4a/0x70 [ 2842.150908][ C0] do_syscall_64+0x9f/0x140 [ 2842.151053][ C0] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 2842.151193][ C0] RIP: 0033:0x7f6216044647 [ 2842.151283][ C0] Code: ff 76 e0 f7 d8 64 41 89 01 eb d8 0f 1f 84 00 00 00 00 00 f7 d8 64 41 89 01 eb d7 0f 1f 84 00 00 00 00 00 b8 3b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 21 08 2e 00 f7 d8 64 89 01 48 [ 2842.151395][ C0] RSP: 002b:00007fff23a81778 EFLAGS: 00000207 ORIG_RAX: 000000000000003b [ 2842.151517][ C0] RAX: ffffffffffffffda RBX: 00007fff23a81cc0 RCX: 00007f6216044647 [ 2842.151612][ C0] RDX: 000055de4594ac20 RSI: 00007fff23a81cc0 RDI: 00007fff23a818c0 [ 2842.151660][ C0] RBP: 000000000000000f R08: 000000000000fcff R09: 0000000000000070 [ 2842.151660][ C0] R10: 0000000000000008 R11: 0000000000000207 R12: 00007fff23a81840 [ 2842.151660][ C0] R13: 0000000000000012 R14: 000055de4594ac20 R15: 00007fff23a83290 [ 2842.151660][ C0] ---[ end trace f7326eee4ef5386a ]--- [ 2842.355488][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2842.417298][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2842.428245][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2842.445292][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2842.450385][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2842.933495][ T1] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3048: comm systemd: iget: checksum invalid [ 2843.781987][T24954] IPVS: ftp: loaded support on port[0] = 21 [ 2844.158484][T10899] batman_adv: batadv0: Removing interface: gretap1 [ 2844.291994][T10899] batman_adv: batadv0: Removing interface: gretap2 [ 2844.362357][T10899] batman_adv: batadv0: Removing interface: gretap3 [ 2844.377094][T10899] batman_adv: batadv0: Removing interface: gretap4 [ 2844.861991][T24954] chnl_net:caif_netlink_parms(): no params data found [ 2844.975143][T10899] IPVS: stopping master sync thread 23176 ... [ 2844.985851][T10899] IPVS: stopping backup sync thread 19871 ... [ 2845.045752][T24954] bridge0: port 1(bridge_slave_0) entered blocking state [ 2845.052613][T24954] bridge0: port 1(bridge_slave_0) entered disabled state [ 2845.062004][T24954] device bridge_slave_0 entered promiscuous mode [ 2845.091454][T24954] bridge0: port 2(bridge_slave_1) entered blocking state [ 2845.098013][T24954] bridge0: port 2(bridge_slave_1) entered disabled state [ 2845.108122][T24954] device bridge_slave_1 entered promiscuous mode [ 2845.166936][T24954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 2845.208271][T24954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 2845.274899][T24954] team0: Port device team_slave_0 added [ 2845.304790][T24954] team0: Port device team_slave_1 added [ 2845.398902][T24954] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 2845.405771][T24954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2845.429582][T24954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 2845.461778][T24954] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 2845.467708][T24954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 2845.491570][T24954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 2845.591990][T24954] device hsr_slave_0 entered promiscuous mode [ 2845.932125][ T8888] Bluetooth: hci2: command 0x0409 tx timeout [ 2845.934097][T24954] device hsr_slave_1 entered promiscuous mode [ 2845.949881][T24954] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 2845.956656][T24954] Cannot create hsr debugfs directory [ 2845.977958][T10899] device bridge_slave_0 left promiscuous mode [ 2845.984460][T10899] bridge10: port 1(bridge_slave_0) entered disabled state [ 2846.015825][T10899] device hsr_slave_0 left promiscuous mode [ 2846.022917][T10899] device hsr_slave_1 left promiscuous mode [ 2846.030221][T10899] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 2846.037009][T10899] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 2846.046272][T10899] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 2846.053873][T10899] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 2846.064946][T10899] device bridge_slave_1 left promiscuous mode [ 2846.071484][T10899] bridge0: port 2(bridge_slave_1) entered disabled state [ 2846.088256][T10899] device veth0_macvtap left promiscuous mode [ 2846.093479][T10899] device veth1_vlan left promiscuous mode [ 2846.099424][T10899] device veth0_vlan left promiscuous mode [ 2848.012797][ T9633] Bluetooth: hci2: command 0x041b tx timeout [ 2848.545278][T10899] bond1 (unregistering): Released all slaves [ 2848.700631][T10899] team0 (unregistering): Port device team_slave_1 removed [ 2848.720645][T10899] team0 (unregistering): Port device team_slave_0 removed [ 2848.738124][T10899] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 2848.755610][T10899] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 2848.838653][T10899] bond0 (unregistering): Released all slaves [ 2849.241357][T24954] 8021q: adding VLAN 0 to HW filter on device bond0 [ 2849.269011][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 2849.277958][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 2849.303624][T24954] 8021q: adding VLAN 0 to HW filter on device team0 [ 2849.326992][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 2849.336718][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 2849.345279][T20801] bridge0: port 1(bridge_slave_0) entered blocking state [ 2849.352687][T20801] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2849.367271][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 2849.384936][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 2849.395066][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 2849.404218][T20801] bridge0: port 2(bridge_slave_1) entered blocking state [ 2849.411625][T20801] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2849.459566][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 2849.470005][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 2849.481587][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 2849.491767][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 2849.541991][T24954] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 2849.551394][T24954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 2849.567515][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 2849.576991][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 2849.587208][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 2849.598421][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 2849.607722][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 2849.618001][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 2849.627013][T20801] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 2849.647187][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 2849.693031][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 2849.701022][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2849.736226][T24954] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 2850.071604][T25218] EXT4-fs error: 6 callbacks suppressed [ 2850.071677][T25218] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.093782][ T18] Bluetooth: hci2: command 0x040f tx timeout [ 2850.106158][T25218] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.131808][T25219] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.146822][T25219] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.164899][T25220] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.178690][T25220] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.199143][T25221] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.209615][T25221] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.229677][T25222] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.241082][T25222] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2850.286223][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 2850.294583][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 2850.343376][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 2850.353821][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 2850.370052][T24954] device veth0_vlan entered promiscuous mode [ 2850.377358][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 2850.385790][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 2850.410385][T24954] device veth1_vlan entered promiscuous mode [ 2850.460133][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 2850.467761][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 2850.477102][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 2850.486523][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 2850.509381][T24954] device veth0_macvtap entered promiscuous mode [ 2850.524298][T24954] device veth1_macvtap entered promiscuous mode [ 2850.558186][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 2850.567538][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.577128][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 2850.586547][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.596394][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 2850.605713][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.615640][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 2850.624792][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.636819][T24954] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 2850.644724][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 2850.653952][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 2850.663020][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 2850.672179][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 2850.691509][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 2850.700463][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.710147][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 2850.720643][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.730396][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 2850.740214][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.749984][T24954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 2850.759933][T24954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 2850.772748][T24954] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 2850.781825][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 2850.791165][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 2851.076636][T10899] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2851.083577][T10899] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2851.100005][ T8888] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 2851.162929][T21789] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 2851.171332][T21789] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 2851.187124][ T8888] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 2851.303959][ T35] audit: type=1326 audit(1619062729.141:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25244 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 [ 2852.134611][ T35] audit: type=1326 audit(1619062729.972:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25244 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 03:38:50 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x4, 0x7f, 0x1, 0x1}, {0x2, 0x2}, {0x6, 0x0, 0x5, 0x20}]}) 03:38:50 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ioctl$SG_SCSI_RESET(r0, 0x2286, 0x816d000) clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) ioctl$SG_SCSI_RESET(r0, 0x2284, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x14, 0x0, 0x10}, 0x14}}, 0x41) r1 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0x3c1, 0x3, 0x498, 0x2fc, 0x59000000, 0x294, 0x2fc, 0x294, 0x3d0, 0x378, 0x378, 0x3d0, 0x378, 0x3, 0x0, {[{{@uncond, 0x0, 0x2b4, 0x2fc, 0x52020000, {}, [@common=@inet=@hashlimit2={{0x150}, {'veth1\x00', {0xe2, 0x0, 0x64, 0x4, 0x0, 0x1, 0x402}}}, @common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "796268880ccc1ead08db3b000000af4f9b88574f7f1bf77d65420c28387d342331a24364f67cdd5531e34b768a1b8e5a06020a619a8153fb71779c857f8a000f42a2770770960409510115cbbdcf01572fb35d1e47674b41b6c4a3dfe224559d8763d5f9bc9fbae3ee50f987a1ab15581079624c1d69074c91660b783b95127a", 0x76}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}, {{@uncond, 0x0, 0xa4, 0xd4}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x4f4) 03:38:50 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getpid() perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x10000}, 0x0, 0xf, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c) listen(r0, 0x10001) r1 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) [ 2852.178018][T20801] Bluetooth: hci2: command 0x0419 tx timeout 03:38:50 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000100)=0x2e4, 0x4) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x5000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c910ccab00220bc31d41e44f96f67971b8ed8a3dc9eb4133a903d58da02dd1eca653150422bc91e9585fbf8", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xe0}, {&(0x7f00000012c0), 0xd40}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6f8968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9af7278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) 03:38:50 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={&(0x7f0000000000), 0xc, &(0x7f0000000140)={&(0x7f0000000100)=@ipmr_newroute={0x34, 0x18, 0x1, 0x0, 0x0, {0x80, 0x20}, [@RTA_GATEWAY={0x8, 0x5, @initdev={0xac, 0x1e, 0x0, 0x0}}, @RTA_PRIORITY={0xfffffffffffffd9a}, @RTA_IIF={0x8}]}, 0x34}}, 0x0) 03:38:50 executing program 1: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}}, 0x0) [ 2852.406177][T25253] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'. [ 2852.479482][T25257] xt_CT: You must specify a L4 protocol and not use inversions on it 03:38:50 executing program 1: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}}, 0x0) 03:38:50 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000100)=0x2e4, 0x4) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x5000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c910ccab00220bc31d41e44f96f67971b8ed8a3dc9eb4133a903d58da02dd1eca653150422bc91e9585fbf8", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xe0}, {&(0x7f00000012c0), 0xd40}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6f8968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9af7278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) 03:38:50 executing program 0: r0 = syz_open_dev$vbi(&(0x7f00000001c0), 0x2, 0x2) ioctl$VIDIOC_G_DV_TIMINGS(r0, 0xc0845658, &(0x7f0000000740)) [ 2852.928544][ T35] audit: type=1326 audit(1619062730.759:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25261 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 [ 2852.931971][ C0] ------------[ cut here ]------------ [ 2852.931971][ C0] WARNING: CPU: 0 PID: 35 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2852.931971][ C0] Modules linked in: [ 2852.931971][ C0] CPU: 0 PID: 35 Comm: kauditd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2852.931971][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2852.931971][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2852.931971][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2852.931971][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2852.931971][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88810241be80 [ 2852.931971][ C0] RDX: 0000000080010000 RSI: 0000000000000002 RDI: 0000000000000001 [ 2852.931971][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2852.931971][ C0] R10: 000000004d1d8650 R11: ffff88813fc05ff8 R12: 0000000000000000 [ 2852.931971][ C0] R13: 0000000000000000 R14: 0000000000000002 R15: ffff88813fc27b00 [ 2852.931971][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2852.931971][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2852.931971][ C0] CR2: 000000000816d410 CR3: 0000000183526000 CR4: 00000000001526f0 [ 2852.931971][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2852.931971][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2852.931971][ C0] Call Trace: [ 2852.931971][ C0] [ 2852.931971][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2852.931971][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2852.931971][ C0] __run_hrtimer+0x48b/0xd20 [ 2852.931971][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2852.931971][ C0] ? hrtimer_init+0x570/0x570 [ 2852.931971][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2852.931971][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2852.931971][ C0] [ 2852.952170][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2852.952289][ C0] RIP: 0010:console_unlock+0x1929/0x1d70 [ 2852.952289][ C0] Code: db 74 0c 4d 85 ff 75 19 e8 64 45 2d 00 eb 18 8b 7c 24 64 e8 49 36 b0 00 4d 85 ff 74 eb 0f 1f 40 00 e8 4b 45 2d 00 fb 44 89 f0 <34> 01 22 44 24 2f 44 89 f3 0a 5c 24 1f 3c 01 74 10 f6 c3 01 74 21 [ 2852.952289][ C0] RSP: 0018:ffff8881024e7890 EFLAGS: 00000293 [ 2852.952289][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88810241be80 [ 2852.952289][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2852.952289][ C0] RBP: ffff8881024e7a08 R08: ffffffff818eee73 R09: ffff88813fffa000 [ 2852.952289][ C0] R10: 000000008d490c00 R11: 00000000ffffffff R12: 0000000000000000 [ 2852.952289][ C0] R13: ffff88810241c908 R14: 0000000000000000 R15: 0000000000000200 [ 2852.952289][ C0] ? console_unlock+0x18f3/0x1d70 [ 2852.952289][ C0] ? console_trylock+0x288/0x2c0 [ 2852.952289][ C0] vprintk_emit+0x3cd/0x8b0 [ 2852.952289][ C0] vprintk_default+0x86/0xa0 [ 2852.952289][ C0] vprintk_func+0x2ed/0x2f0 [ 2852.952289][ C0] printk+0x180/0x1cd [ 2852.952289][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2852.952289][ C0] kauditd_hold_skb+0x30b/0x380 [ 2852.952289][ C0] ? auditd_conn_free+0x1c0/0x1c0 [ 2852.952289][ C0] ? kauditd_send_queue+0x840/0x840 [ 2852.952289][ C0] kauditd_send_queue+0x1f4/0x840 [ 2852.952289][ C0] ? auditd_conn_free+0x1c0/0x1c0 [ 2852.952289][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2852.952289][ C0] ? kauditd_send_queue+0x840/0x840 [ 2852.952289][ C0] kauditd_thread+0xbcc/0x1260 [ 2852.952289][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2852.952289][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2852.952289][ C0] ? init_wait_entry+0x190/0x190 [ 2852.952289][ C0] kthread+0x521/0x560 [ 2852.952289][ C0] ? audit_log+0x310/0x310 [ 2852.952289][ C0] ? kthread_blkcg+0x110/0x110 [ 2852.952289][ C0] ret_from_fork+0x1f/0x30 [ 2852.952289][ C0] ---[ end trace f7326eee4ef5386b ]--- 03:38:51 executing program 4: r0 = socket(0x10, 0x3, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r1, &(0x7f0000005400)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$nl_route_sched(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{}, 0x5, 0x0, 0x0, 0x9, 0xce6}}}]}, 0x78}}, 0x0) 03:38:51 executing program 1: r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'veth0_to_bridge\x00'}}]}, 0x38}}, 0x0) 03:38:51 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x4, 0x7f, 0x1, 0x1}, {0x2, 0x2}, {0x6, 0x0, 0x5, 0x20}]}) 03:38:51 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) socket$packet(0x11, 0x2, 0x300) r1 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x5}, 0x1c) setsockopt$inet6_udp_int(r1, 0x11, 0x67, &(0x7f0000000100)=0x2e4, 0x4) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r1, &(0x7f0000004540)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) sendmmsg(r1, &(0x7f0000004d80)=[{{0x0, 0x5000000, &(0x7f0000001500)=[{&(0x7f0000000040)="d3622fe131479cee20fb607a9585dc0b411519fd3b65066522d73df58b9257b566c6fc626776defc3a2e249c910ccab00220bc31d41e44f96f67971b8ed8a3dc9eb4133a903d58da02dd1eca653150422bc91e9585fbf8", 0x57}, {&(0x7f00000011c0)="7cc3be44ec866303c11f9ec49c2fe80d4ccef580f3bf717b5e129f1dc7766fdf864b7bc35924f34bb5fd1dd89172a4b0db90eea51bdfec78bb53e8d41773cba7f1305a8a40b7368445a71ef7870273f1544930baf73a8bfa6ece09d54376b821b65fdf1e0704f1f3c5a823fa67f635159af010053f5b909f8e944c43d6fb1c4fca639b470d3e6ad140d0838958ecf0fc98a780205474fdeb93a97d27b4f3314a9585129aaec893d7fe36d87fd746841ac5c60b31e1732a1a3ca0afcc4068cdde63b142700c563c1ab59dc0b7200723bf21c694583ed8fed1b2bc5c204df3812c223ce0de2f40b69e7f4e8ba1c3ebc31de2f4190e3f1ceb", 0xe0}, {&(0x7f00000012c0), 0xd40}, {&(0x7f0000000280)="0c22fcc306e8a4d628dc3f33cd1758b784d34ef62ecd943b96c5573b05e34886b55503a08eeac42aafc204e9fec654b4b0853f4c32d8d6f8968a96b81710a9ed49ae96ea22eb07accdc99ed31fb48b921b4c9af7278829eb32247169da3593e5e73371e82e3558cd87b9c876b91e091e933496ae3a6b5a00a79f50110980c83af2fd44e0f08908f806be4146080def894a3ac87c3d214e32b0e031c8873b6ed3cdb9c160ee236576cb5a749ee356d4f5df961b35ec3667bcfa641e2c812a5eefbd78546783b6bd280dc4ec1cd015bee7d07f0993d6", 0xd5}, {&(0x7f0000001440)="7b18908bcd34b2f4eef2193c5f89bb79551b5d7000ccc31628374b03e7f0b8bbfe45", 0x22}], 0x5, 0x0, 0x0, 0xffffffe0}}], 0x400000000000132, 0x4000000) 03:38:51 executing program 0: r0 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000140)={0x41}, 0x10) bind$tipc(r0, 0x0, 0x0) sendmsg$tipc(r0, &(0x7f00000001c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0) 03:38:52 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getpid() perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x10000}, 0x0, 0xf, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c) listen(r0, 0x10001) r1 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) 03:38:52 executing program 4: r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000000c0)="2e000000120081aee4050cdf9a0e00fa378b25db4cb904e473730e55cff26d1b0e001d0000000000000005efccd7", 0x2e}], 0x1, 0x0, 0x0, 0x88a8ffff00000000}, 0x0) recvmsg(r0, &(0x7f000001ed80)={0x0, 0x0, &(0x7f000001ed00)=[{&(0x7f0000001600)=""/4099, 0x1003}, {&(0x7f0000000300)=""/182, 0xb6}, {&(0x7f000001e980)=""/199, 0xc7}, {&(0x7f0000000200)=""/217, 0xd9}, {&(0x7f000001eb80)=""/246, 0xf6}], 0x5}, 0x0) recvmsg$kcm(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0}, 0x0) 03:38:52 executing program 1: perf_event_open(&(0x7f0000000280)={0x2, 0x70, 0x5b, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000040), 0xffffffffffffffff) [ 2854.741480][T25289] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 2854.748544][T25289] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 2854.790892][T25289] netlink: 'syz-executor.4': attribute type 29 has an invalid length. 03:38:52 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)={0x9, 0xc, 0x6d, 0x8000000000000002, 0x2, 0x1}, 0x40) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000440), &(0x7f0000000540), 0x800, r0}, 0x38) [ 2854.858917][T25291] netlink: 'syz-executor.4': attribute type 29 has an invalid length. 03:38:52 executing program 5: io_setup(0x8, &(0x7f0000000000)=0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) io_submit(r0, 0x1, &(0x7f0000000500)=[&(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) io_pgetevents(r0, 0x0, 0x0, 0x0, 0x0, 0x0) [ 2854.920675][T25289] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 2854.927809][T25289] netlink: 'syz-executor.4': attribute type 29 has an invalid length. [ 2854.941523][T25291] netlink: 'syz-executor.4': attribute type 29 has an invalid length. 03:38:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000027000100000000000000000006"], 0x14}}, 0x0) 03:38:53 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000002100)='./file0\x00', &(0x7f0000002000), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000004340)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f00000069c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002480)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x0, 0x0) ioctl$FIBMAP(r2, 0x401870cc, &(0x7f00000020c0)) 03:38:53 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000180)={0x3, &(0x7f0000000100)=[{0x4, 0x7f, 0x1, 0x1}, {0x2, 0x2}, {0x6, 0x0, 0x5, 0x20}]}) [ 2855.531965][ T35] audit: type=1326 audit(1619062732.078:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25277 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 03:38:53 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@call={0x6b, 0x11, 0x16}]}, &(0x7f00000000c0)='GPL\x00', 0x4, 0xac, &(0x7f0000000200)=""/4096, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) 03:38:53 executing program 0: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = gettid() clone(0x3102002dfe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) rt_sigtimedwait(&(0x7f00000000c0), 0x0, &(0x7f0000000040)={0x0, 0x1c9c380}, 0x8) ptrace$setopts(0x4206, r0, 0x0, 0x200044) wait4(0x0, 0x0, 0x0, 0x0) io_setup(0x2, &(0x7f0000000080)=0x0) io_destroy(r1) [ 2855.786980][ T35] audit: type=1326 audit(1619062733.623:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25303 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 03:38:53 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x39000, 0x0) write(r2, &(0x7f0000000100)="b1", 0x2000) write$binfmt_elf64(r2, &(0x7f0000002280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) sendto(r1, 0x0, 0x0, 0x0, 0x0, 0x0) [ 2855.829350][T25304] sd 0:0:1:0: PR command failed: 134217730 [ 2855.834569][T25304] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 2855.841528][T25304] sd 0:0:1:0: Add. Sense: Invalid command operation code [ 2855.895938][ T4778] EXT4-fs error: 6 callbacks suppressed [ 2855.896008][ T4778] EXT4-fs error (device sda1): ext4_lookup:1707: inode #915: comm systemd-timesyn: iget: checksum invalid 03:38:57 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000002100)='./file0\x00', &(0x7f0000002000), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000004340)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f00000069c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002480)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x0, 0x0) ioctl$FIBMAP(r2, 0x401870cc, &(0x7f00000020c0)) 03:38:58 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getpid() perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x10000}, 0x0, 0xf, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c) listen(r0, 0x10001) r1 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) 03:38:58 executing program 1: sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@deltclass={0x50, 0x29, 0x0, 0x0, 0x0, {}, [@tclass_kind_options=@c_hfsc={{0x9}, {0x14, 0x2, [@TCA_HFSC_RSC={0x10}]}}, @tclass_kind_options=@c_netem={0xa}]}, 0x50}}, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x34) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r2}]}, 0x3c}}, 0x0) 03:38:58 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x39000, 0x0) write(r2, &(0x7f0000000100)="b1", 0x2000) write$binfmt_elf64(r2, &(0x7f0000002280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) sendto(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:58 executing program 0: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=r0, 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r1, 0x10, &(0x7f0000000680)={&(0x7f0000000600)=""/70, 0x20000646}}, 0x10) 03:38:58 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000003380)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) syz_mount_image$ocfs2(&(0x7f0000002140), &(0x7f0000002180)='./file0\x00', 0x401, 0x2, &(0x7f0000003280)=[{&(0x7f00000021c0)="8b460f231f14b0677842fbe22dc80f637db58fe737517e72466d01a01f6e633a72bc3ddeac24187d583c9b09c6b6b69834e646d589d84b7a57ef7f65385b67043f6617d0eae2d620a8ac6c48ba9b37f127b2f14d6e82d37dd733dea8b32c44c65b5c91337028910fca5d6e9df57be9a891759ea72dc5eb0aa6090ba53dca72d1148c65dce2ad0318", 0x88, 0xffffffff}, {&(0x7f0000002280)="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", 0x1000, 0x5}], 0x4408, &(0x7f00000032c0)={[{'/dev/cuse\x00'}, {'/dev/zero\x00'}], [{@subj_user={'subj_user', 0x3d, '/dev/zero\x00'}}, {@obj_user={'obj_user', 0x3d, '-^&+}'}}, {@fowner_eq}, {@fowner_lt={'fowner<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x9057}}, {@obj_type={'obj_type', 0x3d, '/dev/cuse\x00'}}]}) [ 2856.961626][T25328] sd 0:0:1:0: PR command failed: 134217730 [ 2856.966637][T25328] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 2856.973596][T25328] sd 0:0:1:0: Add. Sense: Invalid command operation code 03:38:59 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000002100)='./file0\x00', &(0x7f0000002000), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000004340)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f00000069c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002480)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x0, 0x0) ioctl$FIBMAP(r2, 0x401870cc, &(0x7f00000020c0)) 03:38:59 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000b7a000)={0x9, 0x4, &(0x7f0000000240)=@framed={{}, [@alu={0x8000000201a7fe3, 0x0, 0x7, 0x61, 0x0, 0x29}]}, &(0x7f0000000000)='GPL\x00', 0x5, 0x3e2, &(0x7f00001a7f05)=""/251}, 0x34) 03:38:59 executing program 0: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=r0, 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r1, 0x10, &(0x7f0000000680)={&(0x7f0000000600)=""/70, 0x20000646}}, 0x10) [ 2857.718226][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2857.777841][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:38:59 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x39000, 0x0) write(r2, &(0x7f0000000100)="b1", 0x2000) write$binfmt_elf64(r2, &(0x7f0000002280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) sendto(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 03:38:59 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000003380)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) syz_mount_image$ocfs2(&(0x7f0000002140), &(0x7f0000002180)='./file0\x00', 0x401, 0x2, &(0x7f0000003280)=[{&(0x7f00000021c0)="8b460f231f14b0677842fbe22dc80f637db58fe737517e72466d01a01f6e633a72bc3ddeac24187d583c9b09c6b6b69834e646d589d84b7a57ef7f65385b67043f6617d0eae2d620a8ac6c48ba9b37f127b2f14d6e82d37dd733dea8b32c44c65b5c91337028910fca5d6e9df57be9a891759ea72dc5eb0aa6090ba53dca72d1148c65dce2ad0318", 0x88, 0xffffffff}, {&(0x7f0000002280)="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", 0x1000, 0x5}], 0x4408, &(0x7f00000032c0)={[{'/dev/cuse\x00'}, {'/dev/zero\x00'}], [{@subj_user={'subj_user', 0x3d, '/dev/zero\x00'}}, {@obj_user={'obj_user', 0x3d, '-^&+}'}}, {@fowner_eq}, {@fowner_lt={'fowner<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x9057}}, {@obj_type={'obj_type', 0x3d, '/dev/cuse\x00'}}]}) 03:38:59 executing program 1: syz_io_uring_setup(0x2a24, &(0x7f00000001c0)={0x0, 0xfffffffd, 0x8}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0) [ 2858.171566][T25353] sd 0:0:1:0: PR command failed: 134217730 [ 2858.176767][T25353] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 2858.183715][T25353] sd 0:0:1:0: Add. Sense: Invalid command operation code 03:39:00 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000003380)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) syz_mount_image$ocfs2(&(0x7f0000002140), &(0x7f0000002180)='./file0\x00', 0x401, 0x2, &(0x7f0000003280)=[{&(0x7f00000021c0)="8b460f231f14b0677842fbe22dc80f637db58fe737517e72466d01a01f6e633a72bc3ddeac24187d583c9b09c6b6b69834e646d589d84b7a57ef7f65385b67043f6617d0eae2d620a8ac6c48ba9b37f127b2f14d6e82d37dd733dea8b32c44c65b5c91337028910fca5d6e9df57be9a891759ea72dc5eb0aa6090ba53dca72d1148c65dce2ad0318", 0x88, 0xffffffff}, {&(0x7f0000002280)="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", 0x1000, 0x5}], 0x4408, &(0x7f00000032c0)={[{'/dev/cuse\x00'}, {'/dev/zero\x00'}], [{@subj_user={'subj_user', 0x3d, '/dev/zero\x00'}}, {@obj_user={'obj_user', 0x3d, '-^&+}'}}, {@fowner_eq}, {@fowner_lt={'fowner<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x9057}}, {@obj_type={'obj_type', 0x3d, '/dev/cuse\x00'}}]}) 03:39:00 executing program 3: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) getpid() perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x400, 0x5, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x5}, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x10000}, 0x0, 0xf, 0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e23}, 0x1c) listen(r0, 0x10001) r1 = socket$inet6_sctp(0xa, 0x800000000000001, 0x84) bind$inet6(r1, &(0x7f0000000280)={0xa, 0x0, 0xfffffffb, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000200)=[@in6={0xa, 0x0, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r1, 0x84, 0x6b, &(0x7f000055bfe4)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) 03:39:00 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000002100)='./file0\x00', &(0x7f0000002000), 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r0, &(0x7f0000004340)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50) syz_fuse_handle_req(r0, &(0x7f0000000000)="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", 0x2000, &(0x7f00000069c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000002480)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0}) r2 = openat(0xffffffffffffff9c, &(0x7f0000002040)='./file0/file0\x00', 0x0, 0x0) ioctl$FIBMAP(r2, 0x401870cc, &(0x7f00000020c0)) 03:39:00 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r2, 0x0, 0x39000, 0x0) write(r2, &(0x7f0000000100)="b1", 0x2000) write$binfmt_elf64(r2, &(0x7f0000002280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78) sendto(r1, 0x0, 0x0, 0x0, 0x0, 0x0) 03:39:00 executing program 1: r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x800000000009031, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000700)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x0, 0x0, 0x0, @str='\x17\x00'}]}, 0x1c}}, 0x0) 03:39:00 executing program 0: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=r0, 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r1, 0x10, &(0x7f0000000680)={&(0x7f0000000600)=""/70, 0x20000646}}, 0x10) 03:39:00 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000003380)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) syz_mount_image$ocfs2(&(0x7f0000002140), &(0x7f0000002180)='./file0\x00', 0x401, 0x2, &(0x7f0000003280)=[{&(0x7f00000021c0)="8b460f231f14b0677842fbe22dc80f637db58fe737517e72466d01a01f6e633a72bc3ddeac24187d583c9b09c6b6b69834e646d589d84b7a57ef7f65385b67043f6617d0eae2d620a8ac6c48ba9b37f127b2f14d6e82d37dd733dea8b32c44c65b5c91337028910fca5d6e9df57be9a891759ea72dc5eb0aa6090ba53dca72d1148c65dce2ad0318", 0x88, 0xffffffff}, {&(0x7f0000002280)="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", 0x1000, 0x5}], 0x4408, &(0x7f00000032c0)={[{'/dev/cuse\x00'}, {'/dev/zero\x00'}], [{@subj_user={'subj_user', 0x3d, '/dev/zero\x00'}}, {@obj_user={'obj_user', 0x3d, '-^&+}'}}, {@fowner_eq}, {@fowner_lt={'fowner<', 0xee00}}, {@fsmagic={'fsmagic', 0x3d, 0x9057}}, {@obj_type={'obj_type', 0x3d, '/dev/cuse\x00'}}]}) [ 2859.164810][T25374] sd 0:0:1:0: PR command failed: 134217730 [ 2859.171320][T25374] sd 0:0:1:0: Sense Key : Illegal Request [current] [ 2859.177128][T25374] sd 0:0:1:0: Add. Sense: Invalid command operation code 03:39:01 executing program 5: r0 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000080)={0x0, "698bc1ac265f013d5cf5ecefb931d9b66bb2388de497c591f1a63f9381f681c5b43073716800f505119df66dda47e602caafaab4ba91cc29ca4fbdf61cda4179"}, 0x48, 0xfffffffffffffffd) keyctl$unlink(0x5, r0, 0x0) add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000080)={0x0, "698bc1ac265f013d5cf5ecefb931d9b66bb2388de497c591f1a63f9381f681c5b43073716800f505119df66dda47e602caafaab4ba91cc29ca4fbdf61cda4179"}, 0x48, 0xfffffffffffffffd) 03:39:01 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCDIFADDR(r0, 0x8936, &(0x7f0000000000)={@mcast1, 0x1200076}) 03:39:01 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000007c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b423cdacfa7e32fe0331368b2264f9c504c1f1f695b4ca5b5ab9020000005515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e4154de8896c589e882ea173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f945357ac35da860e8efb46f2b2a3e31df11dc8e3c614934ce5c87a51f6489b7fd74186200e8d10ba2b3976a43ac006b690d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b4234f4726ea018c0ed921a0c490cdacfa0700000031368b2264f9c504c1f1f695b4ca5b7413e2e9871c5515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f9453559c35da860e8efb45d29e0"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r1}, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) 03:39:02 executing program 0: bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, 0x0}, 0x8) r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000040)=r0, 0x4) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000006c0)={r1, 0x10, &(0x7f0000000680)={&(0x7f0000000600)=""/70, 0x20000646}}, 0x10) 03:39:02 executing program 4: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) lsetxattr$security_evm(0x0, 0x0, 0x0, 0x46, 0x0) clone(0x3102001ffe, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$9p_unix(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f0000000580)={'trans=unix,', {[], [{@smackfsfloor={'smackfsfloor', 0x3d, '-#%$:--\''}}]}}) 03:39:02 executing program 5: r0 = syz_open_dev$swradio(&(0x7f0000000100), 0x1, 0x2) ioctl$VIDIOC_G_FREQUENCY(r0, 0xc02c5638, &(0x7f0000000400)={0x1}) [ 2860.909141][T25407] 9pnet: p9_fd_create_unix (25407): problem connecting socket: ./file0: -111 03:39:02 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000007c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b423cdacfa7e32fe0331368b2264f9c504c1f1f695b4ca5b5ab9020000005515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e4154de8896c589e882ea173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f945357ac35da860e8efb46f2b2a3e31df11dc8e3c614934ce5c87a51f6489b7fd74186200e8d10ba2b3976a43ac006b690d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b4234f4726ea018c0ed921a0c490cdacfa0700000031368b2264f9c504c1f1f695b4ca5b7413e2e9871c5515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f9453559c35da860e8efb45d29e0"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r1}, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) 03:39:03 executing program 4: sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, 0x0}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="7400000010000104142dfcffffff00feffad1586", @ANYRES32=r1, @ANYBLOB="00000400000000205400128011000100628969646765000000007665000000023c0005800500190002000000050001"], 0x74}, 0x1, 0x88a8ffff}, 0x0) r2 = socket(0x10, 0x8000000000000003, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x40000000000024a, 0x0) 03:39:03 executing program 5: syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @local, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "3c9dde", 0x4c, 0x2f, 0x0, @private0, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x0, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [], "e7d4"}}}}}}}, 0x0) [ 2861.550614][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2861.602328][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2861.640316][T25419] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'. 03:39:03 executing program 1: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r1, &(0x7f0000000000)=[{&(0x7f0000000140)="580000001400", 0x6}], 0x1) r2 = openat$zero(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r3, 0x0) preadv(r2, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) splice(r0, 0x0, r4, 0x0, 0x5, 0x0) 03:39:03 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)=ANY=[@ANYBLOB="4800000010000507000000000000000000000400", @ANYRES32=r4, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000013c0)=ANY=[@ANYBLOB="500000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="01000000000000002800128009000100766c616e000000001800028006000100040000000c0002000c0000000d00000008000500", @ANYRES32=r4], 0x50}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x58, 0x10, 0x581, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6, 0x1, 0x20}, @IFLA_VLAN_FLAGS={0xc, 0x2, {0x1c, 0xf}}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x58}}, 0x0) 03:39:03 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000001c0)=@filter={'filter\x00', 0x50, 0x4, 0x384, 0xf8, 0x1d0, 0x0, 0x1d0, 0x1dc, 0x3a8, 0x348, 0x348, 0x348, 0x3a8, 0x4, 0x0, {[{{@ipv6={@mcast1, @loopback={0x0, 0x8a00}, [], [], 'sit0\x00', 'veth0\x00'}, 0x0, 0xa4, 0xc8}, @REJECT={0x24}}, {{@ipv6={@remote, @remote, [], [], 'macvlan1\x00', 'geneve0\x00'}, 0x0, 0xa4, 0xe4}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xa4, 0x110}, @common=@unspec=@NFLOG={0x6c, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "20390d5191ef6c3e476b0cc0f829610aab687a97ccc06ba96316e8049485430074ac887ae5d484ca881bc1097c5f159057e2d69efbfac943fccefb7564dc749c"}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x3e0) 03:39:03 executing program 5: syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @local, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "3c9dde", 0x4c, 0x2f, 0x0, @private0, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x0, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [], "e7d4"}}}}}}}, 0x0) 03:39:03 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000007c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b423cdacfa7e32fe0331368b2264f9c504c1f1f695b4ca5b5ab9020000005515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e4154de8896c589e882ea173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f945357ac35da860e8efb46f2b2a3e31df11dc8e3c614934ce5c87a51f6489b7fd74186200e8d10ba2b3976a43ac006b690d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b4234f4726ea018c0ed921a0c490cdacfa0700000031368b2264f9c504c1f1f695b4ca5b7413e2e9871c5515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f9453559c35da860e8efb45d29e0"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r1}, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) 03:39:03 executing program 4: r0 = socket(0x2, 0x3, 0x1) sendmmsg$inet(r0, &(0x7f0000000780)=[{{&(0x7f0000000000)={0x2, 0x0, @empty}, 0x10, &(0x7f00000012c0)=[{&(0x7f0000000040)="ac20", 0x2}], 0x1}}, {{&(0x7f0000000080), 0x10, &(0x7f0000000240)=[{&(0x7f00000000c0)="cde8", 0x2}], 0x300}}], 0x2, 0x8a00) [ 2862.418433][T25433] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 03:39:04 executing program 3: socket$packet(0x11, 0x0, 0x300) syz_emit_ethernet(0xb5, &(0x7f0000000240)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@llc_tr={0x11, {@llc={0xff, 0x7e, '\x00\x00', "2fabd076f51cea04ac4eddc2b32ec4c73b786ff42708d6392637cfda9a495503693fab720dd970ca6f5fdde0d0ec6bf7ea64c7090520cae081b7c335c43c7f817ed894121bdb6eb3e5c1257cbb9c306689d1e6d16e760fd2d3443af1ee8f7c80986db093cddca28a35ceda2a2cf5f128797be278ea3a8592eab7464d9a4579fd4758729ffbe273bdc9ce1366a0122fa5423756c453ea2150fd60ac6623be79de3d652f"}}}}}, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000340)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x0, 0x1}, 0x1a, 0x0, 0x0, 0x0, "c7d9167335576a69d42f6b7d98da72bb7f40b03a27413d3cfeb38282790a2472d0cfa2cbd481030aa0a176c4ebbe9641abdbe3e83fa4c052f851101986fc73fa"}}}}, 0x0) r2 = openat$nvram(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@rand_addr=0x64010100, @loopback, 0x0, 0x1, [@broadcast]}, 0x14) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0xf0}, [@IFLA_MASTER={0x8, 0x4, r3}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 03:39:04 executing program 2: r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000007c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b423cdacfa7e32fe0331368b2264f9c504c1f1f695b4ca5b5ab9020000005515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e4154de8896c589e882ea173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f945357ac35da860e8efb46f2b2a3e31df11dc8e3c614934ce5c87a51f6489b7fd74186200e8d10ba2b3976a43ac006b690d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000180)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a505000000007751e8ba639a7cf438cca555fedbe9d8f3b4234f4726ea018c0ed921a0c490cdacfa0700000031368b2264f9c504c1f1f695b4ca5b7413e2e9871c5515b0e1a38d8665522be18bd10a48b043ccc42646d25dfd73d06d7535f7866907dc6751dfb265a0c5ccae669e173a649c1cfd6587d452d64e7cc957d77578f4c3523513ec9a29e2656a481cc2245d828d5521f9453559c35da860e8efb45d29e0"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='skb_copy_datagram_iovec\x00', r1}, 0x10) syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) 03:39:04 executing program 4: mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1000, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x805, 0x0) 03:39:04 executing program 5: syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @local, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "3c9dde", 0x4c, 0x2f, 0x0, @private0, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x0, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [], "e7d4"}}}}}}}, 0x0) [ 2862.772933][T25433] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'. 03:39:05 executing program 0: r0 = syz_io_uring_setup(0x1821, &(0x7f0000000180), &(0x7f0000ee8000/0x3000)=nil, &(0x7f00006d4000/0x1000)=nil, &(0x7f0000000380)=0x0, &(0x7f0000000040)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x1000, 0xffffffffff7ffffc, 0x0}, 0x0) io_uring_enter(r0, 0x55bc, 0x0, 0x0, 0x0, 0x0) 03:39:05 executing program 3: socket$packet(0x11, 0x0, 0x300) syz_emit_ethernet(0xb5, &(0x7f0000000240)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@llc_tr={0x11, {@llc={0xff, 0x7e, '\x00\x00', "2fabd076f51cea04ac4eddc2b32ec4c73b786ff42708d6392637cfda9a495503693fab720dd970ca6f5fdde0d0ec6bf7ea64c7090520cae081b7c335c43c7f817ed894121bdb6eb3e5c1257cbb9c306689d1e6d16e760fd2d3443af1ee8f7c80986db093cddca28a35ceda2a2cf5f128797be278ea3a8592eab7464d9a4579fd4758729ffbe273bdc9ce1366a0122fa5423756c453ea2150fd60ac6623be79de3d652f"}}}}}, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000340)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x0, 0x1}, 0x1a, 0x0, 0x0, 0x0, "c7d9167335576a69d42f6b7d98da72bb7f40b03a27413d3cfeb38282790a2472d0cfa2cbd481030aa0a176c4ebbe9641abdbe3e83fa4c052f851101986fc73fa"}}}}, 0x0) r2 = openat$nvram(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@rand_addr=0x64010100, @loopback, 0x0, 0x1, [@broadcast]}, 0x14) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0xf0}, [@IFLA_MASTER={0x8, 0x4, r3}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 03:39:05 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP6T_SO_GET_INFO(r0, 0x29, 0x40, 0x0, &(0x7f00000000c0)) 03:39:05 executing program 5: syz_emit_ethernet(0x86, &(0x7f0000000000)={@broadcast, @local, @val={@void}, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "3c9dde", 0x4c, 0x2f, 0x0, @private0, @local, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x6558, 0x0, 0x0, [0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0, 0x0]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [], "e7d4"}}}}}}}, 0x0) 03:39:05 executing program 2: r0 = syz_open_dev$video4linux(&(0x7f00000043c0), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r0, 0xc0305602, &(0x7f0000000000)={0x0, 0x5}) 03:39:05 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0) unshare(0x8000000) r1 = mq_open(&(0x7f000084dff0)='!selancx\xa5\x00\x00\x00nu\\\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x3}) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r1, &(0x7f0000000180)=""/204, 0xcc, 0x20000180, 0x0) 03:39:06 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800002, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0) r1 = socket(0x11, 0x800000003, 0x0) bind(r1, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f742e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffffc654"}, 0x80) getsockname$packet(r1, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000140)=0x14) r3 = socket(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000180)=@newqdisc={0x30, 0x24, 0xd3b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq={{0x7}, {0x4}}]}, 0x30}}, 0x0) 03:39:06 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'lo\x00'}, @FRA_FLOW={0x8}]}, 0x38}}, 0x0) 03:39:06 executing program 5: r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)=@newqdisc={0x14c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_choke={{0xb}, {0x11c, 0x2, [@TCA_CHOKE_STAB={0x104, 0x2, "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"}, @TCA_CHOKE_PARMS={0x14}]}}]}, 0x14c}}, 0x0) 03:39:06 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=@newtaction={0x488, 0x30, 0x1, 0x0, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x0, {0x7, 0x1, 0x0, 0x0, 0x0, 0x100}}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x488}}, 0x0) [ 2864.837528][T25492] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2864.899634][T25492] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2865.146407][T25499] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2865.186951][T25499] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid 03:39:07 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0) unshare(0x8000000) r1 = mq_open(&(0x7f000084dff0)='!selancx\xa5\x00\x00\x00nu\\\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x3}) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r1, &(0x7f0000000180)=""/204, 0xcc, 0x20000180, 0x0) 03:39:07 executing program 4: r0 = add_key$keyring(&(0x7f0000000180), &(0x7f0000000240), 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, r0) r2 = add_key(&(0x7f0000000140)='dns_resolver\x00', &(0x7f0000000200)={'syz', 0x1}, &(0x7f00000004c0)="dee7030022cf9e5e1dbac27b0426fc0299c40800000000000000c894f365ae68edf335abf35ec53d6751467ebd2c187491bcab2c8d34fec505fc8a14622dba33ff9b054eb7e8a5bc4ab2719cb230328931deb95ef3fcafb1ce27743a93f4715976ede8860ab49c3a4f51ab0124b50c3362201a307df03000", 0x78, r1) keyctl$setperm(0x5, r2, 0x0) request_key(&(0x7f0000000040)='dns_resolver\x00', &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0) [ 2865.345599][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid 03:39:07 executing program 5: unshare(0x20000) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0xf008, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) unlink(&(0x7f0000000080)='./file0\x00') 03:39:07 executing program 3: socket$packet(0x11, 0x0, 0x300) syz_emit_ethernet(0xb5, &(0x7f0000000240)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@llc_tr={0x11, {@llc={0xff, 0x7e, '\x00\x00', "2fabd076f51cea04ac4eddc2b32ec4c73b786ff42708d6392637cfda9a495503693fab720dd970ca6f5fdde0d0ec6bf7ea64c7090520cae081b7c335c43c7f817ed894121bdb6eb3e5c1257cbb9c306689d1e6d16e760fd2d3443af1ee8f7c80986db093cddca28a35ceda2a2cf5f128797be278ea3a8592eab7464d9a4579fd4758729ffbe273bdc9ce1366a0122fa5423756c453ea2150fd60ac6623be79de3d652f"}}}}}, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000340)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x0, 0x1}, 0x1a, 0x0, 0x0, 0x0, "c7d9167335576a69d42f6b7d98da72bb7f40b03a27413d3cfeb38282790a2472d0cfa2cbd481030aa0a176c4ebbe9641abdbe3e83fa4c052f851101986fc73fa"}}}}, 0x0) r2 = openat$nvram(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@rand_addr=0x64010100, @loopback, 0x0, 0x1, [@broadcast]}, 0x14) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0xf0}, [@IFLA_MASTER={0x8, 0x4, r3}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 03:39:07 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'lo\x00'}, @FRA_FLOW={0x8}]}, 0x38}}, 0x0) 03:39:07 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) close(r0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 2865.441993][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:07 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0) unshare(0x8000000) r1 = mq_open(&(0x7f000084dff0)='!selancx\xa5\x00\x00\x00nu\\\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x3}) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r1, &(0x7f0000000180)=""/204, 0xcc, 0x20000180, 0x0) 03:39:07 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'lo\x00'}, @FRA_FLOW={0x8}]}, 0x38}}, 0x0) 03:39:08 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000180)='\x97&\x89\\\x9c`I-u\x95se;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86Xe\xf1uI\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xff8\xf1\'\xdfv\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\nX $\xfcU\x9d\x80dX\xcc\xab\x84\xd1\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x91-\xf2L\xf0\xaf\xe1jd\xda\x1f>Vrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZ\r\xf5\".\x18)\xcf\x1a(\xf7\xc0\nS\xe3;Y\xf0m\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb73\x1d\x1c@\x8eu\x85\xces\x89\x95>3FX\xb1\xaf\xa6\x96\xa2\x13\x96t\n7\xa4`\x950\x18m\xb0\\Y\b\x00\x00\x00-\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000) seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x3, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]}) 03:39:08 executing program 3: socket$packet(0x11, 0x0, 0x300) syz_emit_ethernet(0xb5, &(0x7f0000000240)={@broadcast, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}, @void, {@llc_tr={0x11, {@llc={0xff, 0x7e, '\x00\x00', "2fabd076f51cea04ac4eddc2b32ec4c73b786ff42708d6392637cfda9a495503693fab720dd970ca6f5fdde0d0ec6bf7ea64c7090520cae081b7c335c43c7f817ed894121bdb6eb3e5c1257cbb9c306689d1e6d16e760fd2d3443af1ee8f7c80986db093cddca28a35ceda2a2cf5f128797be278ea3a8592eab7464d9a4579fd4758729ffbe273bdc9ce1366a0122fa5423756c453ea2150fd60ac6623be79de3d652f"}}}}}, 0x0) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000340)={@empty, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x11}, @void, {@canfd={0xd, {{0x4, 0x1, 0x0, 0x1}, 0x1a, 0x0, 0x0, 0x0, "c7d9167335576a69d42f6b7d98da72bb7f40b03a27413d3cfeb38282790a2472d0cfa2cbd481030aa0a176c4ebbe9641abdbe3e83fa4c052f851101986fc73fa"}}}}, 0x0) r2 = openat$nvram(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f00000000c0)={@rand_addr=0x64010100, @loopback, 0x0, 0x1, [@broadcast]}, 0x14) getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0xf0}, [@IFLA_MASTER={0x8, 0x4, r3}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) 03:39:08 executing program 5: unshare(0x20000) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0xf008, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) unlink(&(0x7f0000000080)='./file0\x00') 03:39:08 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@ipv4_newrule={0x38, 0x20, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_IIFNAME={0x14, 0x3, 'lo\x00'}, @FRA_FLOW={0x8}]}, 0x38}}, 0x0) 03:39:08 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0) preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0) unshare(0x8000000) r1 = mq_open(&(0x7f000084dff0)='!selancx\xa5\x00\x00\x00nu\\\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x3}) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r1, 0x0, 0x0, 0x0, 0x0) mq_timedreceive(r1, &(0x7f0000000180)=""/204, 0xcc, 0x20000180, 0x0) 03:39:08 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) close(r0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 2867.069484][T25540] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2867.133313][T25540] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2867.472005][ T7917] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2692: comm cron: iget: checksum invalid [ 2867.888326][T25557] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid 03:39:09 executing program 2: r0 = syz_open_procfs(0x0, &(0x7f00000011c0)='net/ip_vs_stats_percpu\x00') readv(r0, &(0x7f0000000000)=[{&(0x7f0000000080)=""/72, 0x48}], 0x1) [ 2867.986900][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2868.026452][T25557] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2868.094963][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:09 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8927, &(0x7f0000000080)={0x0, 'geneve1\x00'}) 03:39:09 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000180)='\x97&\x89\\\x9c`I-u\x95se;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86Xe\xf1uI\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xff8\xf1\'\xdfv\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\nX $\xfcU\x9d\x80dX\xcc\xab\x84\xd1\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x91-\xf2L\xf0\xaf\xe1jd\xda\x1f>Vrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZ\r\xf5\".\x18)\xcf\x1a(\xf7\xc0\nS\xe3;Y\xf0m\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb73\x1d\x1c@\x8eu\x85\xces\x89\x95>3FX\xb1\xaf\xa6\x96\xa2\x13\x96t\n7\xa4`\x950\x18m\xb0\\Y\b\x00\x00\x00-\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000) seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x3, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]}) 03:39:10 executing program 5: unshare(0x20000) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0xf008, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) unlink(&(0x7f0000000080)='./file0\x00') 03:39:10 executing program 2: r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000280)={0x0, 0x3f000002}) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000040)=0x1f) epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000000)) 03:39:10 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) close(r0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) [ 2868.731980][T25570] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2868.856404][T25570] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2868.875003][T25573] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid 03:39:10 executing program 3: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000002700)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002480)=[{&(0x7f0000000080)="0bf3642f5c160761ac2030c8f321f537c24111bc6d0349df4158970b9512e8cfbe14b3183d144ae63b217a2bda55823510f00715e53c6e083e880cf15d494753e199d70b01fc1e9a", 0x48}, {&(0x7f0000000100)="0fd5938359acbf75e337bfca6f2afd7f5fb5f2fa9e098b049e53e8d87d3c046ed47da08b703c6ccc612edad10f0b0af8abddd4ea3c", 0x35}], 0x2}, 0x0) recvmsg(r1, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000001200)=""/56, 0x38}], 0x1, &(0x7f0000002100)=""/150, 0x96}, 0x0) 03:39:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8927, &(0x7f0000000080)={0x0, 'geneve1\x00'}) 03:39:11 executing program 2: syz_emit_ethernet(0x80, &(0x7f0000000100)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @gre_packet={0x0, 0x6, "7eda09", 0x4a, 0x2f, 0x0, @remote, @mcast2, {[], {{0x0, 0x0, 0x1, 0x0, 0x2, 0x0, 0x0, 0x1, 0x8100, 0x0, 0x0, [0xb6d2]}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, [0x0, 0x0]}}}}}}}, 0x0) 03:39:11 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000180)='\x97&\x89\\\x9c`I-u\x95se;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86Xe\xf1uI\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xff8\xf1\'\xdfv\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\nX $\xfcU\x9d\x80dX\xcc\xab\x84\xd1\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x91-\xf2L\xf0\xaf\xe1jd\xda\x1f>Vrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZ\r\xf5\".\x18)\xcf\x1a(\xf7\xc0\nS\xe3;Y\xf0m\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb73\x1d\x1c@\x8eu\x85\xces\x89\x95>3FX\xb1\xaf\xa6\x96\xa2\x13\x96t\n7\xa4`\x950\x18m\xb0\\Y\b\x00\x00\x00-\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000) seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x3, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]}) 03:39:11 executing program 3: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000002700)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002480)=[{&(0x7f0000000080)="0bf3642f5c160761ac2030c8f321f537c24111bc6d0349df4158970b9512e8cfbe14b3183d144ae63b217a2bda55823510f00715e53c6e083e880cf15d494753e199d70b01fc1e9a", 0x48}, {&(0x7f0000000100)="0fd5938359acbf75e337bfca6f2afd7f5fb5f2fa9e098b049e53e8d87d3c046ed47da08b703c6ccc612edad10f0b0af8abddd4ea3c", 0x35}], 0x2}, 0x0) recvmsg(r1, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000001200)=""/56, 0x38}], 0x1, &(0x7f0000002100)=""/150, 0x96}, 0x0) 03:39:11 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8927, &(0x7f0000000080)={0x0, 'geneve1\x00'}) 03:39:11 executing program 2: syz_mount_image$jfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d30783030303030d4ad254de4c930303030303030346532322c72713d307830"]) [ 2870.178444][ T3128] ieee802154 phy0 wpan0: encryption failed: -22 03:39:11 executing program 1: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) close(r0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r1 = fanotify_init(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000240), 0x0, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 03:39:12 executing program 5: unshare(0x20000) mknod$loop(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) mount(&(0x7f0000000100)=@filename='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0xf008, 0x0) stat(&(0x7f0000001800)='./file0\x00', 0x0) write$FUSE_NOTIFY_RETRIEVE(0xffffffffffffffff, 0x0, 0x0) unlink(&(0x7f0000000080)='./file0\x00') 03:39:12 executing program 2: syz_mount_image$jfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d30783030303030d4ad254de4c930303030303030346532322c72713d307830"]) 03:39:12 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r1) r2 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8927, &(0x7f0000000080)={0x0, 'geneve1\x00'}) 03:39:12 executing program 4: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000180)='\x97&\x89\\\x9c`I-u\x95se;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86Xe\xf1uI\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xff8\xf1\'\xdfv\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\nX $\xfcU\x9d\x80dX\xcc\xab\x84\xd1\x01_\x7f\xf4tW.\x81\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x91-\xf2L\xf0\xaf\xe1jd\xda\x1f>Vrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZ\r\xf5\".\x18)\xcf\x1a(\xf7\xc0\nS\xe3;Y\xf0m\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb73\x1d\x1c@\x8eu\x85\xces\x89\x95>3FX\xb1\xaf\xa6\x96\xa2\x13\x96t\n7\xa4`\x950\x18m\xb0\\Y\b\x00\x00\x00-\x00\x00\x00\x00\x00\x00\x00\x00', 0x0) execveat(r0, &(0x7f0000000500)='\x00', 0x0, 0x0, 0x1000) seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x3, &(0x7f0000000140)={0x1, &(0x7f00000000c0)=[{0x6}]}) 03:39:12 executing program 3: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000002700)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002480)=[{&(0x7f0000000080)="0bf3642f5c160761ac2030c8f321f537c24111bc6d0349df4158970b9512e8cfbe14b3183d144ae63b217a2bda55823510f00715e53c6e083e880cf15d494753e199d70b01fc1e9a", 0x48}, {&(0x7f0000000100)="0fd5938359acbf75e337bfca6f2afd7f5fb5f2fa9e098b049e53e8d87d3c046ed47da08b703c6ccc612edad10f0b0af8abddd4ea3c", 0x35}], 0x2}, 0x0) recvmsg(r1, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000001200)=""/56, 0x38}], 0x1, &(0x7f0000002100)=""/150, 0x96}, 0x0) 03:39:13 executing program 2: syz_mount_image$jfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d30783030303030d4ad254de4c930303030303030346532322c72713d307830"]) 03:39:13 executing program 3: socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000002700)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r0, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002480)=[{&(0x7f0000000080)="0bf3642f5c160761ac2030c8f321f537c24111bc6d0349df4158970b9512e8cfbe14b3183d144ae63b217a2bda55823510f00715e53c6e083e880cf15d494753e199d70b01fc1e9a", 0x48}, {&(0x7f0000000100)="0fd5938359acbf75e337bfca6f2afd7f5fb5f2fa9e098b049e53e8d87d3c046ed47da08b703c6ccc612edad10f0b0af8abddd4ea3c", 0x35}], 0x2}, 0x0) recvmsg(r1, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000001200)=""/56, 0x38}], 0x1, &(0x7f0000002100)=""/150, 0x96}, 0x0) 03:39:13 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="b89b0000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001580)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0xf, [], 0x0, [0x4], [0x0, 0x4]}}}}]}, 0x88}}, 0x0) 03:39:13 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000000000000000000000000020850000002c0000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x18) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r1}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0xfffff000}, 0x0) 03:39:13 executing program 0: r0 = openat$vnet(0xffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$VHOST_SET_MEM_TABLE(r0, 0x541b, &(0x7f0000001280)) [ 2872.241997][T25635] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2872.316893][T25635] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2872.326108][T25635] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 2872.556528][T25635] rdma_rxe: ignoring netdev event = 12 for batadv_slave_1 [ 2872.578754][T25635] infiniband syz2: set active 03:39:14 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0xb8, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_macvtap\x00'}, @IFLA_IFALIAS={0x14, 0x14, 'lo\x00'}, @IFLA_PORT_SELF={0x70, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x6b, 0x2, ',\x98\x00\x1f\xcf\xd5\xbfn\xca\a\x86\xb8\xe9\xdc*7PiVF\f-N9\v\x05\x83\xe1\xa1W(\x01\x84\xc8\xbbS%*9\t]\x8e\xd4\xaa\xc2\xf5\xf6J\xe1\xd7\x04\xb4\xcd\xeaI\xcbc\xfd\x9d\"\xa4\xb75]\xd4\xc9e\xd1q\x91[\xa6-e\"\xa1\x1c\xf8\x88\xf6\x8f\x01\x80\x00\x00`\x8e\xa5(\x8aK\xb0\x94u\b\xc6\xac\x00\x00\x00\x00\x00\x00'}]}]}, 0xb8}}, 0x0) [ 2872.930768][T25637] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 2873.001496][T25637] device bond5 entered promiscuous mode [ 2873.031980][T25639] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. 03:39:15 executing program 4: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/anycast6\x00') read$FUSE(r0, 0x0, 0x3e) 03:39:15 executing program 2: syz_mount_image$jfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_rdma(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="7472616e733d72646d612c706f72743d30783030303030d4ad254de4c930303030303030346532322c72713d307830"]) 03:39:15 executing program 0: r0 = socket$kcm(0x10, 0x2, 0x0) setsockopt$sock_attach_bpf(r0, 0x10e, 0xc, &(0x7f0000000080), 0x4) sendmsg$kcm(r0, &(0x7f0000001500)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f00000000c0)="230000001e0081fe218ac609975e0de6100000000000000001000000000032c1c17e00", 0x23}], 0x1}, 0x0) [ 2873.504006][T25685] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check. 03:39:15 executing program 1: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_MIGRATE_ID(r0, &(0x7f0000000080)={0x12, 0x10, 0xfa00, {0xfffffffffffffffe, r1, r0}}, 0x18) [ 2873.631952][T25690] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check. 03:39:15 executing program 2: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0xffffffffffffffb5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0x2bcf) sendto$inet(r0, &(0x7f0000000140)='j', 0x1, 0x10025, 0x0, 0x0) shutdown(r0, 0x0) recvmsg(r0, &(0x7f0000001440)={0x0, 0xa, &(0x7f00000015c0)=[{&(0x7f0000001600)=""/4096, 0xf99e}], 0x1, 0x0, 0xff96ce4aaaa47475, 0x7115}, 0x0) 03:39:15 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0xb8, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_macvtap\x00'}, @IFLA_IFALIAS={0x14, 0x14, 'lo\x00'}, @IFLA_PORT_SELF={0x70, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x6b, 0x2, ',\x98\x00\x1f\xcf\xd5\xbfn\xca\a\x86\xb8\xe9\xdc*7PiVF\f-N9\v\x05\x83\xe1\xa1W(\x01\x84\xc8\xbbS%*9\t]\x8e\xd4\xaa\xc2\xf5\xf6J\xe1\xd7\x04\xb4\xcd\xeaI\xcbc\xfd\x9d\"\xa4\xb75]\xd4\xc9e\xd1q\x91[\xa6-e\"\xa1\x1c\xf8\x88\xf6\x8f\x01\x80\x00\x00`\x8e\xa5(\x8aK\xb0\x94u\b\xc6\xac\x00\x00\x00\x00\x00\x00'}]}]}, 0xb8}}, 0x0) 03:39:15 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0}, 0x0, 0x4, 0x20000000, 0x3, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000012000/0x18000)=nil, &(0x7f00000001c0)=[@textreal={0x8, &(0x7f0000000100)="ffb10c10ba4300b0c866b94d0900000f320f0133f30f01e80f69e8650f01c883dd000f0131ba400c3ef20f2c2b66efbafc0ced", 0x33}], 0x1, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000200)) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f00000000c0)={0x2, 0x2, 0x4, 0x2000, &(0x7f000001e000/0x2000)=nil}) openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000240)={[0x0, 0x0, 0x0, 0x0, 0x200000000000203, 0x0, 0x4ca]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:39:15 executing program 2: setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @loopback}], 0x10) r0 = socket$inet_sctp(0x2, 0x1, 0x84) r1 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000040)={r2, @in={{0x2, 0x0, @empty}}}, 0x9c) 03:39:15 executing program 0: syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000000)="9eda438838743bd4e9720bee57093515dc189a5ea685e9556c1c2c3cfc4df50d66d31a48aa312663b68d18c5826b5b55fb738208863dac0f10f423aee7a5d8ddc45ebdfeb7424bae859d7c37ecfc4b63914d5a56d91017dd22bc84f759a15969951aef9d5c88c96560896988fa18cd946cfcc3a0f1c993348377904eac32c980bdf7976ebca2b499cab63c4e841514277fc71d4620e29a92523402485de0e82896484c0ae497a4d686df23ca7b68c3fd5e624d3510d7f94838e54af877ca58a00c5a672bba11f5aa1ed1980dfef47b9973d0bf456ded5e72f1702b3dc5197fce39cba53a038d8dc0ec783ce70577107dc5e8b299e64a0b7f1191f0926bd25762370191710bab2f44e9069f55f8a3f87e4cb488a2fb3348c0bf3b3874291f83e4776b160ea73aafa3919c7c069c73c0052173a63158db8b65541d161f9c964926ad7f06bdd6cb6a32135b04e35701c2e13c49c1f75dc7a25d623378860692d172ec3f1e1f2d9dc77c015c13721efcb101c2390abb847e871132f472a37cc0163b39b1d575a5444e246a08a1afb1a696cabab29498a314429a3b9f44c43ba29f71fac1fbe0d01c3c16d22730932704bcfb0c1b7a432bc51dd3f5dd5afc3b342cbe6a6ff899039e28f9a51881b1d46fdcf31767cb6f5c5c69ab3c80615d77c4d1664fc4ec831b8cea2e752bbb7a9ce79df875b29f1e232751daf32a1a0c4ff8bd0688e2b8e2d668b8a77e20a9eb6ec2e2c23b94e507baeacbcfa31fb6e1ca3343668f43e3aa6d85e7c29bf0bb4dbdabddc92be7f4a6f5d21b19e6da17bfb6cc926e3847532fae29c7b62fb909130ec372d3c16cfe6aaf3ce2af0fe7610fde7aad61bc80d2f96b999c8ccf6d22cf903ca8ae8b879ec4a416f334982e9810c0140a18d4dc81b5edaae23e9f4abaf40ed71512aebbba5bb251545e188db789558a845a2877b14bdaeec3c738b7d730c0860531bf5517d4f0e8f95ed3571f8a35816d5116fcb8d7cbf42b7d5d5e65541508c898bb2e0fe96297d2ab7135662de39df099ebaed5871111f5346278cee5728cec512e6c0a0d65b51e3d627873195b84103341c2bc83b6c8fdd8ba17f5957413f61c69d618c9b9d0b1f08dc81921b6c662ee1da3bfa019b095e9a03c2db4d645ccb7364e895098cbf7d932c72d80663c7a1694d122f7348393079223c11d36c64a5856eae0397ab9a9d948204b74e56525a9d552dd0916de81cbb5af3c59b3d7f8f9154423ce2cb45a5bc808e24bef13212019a19545fe54ba84d01534358380192b8c7b0eda907810375bb66a578a58fec392b47991271c8367b91d710e8a176bc1a4e96f0e137d4c25fbb03eddc392f9f170dd744472b864fbbae7c93d86e682308b21b73c5652065d72cf02e1152b44024a90a3b52eb0bb3cb412e518d37a68aa4c7f46789c54ab30d3a73d0a8712fde612294cda2aa1ccf164930b9b1d17801d4fbb06e849d39bf2b5141330caa0d2618b616f1c67e1ca57080e79ed9092ba7a55e8121cfc825cd26a0199a479a7ab1b7b23d2a4dd82fa6d04ee41ca680435efc934f0451e865e8632ac2f1115f4cdd33b0fccb7a2326127faf20cba37c828613dba5a98f4e1ad25eb6b91078cf73d873df9ef91531476f64b83559ff7ccdc4c070d478b18196ea05fe8d4ea0216ee5273dfabbd04582f40f064c9781afd2cbf30901f28cd09cc934f1b2d50883778274177e3dba8af0a1b931d80ce1a6c4085780ea2195b65ecfd2953f78a5290fe560d0cd6a5e73890a5a82dc410b92a3ef2be05ec5607820fd4ca6b9c3aa258d59022fdcb21665f1ce4e8aad8fd918c43bd3c2afe3dc223ff9f48831d401c8b6996190793d1dd7551f8511b69283992398d8f9b4bd2b3398d3b8c6f3c5d8b802ca5282b702df2b7be4b38e70c3065f8da888631375afcc05ce578089c4f783776b286b7a60d1b5e189e2742a3240c1036a953d886885422eef01413c38099b64505fd5a73488acb4e611820674c58ae74d6c64a885d4beda9bd7903bcdc71e3711e2a057c0eab2100c321050ab14c6e453c53182577ad3178603cd9afde40a701120e9a36074fd582428c74e02781318e6c65450f8f020bd22475696fe13b8c59260e53a06d16eabd135e887a0a6bbc8ad21be7661df76fec5b13844f68b8eed1a7379713738beac9f23c7a26520e19797a910cde9fb285179526889b908b7eb49bb06f70f6271fba8712c1a4269ebcf4b7d043e924e3d2c4c753fd7e547d95841e335179836f76424e728810d7f32b78256ea30c79d9238a6588426e1f2d4c0b03d5605bd826ed24f0f11326b4cf958632b86e017aa80e142db1580c44f76d9c98196f3f6852ab2bfc6a01a3553a130c2d171957f5a45c3550fbbc990ef8742a98a86b280a57b9f198ff436bc01161ada50e6f23026c3254adf2321bff7e20aa54080bbb57d8d52c6a6df6107706a2e5bc6da68f17b474c0edd39401d765086e885cf7992405f856557915603cbe8894676e996bbadbb649a5e7498b91f9bd2f697dd9ebbe4d386050258b9f4c94781e61c660651c3f1e3ae51f8c035eca365bf1c23dcacbd6e225490d7e9c133525f5c9018d752b21b4897bf18b64b6a9936f538a0a8958fc934440aeeaad2b68ac844d76f0900a6c95bd0b353d85d4fb62eb88360112237fd8c636a80e3130b21d66ae8ec58a4b76cba0602f96da919f7e84fd37e3ec2379f58e389a39c78d2482e03c379e3c4649ad63a76e3707ecff07d2fcb0c9dfc524cab49e69a09c92e4f88714335cb57d3f6184d07bef9657280fb5c9fd2d8f940f7ac6c5407e3077aa2e4ba8e217e0ee19e302d6d90e3be05a86dade35d2e454e511afb5cf5936f1d11f2fa6be6ceaa817dbdc7a6aabf2fad8ff3efa8382a25099f0c5989d2ad56ae0f4968b2cfcfc67b4f1c161c75900b4848f59a3c0376dfcb7997bf28e9e85d6dd942a360516de38e1c1a038a796f9a77ff2b0c7e5e8f4932391a0e58e76dacc6f9764178a211dfde3e75d367d2911ff398126ffdf83cf2fbdf1ad5232bed9155f7a168638a572094a9e934d4969b358cf6e121d7fd2aeae2f499068b42c152f0e3403a230885d6f92f038ddaa23499f804ffb06abdbabb51f6c38c92fb1a6271a4b13d6d11125b8ec12efa5907dc65062797fb9cca15e2f254e76b182d3fcdb4e96ac4de36d6df7e7bba5c32f422286b1be3b79bffb6fd693761952d195a84ad9ceb07287a0fbefab9e0347b513c5f60233ccd4b52d90ec144a2f896d9dc7f279f8aa93038f3efa286e1c3006933a4d7183d952f8d28b141b28b2af355b5bd8198dfde1ffb8d09202aff0d16ca3fec194662892a49f829813970a4520f1228aa03d211a45bed3b2e05bf1f10b1a152761e7b6c6ddea863a3c02224256092c70ca70dc185c4c385dd98b09e2682661e1e66f71d9c4037048eb70e8a1cbe57de87ec43713abf5fdcf63b9c482f318e3bec37e878dadbae15a02d731e6c8574eb14c059d72f73be5174add786d06b585a28a06d349d8e434a491b34897b3c1ad786ec8280d7f57edd4fbc6aea5485d659b59d393e331cf91e6ed76f340fcf7cf460892fa7318fc42b883f61d888ad982a751accb613c66661fba5f3d6de751a6a9ef8a4700316aaad04e991aab7903f4ef012ec2a8c092234e74ef335daf360ae47bbd2bbc6ad8c1a4f81efe8bbd703cb55ef36b32b4e30cb5a3b165c02ba295d0e1c40ce6ff8f479a74f01275f113ebfa8ade37a59ce70e6ca2a6f48f1be085f61bf772e2c2da523a2cfe63e99c57bdb1ff23139d4fca49eff7547e9880eefd3f7511a677efa23b52098ba89037c48dfcda2e8c1cfb9f892161049e53f8cee55256279512aecab8c441600dae0fd957883273047cf5c66ba209f830aa2ce0cbe41ca08c0cef4aed7f4324009200661a7ce680e5a8df2d051c1d8b2f63d25d8d74d05c75c46c8f3f24d625539e63459650960498a54ec3b16225bbbf4d3930009df265839d72611f5332a904cdebada108236e4414a2909ad01ec44b9d7f75de4385ad7ca5152e890a0919b3639fd1bcbca3b737ebb8d9ae541b1271cf2166ba15830e66f3d3afd3b754a7f81ad4f0999704ae99c114907c5be4a4797f13b80564f234723a34dbe137dabfd7fa23562df679f54a6ab54def6d63deae9844f72fd73efd0413551f5c4b9ee826eb3b7faf92a59ea34a16723b4fea14d1c8815a4e2d39fc48d1dbce526a7c53f5a96d0ef6463a0cee73fd3505f5c764a264b83c4a21f80e8b61c82d24442d13da99d18dc1b2538e7a510f6093d9ef2bc5cc777d4f98411e93919eddfd69d6e20d227cb61c50f358ea227f4de941fb080c1cf6b1f6e25533768fe133dbfc3f9d29c603bed38aa3c5af5b81a706b0067b40b88f992610d04c7cc36b8f649697cd6a93fae51138161891ae75a7147780fc59af5a6e18c54f9d2a4fe7fa92314b399afba9a40d0cc24f70a2593acf8d179215e06b7a9a88224bafcb2cbf60caf5fe4ff38208a70793b5dc33cd572956260e1c86312d3ba9b3a4b2b44376f2e78c616a6c0880ac8dcbaa30b9f761d500fd03a8518dd0509157b184a2d95e0caf3ffc8ac2db6c54d80c71a1e5b9ea3bf51071e2118af204123daceeb04e4f6f31f32a4d3fbb76ee49440cabda2c121c1b99acab5b87cecc37c3f9066af34ab29d6598bbfd91047a2ac7ce3a8f3027ff5e6d743506f161087278896a98ed37122ba208b61cf54d3929555ab06b564cd5e4f46f4755a6cfa2ef2b30d29ea66f2749d4060d411fa9160c91b6f55cf071ac8222c6313df18759e2958cddfe3db4cbeb9cd39abcf5f0beaecae8437813995cb7ed0b87d42ca942ff7245ece204798d01361c5f008e0d82bdf76660515bc78f7f8f409ccf68614b2cb50f5af2615661326fd971bc57eeeade60ea906b8df1cb0dfafd318cd2c396309c329d0469ca192aa8f51d7c4227685440f073983255baf054b97b9d7be1d1470d7eabd5c09b2116b4e86b0567b7e97e088717a4fe3dbdd310a1c39136ea4d2c47492001f9885dba03bf97e7da376171d666441cdc2f999db137603d57df32b4260fa0165e82917bb1631ea314e7a7437e66fc68cef22cda8f456d6e583f6e3237e0bc79987a9103f7cf0918e26881f67ea582e1ff3a49177599d385bf6e42572a2547933aeddb826530e9adf30dd84c3a7fae5c4c26f6c6f3a9f0906decd314e2407825abef959c5416d18a92ff34e6c521a16e8a0a29937c77d4ee99b41d530a732acbe0bf5d274df9d496b47a9a624546bdcf9976cde12ec989cb2a70b33a7c8a3a77652023164695f9db30dfcf587f0cd4f73e385730bcbdd688f6dcb08ba0efbb9f579220afefa4acfea522e864fce9b1782ce9f14824d16e9d33a2609c23ba3c5a1af02549357a0dcc12e37819d778021762cf895abeac1125b744c8b8225a091e7be9ded9993cfa3ca9abb83e25c8f559009977a2ed9374a89619fae5ef6d164bb73d242004dc8428e44689b33ee3bbe88bb4962ab0a32a90e7aea044f08410752cb2d7aeaf3196648a3a99092665b478bb394b48f79b36db0efc7f50d6a5179c945f5298cfaac5e5dea715296f92abce7281d48a0c9c6b785a35ef5f1697c047ddb254fe9a8ab9f498b0c1ae09ffd01a3d8d427fee7e36c51e0e5c2fee2245fb8464626ab5c9857ebce91f7d22bf024d10c2d71021cd69268472de419e6cefd970ccc5858659be6496799aa7f100411766e712aff08b731460f14f9d7356db12cf8e1c6121968dc68b1d81c086b325ca4ce6fe1f476707e08fa913144b757c6be17cf93150db29544d207f09a896f33b7335d9339215da751e7af2c6bdd19db6f521af2c8a5998dc607f97026d07111488741134c1c86eba123273d1fd5ee4b471e86f9ae9478a04c7482076ab34a1eca5c64f89e5106eed44bceec019c67c12fb4db4fdac153f4ac3b63ffeb6d30de58ec039e2dd3c181e254cd94d0a2b0b44490384cc5915b54ee1db2b6d059879bf8126c9ca976d0f7862da07ecd350930a081810a7afd72b2ad3f65b96ae9c7f91227a2b5513a559f36b90fe01be9ae5ad3ca65e2c26f358fc26b858a3633fda7ae49a5fb705220a5819b3cca41b1ccc21d7c40f5fa9c422288efa5394e4312675899d704a2aab62b8363f58fd4bc12a8bea6ffc45b4414237bf5f019321206dbba439acb5ef26641f30fdac20f964354bce94e4c9d73e137f9806deefaf6f4acaa0e76ad4fef9f6cb7fc01bbabda9612c05adbe46afcf94819e8a4b4b49ff764784fa432d47fb6d4230900043d1b4521cd6839fe8c5df4d1899fdfb13880e207cac73f0a29020bdd563bd9c2f6bcd1ec523b3e03ebf6164fc65af001830c51396f9df2d346f83a59cfc82201cf1150ea57259d579fc2ed199b3fbe42d5188c84e4354610743e5b23a265246313c80b96d936969572e11316bc8926cb23115186f3b2387b82c3898fa41bf16a308da62d5a3eb3609af1943fddde08a4036eb2a41b7292caad9eb082614b02a1fa255bc7abd4d0e3b4ec1801e131e68c7aa9da1a0ff10f9de87dec8fad1ad8bfa99caa49e203a7b9c33e044d4544a537471e7a452468b821959bc488c6b8cbf81e90081a26de273ad1203cc06adb6af242ab19f96c1c66b58c37e2c9309704fba63af99a8d9c5efc651afb631fe9f546b938cc3b8e526c4159e5c9f7afb29fd1d55fabf09367ce2a63a35e7a2062d1c772ed981fd77157a847f687a177cf9886ce41df8cc509302b46bc1e2ba896b1c1656a1bbfdf4cd9ac39cf8510d1c823075f16550fd044aacc8d42a56f03718f7b18475cdc3999faeb25ab3dd8a807ee04d8e5d831d08b4e309dff50330685138797e10c6362636f53f22bfc1f3d5090a5d369282d9de36bb4e2505411ccc6ea395afa1567b15a2fb4be2adeea7126b1a8e80034105e0d98bdd78e796ce1cdc06a4ae666fc0baec5c52614340ed997673e26ec47c88846c000bb7c9075937cd44f5c041fdcc64986e5e1c0f488148f0ee6f842c44c0b72e82109270341bba6e9080b70fcf930d0f10be5a36798ef6051fed72727b72282ff164fc08319d74f1f57cde71b57cb397a9e753f87b97729bafba017a24cbfdee5dfe7fc296c112e93bb8fce560ca80a3afd8370baaa79ad783b51352b5440b144a47378c9ae22eda5794328e95bcca220fd07bb56915529b155c61858efe89ad36a79288e74c0e251addcfaf797432175a5562b46eff5e3aebeb74623e18beef85389383c604d8884431b07dc4bea0174aadc337ff41f558a63f16690feae47efa2a5d1318b7397e1e4ba398727d286791b71610e1d78d32800e7e113c12abf0f60b6ca4401ecd23b7aacd990633b2b017daf6bfef1b2361ece74b7dbcbb1a73d4bc1f9d2e5c9fb0b7980d25cc44d1b10c09ef5a6a05c84669294a5cadf0cd88ab449f9f0bcdd8c48590d416c5c1feaa494a2145949c2a3373df7c6014225f2745bbeb20ff294d22c0d96ca111e6926946207cab56a03162a49e68968e398f70690188ee3ca847ef421742d60b9a6ad029e8a3d607950b2bf8ad8ff297cb39acc94905635770436e134435e28205140331b5100d9f64469792fffac87bca0835cbc617446ff86a7b50418c305f32e658b32130e491e38709fd3697017ac8084cdf1ed81a28375aed092ab4e32ca88a933154dd3a9e99351acbada926b67b310c7070ac1a414a28c5abfe1f45476249a12f18ca2d981528d881ed3c5072e46a6eff3cdf37dcbc89c7f79c88a1f8d15d15beb66a0e4440c7b93e379c4e2bac1d5c8e85f1852887e2cfeb178fba1c67dc2adb0c87df8ca4444ca7f455509f492effb5001328b8cc696e2933207a2d78bbce8562ca34a248193c914406b161c8141479d891b0c6110ec1e25cad38299b489f2ec437017cadba67dcb58abd4933c95b3526f1d4747b8701a7d71e446e4b62e2941d4281faca0cf22914be5aad80f47100000000ceb24e82508fe55a92fb6db70d03d1c1ec09cfee31639341756a4630a0eaaecac7bfbddf9d30c42cbd45eb181d5bd341307ad26f496bb042e2b655c03ac3dcc587acbf50f79b5c239be9938b62d3251b199f8413b020605d5d0552cfd9c39c9132719d6d0a326b000e12fcb51bc274df79d11430060d05978cdd50583f1bca82c57dbee605e2d00fcb5414af13a596d35cb5ba62de6a28cbccc857d23547b1c7fd5ac8fbf6758d5b8451fa46d9acc00344dc2e565674b1dd3547eb8f8aa5fff99042f8d1d59e6ad2f53379211e6832fcb68f5777eb2db85b28f724f4e4ce6342cf55713ff7b0cb4f7f47dd12a6566b86709eaefae024373267ce72a89e7f3e42ab48edcccc96b5d0403fe93a927e5ccf470014f220b8257393226cd7b996f20e6a34f81206733a9fdce03b701943c1b560d3eab68c2c225cf7f7f2b56123be2bb173e9e5b37f4d3348f6b987764ad07c2acd44514ff264d7eda31e5e517a179414841ad4553d51c08f435e05f10aa82d74b97a9ba3a133e6c9175fdcd4f3dc9c16d3be1d5bbaf13240177081ac1d56681bfa988a93af09868afd608520c0bfd71d857a6661fdaf6f2e166987eb007449dd26334ae932c5003fefc0f983b9e49cbfcea325f2de16a9ae935caa46f5b3433957fb370971ed957f138f08a60fed5b84995e428e7ae7d5c22021ff016baef0e713a118344c016a99ad469313ba7f2452da0dd82e019f64aa229cf80a69b3e08ac5847f10d247179855546313232f23e055c2f74ecef14e0fdcc29a9bf0976fbb249bd5c7903183d2a53c70960a183630e7d4928daa7091a85ad987d2a4a5b8f6be6612fa72d9fbb33c67bb38eff19f2e784f94e0354cf6d35a5b2c62233c039de3734b38e97ec72bd673fef09fd56fec329818cc68cdf12cb52f7d37a8350c16e94208880bfcd3e895d7aa4489e3dd15db4a9026f0d2a46f1e89c35845dbd976a1992b87c15a0c7580e6424b8792a7bb7b933d7c5433d4133ba4dbbcf7995d6ed3feaa32f876a287feeb9cc6107778c1f83e0119d980b9e994c2a3ae3de24a103efb3cacb746b49d1ad85746b233ab4aaf0e988ec2a786bc93f32040d3bdc3008031634cdfded5ac95b2279e096243228296591e7ba53c4a127772cc4620e6b238ccad250629194533d0a669ff3366c52d64928693e0b0cbb0b8e2c6029089d4dfe2b4b6c5dcd85f1a02770611e65001e48a32a8b0431a3b9d77fa3a95be38a0436a704c05a8e0183f3214c25531a63796f679bf72885aa766468d42b2543542d7e82544efc5c5e81e6a91a0f5d4e68000cff687d63e45c9a11d4ef515050daa592c9a828ac7c0488e7cdb3d6fdaef5e9176ee68d981ea50d386d74df3b40660351736deb03bfceb721878cf9894b0302df15964242ab6b9f77f98ba1c7993735983d2b022600ab74a19e3636e1400d08ba45d3a5c2774cb06a1c358bbfc11d27efaf7ca53c2e7757c8c76da24707d91a4a5244262898d68083ff91c514d9b9b1ebaa0cb0b10254fda1b1e82b9a1a47f117b5b280ddbec1f6732d11117ef1a7a674699df87fe795d1243cb9c4527e364e2b711b6562a87fafc130ce0baf1701686639b05f0c8dc708f008b1e6ab89e8d623bb83f3d54b7bcdbdacd055ac4eccbd36bbe0af0f65a00e3d6dd985ae8851d176976cfb5816d1fc2a63d3546aecaa4e712ca6961d1f181315d553de6b53485faed0dcfcf819a1ba3badffe797377d3d1ddaed8e7a0acc0c3d277762262a139f94de49faca167b11bf04f2104a5ab9a73367a6461f7124c91a2c4229ef98e6ebde9aac283c7d029400d71293f488ba169b62c1e94689cf5b248ed4aea62b88d65bb764cfe27d5231a58486e7381df518f4ed81cb905108c54a5050a94ca0e94da20d3794bc5fab9127dc95b6404b1e27b4e28136fc27806f7be798444c33aca88ffd45b860eba0d5033839f5a092863954604f1952bd61dad23b11643fe14f3ade08116aa2c13eee701ccd13e506bd65a1060bf69579aea8c8143cd38c0891a3065f251eba0c20ab9c69ddf28e3bd6400cc203bac8de1882239ad4e1b97b0ae2f1abb7bac7c0d8ef82b97ebfb1f5577f06a3a1377b09ada4db87d342f20ab0eca4b9c206042471307511429cb57a578211f92d3647189861cad9145f5eb26ab696abe50a2a6c1b4af61040528aba4e79b586c348a430f5ea61c4be1032fa61d18581f05a07fb8707c8996e0fff1c3eda59b992687fa12483b9327e10224b20d42e8b3fc4670bf070ced602283273d6818acd1f6da567c44d3f5e1377065d43d87d889843ae48e7fa8ba1634815695b8c480ca271e6e833799c70da80fd79acc09b989667a2294de5da73f0363df9a33ad4dab8d27cf7bed0a06838672e3d07d52b6396e9b5576021d5e925abd533bf161c944795065fdd44e8462e3070c479f1c118276653488dd9b2f1a673f8cad3612ca1fab4388ec9c8f834a01a499adb7b3a9a977672f6d75b41bbdd7f91ceb7e7a88568d17bb432be9e4e96e115075bce197ef4754d2914c2c59e2d7f4c08f0dbe34d31f229428f211bf1d7e8f5c319ed4a8273cb6255eb318851ac4557b0278fac63107a54d407c42f300b843a12abd3b893b46c7efac2e388ab42b87aebe2543bd4c15f459bc50aad10ffe1c1196fb52c26e54bdaa7fbd52451f207ffb073ef4b3f71eedd7da40c89505019739e3fa733bcdc84ff4919e8fe2358129ef28291be1d6426b8bafe88463b1d3cd7273745381c7f65221898e6ad361e88b24c54ccc7ac9a830145b6dc096e2d71ef71ec4f03524cb870b724e08d223bdec2f6fdde6200217a13b5136004d455d66547f5a1793e0cad85677d49e5c558852107007c8136812cf021afaf6f7e8f59883371be46cda412dd9c6fcf187c31252ceb5758901d39cd5355ab386d9a7fe6ea46ebf277aaf809c3023211ea9aa189de4d422080ebb9fec50ffab6b95ba4ae5018accc497e79149ed6047ce561ccc10e9194cdccd5c9fb75175c8dbc9d0a916ad59288f010defbbb50d263041ab37aac0f93253bef6f898cd0825d99d27224f26181f9713b8979da64756c95e7505f25a2688960d6155c3613dcc31b6c337a6dbfc6b12cfde1db22b93bbd5e48534fb0bda8b212577a14dcf665c834b0bd24e5f624d2455fe048dbe930328d7cb632db3b0e244bb5d43390b420b15157a339487fc78976f867d3a361aafdd3f50a93c01882da7c220089a544381db22e2c86b228dc2be01820468460437588952a549d37498e529e62aa62bad1580546bcb1e9a6ed1870b7838d05d12f6e3a041e78b1bdb80894626f20889ccb3a468aa4fb24b9c87cbb28623ce59c6b3c6286db366d08004551a25fe4d8d194a2bb7c52e1c85a5fbe4cb15b171489da121bea1c469a6bb185d63213084e3a81ee54dc03a94dc5ecdda7bfaad1df613f51f56627c9d529f13e5c81b5ee4dd228949ca16b9a61d186211d153294470907557e5e14ae665013f285fe4d3766e7b3d8ce5e2a14692072d4d8f79354bcc8db8a2a36c8bcd00", 0x2000, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) pread64(r0, 0x0, 0x2, 0x0) r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0) r3 = dup2(r1, r2) ioctl$KDGKBTYPE(r3, 0x4b33, &(0x7f0000002080)) r4 = socket$nl_sock_diag(0x10, 0x3, 0x4) ioctl$sock_netdev_private(r4, 0x89fc, 0x0) ioctl$TUNGETSNDBUF(r0, 0x800454d3, &(0x7f0000002000)) 03:39:16 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000000000000000000000000020850000002c0000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x18) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r1}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0xfffff000}, 0x0) 03:39:16 executing program 1: clone(0x200, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000740)='\x97&\x89\\\xd0\xe7\xca\xc7ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86\x06\x00\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j\x16\xeb>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x81\f\xdd\x8c\x0f\x91Y\x970\x14\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8b\x9eVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e#O_\"\xf0\x9f\xdb\xe1\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n% \xf8{^\xd6\xcc\x10\xc1\xb3\x9f\xb8IbR:/q~\xad}\xa1^\xa7\xcd\xe2\xb9\x86\x89\x8e\xf0>\x12\x13\xf5\xe9ho{pI\xac\xbe\x9dBF\xd4\b8\xdd\xf0D\xd21S\xf7\xf7 G\xc4\'cH\xa8\xcf/\xad\x1d\xbbn\xa6\xe1t<,_\xbcz|0GT\n\xb4\x14\xef\x11&\xb2\xf7\x9d\x81\x9ezJ\x96\xa2\xc2\x14\x0fT\x19o\x1a\xe2|\xe1\xe5\x80\xbf\x1d\xd6\xe04L\xea\xfd\x9b\x1e\xdcx\xd4\x16\x17\xb7\x04\x97*\xf2lty\x0e\x8c4O\xb93\xd7\xbe\xb9\x018\x85\xfc\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x81\f\xdd\x8c\x0f\x91Y\x970\x14\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8b\x9eVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e#O_\"\xf0\x9f\xdb\xe1\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n% \xf8{^\xd6\xcc\x10\xc1\xb3\x9f\xb8IbR:/q~\xad}\xa1^\xa7\xcd\xe2\xb9\x86\x89\x8e\xf0>\x12\x13\xf5\xe9ho{pI\xac\xbe\x9dBF\xd4\b8\xdd\xf0D\xd21S\xf7\xf7 G\xc4\'cH\xa8\xcf/\xad\x1d\xbbn\xa6\xe1t<,_\xbcz|0GT\n\xb4\x14\xef\x11&\xb2\xf7\x9d\x81\x9ezJ\x96\xa2\xc2\x14\x0fT\x19o\x1a\xe2|\xe1\xe5\x80\xbf\x1d\xd6\xe04L\xea\xfd\x9b\x1e\xdcx\xd4\x16\x17\xb7\x04\x97*\xf2lty\x0e\x8c4O\xb93\xd7\xbe\xb9\x018\x85\xfc0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REGISTER_FRAME(r8, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, "16"}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)={0x24, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, '#'}]}, 0x24}}, 0x0) [ 2875.815728][T25748] A link change request failed with some changes committed already. Interface veth0_macvtap may have been left with an inconsistent configuration, please check. 03:39:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) recvmmsg(r0, &(0x7f0000002080)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) sendmsg$TIPC_NL_NET_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)={0x14, r1, 0xc1d127808ea7759}, 0x14}}, 0x0) [ 2876.214481][T25756] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. 03:39:18 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0) preadv(r1, &(0x7f0000000280), 0x1, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newlink={0xb8, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'veth0_macvtap\x00'}, @IFLA_IFALIAS={0x14, 0x14, 'lo\x00'}, @IFLA_PORT_SELF={0x70, 0x19, 0x0, 0x1, [@IFLA_PORT_PROFILE={0x6b, 0x2, ',\x98\x00\x1f\xcf\xd5\xbfn\xca\a\x86\xb8\xe9\xdc*7PiVF\f-N9\v\x05\x83\xe1\xa1W(\x01\x84\xc8\xbbS%*9\t]\x8e\xd4\xaa\xc2\xf5\xf6J\xe1\xd7\x04\xb4\xcd\xeaI\xcbc\xfd\x9d\"\xa4\xb75]\xd4\xc9e\xd1q\x91[\xa6-e\"\xa1\x1c\xf8\x88\xf6\x8f\x01\x80\x00\x00`\x8e\xa5(\x8aK\xb0\x94u\b\xc6\xac\x00\x00\x00\x00\x00\x00'}]}]}, 0xb8}}, 0x0) [ 2876.259890][T25760] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2876.331138][T25760] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid 03:39:18 executing program 0: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x58, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x10, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x300, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x58}}, 0x0) 03:39:18 executing program 1: clone(0x200, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000740)='\x97&\x89\\\xd0\xe7\xca\xc7ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86\x06\x00\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j\x16\xeb>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x81\f\xdd\x8c\x0f\x91Y\x970\x14\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8b\x9eVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e#O_\"\xf0\x9f\xdb\xe1\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n% \xf8{^\xd6\xcc\x10\xc1\xb3\x9f\xb8IbR:/q~\xad}\xa1^\xa7\xcd\xe2\xb9\x86\x89\x8e\xf0>\x12\x13\xf5\xe9ho{pI\xac\xbe\x9dBF\xd4\b8\xdd\xf0D\xd21S\xf7\xf7 G\xc4\'cH\xa8\xcf/\xad\x1d\xbbn\xa6\xe1t<,_\xbcz|0GT\n\xb4\x14\xef\x11&\xb2\xf7\x9d\x81\x9ezJ\x96\xa2\xc2\x14\x0fT\x19o\x1a\xe2|\xe1\xe5\x80\xbf\x1d\xd6\xe04L\xea\xfd\x9b\x1e\xdcx\xd4\x16\x17\xb7\x04\x97*\xf2lty\x0e\x8c4O\xb93\xd7\xbe\xb9\x018\x85\xfc0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REGISTER_FRAME(r8, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, "16"}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)={0x24, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, '#'}]}, 0x24}}, 0x0) 03:39:18 executing program 0: clone(0x41be, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = getpid() r1 = getpid() rt_tgsigqueueinfo(r0, r0, 0x15, &(0x7f0000000300)) ptrace(0x10, r1) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) ptrace$setregs(0xd, r0, 0x0, &(0x7f0000000000)) ptrace$getregset(0x4205, r1, 0x200, &(0x7f0000000400)={&(0x7f0000001800)=""/4096, 0x1000}) 03:39:18 executing program 2: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x46f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x81}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x0, 0xffffffffffffffff, 0x1) close(r0) r1 = getpid() r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='f2fs_direct_IO_enter\x00'}, 0x10) perf_event_open(&(0x7f0000000240)={0x4, 0x70, 0x0, 0x9, 0x2, 0x5, 0x0, 0x6, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x4, @perf_config_ext={0x1000, 0xffff}, 0x8, 0xffffffff, 0x2, 0x8, 0x9, 0x0, 0x20}, r1, 0x6, r2, 0x1) r3 = perf_event_open(&(0x7f0000000180)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={0x0, 0x1}, 0x0, 0x0, 0x55cf, 0x0, 0xffffffffffffffff, 0x80f3}, r1, 0x0, 0xffffffffffffffff, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup/syz0\x00', 0x1ff) ioctl$PERF_EVENT_IOC_SET_BPF(0xffffffffffffffff, 0x40042408, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_QUERY_BPF(r3, 0xc008240a, 0x0) r4 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0xa) ioctl$sock_kcm_SIOCKCMUNATTACH(0xffffffffffffffff, 0x89e1, &(0x7f0000000140)) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x200002, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x8, 0xe, &(0x7f0000001b80)=ANY=[@ANYBLOB="b702000000000000bfa30000000000000703000000feffff7a0af0ff1100000079a4f0ff00000000b706000000000081ad64020000000000450404000100ff0f1704000001130a00b7040000050000006a0af2fe00000000850000001a000000b700000000000000950000000000000000e154cd844a954b26c933f7ffffffffffffff55bb2007ee51050512b5b42128aa090a79507df79f298129da4871307b534bf96a115e17392ac66ad029d1c000006146001e04aeacea799a22a2fa798b5adc43eb27d53319d0ad229e5752548300000000dbc2777df150b7cdd77b85b941092314fd085f028f2ed1a4535550614e09d6378198a6097a670838337af2abd55a87ac0394b2f92ffab7d153d62058d070e715dba413b217369ca8b6712f3024b7041b1df65bcda1efc5f9094fa737c28b994a8512c816fdcceaede3faedc51d29a47fc813ce3d32cfc7a53ac271d6d6f4ea6bf97f2f0008000000000000b3fdc4b486fd03eefbda7f54f82a804d4a69bf9bc5fa77ee293fbd165a5a68488e40b030166565a097b1b44b451de736bb6d43db8db03d4b7745fef1d04ec633dee254aed491b849a5a787e814c4fd21a18986252a70f8f92eb6f0e8c7db3598a6a7a103680e5e5971ff4bf23242a1f2c28159f09943b10600000000000000f4a84f9130b775dd4e9e3070756f97ad791fa909ac06b57479321a0574fb304bc2a1681989328c8ddc20ea011bf5742e0ef94234db8b20ce3f9f16cb7fc20fb4791ec85821d0c48fb657c29b309c73f0977e7cde65a82b9462803111a53e0f05a84af326f37f3e2c25a61ec45c3af97a4aff3fc8c108755f75ca13fb7c8bbd8b6e7dac1aba4b20dc7de05885dfa7e85ad3428f4a1bc3f8fd8e4a5a33744ccc448bdf1d41a2d8bda74d66016ac59dda0fde0745db06753a7ac7fe13cab6692422a46e9ffe2d4a2d32f7528751313694bf5700b20ef0c248ddd3da32396a614cacad4aff2066bb5d4045c9585638c2153a6eee01738b0c10671f4f559b7dcb98a6273b8c5f1e24d9f679e4fbe948dfb4cc4a389469608241730401000000000000000000000000eb55d001623258a141bd587cc9dad46de56ef907b0000000000000000079ae5498f6589880ed6eea7b9c670012bd05e7de0940313c5870786554df26236ebced931111b473bb4c50ce22859f2e49eb0490cb6941b8285d936a7d2120eca291963eb2d537d87cbb54e588ee5d6944ee4de5c183c860119451c31539b22809e1d7f0cda06a9fa87d64cb77872a0aa9a104e16bb1a2bacf13464ca03aff14b9aa4bd943ff98df3347f0e399d1b9f27e3c33269c0e153b28b2d4410572bc45b9d3fa02208d304d455c363000000000223201780200c6ed7966130b547dbf8b497af0a77f52f2cd1d0000002000000001c800000000000000000000000928ee53595a779d243a48cea769470424d28804c026ab7f4a5c81921f0128dfd70b438af60b060000000000000056642b49b745f3ca2cf7908b6d7d748308d4a09fc361b4735efbf3411718d6ee7aebf9ef40662d7836d252c566f5ee938a836804ed3a1079b0282a12043408cd60b687dcff910700000000000000456f7d2a42bd13da2022f23daec61854f640f701db0276652f6c74f20675ed781925441578e930ea8ae0dc214e1cc275b26adfa892e6de9200000000e50e5bafecea4d4134f9d006c8d6883eca5c9c58c9e93311ab50fe82d5a96b09c69673de2f04f15d005387577f480000ea65559eb00e76e9d0ada209bcbb5c252b28a60ca770663da451790cc36000906d5a9fad98c308e39bd3ffb6151d79c1cee1cdfba05e3633be3f00000015762e5f5a3a0bc33fdbe28a5ffc83f2f085185cc92fe7f791e8f6429309d6adab4b7e09005bf024ed8f8a005f2bbf96c89739f5d81e750d50515a59a3ad09e8802e8f4f535447dc0fc9d5f99a73145dfcedad69da9cd4375c624600e78f4458542b14f29611f95d4a31838eeb20c20bb82aa31771cd379ec83554cea5e6539db7384e1f7c89b552d310ab16bce9c764c714c9402c21d181aae59efb28d4f91652f6750b6ec962802c0320f8059195729d60c534ee8e8ff0755b67fe4c25edb85bcff24c757aa8090000000000008c420eb4304f66e3a37aaf000000c42a570f0e9dd5fd545470f862f8c3c14fa9ecd1e877b0d8ca84c044859e85e6158f9184bc61a9a284db80e4636c25b96174327d82761c26e329555f9290af4000000000000000749efd37636555d3344bae34347f5ab0d534b8d63e4ca3b671f2de1cdf519192c6b59a601fd419a5c16e2055b850580994484305d7a1759782e4c571ee855a47bc00edf5e9020c09ab004321610b857e8717764b633b21cb32f0e03280e09758bd445ab91d20baca005452b79d7b574a247f1d2fe45b3c4e93da3d51de647c10dd49944dc87c92332af00f191b66b6a6f732a91f0a2e9120be61e58c79d497247d278888901d44bf77ff246605a644e9e3d769db497c3960dfde12182334caee994adc38a436367a54b9e182b78e9a0ceb9a2cebdf902c1ad1a7c5a08d0920a23c2a86abbdf357849a651733e57f31019876026c8888ccb85c86b4f8ffffff7f000000002c331fca0e541b7ca2119ff0d61c5224550346115b43f8b1894c8fa8a14dc4810f61ae96c18cc7130000000000002100000000000000000027c9a46157a3609b6fd9843ee19ec647249a9375de5858818f3c4a4fa6ce46f4d42b07199de8b99231ace58c77a23b0000e49666c464d35ca9b50f3ed3b3dc8c17a23692759ccf5a205311b7ab2253269785d8db874609fd88e6043bd52ae84c1bb0c8a6c769f952283a1f4e3842edb3d42c68a2102fa1296dfff4a979369b0e8ebc628879a46e820a2cf91381dcc198e353047db70686d147357024eb3cb94f1e89cb5ba0a56aa046b4dc521a3d9356b4b8b5917c4c860495b240e80063bde2e28ef6806bc8e139c49b91c76b0d3958f7f05b47d3e519f1634e8fbd8d31330d89069f9648a2ff93060ff073b3a113e47edf76f7d1b8b90bc0df4cfb0b9c8c80158b44ecae9420654f7016b0aac117087406d343e27b372d603f0000008f2bcad7fe6bb932bc5751d2974e95455a277f9a9aeb29aa185d7fe74b25a3b472bc7bbdd2ac5a1ea608e8137ace03361607cc1a84be659355629ab13ad49008c3fcfa2423439aaf3e3678905cb0e3f7275dea065094140acbf537801d3b384d63b95a3607961d5b59da48a0155e0e42cc13c702cc40c89cf86c2021d72f9f4ab1b00de555a5a39593c93871ff7e37a2d887236cedaa5152e3d5864e57581b61f2b0960600000000000000265f091e7bce17d20604c5ab751773a5cf2ed6c94682ebf13548209b8a719a7abc06ed03832bf274707c7c97536e20d2cb639ecd58709b05a20097208d03f7a146a6901913618738c067864e0af53eae997eecfa0dc3dcec19d3d901ee75c8710470d9eb6f62c5c721883f1544ba6627a9d2b58e8fbade7716f159af1c8dab05a933746c16b638df94b561c6715a32a394ed1e6c01670c931bfa52c58c6f34d64e758a7a7f7dcba2bab170ad7556a45774dfcc55257215c8ae719dc1c232fc6699ef83f85887d04a543030b4328ab48744ac23ff56fd2da52eb9fb2eefcdd2d92d73ac1b111ea8b5e1fec36a3579878acfe366d393f1fa9cbe08d9ba57a443643e9cd2519c88e91a5e458e66ea26822d27a45e0a9c10a127fed19e36b52655d4dd919a95eb4c25a08cb6e1a9b4d6813a0fd07a4ad9df661ab8b86a932db0df838b178540d88bd08365e547c970e2983200703a64a3b9e1482cb479dad6d34d211b05267eb1355520e9ec0c5014b0832f7fb35782fdbfcbbc1254d295aa126f912ab2447c6a9007f53a7f5d51ea480371748d18d8e10608ab8261fe058d1732f28814a9981d84a04a2bb36c89bdd245e3293a14df1ac567301a79514f103abd387d6ef2d9d94508ac0f6135c89212794781573e9ef585980789a92b9848906f545559d32112b5040f0776703763249ca98499efbb9e7362e4999594c1086d8954e9469db01d85fb0b9b3148663e9ea2e755d96c2986712d25a9922565e947d03c42215118426d5451c262985bd571c363d260faea1db53e2cf3427c90aefa2662a1c2b28b0e020e872bda1d39da508de5a2952627ca1e0d5a0a1f3945ef2fba3ff9f5142b2a35d23b6728febfd82dfae07f59532886d96ddbf59b7f95ce81f048de58baae4cc90ef4878ce334a36055159376de87dd8f8a15f2ce182e8da95582e0b2d56cede9cf22287a4994c05705000000000000000bbbee4edc051da9ac5ddf9a0e96e1308611aa0a8d6b6a640e803362f361641ee367c2863ef432057eaf6d47765a1fe091a557fe0006f7003c08c0bc8f3d47bf703f466799aa89b73f10a5e9386377189e9fe5a302a6a3eef2f4bb10300ec4dff63c15fcc6ab37fc303a593422b0ada81ee70e61506393ab7994645c1c6f2016dddb07e411e37d7a1597ee1b1c35d9ce13b9bc378e9e660e1c57bdceda9cec725719dbc10aec5e4e84d79ada50ffff0000c63437328caf28844e06abee81b0bbc34ceddc5a281161f00b4dc290cd3397ea8c78d185aafd546acb8a7448b10f67196cac6436ec4377009f1c703439f1a3a7d03f63826c3e3b408a5f1f66f1ff2e188b4d3e2a5edd89ca3b388166483f3ba72c146f3ddae21a84c12376d71eeefbb73159ec61aa26596e8e41cdcd8ef70e3ae061048e75fb75eea7744d437a2ef67825699c47eec8c5cd79729293665019f6ed528e40442f47408352ffe3cf332f93528071cda332d19e6d2f33f0455ec99f47aeef72ef74613abcbc142956563802a62eb77567bbcbd053f34e764d844fa808c2c62ff9d8000200008a6681ce865cb36d2351a619a6a98307d16146beb83e0b92ffb8778deb7bd04d2ed011c9c686b8b88792b3a935ae45ebb3f9928567d536d7ae7f2a8957d9c6d1ee14071139b34d19da6dd934fa8b65170191058cf6fb0ffe94c65630940a7444e106139b50d1f9334971ea8a55e03a5cbe70056f0822022173746de1a077f4feb2c2b37ff12a5e326950149024521d94babb609e0ab0b82dd5174c5541c60ab2cd197c04532e5366d5f04654a07f5b6643c7a694f33f8ae91543652f3e346c0069aaa8b72883814fd9cbb99fe2d36b872b51a977a14415acdda2599116fe4041594ceb6e5b58c1d0fd38df5c728e46a2d10ad3e97d1e693528f8500a3b16d727b83a60da1b730f8117124c1189577434a1000000000000000000000000000000000000000000000000000000000000000029b6108aa323c9318ce1d91eb8b99fac308cd1a858d6b7b717f1c5d9d4714861a240031eb4a01efb3e97baad70affc3c63c2206d465a839afdf5f7e0482fb2ac5cb484a7997a503f962c01cd8ab3cd40cc0d3d0380fcfbd661337d01c43544114334c772c7e921b363e7e6cc797a39168aceb8426166e715bd1ff0729b585e2abdfeccecb5e9b1b708e4daac2aee3b9c12227ae8b51867393b853d107e2cdcd27c2d5f7a416f735d37a9cfaee977f7e1e5d6db942d7680f74e76d9fe0fce36fbe36696a4d066aa23a4689bb650ee4c443ec4eaaa01805ef142f4777f92e8da7b00000000000000000000000000000000000000c6207f5c9977db3f13aabaa5480912d87cae383b75f0e80b3391ab65f38e8cc45e744b053a561b93d38a882d30f9ce307d43bb54dcd7300ecf9bdd109fdc47ccc5b307c1fad24c0cbbe41acfaccffe77d753f3b30b0f9c442899385b64f52410beae5afd80146b22fd45e200140ba2dc3214fce24e1e1b01396c80ed498f2957688e1543e6faade69c70238d0bf8a42e31b7fb8a3170d1124a2c0d5fd78257761a62e5020b17cc652aa104a5645232628d8ee4a68e549ed610ea333fe41437b5ce0860b00fba6c62244c22d24d318d470dcb6fc37c9ad45039de443323ef8deaa77618ceb79d462da44b3f809ceadddec29690c4784574c9e8032a25ddd754e56822df2b5cc91e262edfd35091317be1048896bed994710b0a42f12c302274219ab617ddeff011f16e18b50e1f59be4c06036f807af70533b39edd7000000000000000093bf64ded20685feb68042e985fb9d6c23ddef0e14e8cf488a761c78ef629000000000078559e1167142ab777bb087b8dc7bdf5a3df4abb49fd90a740124f8c4544e40241de"], &(0x7f0000000100)='GPL\x00'}, 0x48) ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000001b40)='+,\'\x00') r7 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000040)={r6, r5}, 0x10) sendmsg(0xffffffffffffffff, &(0x7f0000001b00)={&(0x7f0000001400)=@l2tp={0x2, 0x0, @rand_addr, 0x3}, 0x80, &(0x7f0000001a80)=[{&(0x7f0000001480)="cc0797f9a846d365c4f8e7a1281d08d330bd306f092b781faa42f29346a7c2c5bcadc32166e3d5ba9b3dcf82cae8829a7063b34e1b1c3784560583621c276d234f346a7f2ad5a2fff084bc9967a81997dd574a55fd2ca970a3659cf190d39cffe6baccb9ad6a0b6d25caa7b49a8822329a9b6dd6e80dbd7a3f7eff1d63f7da92fecc0869", 0x84}, {&(0x7f0000001540)="bbe5278365bd6d292770ac44930c4ad8f9c78a17381ed5e1013d733f5b0229ac109ce095689f1aacbe72c62160638d5c904131e60cf3d7f95d4ed135153472682feca4b35982372d50caa3b57f96a823a1dc2dbe81620873c1da3266f21990c38c4d7c4289bcd15729c6f6e1c0c57e989a3c534522bc341978e0408de97ef46d2bbce854b33fee2fbfe581c7f0a0e09af956f85ebf810a29b7e7a28adde249785a347d2f82623913590ee63a1d031be3f224e5464c0dccac58106a9a5203403d81dc76965e0d4891a8462208f28e77ed29ff762627152b8ff122cac5", 0xdc}, {&(0x7f0000001640)="8f9f531092984152605cffdcaf982e91a9076b8ef09d794925c9e4ffeae6a5abc8b550305c72d509071e09d865898ee1945ef03a2f844148b336fd988480d5e427b99d9ea1c5ae5ab4eaee7aa1067125b87b16fbe6010aaea49e4c1f7a3e2f760407984c1673a6e5b08d2b57607d4f5fc4aa7d6ffb260cf357a415409548bc9c08a65d4ecd15dcfacad7789902dec7f1e1a8496d41967b1afe99242e08e824d5b25a2fc2ee07f4545a79c016da981d299bd23ca3ee801059de05473d7a4313969609", 0xc2}, {&(0x7f0000001740)="3aae2da2acf934b0ee09b951b622d72c68dc090d06d7c3648d92ca9d8a98b6a747c37bded469aa3466439ef606f0d87babe700d92f9f0b32d2a7e3588435ba6a4175070e7f0ed2f88a4b4c1632f9", 0x4e}, {&(0x7f0000001380)="fc99ce5e7a81b02c196a1edc", 0xc}, {&(0x7f00000017c0)="cd7bce6861070e12ce17eabbb087487709f8a3c672cd31a77871b53b8f2db1eab9569b9a8a145372e40e7469584f30b9c7d9b4962f3c8e9358521683d1ce0fc728e31c4b3dde360a0903d4a1b6e02a5da09fc863371c6276e32a68eb982396b838ebb060188e0f46b441c43230ce52503a25daa146137ba88649486319ff09413c5efcb28b982a56bbbe4e07bc4c55c58a6fae327e0984c1dcf45473d13e4ab30f5e9bf0601c204154186b37322978bc", 0xb0}, {&(0x7f0000001880)="be663946b0f378c68ba9dfe8cd0d28a288a6a01416aaaf4ffeb60278f7353042704b002592881a838d25c6d659429c87e17429f504919128ee813c1c5df41e575186da434f270dae86298b0762512affb5b1509e66f7782637cb351c254b207e0fa5e2e384a92d25324c58cd6a80fb861a00000000cd9f86e0ca814f7bb0d44364c4c0d9e311371e060299a19016c6b5642e5dcd389bc3e006214b1734910ce20631e289ffbf5a3431138be9327baa782decc6fdf6d4d364986fda6c4aef3584", 0xc0}, {&(0x7f0000001980)="de29063a28a07ba8b83833239c452e6524adaddf887e77f1bb0f2f5d530b647a62320653b5c70fafcd69496c5963509add32a157249e30381cb929e7b267384c0f2342932dc7ca9d2e2a27583ce5072124fae6663257ab71ca75c670d9723d06ab57d270f5471c086929c064c5be710d3520b45f8ad9012487c08c0dbf51908c0b8a570b22c1034aba8a3159e05f64a801b7703f5b37058c74b52cf9c115b1cf81dd64e8c6fe53784f164ac847232c2324d4795181d5b6babfcd9e4fb1f70b1685eb90f0b8e3c37396b8632f5d4e50007eb0ae8daf9413dfaf", 0xd9}], 0x8}, 0x800) close(r7) 03:39:18 executing program 3: prlimit64(0x0, 0x8, &(0x7f0000000280), 0x0) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) setresgid(0x0, r1, 0xee01) setgroups(0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r3) shmget$private(0x0, 0x106c, 0x54001800, &(0x7f0000fff000/0x1000)=nil) 03:39:18 executing program 1: clone(0x200, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = memfd_create(&(0x7f0000000740)='\x97&\x89\\\xd0\xe7\xca\xc7ZO\x94:\xe1\x01\xe5`iq@Nse;\xa8Fpj\x0e\x04!\xd5\xc5YBz\x94\xaf\x13\xe9\xd2\x0f\xc2G\x86\x06\x00\xf1/V\x8cvS\xa6K&u\x9dX\xcc\r\x12\x11\x99\xe7\xce\xaeA\xb8-E\xa1\xf8\xe4~IS\xc1\x04\xf78\xf1\'\xdfv\x90\xbc\xd1\xda\x88j\x16\xeb>\x8c\xa1\x03\xf3\xaf\xfd\xf4&a?\xcaG\n\x02j\x9b}\xc6G\x86\xb2\xdeY\x17yX $\xfcU\x9d\x02\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x81\f\xdd\x8c\x0f\x91Y\x970\x14\n\xf3\v\x8d\x12pa\x91\x9b\x8cxd\x06\xa7k\n\x86\xc3\xb6\x910\xf2\x03\x00\xaf\xe1jd\xda\x1f\x8b\x9eVrd\xa4\xb34\xfcUj\x1ad:#\x96\xf9\xd3\x1c]ImZlU=.\x18)\xcf\x1am\xd5\xe0\xdb\xdc\xd7\x8e\xe0\xa3\x82\xec\x9b\xfb\xc9\x81\x9c\xdc\xb7\x0f\xdd\xd3\xd7\xbe\x89\x7f3\x1d\x1c@\x8eu\x85\xces\x89\x95&3FX\xb1\xaf\xa6\x96\xa2\x13\x1f-\b\xcf1J\xd9\x13Q\x94R/\xdf\x1e#O_\"\xf0\x9f\xdb\xe1\x9e\xe57\xda{\xe1D\x00\x00\x00\x00H\xe6\x0f\xe0]\xef\x8b\xcdk\xfe\xf6\xcc+rp\xd5\b~\xf6\xa2\x87\xed<\xc2bO\x88\x03n% \xf8{^\xd6\xcc\x10\xc1\xb3\x9f\xb8IbR:/q~\xad}\xa1^\xa7\xcd\xe2\xb9\x86\x89\x8e\xf0>\x12\x13\xf5\xe9ho{pI\xac\xbe\x9dBF\xd4\b8\xdd\xf0D\xd21S\xf7\xf7 G\xc4\'cH\xa8\xcf/\xad\x1d\xbbn\xa6\xe1t<,_\xbcz|0GT\n\xb4\x14\xef\x11&\xb2\xf7\x9d\x81\x9ezJ\x96\xa2\xc2\x14\x0fT\x19o\x1a\xe2|\xe1\xe5\x80\xbf\x1d\xd6\xe04L\xea\xfd\x9b\x1e\xdcx\xd4\x16\x17\xb7\x04\x97*\xf2lty\x0e\x8c4O\xb93\xd7\xbe\xb9\x018\x85\xfc0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REGISTER_FRAME(r8, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, "16"}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)={0x24, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, '#'}]}, 0x24}}, 0x0) 03:39:19 executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000440)='sys_exit\x00', r0}, 0x10) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000080)={@cgroup, r0}, 0x14) [ 2877.688990][T25794] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2877.826321][T25795] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2877.895510][T25795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2877.907154][T25795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 03:39:19 executing program 2: seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000080)=[{0x4}, {0x44}, {0x6}]}) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) [ 2878.078516][T25795] infiniband syz2: set active 03:39:20 executing program 0: unshare(0x400) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0x4010ae42, 0x0) [ 2878.341980][T25794] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2744: comm modprobe: iget: checksum invalid [ 2878.701727][ T35] audit: type=1326 audit(1619062760.445:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25806 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 03:39:20 executing program 3: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r0, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r1, 0x0, 0x41, &(0x7f0000000140)={'nat\x00'}, &(0x7f0000000200)=0x24) 03:39:20 executing program 1: futex(0x0, 0x8c, 0x0, 0x0, &(0x7f00000004c0), 0x0) futex(0x0, 0x86, 0x0, &(0x7f0000000140), 0x0, 0x0) 03:39:21 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000000000000000000000000020850000002c0000009500000000000000"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x1000, &(0x7f0000001400)=""/4106, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x18) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x34, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0xc, 0x2b, 0x0, 0x1, [@IFLA_XDP_FD={0x8, 0x1, r1}]}, @IFLA_GROUP={0x8}]}, 0x34}, 0x1, 0xfffff000}, 0x0) 03:39:21 executing program 4: pipe(&(0x7f00000000c0)) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f0000000100)={'wlan1\x00', 0x0}) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_REGISTER_FRAME(r8, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r6, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, "16"}]}, 0x24}}, 0x0) sendmsg$NL80211_CMD_REGISTER_FRAME(r4, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000600)={0x24, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x5, 0x5b, '#'}]}, 0x24}}, 0x0) 03:39:21 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x115480, 0x0) perf_event_open(&(0x7f0000000400)={0x0, 0x70, 0x2, 0x0, 0xf8, 0x4a, 0x0, 0x100000000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x1, @perf_bp={&(0x7f00000002c0), 0x8}, 0x0, 0x6, 0x9, 0x2, 0x2, 0x5}, 0xffffffffffffffff, 0xd, r0, 0x2) rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x1ff) memfd_create(0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r1 = dup(r0) openat$cgroup_ro(r1, &(0x7f0000000380)='devices.list\x00', 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6, 0x0) r3 = syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1001000, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="453dcd28001000000300000000000000436f6d7072657373656420524f4d465326336279000000000700000008000000436f6d70726573736564000000000000c0415cf968000053c0040000ed815cf964000053c30d000066", 0x59}], 0x0, &(0x7f0000000080)=ANY=[]) getdents64(r3, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)) r4 = socket$nl_route(0x10, 0x3, 0x0) openat$cgroup_root(0xffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000280)={0x3, &(0x7f00000001c0)=[{0x1, 0x4, 0x4, 0x1}, {0x9, 0x0, 0x4, 0x2}, {0x0, 0xfc, 0xe4}]}) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000240)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x205}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[], 0xfd45) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 03:39:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae03, 0x79) 03:39:21 executing program 3: socketpair(0x2b, 0x1, 0x1, &(0x7f0000000000)) [ 2879.507340][ T35] audit: type=1326 audit(1619062761.258:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj==unconfined pid=25806 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=40000003 syscall=403 compat=1 ip=0xf7f20549 code=0x0 [ 2879.771988][T25832] bridge0: port 2(bridge_slave_1) entered blocking state [ 2879.779468][T25832] bridge0: port 2(bridge_slave_1) entered forwarding state [ 2879.786215][T25832] bridge0: port 1(bridge_slave_0) entered blocking state [ 2879.793045][T25832] bridge0: port 1(bridge_slave_0) entered forwarding state [ 2879.805022][T25832] device bridge0 left promiscuous mode [ 2879.815551][T25832] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2879.823103][T25832] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready 03:39:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae03, 0x79) 03:39:21 executing program 2: r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r2) fcntl$setstatus(r0, 0x4, 0x42000) 03:39:21 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=@ipv4_newnexthop={0x28, 0x68, 0x1, 0x0, 0x0, {}, [@NHA_FDB={0x4}, @NHA_ID={0x8}, @NHA_GROUP={0x4}]}, 0x28}}, 0x0) 03:39:21 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000032000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000004c0)=ANY=[@ANYBLOB="03000000000020c3067d3100020000090400000001000000f6ffffff0000000001000000000000ffffffffffff"]) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffe, 0x0, 0xf1, 0x0, 0x0, 0x0, 0x20000004cb, 0x3]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_ASSIGN_PCI_DEVICE(0xffffffffffffffff, 0x8040ae69, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x6, 0xdbbc}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000080)) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x8, 0x0, 0x0, 0x0, 0xa, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f62, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 03:39:22 executing program 2: syz_emit_ethernet(0x5f, &(0x7f0000000000)={@multicast, @broadcast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x29, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, [{0x3, 0x3, "a78ce540cd4f791153d5dea6b259fe8000000000000023"}]}}}}}}, 0x0) [ 2880.497674][T25832] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 2880.515064][T25233] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 2880.544835][T25835] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2880.564061][T25835] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 2880.571981][T25835] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 2880.612790][T25835] infiniband syz2: set active 03:39:22 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae03, 0x79) 03:39:22 executing program 4: ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000080)="4fec9af65f848965ca2962d86ceb6ea59668e893755cbf700f4c704c5d8c2089e96a3a6b63c969100734225124f7419a6b1bbfd9a1650df46c2046384c09c6685cd0284de8e89994009c1f61f0ea94e9d9") perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x2) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller1\x00', {0x2, 0x0, @initdev}}) [ 2880.820620][T25832] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2881.034254][T25832] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. 03:39:23 executing program 3: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0x80c2}, 0x18) r3 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x10b041}, 0x18) pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000140)="b2e5", 0x2}], 0x1, 0x0, 0x0, 0x0) vmsplice(r0, &(0x7f0000001440)=[{&(0x7f0000000280)="8a", 0x1}, {&(0x7f00000002c0)='0', 0x1}], 0x2, 0x0) splice(r2, 0x0, r1, 0x0, 0x2000004, 0x0) 03:39:23 executing program 2: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@ipv4_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {}, [@FRA_GENERIC_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e24, 0x4e24}}]}, 0x24}}, 0x0) 03:39:23 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x115480, 0x0) perf_event_open(&(0x7f0000000400)={0x0, 0x70, 0x2, 0x0, 0xf8, 0x4a, 0x0, 0x100000000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x1, @perf_bp={&(0x7f00000002c0), 0x8}, 0x0, 0x6, 0x9, 0x2, 0x2, 0x5}, 0xffffffffffffffff, 0xd, r0, 0x2) rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x1ff) memfd_create(0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r1 = dup(r0) openat$cgroup_ro(r1, &(0x7f0000000380)='devices.list\x00', 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6, 0x0) r3 = syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1001000, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="453dcd28001000000300000000000000436f6d7072657373656420524f4d465326336279000000000700000008000000436f6d70726573736564000000000000c0415cf968000053c0040000ed815cf964000053c30d000066", 0x59}], 0x0, &(0x7f0000000080)=ANY=[]) getdents64(r3, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)) r4 = socket$nl_route(0x10, 0x3, 0x0) openat$cgroup_root(0xffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000280)={0x3, &(0x7f00000001c0)=[{0x1, 0x4, 0x4, 0x1}, {0x9, 0x0, 0x4, 0x2}, {0x0, 0xfc, 0xe4}]}) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000240)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x205}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[], 0xfd45) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 03:39:23 executing program 5: r0 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20}, 0x1c) listen(r0, 0x7) r1 = socket$inet_dccp(0x2, 0x6, 0x0) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e20, @remote}, 0x10) getsockopt$inet_int(r1, 0x10d, 0xe2, &(0x7f0000000100), &(0x7f0000000080)=0x4) 03:39:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae03, 0x79) [ 2882.021911][ T4696] EXT4-fs error: 2 callbacks suppressed [ 2882.021988][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2882.109647][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:24 executing program 3: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0x80c2}, 0x18) r3 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x10b041}, 0x18) pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000140)="b2e5", 0x2}], 0x1, 0x0, 0x0, 0x0) vmsplice(r0, &(0x7f0000001440)=[{&(0x7f0000000280)="8a", 0x1}, {&(0x7f00000002c0)='0', 0x1}], 0x2, 0x0) splice(r2, 0x0, r1, 0x0, 0x2000004, 0x0) [ 2882.506072][T25885] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2882.540477][T25885] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. 03:39:24 executing program 1: perf_event_open(&(0x7f0000000000)={0x2, 0x70, 0xb5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = memfd_create(&(0x7f0000000040)='\x15\xf7^\xd9\x12\x0f\xbd+\xa7-\xfa%\x98\xc6\x8a-T`\xf3-\xa9>\b\xe9p\x1e\x1e\xf8\x0213\xce\x89x\xb6\x9b\xfbp\x9f\xb8,\x91\xd5\x9d\b\xb7\x1b\xcc\x91\xc9\x12\xb01\xa8\x1e\xdb\xe2+\xfd\x8d\xe7\xdc\x90\x90\xa8\x1a\xa6%\xc2\x85d?\x15W\xc0\xbd\xfb\x01&\xbb\xce6\xe7\x96\xf2\xf5\n!\xc5\xe2\xef\xce\xff\xec\xac9\x98\xb4<\xc5|\x0e\xae\x91|:\xd1~\xa5\xa9\x14\xb2\xc9E<\xef\xe2\x10\x8d\xd6\x00E\'\xca\x9d\x82\xff\x0e\x16K\xa7\xa8.\x12\xee\xd3K0\x13\xabS@\x81\xfe\x8f\x1e\xeb;u_\xc2\x99b\xf9\xd0a\xd6\x97\n8\xfd\xf5C%B\x8aq\x8d?~\x03p\xcf\xcd', 0x0) ftruncate(r1, 0x800799c) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x13, r1, 0x0) ftruncate(r1, 0x0) 03:39:24 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000180)={0xc5, 0x0, 0xffff0000}) 03:39:24 executing program 2: mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x120000}, 0x20) 03:39:24 executing program 3: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0x80c2}, 0x18) r3 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x10b041}, 0x18) pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000140)="b2e5", 0x2}], 0x1, 0x0, 0x0, 0x0) vmsplice(r0, &(0x7f0000001440)=[{&(0x7f0000000280)="8a", 0x1}, {&(0x7f00000002c0)='0', 0x1}], 0x2, 0x0) splice(r2, 0x0, r1, 0x0, 0x2000004, 0x0) 03:39:25 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000180)={0xc5, 0x0, 0xffff0000}) 03:39:25 executing program 4: ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000080)="4fec9af65f848965ca2962d86ceb6ea59668e893755cbf700f4c704c5d8c2089e96a3a6b63c969100734225124f7419a6b1bbfd9a1650df46c2046384c09c6685cd0284de8e89994009c1f61f0ea94e9d9") perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x2) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller1\x00', {0x2, 0x0, @initdev}}) 03:39:25 executing program 2: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000850000000f00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x78) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r1, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74) 03:39:25 executing program 1: syz_mount_image$minix(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000180)=[{&(0x7f0000010000)="00040000000001000100440000000000ffffff7f800000005a4d", 0x1a, 0x400}, {&(0x7f0000000a00)="feffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffefffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0300000000e0ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000009ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffed4103", 0x783, 0x880}, {0x0, 0x0, 0x11000}], 0x0, &(0x7f0000000040)=ANY=[]) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x8010, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x872}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) chdir(&(0x7f0000000040)='./file0\x00') r0 = open(&(0x7f0000000140)='./file0\x00', 0x141042, 0x0) write$UHID_INPUT(r0, &(0x7f0000001440)={0x10e, {"00000000088000"}}, 0xfffffc41) chdir(&(0x7f0000000200)='./file0\x00') syz_open_dev$vcsa(0x0, 0x81, 0x10000) 03:39:25 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x115480, 0x0) perf_event_open(&(0x7f0000000400)={0x0, 0x70, 0x2, 0x0, 0xf8, 0x4a, 0x0, 0x100000000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x1, @perf_bp={&(0x7f00000002c0), 0x8}, 0x0, 0x6, 0x9, 0x2, 0x2, 0x5}, 0xffffffffffffffff, 0xd, r0, 0x2) rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x1ff) memfd_create(0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r1 = dup(r0) openat$cgroup_ro(r1, &(0x7f0000000380)='devices.list\x00', 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6, 0x0) r3 = syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1001000, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="453dcd28001000000300000000000000436f6d7072657373656420524f4d465326336279000000000700000008000000436f6d70726573736564000000000000c0415cf968000053c0040000ed815cf964000053c30d000066", 0x59}], 0x0, &(0x7f0000000080)=ANY=[]) getdents64(r3, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)) r4 = socket$nl_route(0x10, 0x3, 0x0) openat$cgroup_root(0xffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000280)={0x3, &(0x7f00000001c0)=[{0x1, 0x4, 0x4, 0x1}, {0x9, 0x0, 0x4, 0x2}, {0x0, 0xfc, 0xe4}]}) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000240)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x205}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[], 0xfd45) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 03:39:25 executing program 3: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0x80c2}, 0x18) r3 = openat2(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x10b041}, 0x18) pwritev2(r3, &(0x7f0000000240)=[{&(0x7f0000000140)="b2e5", 0x2}], 0x1, 0x0, 0x0, 0x0) vmsplice(r0, &(0x7f0000001440)=[{&(0x7f0000000280)="8a", 0x1}, {&(0x7f00000002c0)='0', 0x1}], 0x2, 0x0) splice(r2, 0x0, r1, 0x0, 0x2000004, 0x0) 03:39:25 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000180)={0xc5, 0x0, 0xffff0000}) [ 2884.223980][T25931] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready 03:39:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$TIPC_NL_BEARER_ENABLE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)={0x60, r1, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}, @TIPC_NLA_BEARER_UDP_OPTS={0x38, 0x4, {{0x20, 0x1, @in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}]}]}, 0x60}}, 0x0) 03:39:26 executing program 2: r0 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000640)={0x400, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {0x0, 0x101}}) [ 2884.426577][T25931] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. 03:39:26 executing program 5: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_CLIENT(r0, 0x404c534a, &(0x7f0000000180)={0xc5, 0x0, 0xffff0000}) 03:39:26 executing program 2: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x18, 0x0, 0x60}}) r2 = dup3(r1, r0, 0x0) read$FUSE(r2, &(0x7f00000023c0)={0x2020}, 0x4) 03:39:26 executing program 3: r0 = openat$capi20(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) ioctl$CAPI_REGISTER(r0, 0x400c4301, &(0x7f0000000100)={0x0, 0x0, 0xfffffffa}) write$capi20(r0, &(0x7f0000000000)={0x10}, 0x10) [ 2885.195601][T25945] tipc: Enabling of bearer rejected, failed to enable media [ 2885.210821][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2885.244884][T25953] tipc: Enabling of bearer rejected, failed to enable media [ 2885.271873][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:27 executing program 5: syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @random, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @remote}, @info_request={0x3}}}}}, 0x0) 03:39:27 executing program 4: ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000080)="4fec9af65f848965ca2962d86ceb6ea59668e893755cbf700f4c704c5d8c2089e96a3a6b63c969100734225124f7419a6b1bbfd9a1650df46c2046384c09c6685cd0284de8e89994009c1f61f0ea94e9d9") perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x2) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller1\x00', {0x2, 0x0, @initdev}}) 03:39:27 executing program 1: r0 = syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x0) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000001b00)={&(0x7f0000001a80)=[{0x0, 0x3600, 0x0, 0x0}], 0x1}) 03:39:27 executing program 0: perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xff7fffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x115480, 0x0) perf_event_open(&(0x7f0000000400)={0x0, 0x70, 0x2, 0x0, 0xf8, 0x4a, 0x0, 0x100000000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x1, @perf_bp={&(0x7f00000002c0), 0x8}, 0x0, 0x6, 0x9, 0x2, 0x2, 0x5}, 0xffffffffffffffff, 0xd, r0, 0x2) rt_tgsigqueueinfo(0x0, 0x0, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup/syz1\x00', 0x1ff) memfd_create(0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0) r1 = dup(r0) openat$cgroup_ro(r1, &(0x7f0000000380)='devices.list\x00', 0x0, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x6, 0x0) r3 = syz_mount_image$cramfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x1001000, 0x1, &(0x7f0000000200)=[{&(0x7f0000000240)="453dcd28001000000300000000000000436f6d7072657373656420524f4d465326336279000000000700000008000000436f6d70726573736564000000000000c0415cf968000053c0040000ed815cf964000053c30d000066", 0x59}], 0x0, &(0x7f0000000080)=ANY=[]) getdents64(r3, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)) r4 = socket$nl_route(0x10, 0x3, 0x0) openat$cgroup_root(0xffffff9c, &(0x7f0000000100)='./cgroup.net/syz0\x00', 0x200002, 0x0) ioctl$TUNATTACHFILTER(r2, 0x401054d5, &(0x7f0000000280)={0x3, &(0x7f00000001c0)=[{0x1, 0x4, 0x4, 0x1}, {0x9, 0x0, 0x4, 0x2}, {0x0, 0xfc, 0xe4}]}) sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x2, &(0x7f0000000240)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x205}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) write$cgroup_subtree(r2, &(0x7f0000000240)=ANY=[], 0xfd45) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz1\x00', 0x200002, 0x0) 03:39:27 executing program 2: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x18, 0x0, 0x60}}) r2 = dup3(r1, r0, 0x0) read$FUSE(r2, &(0x7f00000023c0)={0x2020}, 0x4) 03:39:27 executing program 3: r0 = syz_open_dev$I2C(&(0x7f0000000340), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x180000) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x6, &(0x7f0000000040)={0x0, "e18bbe97ffe025ffc2383d91f027b5a9f63a221959b26ef2199df630857b2e835f"}}) 03:39:27 executing program 5: pipe(&(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r1, 0x407, 0x0) write(r1, &(0x7f0000000340), 0xfffffd82) fcntl$setstatus(r1, 0x4, 0x42000) read$FUSE(r0, &(0x7f00000013c0)={0x2020}, 0x2020) 03:39:27 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x5c, 0x2, 0x6, 0x801, 0x6c, 0x0, {}, [@IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x0}]}]}, 0x5c}, 0x1, 0x40afc}, 0x0) [ 2886.162889][T25972] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 2886.269770][T25972] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. 03:39:28 executing program 2: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x18, 0x0, 0x60}}) r2 = dup3(r1, r0, 0x0) read$FUSE(r2, &(0x7f00000023c0)={0x2020}, 0x4) 03:39:28 executing program 3: r0 = syz_open_dev$I2C(&(0x7f0000000340), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x180000) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x6, &(0x7f0000000040)={0x0, "e18bbe97ffe025ffc2383d91f027b5a9f63a221959b26ef2199df630857b2e835f"}}) 03:39:28 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x26, &(0x7f0000000000), 0x4) 03:39:29 executing program 3: r0 = syz_open_dev$I2C(&(0x7f0000000340), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x180000) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x6, &(0x7f0000000040)={0x0, "e18bbe97ffe025ffc2383d91f027b5a9f63a221959b26ef2199df630857b2e835f"}}) 03:39:29 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x26, &(0x7f0000000000), 0x4) 03:39:29 executing program 4: ioctl$PIO_FONT(0xffffffffffffffff, 0x4b61, &(0x7f0000000080)="4fec9af65f848965ca2962d86ceb6ea59668e893755cbf700f4c704c5d8c2089e96a3a6b63c969100734225124f7419a6b1bbfd9a1650df46c2046384c09c6685cd0284de8e89994009c1f61f0ea94e9d9") perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller1\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$TUNSETSNDBUF(r0, 0x400454d4, &(0x7f0000000000)=0x2) ioctl$sock_inet_SIOCSIFADDR(r1, 0x8914, &(0x7f00000000c0)={'syzkaller1\x00', {0x2, 0x0, @initdev}}) 03:39:29 executing program 2: r0 = epoll_create1(0x0) r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$RTC_WKALM_SET(r1, 0x4028700f, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x18, 0x0, 0x60}}) r2 = dup3(r1, r0, 0x0) read$FUSE(r2, &(0x7f00000023c0)={0x2020}, 0x4) 03:39:29 executing program 0: r0 = socket(0x1e, 0x2, 0x0) bind$tipc(r0, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) bind(r0, &(0x7f0000670000)=@generic={0x1e, "01fd000000010000000000000000fc00000005a121b80c00000000800000002e0a53b232394a0000000100000000ffff0f82e52b0a669ae43a620170a00021f069ca021f6f65dc1161e7068f358c00f9ecff1458d1ea03000030ffff000000090003b9c8ead200c577aeb81c90544592b08b0ee590c8bcf70dc151eb1849"}, 0x80) 03:39:29 executing program 5: syz_open_dev$ttys(0xc, 0x2, 0x0) r0 = syz_open_dev$ptys(0xc, 0x3, 0x0) ioctl$TIOCEXCL(r0, 0x5441) 03:39:29 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x26, &(0x7f0000000000), 0x4) [ 2888.143592][ T4778] EXT4-fs error (device sda1): ext4_lookup:1707: inode #915: comm systemd-timesyn: iget: checksum invalid 03:39:33 executing program 3: r0 = syz_open_dev$I2C(&(0x7f0000000340), 0x0, 0x0) ioctl$I2C_PEC(r0, 0x708, 0x180000) ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x6, &(0x7f0000000040)={0x0, "e18bbe97ffe025ffc2383d91f027b5a9f63a221959b26ef2199df630857b2e835f"}}) 03:39:33 executing program 2: close(0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x40000000003, 0x4, 0x4, 0x7cb, 0x0, 0xffffffffffffff9c}, 0x2c) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) r2 = bpf$MAP_CREATE(0x4, &(0x7f0000000880)={0x3, 0x0, 0x0, 0x0, 0x20000000, 0x0}, 0x2c) close(r2) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) poll(&(0x7f0000000000), 0x45, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r3, r4, 0x0, 0x800000080004103) 03:39:33 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(r1, 0x0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000200)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x0, 0x0, 0x0, 0x10000000002) 03:39:33 executing program 5: mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0) chdir(&(0x7f0000000080)='./file0\x00') r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000000)=""/112, 0x70) lseek(r0, 0xfffffffffffffffe, 0x1) getdents64(r0, 0x0, 0x0) 03:39:33 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x26, &(0x7f0000000000), 0x4) [ 2888.908308][ T35] audit: type=1804 audit(1619062774.098:1110): pid=26021 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir913994430/syzkaller.1tn1uX/1518/cgroup.controllers" dev="sda1" ino=14607 res=1 errno=0 [ 2888.933435][ C0] ------------[ cut here ]------------ [ 2888.933490][ C0] WARNING: CPU: 0 PID: 35 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x1eb/0x700 [ 2888.933692][ C0] Modules linked in: [ 2888.933759][ C0] CPU: 0 PID: 35 Comm: kauditd Tainted: G W 5.12.0-rc6-syzkaller #0 [ 2888.933879][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2888.933952][ C0] RIP: 0010:vkms_vblank_simulate+0x1eb/0x700 [ 2888.934098][ C0] Code: 22 fb e9 b2 fe ff ff 8b 3a e8 91 7b 22 fb e9 bf fe ff ff 44 89 e7 e8 84 7b 22 fb 49 83 fe 01 0f 84 6e ff ff ff e8 85 8a 9f fa <0f> 0b e9 67 ff ff ff 41 8b bf a8 0f 00 00 e8 62 7b 22 fb 84 db 75 [ 2888.934215][ C0] RSP: 0018:ffff88813fc05cb0 EFLAGS: 00010046 [ 2888.934337][ C0] RAX: ffffffff871ca96b RBX: 0000000000000000 RCX: ffff88810241be80 [ 2888.934425][ C0] RDX: 0000000000010000 RSI: 0000000000000002 RDI: 0000000000000001 [ 2888.934496][ C0] RBP: ffff88813fc05d30 R08: ffffffff871ca8b2 R09: ffff88813fffa000 [ 2888.934588][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2888.934653][ C0] R13: 0000000000000000 R14: 0000000000000002 R15: ffff88813fc27b00 [ 2888.934726][ C0] FS: 0000000000000000(0000) GS:ffff88813fc00000(0000) knlGS:0000000000000000 [ 2888.934815][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2888.934897][ C0] CR2: 0000000020000080 CR3: 00000001993ca000 CR4: 00000000001526f0 [ 2888.934980][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 2888.935052][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 2888.935122][ C0] Call Trace: [ 2888.935156][ C0] [ 2888.935191][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2888.935326][ C0] ? vkms_get_vblank_timestamp+0x3d0/0x3d0 [ 2888.935444][ C0] __run_hrtimer+0x48b/0xd20 [ 2888.935615][ C0] hrtimer_interrupt+0x6e2/0x1b50 [ 2888.935803][ C0] ? hrtimer_init+0x570/0x570 [ 2888.935942][ C0] __sysvec_apic_timer_interrupt+0xfd/0x470 [ 2888.936095][ C0] sysvec_apic_timer_interrupt+0xc1/0xf0 [ 2888.936264][ C0] [ 2888.936306][ C0] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2888.936438][ C0] RIP: 0010:console_unlock+0x1929/0x1d70 [ 2888.936576][ C0] Code: db 74 0c 4d 85 ff 75 19 e8 64 45 2d 00 eb 18 8b 7c 24 64 e8 49 36 b0 00 4d 85 ff 74 eb 0f 1f 40 00 e8 4b 45 2d 00 fb 44 89 f0 <34> 01 22 44 24 2f 44 89 f3 0a 5c 24 1f 3c 01 74 10 f6 c3 01 74 21 [ 2888.936682][ C0] RSP: 0018:ffff8881024e7890 EFLAGS: 00000293 [ 2888.936777][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff88810241be80 [ 2888.936854][ C0] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000 [ 2888.936927][ C0] RBP: ffff8881024e7a08 R08: ffffffff818eee73 R09: ffff88813fffa000 [ 2888.937017][ C0] R10: 000000008d490c00 R11: 00000000ffffffff R12: 0000000000000000 [ 2888.937101][ C0] R13: ffff88810241c908 R14: 0000000000000000 R15: 0000000000000200 [ 2888.937194][ C0] ? console_unlock+0x18f3/0x1d70 [ 2888.937373][ C0] ? console_trylock+0x288/0x2c0 [ 2888.937508][ C0] vprintk_emit+0x3cd/0x8b0 [ 2888.937653][ C0] vprintk_default+0x86/0xa0 [ 2888.937782][ C0] vprintk_func+0x2ed/0x2f0 [ 2888.937918][ C0] printk+0x180/0x1cd [ 2888.938064][ C0] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2888.938195][ C0] kauditd_hold_skb+0x30b/0x380 [ 2888.938327][ C0] ? auditd_conn_free+0x1c0/0x1c0 [ 2888.938452][ C0] ? kauditd_send_queue+0x840/0x840 [ 2888.938581][ C0] kauditd_send_queue+0x1f4/0x840 [ 2888.938714][ C0] ? auditd_conn_free+0x1c0/0x1c0 [ 2888.938841][ C0] ? kmsan_get_metadata+0x116/0x180 [ 2888.938970][ C0] ? kauditd_send_queue+0x840/0x840 [ 2888.939116][ C0] kauditd_thread+0xbcc/0x1260 [ 2888.939237][ C0] ? kmsan_get_metadata+0x116/0x180 03:39:34 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000200)={0x0, 0x0}, &(0x7f0000000240)=0xc) ioprio_set$uid(0x3, r1, 0x0) [ 2888.939357][ C0] ? __msan_metadata_ptr_for_store_8+0x13/0x20 [ 2888.939491][ C0] ? init_wait_entry+0x190/0x190 [ 2888.939640][ C0] kthread+0x521/0x560 [ 2888.939757][ C0] ? audit_log+0x310/0x310 [ 2888.939870][ C0] ? kthread_blkcg+0x110/0x110 [ 2888.939995][ C0] ret_from_fork+0x1f/0x30 [ 2888.940136][ C0] ---[ end trace f7326eee4ef5386c ]--- 03:39:34 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000440), r0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000000000023000000080002002e"], 0x1c}}, 0x0) 03:39:35 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x802) readv(r0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/44, 0x2c}], 0x1) 03:39:35 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(r1, 0x0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000200)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x0, 0x0, 0x0, 0x10000000002) 03:39:35 executing program 3: r0 = gettid() r1 = perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xb1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0xfd39, &(0x7f000000cf3d)=""/195}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r1, 0x40042408, r2) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000040)={r0, r1, 0x0, 0x10, 0x0}, 0x30) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r4, 0x0) preadv(r4, &(0x7f00000001c0)=[{0x0}], 0x1, 0x9, 0x0) close(r3) 03:39:35 executing program 4: unshare(0x400) r0 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) recvmmsg(r0, 0x0, 0x0, 0x0, 0x0) pselect6(0x40, &(0x7f0000000000)={0x9}, 0x0, 0x0, 0x0, 0x0) 03:39:35 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000440), r0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000000000023000000080002002e"], 0x1c}}, 0x0) 03:39:35 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x802) readv(r0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/44, 0x2c}], 0x1) [ 2889.501455][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2889.563061][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid [ 2890.981983][ T35] audit: type=1804 audit(1619062775.426:1111): pid=26045 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir913994430/syzkaller.1tn1uX/1519/cgroup.controllers" dev="sda1" ino=14699 res=1 errno=0 03:39:38 executing program 2: close(0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x40000000003, 0x4, 0x4, 0x7cb, 0x0, 0xffffffffffffff9c}, 0x2c) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) r2 = bpf$MAP_CREATE(0x4, &(0x7f0000000880)={0x3, 0x0, 0x0, 0x0, 0x20000000, 0x0}, 0x2c) close(r2) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) poll(&(0x7f0000000000), 0x45, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r3, r4, 0x0, 0x800000080004103) 03:39:38 executing program 4: r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r0, &(0x7f0000000080)={0x1f, 0x0, @none, 0x0, 0x1}, 0xe) 03:39:38 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(r1, 0x0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000200)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x0, 0x0, 0x0, 0x10000000002) 03:39:38 executing program 3: getgroups(0x40000063, &(0x7f00000040c0)) 03:39:38 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x802) readv(r0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/44, 0x2c}], 0x1) 03:39:38 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000440), r0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000000000023000000080002002e"], 0x1c}}, 0x0) 03:39:38 executing program 4: r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = socket$inet_udp(0x2, 0x2, 0x0) close(r3) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f00000000c0)=ANY=[], 0x8) connect$inet6(r4, &(0x7f00000003c0)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c) write$binfmt_misc(r2, &(0x7f0000000000)=ANY=[], 0x4240a2a0) write$binfmt_misc(r0, 0x0, 0x0) write$nbd(0xffffffffffffffff, &(0x7f0000000280)={0x67446698, 0x1, 0x2, 0x3, 0x3, "38ac08d9e15645376d70a1c85490533115325a6026034409cb298d0cd59c216258fa936ab5579ee5cd7f936e439489510c58c723be14be79ace5cca9bfcbd03233769208c5f6424acfbe2c51ff23234192c8793e24d2005dda296e3aae918d9e35f54243e89d06054e6da10d57832a49bbc15169bbad01d568f6d13ab06a401691f40950ba3f538bbeb66b02d91371e425f303f9b7a33ae4a21d87e3b41f4cb8a5cb3e7ec827f2aa0709dfcf888216ef8e9899a61eb8a232455511eec563ddc904683a95c22b4cb16838b14f0dc35d48d5940eb0cd9c207fcd762f36e669d86b"}, 0xf0) openat$autofs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_PIT2(0xffffffffffffffff, 0x4040ae77, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) splice(r1, 0x0, r3, 0x0, 0x100000, 0x3) 03:39:38 executing program 3: r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000000)=0x1, 0x4) sendmsg$tipc(r1, &(0x7f0000000a40)={&(0x7f0000000700)=@name={0x1e, 0x3}, 0x10, 0x0}, 0x0) dup2(r0, r1) [ 2893.568525][ T35] audit: type=1804 audit(1619062778.752:1112): pid=26072 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir913994430/syzkaller.1tn1uX/1520/cgroup.controllers" dev="sda1" ino=14978 res=1 errno=0 03:39:38 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x802) readv(r0, &(0x7f0000000400)=[{&(0x7f0000000180)=""/44, 0x2c}], 0x1) 03:39:38 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000440), r0) sendmsg$IEEE802154_LLSEC_GETPARAMS(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="0100000000000000000023000000080002002e"], 0x1c}}, 0x0) 03:39:39 executing program 0: syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0xffffffff, 0x1, &(0x7f0000000080)=[{&(0x7f00000000c0)="0400050900000000666174000404090a0200027400f801", 0x17}], 0x0, &(0x7f00000004c0)=ANY=[]) chdir(&(0x7f0000000000)='./file1\x00') r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='cgroup.controllers\x00', 0x275a, 0x0) r1 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(r1, 0x0, 0x0, 0x0) write$binfmt_script(r0, &(0x7f0000000200)=ANY=[], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendfile(r3, r2, 0x0, 0x100000002) perf_event_open(&(0x7f00000000c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc00007, 0x0, 0x0, 0x0, 0x10000000002) 03:39:39 executing program 3: r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x401) write$tun(r0, &(0x7f0000000080)=ANY=[], 0x1017) [ 2894.593601][ T35] audit: type=1804 audit(1619062779.782:1113): pid=26089 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir913994430/syzkaller.1tn1uX/1521/cgroup.controllers" dev="sda1" ino=14978 res=1 errno=0 [ 2894.692276][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2894.705095][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:44 executing program 2: close(0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000011fd4)={0x40000000003, 0x4, 0x4, 0x7cb, 0x0, 0xffffffffffffff9c}, 0x2c) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x0) preadv(r0, &(0x7f00000001c0)=[{0x0}], 0x1, 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6) r2 = bpf$MAP_CREATE(0x4, &(0x7f0000000880)={0x3, 0x0, 0x0, 0x0, 0x20000000, 0x0}, 0x2c) close(r2) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) poll(&(0x7f0000000000), 0x45, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000080)='mountinfo\x00') sendfile(r3, r4, 0x0, 0x800000080004103) 03:39:44 executing program 1: r0 = getpid() r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r2) r3 = pidfd_open(r0, 0x0) r4 = epoll_create1(0x0) r5 = dup3(r3, r4, 0x0) setns(r5, 0x28020000) 03:39:44 executing program 5: r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000080)={{0xb, 0x0, 0x0, 0x0, 'syz1\x00'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syz0\x00', 0x0}) 03:39:44 executing program 0: creat(&(0x7f0000000280)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000040)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@allow_other}]}}) clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) execve(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) 03:39:44 executing program 4: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x15, 0x4, &(0x7f00000033c0)=@framed={{0x18, 0x5}, [@alu={0x8000000201a7f19, 0x0, 0x6, 0x0, 0x1, 0x20}]}, &(0x7f0000000140)='GPL\x00', 0x1, 0xfb, &(0x7f0000000200)=""/251, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff66}, 0x48) r2 = socket(0x27, 0x800, 0x6) getsockname$packet(r2, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000640)=0x14) r3 = socket$netlink(0x10, 0x3, 0x0) getitimer(0x0, &(0x7f0000000700)={{0x0}}) r5 = socket$netlink(0x10, 0x3, 0x0) r6 = socket(0x10, 0x803, 0x0) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000009c0)=ANY=[@ANYBLOB="43e707fa342588020501a84786e76412a71bf88cd534f2274bdaa106e209716b2ff93531e85d6321aa3cab42ee4787c4d2a040c365304d7eb449f529a68df474484607c629537528a85b67a3b3ff4a89a2f68b7c38cf676f8590e00c553e5594daf5b5d47e36f216792d363cf884aa3477746e32945510e873f9550b94430fcb7ca81835d1d268e09cf6027fa156a379137d5d54b43ac1165ce583b9a860354b48afe7419d5684d7bb0caa724d00d739c8a963358642d839b84f10539b2e38ca021e84c8ec15b18c4894d9b4dbc53a30e9", @ANYRES16=r7, @ANYRESOCT=r4], 0x28}, 0x1, 0x0, 0x0, 0x24008089}, 0x80801) getsockopt$ARPT_SO_GET_INFO(r6, 0x0, 0x60, &(0x7f0000000240), &(0x7f0000000340)=0x44) sendmsg$NL80211_CMD_SET_REG(r5, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16, @ANYBLOB="000806007000ab53f3053124847d1b17dba9d386557f0000c98c502a000000"], 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x20004080) sendmsg$TIPC_NL_MON_GET(r6, &(0x7f0000000500)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="88da8a01c54cf28410f936916324c315d62f934ef48187c9a7b089b9f20f2cb97571aeba9bf70539a692fb5a476807a0def29c4efe441412e2e0b6b5caf86e1cd47c2f934ec0dfc26b5799008d43300800c9916d0b0d93f6627871788c59ed326f9377d704f9341bce4f33415b91d03e609956fe305d4d75a705fcd2dccf8799285e9e788820ba244f22526c2dcca85062f68e2aace9f0587d6705c7abd7d9381d", @ANYRES32=r4, @ANYRESOCT=r2], 0x88}, 0x1, 0x0, 0x0, 0x1}, 0x20000040) sendmsg$nl_route(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newlink={0x80, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x41100, 0x10044}, [@IFLA_LINKINFO={0x58, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x48, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6}, @IFLA_IPTUN_FLOWINFO={0x8, 0x7, 0x8004}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_ENCAP_DPORT={0x6, 0x12, 0x4e21}, @IFLA_IPTUN_COLLECT_METADATA={0x4}, @IFLA_IPTUN_FLAGS={0x8, 0x8, 0x1e}, @IFLA_IPTUN_REMOTE={0x14, 0x3, @local}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x4}]}}}, @IFLA_MASTER={0x8}]}, 0x80}, 0x1, 0x0, 0x0, 0x41}, 0x0) 03:39:44 executing program 3: r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x401) write$tun(r0, &(0x7f0000000080)=ANY=[], 0x1017) [ 2899.261782][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #2952: comm systemd-udevd: iget: checksum invalid [ 2899.320611][ T4696] EXT4-fs error (device sda1): ext4_lookup:1707: inode #3043: comm systemd-udevd: iget: checksum invalid 03:39:44 executing program 1: r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f0100000000000000000006241a0000000905810300020000000904010000020d00000904010102020d0000090582020002000000090503020002"], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000580)={0x24, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x80, 0x1c, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb, 0x8, 0x100}}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) 03:39:44 executing program 5: syz_emit_ethernet(0x86, &(0x7f0000000140)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x1b59, 0x64, 0x0, @wg=@response={0x3, 0x0, 0x0, "1200000108060000040111000600000600000000400000000200", "b38cfeeb30ff0f000000000000131b77", {"694c875dfb1be5d2a0057a62022a1564", "a329d3a73b8268129e5fa4316a5d8c69"}}}}}}}, 0x0) 03:39:44 executing program 0: set_mempolicy(0x3, &(0x7f0000000380)=0xf586, 0x3) r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000000)=0x2000, 0x4) 03:39:44 executing program 3: r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x401) write$tun(r0, &(0x7f0000000080)=ANY=[], 0x1017) 03:39:44 executing program 4: r0 = epoll_create(0x20) r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xa000201b}) ioctl$SNDCTL_DSP_SPEED(r1, 0xc0045002, &(0x7f0000000180)) ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000000)) poll(&(0x7f0000000140)=[{r0}], 0x1, 0x0) 03:39:45 executing program 5: syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x8000000, 0x90, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/320, 0x140, 0x10000}, {&(0x7f0000010200)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\a\x00'/32, 0x20, 0x10220}, {&(0x7f0000010300)="00000000000000000000000001000000000000e4000050010000000000008000000000000200000000000000000001000000000022000000000000000000010000000100001000000200010001000000000000000000500100000000a9c97ec75d8046c882c2cc1cbf52166701000000000000000000d00100000000a9c97ec75d8046c882c2cc1cbf52166700000001000000000022000000000000000000010000000100001000000200010001000000000000000000500100000000a9c97ec75d8046c882c2cc1cbf52166701000000000000000000d00100000000a9c97ec75d8046c882c2cc1cbf52166700"/256, 0x100, 0x10320}, {&(0x7f0000010400)="00000000000000000000000040d2010000000005000000000000000040500100000000050000000000000000c0d1010000000005000000000000000000d0010000000004000000000000000000d2010000000005000000000000000000d1010000000004000000000000000000000800000000000002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d301000000000600000000000000004050010000000005000000000000000080d20100000000060000000000000000c0d2010000000006000000000000000040d30100000000060000000000000000c0d0010000000006000000000000000000000800000000003002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080d3010000000007000000000000000040500100000000050000000000000000c0d30100000000070000000000000000c0d2010000000006000000000000000040d30100000000060000000000000000c0d0010000000006000000000000000000000800000000003002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040d001000000000400000000000000000050010000000004000000000000000080d0010000000004000000000000000000d00100000000040000000000000000c0d0010000000004000000000000000000d101000000000400000000000000000000080000000000000200000000000100"/640, 0x280, 0x10b20}, {&(0x7f0000010700)="d21180aabd991c48fd80d2568cf505c384187fe5adc92b7502f1270ab19158456a8ee9c735e84cc5bddef2a867f1dae500001000000000000100000000000001e72233f98c494318815f9535a08d2bf40300000000000000030000000000000004000000000100000000000000d80100000000000000393f0000620000000001000000000000e40000100000000000e93e0000500000000001000000000000e40000500000000000993e0000500000000001000000000000e40000d00000000000493e00005000"/224, 0xe0, 0x100000}, {&(0x7f0000010800)="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"/768, 0x300, 0x103ea0}, {&(0x7f0000010b00)="00000000000000000000000000000000010000000000000001000000000000000200000000000000010000000000000001000000000000000200000000000000010000000000000001000000000000000200000000000000010000000000000001000000000000000200000000000000010000000000000001000000000000000200000000000000010000000000000001000000000000000200000000000000ca35fabb319826a8bfee3c614ff1e41715cc0892ecfa1ded11a8fbb93161d2c76a8ee9c735e84cc5bddef2a867f1dae500801000000000000000000000000001e72233f98c494318815f9535a08d2bf40100000000000000030000000000000002000000000100000000000000d80100000000000000393f0000620000000001000000000000e40000100000000000e93e00005000"/320, 0x140, 0x107f60}, {&(0x7f0000010d00)="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", 0x140, 0x10bf40}, {&(0x7f0000010f00)="000000000000000000000000000000000300000000000000000100000000000000001000000000000000400000000000e72233f98c494318815f9535a08d2bf4b2971bb3e1899e75a38a7b26c10f0642f090c8d39b8dfca314fb11889e9353b16a8ee9c735e84cc5bddef2a867f1dae500001100000000000000000000000001e72233f98c494318815f9535a08d2bf401000000000000000500000000000000", 0xa0, 0x10ffc0}, {&(0x7f0000011000)="42befb81f29df4856adcf2710dc0593a53a5383398464ab28614f778fcd6fb106a8ee9c735e84cc5bddef2a867f1dae500401100000000000000000000000001e72233f98c494318815f9535a08d2bf401000000000000000700000000000000", 0x60, 0x114000}, {&(0x7f0000011100)="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", 0x1c0, 0x118000}, {&(0x7f0000011300)="00000000000000000000000000000000000000000000000000000000004000000000000000010000000000000400000000000000010000000000000002000000000000000200000000000000b00100000000000000010000000000000002000000000000000200000000000000b00300000000000000010000000000000002000000000000000200000000000000b00400000000000000010000000000000002000000000000000200000000000000b002000000000000000100000000000000010000000000000002000000000000000100000000000000010000000000000002000000000000000040010000000000000100000000000002000000000000004c00067ddc234f09ad3560c7790ebc63b4a0094c1e57b2bbad56eb79d8f21f9b6a8ee9c735e84cc5bddef2a867f1dae500c01100000000000100000000000001e72233f98c494318815f9535a08d2bf40200000000000000040000000000000002000000000100000000000000cc00001000000000006b3f0000300000000100000000000000cc00005000000000003b3f00003000"/416, 0x1a0, 0x11bf00}, {&(0x7f0000011500)="0300000000000000000100000000000000005000000000000000800000000000e72233f98c494318815f9535a08d2bf40300000000000000000100000000000000001000000000000000400000000000e72233f98c494318815f9535a08d2bf462bbb01f894d308ff73fa0e9bb0e0c0067f3aa9fe65140fb3ba1c6a24cf75e626a8ee9c735e84cc5bddef2a867f1dae500001200000000000100000000000001e72233f98c494318815f9535a08d2bf40200000000000000030000000000000003000000000100000000000000d80100000000000000393f0000620000000001000000000000e40000100000000000e93e0000500000000001000000000000e40000500000000000993e00005000"/288, 0x120, 0x11ffa0}, {&(0x7f0000011700)="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", 0x100, 0x123f00}, {&(0x7f0000011800)="64710fcfdaf098734db69aaf060e6e36dc1037d95b62d9e26c0ee499fd283caa6a8ee9c735e84cc5bddef2a867f1dae500005000000000000100000000000001e72233f98c494318815f9535a08d2bf40200000000000000010000000000000004000000000200000000000000840000000000000000e43d0000b701000004000000000000008400000000000000002d3c0000b70100000500000000000000840000000000000000763a0000b70100000700000000000000840000000000000000bf380000b70100"/224, 0xe0, 0x500000}, {&(0x7f0000011900)="0000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed41000000000000", 0x40, 0x503920}, {&(0x7f0000011a00)="00000000010000000000000000000000000000000040110000000000000000000000000000400000000000000000000000000000000000000000000001000000", 0x40, 0x5039c0}, {&(0x7f0000011b00)="00000000000000000000000000000000000000000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x503ac0}, {&(0x7f0000011c00)="00000000000000000000000000000000000000000000000000000001000000000000000000000000000000000011000000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000016e0a8b6ec3b48738ac80862a23e15a200"/160, 0xa0, 0x503b60}, {&(0x7f0000011d00)="000055bc645f000000000000000055bc645f00"/32, 0x20, 0x503c20}, {&(0x7f0000011e00)="00000000000000000000000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x503c80}, {&(0x7f0000011f00)="0000000000000000000000000000000000000200000000000000000000000000000000c0110000000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000200"/128, 0x80, 0x503d20}, {&(0x7f0000012000)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x503e40}, {&(0x7f0000012100)="000000000000000000020000000000000000000000000000000080110000000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000200000000000000", 0x60, 0x503ee0}, {&(0x7f0000012200)="ade93dedc41a1d74a576df075c50bd22d843c98a2142bab52958de15e49783336a8ee9c735e84cc5bddef2a867f1dae500405000000000000100000000000001e72233f98c494318815f9535a08d2bf40300000000000000040000000000000003000000000100000000000000cc00001000000000006b3f0000300000000100000000000000cc00005000000000003b3f0000300000000100000000000000cc0000d000000000000b3f00003000"/192, 0xc0, 0x504000}, {&(0x7f0000012300)="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", 0x260, 0x507f60}, {&(0x7f0000012600)="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"/608, 0x260, 0x50bee0}, {&(0x7f0000012900)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x50f840}, {&(0x7f0000012a00)="00000100000000000000000000000000000000401100000000000000000000000000004000000000000000000000000000000000000000000000010000000000", 0x40, 0x50f8e0}, {&(0x7f0000012b00)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed41", 0x120, 0x50f9e0}, {&(0x7f0000012d00)="0000000000000000000003000000000000000001000000000000000051000000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000030000000000000016e0a8b6ec3b48738ac80862a23e15a200"/128, 0x80, 0x50fb60}, {&(0x7f0000012e00)="000000000000000000000000000000000055bc645f000000000000000055bc645f00"/64, 0x40, 0x50fc00}, {&(0x7f0000012f00)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x50fc80}, {&(0x7f0000013000)="000000000000000000000000000000000000030000000000000000000000000000000040500000000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000300"/128, 0x80, 0x50fd20}, {&(0x7f0000013100)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x50fe40}, {&(0x7f0000013200)="000000000000000000030000000000000000000000000000000080500000000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000300000000000000", 0x60, 0x50fee0}, {&(0x7f0000013300)="e09a3370861fa6290a8f3e8621456fddbfc59480b6d66356cdf1ab2c39c548df6a8ee9c735e84cc5bddef2a867f1dae500005100000000000100000000000001e72233f98c494318815f9535a08d2bf40300000000000000050000000000000002000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c00"/160, 0xa0, 0x510000}, {&(0x7f0000013400)="0000000000000000000000000000000000000000000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f0000000000000000", 0xc0, 0x513f40}, {&(0x7f0000013500)="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", 0x100, 0x1500000}, {&(0x7f0000013600)="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", 0x340, 0x1503dc0}, {&(0x7f0000013a00)="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", 0x240, 0x1507dc0}, {&(0x7f0000013d00)="f5ccad51fec87bdbcd9f83bb9ccca771a6a4859619a4693ad135dac9abad870a6a8ee9c735e84cc5bddef2a867f1dae500005001000000000100000000000001e72233f98c494318815f9535a08d2bf40400000000000000030000000000000006000000000100000000000000d80100000000000000393f0000620000000001000000000000e40000100000000000e93e0000500000000001000000000000e40000500000000000993e0000500000000001000000000000e40000d00000000000493e0000500000000001000000000000e40000500100000000d93d0000700000000001000000000000e40000d00100000000693d0000700000000000000000", 0x100, 0x1d00000}, {&(0x7f0000013e00)="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", 0x340, 0x1d03dc0}, {&(0x7f0000014200)="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", 0x240, 0x1d07dc0}, {&(0x7f0000014500)="cceee75c79115dc99299cb6365f311064201830128e261b7010fe9574c7f2bda6a8ee9c735e84cc5bddef2a867f1dae50000d001000000000100000000000001e72233f98c494318815f9535a08d2bf40400000000000000050000000000000002000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c00"/160, 0xa0, 0x2500000}, {&(0x7f0000014600)="0000000000000000000000000000000000000000000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f0000000000000000f9034e8369e3b8508ec1a3f41c71be624cd1bdf5a67d67f8e4a35fe611a680506a8ee9c735e84cc5bddef2a867f1dae50040d001000000000100000000000001e72233f98c494318815f9535a08d2bf4060000000000000005000000000000001b000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c0000000001000000000000544bae790400000000cc3e0000230000000001000000000000546b826b1100000000a53e000027000000000100000000000054bf5d291700000000823e000023000000000100000000000054bcde42e5000000005f3e000023000000000100000000000054482d12f6000000003c3e00002300000001010000000000000100000000000000009c3d0000a000000001010000000000000c00010000000000008d3d00000f0000000101000000000000544bae7904000000006a3d000023000000010100000000000054482d12f600000000473d0000230000000201000000000000010000000000000000a73c0000a000000002010000000000000c0101000000000000983c00000f00000002010000000000006c0000000000000000693800002f0400000301000000000000010000000000000000c9370000a000000003010000000000000c0101000000000000ba3700000f00000003010000000000006c00000000000000007f3700003b0000000401000000000000010000000000000000df360000a000000004010000000000000c0001000000000000d03600000f00000004010000000000001822a8f12600000000a13600002f000000040100000000000018d65ba13500000000723600002f00000004010000000000006c0000000000000000533600001f0000000501000000000000010000000000000000b3350000a000000005010000000000000c0001000000000000953500001e0000000601000000000000010000000000000000f5340000a000000006010000000000000c0001000000000000e23400001300000006010000000000006c0000000000000000693400007900"/992, 0x3e0, 0x2503f40}, {&(0x7f0000014a00)="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", 0xe60, 0x25074c0}, {&(0x7f0000015900)="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", 0xc00, 0x250b480}, {&(0x7f0000016500)="ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7aabf6d719b1c233f393709d37a209466038abbe5effd69af087e6b01ab07ba6d6a8ee9c735e84cc5bddef2a867f1dae50000d101000000000100000000000001e72233f98c494318815f9535a08d2bf404000000000000000700000000000000", 0xc0, 0x250ffa0}, {&(0x7f0000016600)="9cbd1835d41e426a879efc24a0b21c409eccb830656d15b743085459b6c9e29c6a8ee9c735e84cc5bddef2a867f1dae50040d101000000000100000000000001e72233f98c494318815f9535a08d2bf40400000000000000f7ffffffffffffff02000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c00"/160, 0xa0, 0x2514000}, {&(0x7f0000016700)="0000000000000000000000000000000000000000000000000000000002002e2e04000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f0000000000000000000000000000000000000000c5e3a4d5da1dec7c41574c7bc7811e3e539aba929965797b462fbdbe860f142f6a8ee9c735e84cc5bddef2a867f1dae50080d101000000000100000000000001e72233f98c494318815f9535a08d2bf404000000000000000900000000000000010000000016e0a8b6ec3b4873fb8ac80862a23e15a2933f0000080000000000", 0x140, 0x2517f40}, {&(0x7f0000016900)="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", 0x1e0, 0x251bfe0}, {&(0x7f0000016b00)="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"/672, 0x2a0, 0x251fe80}, {&(0x7f0000016e00)="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", 0x2c0, 0x2523ea0}, {&(0x7f0000017100)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x2527560}, {&(0x7f0000017200)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x2527720}, {&(0x7f0000017300)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x2527840}, {&(0x7f0000017400)="0000040000000000000000000000000000000000d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/96, 0x60, 0x25278e0}, {&(0x7f0000017500)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed41", 0x120, 0x25279e0}, {&(0x7f0000017700)="00000000000000000000040000000000000000010000000000000000d0010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000000016e0a8b6ec3b48738ac80862a23e15a200"/128, 0x80, 0x2527b60}, {&(0x7f0000017800)="000000000000000000000000000000000055bc645f000000000000000055bc645f00"/64, 0x40, 0x2527c00}, {&(0x7f0000017900)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x2527c80}, {&(0x7f0000017a00)="000000000000000000000000000000000000050000000000000000000000000000000000d20100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000500"/128, 0x80, 0x2527d20}, {&(0x7f0000017b00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x2527e40}, {&(0x7f0000017c00)="0000000000000000000500000000000000000000000000000000c0d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000500000000000000", 0x60, 0x2527ee0}, {&(0x7f0000017d00)="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"/416, 0x1a0, 0x2528000}, {&(0x7f0000017f00)="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"/1408, 0x580, 0x252be60}, {&(0x7f0000018500)="06000000000000006400000000000000000000000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c6572730600000000000000090066696c652e636f6c6406000000000000000600000000000000640000000000000064000000000000000000000000000000010000000000000000000000ed810000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f91230600000000000000003000000000000000000000010000d000000000000030000000000000000000000000000000300000000000000400000000000000050066696c65320500000000000000050066696c653306000000000000000600000000000000282300000000000000300000000000000000000000000000020000000000000000000000ed810000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912306000000000000000a00000000000000000000000073797a6b616c6c6572730000000000000000000000000000000000060000000000000006000b0008757365722e7861747472317861747472310000000000000000000000000000000000060000000000000006000b0008757365722e7861747472327861747472320300000000000000050066696c6531060000000000000006000000000000000a000000000000000a000000000000000000000000000000010000000000000000000000ed810000000000000000000000000000000000000300000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f91230600000000000000260000000000000000000000002f746d702f73797a2d696d61676567656e3335333733313436322f66696c65302f66696c65300300000000000000050066696c653106000000000000000600000000000000260000000000000026000000000000000000000000000000010000000000000000000000ffa10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912306000000000000001a04000000000000000000000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c0200000000000000050066696c6530060000000000000006000000000000001a040000000000001a040000000000000000000000000000010000000000000000000000ed810000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912303010000000000000100000000000000000600000000000000000005000766696c653102010000000000000100000000000000000600000000000000000005000166696c653003010000000000000100000000000000000600000000000000000005000766696c653102010000000000000100000000000000000600000000000000000005000166696c65300200000000000000050066696c653006000000000000000600000000000000140000000000000000000000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912306010000000000000100000000000000000600000000000000000009000166696c652e636f6c6405010000000000000100000000000000000600000000000000000005000166696c653305010000000000000100000000000000000600000000000000000005000166696c653204010000000000000100000000000000000600000000000000000005000166696c653101010000000000000100000000000000000600000000000000000005000266696c653004010000000000000100000000000000000600000000000000000005000166696c653105010000000000000100000000000000000600000000000000000005000166696c653205010000000000000100000000000000000600000000000000000005000166696c653306010000000000000100000000000000000600000000000000000009000166696c652e636f6c6401010000000000000100000000000000000600000000000000000005000266696c6530000000000000000002002e2e030000000000000006000000000000003a0000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000500000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000000000001291063e6c0255dd0b3358121b22d9f9395e7021458b4f16c897c3525b7acdde6a8ee9c735e84cc5bddef2a867f1dae50000d301000000000100000000000001e72233f98c494318815f9535a08d2bf4060000000000000001000000000000000a000000000200000000000000840000000000000000e43d0000b701000004000000000000008400000000000000002d3c0000b701000005000000000000000c06000000000000001c3c0000110000000500000000000000840000000000000000653a0000b70100000600000000000000010000000000000000c5390000a000000006000000000000000c0600000000000000b93900000c000000060000000000000054d2c2bf8d0000000094390000250000000700000000000000840000000000000000dd370000b7010000090000000000000084000000000000000026360000b7010000f7ffffffffffffff8400000000000000006f340000b701000000", 0xdc0, 0x252f3a0}, {&(0x7f0000019300)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x2533560}, {&(0x7f0000019400)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x2533720}, {&(0x7f0000019500)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x2533840}, {&(0x7f0000019600)="00000600000000000000000000000000000000c0d00100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/96, 0x60, 0x25338e0}, {&(0x7f0000019700)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000080ffffffff00"/320, 0x140, 0x25339e0}, {&(0x7f0000019900)="000000000000000000000600000000000000000100000000000000c0d2010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000060000000000000016e0a8b6ec3b48738ac80862a23e15a20000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000055bc645f000000009f19582455bc645f00"/224, 0xe0, 0x2533b60}, {&(0x7f0000019a00)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x2533c80}, {&(0x7f0000019b00)="000000000000000000000000000000000000060000000000000000000000000000000040d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/128, 0x80, 0x2533d20}, {&(0x7f0000019c00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x2533e40}, {&(0x7f0000019d00)="000000000000000000060000000000000000000000000000000080d20100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600000000000000", 0x60, 0x2533ee0}, {&(0x7f0000019e00)="4627892e23e0397417b0e467a871ee2ecc0da27c89c081aeb178b8970a73d8fb6a8ee9c735e84cc5bddef2a867f1dae50040d301000000000100000000000001e72233f98c494318815f9535a08d2bf40600000000000000040000000000000006000000000000000000000000f90100000000000000733f0000280000000100000000000000cc0000d00000000000433f0000300000000100000000000000cc0000500100000000133f0000300000000100000000000000cc0000d00100000000e33e0000300000000100000000000000cc0000500200000000b33e0000300000000100000000000000cc0000500400000000833e0000300000000000000000", 0x100, 0x2534000}, {&(0x7f0000019f00)="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", 0x280, 0x2537ee0}, {&(0x7f000001a200)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x253b560}, {&(0x7f000001a300)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x253b720}, {&(0x7f000001a400)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x253b840}, {&(0x7f000001a500)="00000600000000000000000000000000000000c0d00100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/96, 0x60, 0x253b8e0}, {&(0x7f000001a600)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000080ffffffff00"/320, 0x140, 0x253b9e0}, {&(0x7f000001a800)="000000000000000000000600000000000000000100000000000000c0d2010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000060000000000000016e0a8b6ec3b48738ac80862a23e15a20000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000055bc645f000000009f19582455bc645f00"/224, 0xe0, 0x253bb60}, {&(0x7f000001a900)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x253bc80}, {&(0x7f000001aa00)="000000000000000000000000000000000000060000000000000000000000000000000040d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/128, 0x80, 0x253bd20}, {&(0x7f000001ab00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x253be40}, {&(0x7f000001ac00)="0000000000000000000700000000000000000000000000000000c0d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000700000000000000", 0x60, 0x253bee0}, {&(0x7f000001ad00)="117f8dee7a95b3a6df1e504d27c6244ac6e9e8e750eb1e1c39a54bb0691ff4ed6a8ee9c735e84cc5bddef2a867f1dae500c0d301000000000100000000000001e72233f98c494318815f9535a08d2bf4070000000000000002000000000000000c000000000000d00000000000a80030000000000000663f0000350000000000d00000000000c000008000000000004e3f0000180000000000500100000000c00000800000000000363f0000180000000040500100000000a90000000000000000153f0000210000000000d00100000000c00000000200000000fd3e00001800000000c0d00100000000a90000000000000000dc3e0000210000000040d10100000000a90000000000000000bb3e0000210000000080d10100000000a900000000000000009a3e00002100000000c0d20100000000a90000000000000000793e0000210000000040d30100000000a90000000000000000583e0000210000000080d30100000000a90000000000000000373e00002100000000c0d30100000000a90000000000000000163e00002100"/416, 0x1a0, 0x253c000}, {&(0x7f000001af00)="000000000000000000000000000000000000000000000000000000010000000000000007000000000000000200000000000000b00200000000000000010000000000000007000000000000000200000000000000b00100000000000000010000000000000006000000000000000200000000000000b00400000000000000010000000000000006000000000000000200000000000000b00500000000000000010000000000000004000000000000000200000000000000b00900000000000000010000000000000004000000000000000200000000000000b0f7ffffffffffffff010000000000000006000000000000000200000000000000b0070000000000000000c001000000000000010000000000002400000000000000010000000000000005000000000000000200000000000000b00300000000000000004000000000000000010000000000002200000000000000003000000000000000010000000000000100000000000000010000000000000006000000000000000100000000000000b205000000000000000501000000000000000000000000000001000000", 0x1a0, 0x253fe60}, {&(0x7f000001b100)="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"/320, 0x140, 0x4000000}, {&(0x7f000001b300)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x00\a\x00'/32, 0x20, 0x4000220}, {&(0x7f000001b400)="00000000000000000000000001000000000000e4000050010000000000008000000000000200000000000000000001000000000022000000000000000000010000000100001000000200010001000000000000000000500100000000a9c97ec75d8046c882c2cc1cbf52166701000000000000000000d00100000000a9c97ec75d8046c882c2cc1cbf52166700000001000000000022000000000000000000010000000100001000000200010001000000000000000000500100000000a9c97ec75d8046c882c2cc1cbf52166701000000000000000000d00100000000a9c97ec75d8046c882c2cc1cbf52166700"/256, 0x100, 0x4000320}, {&(0x7f000001b500)="00000000000000000000000040d2010000000005000000000000000040500100000000050000000000000000c0d1010000000005000000000000000000d0010000000004000000000000000000d2010000000005000000000000000000d1010000000004000000000000000000000800000000000002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d301000000000600000000000000004050010000000005000000000000000080d20100000000060000000000000000c0d2010000000006000000000000000040d30100000000060000000000000000c0d0010000000006000000000000000000000800000000003002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080d3010000000007000000000000000040500100000000050000000000000000c0d30100000000070000000000000000c0d2010000000006000000000000000040d30100000000060000000000000000c0d0010000000006000000000000000000000800000000003002000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040d001000000000400000000000000000050010000000004000000000000000080d0010000000004000000000000000000d00100000000040000000000000000c0d0010000000004000000000000000000d101000000000400000000000000000000080000000000000200000000000100"/640, 0x280, 0x4000b20}, {&(0x7f000001b800)="cceee75c79115dc99299cb6365f311064201830128e261b7010fe9574c7f2bda6a8ee9c735e84cc5bddef2a867f1dae50000d001000000000100000000000001e72233f98c494318815f9535a08d2bf40400000000000000050000000000000002000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c00"/160, 0xa0, 0x4500000}, {&(0x7f000001b900)="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"/992, 0x3e0, 0x4503f40}, {&(0x7f000001bd00)="000000000000000000000000000006000000000000006400000000000000000000000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c6572730600000000000000090066696c652e636f6c6406000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ff810000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f91230400000000000000050066696c65320500000000000000050066696c653306000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ff810000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912306000000000000000a00000000000000000000000073797a6b616c6c6572730000000000000000000000000000000000060000000000000006000b0008757365722e7861747472317861747472310000000000000000000000000000000000060000000000000006000b0008757365722e7861747472327861747472320300000000000000050066696c653106000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ff810000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f91230600000000000000260000000000000000000000002f746d702f73797a2d696d61676567656e3335333733313436322f66696c65302f66696c65300300000000000000050066696c653106000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ffa10000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912306000000000000001a04000000000000000000000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c0200000000000000050066696c653006000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ff810000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912303010000000000000100000000000000000600000000000000000005000766696c653102010000000000000100000000000000000600000000000000000005000166696c65300200000000000000050066696c653006000000000000000600000000000000000000000000000000000000000000000000000000000000010000000000000000000000ff410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912355bc645f00000000162f912304010000000000000100000000000000000600000000000000000005000166696c653105010000000000000100000000000000000600000000000000000005000166696c653205010000000000000100000000000000000600000000000000000005000166696c653306010000000000000100000000000000000600000000000000000009000166696c652e636f6c6401010000000000000100000000000000000600000000000000000005000266696c6530000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000042467e854174d0723ef0585a1c3c678c80528ceb662c0288fbe4bb6882672f876a8ee9c735e84cc5bddef2a867f1dae50080d001000000000100000000000001e72233f98c494318815f9535a08d2bf4060000000000000005000000000000001c000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c0000000001000000000000544bae790400000000cc3e0000230000000001000000000000546b826b1100000000a53e000027000000000100000000000054bf5d291700000000823e000023000000000100000000000054bcde42e5000000005f3e000023000000000100000000000054482d12f6000000003c3e00002300000001010000000000000100000000000000009c3d0000a000000001010000000000000c00010000000000008d3d00000f0000000101000000000000544bae7904000000006a3d000023000000010100000000000054482d12f600000000473d0000230000000201000000000000010000000000000000a73c0000a000000002010000000000000c0101000000000000983c00000f00000002010000000000006c0000000000000000693800002f0400000301000000000000010000000000000000c9370000a000000003010000000000000c0101000000000000ba3700000f00000003010000000000006c00000000000000007f3700003b0000000401000000000000010000000000000000df360000a000000004010000000000000c0001000000000000d03600000f00000004010000000000001822a8f12600000000a13600002f000000040100000000000018d65ba13500000000723600002f00000004010000000000006c0000000000000000533600001f0000000501000000000000010000000000000000b3350000a000000005010000000000000c0001000000000000953500001e00000005010000000000006c000000000000000060350000350000000601000000000000010000000000000000c0340000a000000006010000000000000c0001000000000000ad3400001300000006010000000000006c000000000000000034340000790000", 0xe60, 0x45074c0}, {&(0x7f000001cc00)="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", 0xc00, 0x450b480}, {&(0x7f000001d800)="ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7aabf6d719b1c233f393709d37a209466038abbe5effd69af087e6b01ab07ba6d6a8ee9c735e84cc5bddef2a867f1dae50000d101000000000100000000000001e72233f98c494318815f9535a08d2bf404000000000000000700000000000000", 0xc0, 0x450ffa0}, {&(0x7f000001d900)="9cbd1835d41e426a879efc24a0b21c409eccb830656d15b743085459b6c9e29c6a8ee9c735e84cc5bddef2a867f1dae50040d101000000000100000000000001e72233f98c494318815f9535a08d2bf40400000000000000f7ffffffffffffff02000000000001000000000000010000000000000000fb3e0000a000000000010000000000000c0001000000000000ef3e00000c00"/160, 0xa0, 0x4514000}, {&(0x7f000001da00)="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", 0x140, 0x4517f40}, {&(0x7f000001dc00)="000000000000000000000000000000000000000000000000050000000000000036c0b1f4feb299481d7c1451b3fc15445aebd3c4e5c679f479c0314865b1b0126a8ee9c735e84cc5bddef2a867f1dae500c0d101000000000100000000000001e72233f98c494318815f9535a08d2bf4050000000000000002000000000000000b000000000000d00000000000c00000800000000000833f0000180000000000500100000000c000008000000000006b3f0000180000000040500100000000a900000000000000004a3f0000210000000000d00100000000a90000000000000000293f0000210000000000d00100000000c00000000200000000113f0000180000000000d10100000000a90000000000000000f03e0000210000000040d10100000000a90000000000000000cf3e0000210000000080d10100000000a90000000000000000ae3e00002100000000c0d10100000000a900000000000000008d3e0000210000000000d20100000000a900000000000000006c3e0000210000000040d20100000000a900000000000000004b3e0000210000000080d10100000000a900000000000000004b3e0000210000000080d10100000000a90000000000000000333e0000210000000000500000000000c00000800000000000f33e000018", 0x1e0, 0x451bfe0}, {&(0x7f000001de00)="010000000000000004000000000000000200000000000000010000000000000004000000000000000200000000000000010000000000000005000000000000000200000000000000b00100000000000000010000000000000005000000000000000200000000000000b00400000000000000010000000000000005000000000000000200000000000000b00200000000000000010000000000000004000000000000000200000000000000b00900000000000000010000000000000004000000000000000200000000000000b0f7ffffffffffffff010000000000000004000000000000000200000000000000b0070000000000000000c001000000000000010000000000002400000000000000010000000000000004000000000000000200000000000000b00500000000000000010000000000000005000000000000000200000000000000b00300000000000000004000000000000000010000000000002200000000000000000000000000000000010000000000000100000000000000b071d7e6f46347d88669317e272fd5ec9f77996b4d6d2789482e5af0d2c329d96a8ee9c735e84cc5bddef2a867f1dae50000d201000000000100000000000001e72233f98c494318815f9535a08d2bf40500000000000000040000000000000005000000000100000000000000cc0000d000000000006b3f0000300000000100000000000000cc00005001000000003b3f0000300000000100000000000000cc0000d001000000000b3f0000300000000100000000000000cc0000500200000000db3e0000300000000100000000000000cc0000500400000000ab3e0000300000000100000000000000cc0000500400000000ab3e0000300000000100000000000000cc00005004000000007b3e00003000"/672, 0x2a0, 0x451fe80}, {&(0x7f000001e100)="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", 0x2c0, 0x4523ea0}, {&(0x7f000001e400)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x4527560}, {&(0x7f000001e500)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x4527720}, {&(0x7f000001e600)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x4527840}, {&(0x7f000001e700)="0000040000000000000000000000000000000000d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/96, 0x60, 0x45278e0}, {&(0x7f000001e800)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed41", 0x120, 0x45279e0}, {&(0x7f000001ea00)="00000000000000000000040000000000000000010000000000000000d0010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000000016e0a8b6ec3b48738ac80862a23e15a200"/128, 0x80, 0x4527b60}, {&(0x7f000001eb00)="000000000000000000000000000000000055bc645f000000000000000055bc645f00"/64, 0x40, 0x4527c00}, {&(0x7f000001ec00)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x4527c80}, {&(0x7f000001ed00)="000000000000000000000000000000000000050000000000000000000000000000000000d20100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000500"/128, 0x80, 0x4527d20}, {&(0x7f000001ee00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x4527e40}, {&(0x7f000001ef00)="0000000000000000000500000000000000000000000000000000c0d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000500000000000000", 0x60, 0x4527ee0}, {&(0x7f000001f000)="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"/416, 0x1a0, 0x4528000}, {&(0x7f000001f200)="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"/1408, 0x580, 0x452be60}, {&(0x7f000001f800)="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", 0xdc0, 0x452f3a0}, {&(0x7f0000020600)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x4533560}, {&(0x7f0000020700)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x4533720}, {&(0x7f0000020800)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x4533840}, {&(0x7f0000020900)="00000600000000000000000000000000000000c0d00100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/96, 0x60, 0x45338e0}, {&(0x7f0000020a00)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000080ffffffff00"/320, 0x140, 0x45339e0}, {&(0x7f0000020c00)="000000000000000000000600000000000000000100000000000000c0d2010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000060000000000000016e0a8b6ec3b48738ac80862a23e15a20000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000055bc645f000000009f19582455bc645f00"/224, 0xe0, 0x4533b60}, {&(0x7f0000020d00)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x4533c80}, {&(0x7f0000020e00)="000000000000000000000000000000000000060000000000000000000000000000000040d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/128, 0x80, 0x4533d20}, {&(0x7f0000020f00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x4533e40}, {&(0x7f0000021000)="000000000000000000060000000000000000000000000000000080d20100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600000000000000", 0x60, 0x4533ee0}, {&(0x7f0000021100)="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", 0x100, 0x4534000}, {&(0x7f0000021200)="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", 0x280, 0x4537ee0}, {&(0x7f0000021500)="0000000000000000000000000000000000000000040000000000000000010000000000000040d10100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000400"/128, 0x80, 0x453b560}, {&(0x7f0000021600)="0000000000000000000000040000000000000000000000000000000080d1010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000040000000000", 0x60, 0x453b720}, {&(0x7f0000021700)="000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000", 0x40, 0x453b840}, {&(0x7f0000021800)="00000600000000000000000000000000000000c0d00100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/96, 0x60, 0x453b8e0}, {&(0x7f0000021900)="00000000000000000000000000000000000000000000000000050000000000000084ffffffffffffffff0000000000000000000007000264656661756c74000000000000000002002e2e03000000000000000000000000000000000000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000055bc645f000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed410000000000000000000000000080ffffffff00"/320, 0x140, 0x453b9e0}, {&(0x7f0000021b00)="000000000000000000000600000000000000000100000000000000c0d2010000000000000000000000000040000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000060000000000000016e0a8b6ec3b48738ac80862a23e15a20000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000055bc645f000000009f19582455bc645f00"/224, 0xe0, 0x453bb60}, {&(0x7f0000021c00)="000000000000000000070064656661756c7401000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100"/96, 0x60, 0x453bc80}, {&(0x7f0000021d00)="000000000000000000000000000000000000060000000000000000000000000000000040d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000600"/128, 0x80, 0x453bd20}, {&(0x7f0000021e00)="00000000000000000001000000000000000000000000000000030000000000000000400000000000000000000000000000010000000000000000000000ed4100", 0x40, 0x453be40}, {&(0x7f0000021f00)="0000000000000000000700000000000000000000000000000000c0d30100000000000000000000000000400000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000700000000000000", 0x60, 0x453bee0}, {&(0x7f0000022000)="117f8dee7a95b3a6df1e504d27c6244ac6e9e8e750eb1e1c39a54bb0691ff4ed6a8ee9c735e84cc5bddef2a867f1dae500c0d301000000000100000000000001e72233f98c494318815f9535a08d2bf4070000000000000002000000000000000c000000000000d00000000000a80030000000000000663f0000350000000000d00000000000c000008000000000004e3f0000180000000000500100000000c00000800000000000363f0000180000000040500100000000a90000000000000000153f0000210000000000d00100000000c00000000200000000fd3e00001800000000c0d00100000000a90000000000000000dc3e0000210000000040d10100000000a90000000000000000bb3e0000210000000080d10100000000a900000000000000009a3e00002100000000c0d20100000000a90000000000000000793e0000210000000040d30100000000a90000000000000000583e0000210000000080d30100000000a90000000000000000373e00002100000000c0d30100000000a90000000000000000163e00002100"/416, 0x1a0, 0x453c000}, {&(0x7f0000022200)="000000000000000000000000000000000000000000000000000000010000000000000007000000000000000200000000000000b00200000000000000010000000000000007000000000000000200000000000000b00100000000000000010000000000000006000000000000000200000000000000b00400000000000000010000000000000006000000000000000200000000000000b00500000000000000010000000000000004000000000000000200000000000000b00900000000000000010000000000000004000000000000000200000000000000b0f7ffffffffffffff010000000000000006000000000000000200000000000000b0070000000000000000c001000000000000010000000000002400000000000000010000000000000005000000000000000200000000000000b00300000000000000004000000000000000010000000000002200000000000000003000000000000000010000000000000100000000000000010000000000000006000000000000000100000000000000b205000000000000000501000000000000000000000000000001000000", 0x1a0, 0x453fe60}], 0x0, &(0x7f0000022400)) ** 473723 printk messages dropped ** [ 2917.644306][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.644306][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.644306][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.644306][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.644306][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.644306][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.644306][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.644306][T32330] close_ctree+0x4b1/0xf57 [ 2917.644306][T32330] btrfs_put_super+0x53/0x70 [ 2917.644306][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.644306][T32330] kill_anon_super+0x63/0xb0 [ 2917.644306][T32330] btrfs_kill_super+0x61/0x90 [ 2917.644306][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.644306][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.644306][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.644306][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.644306][T32330] task_work_run+0x140/0x280 [ 2917.644306][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.644306][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.644306][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.644306][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.644306][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.644306][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.644306][T32330] [ 2917.644306][T32330] Uninit was stored to memory at: [ 2917.644306][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.644306][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.644306][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.644306][T32330] __msan_memmove+0x46/0x60 [ 2917.644306][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.644306][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.644306][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.644306][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.644306][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.644306][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.644306][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.644306][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.644306][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.644306][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.644306][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.644306][T32330] close_ctree+0x4b1/0xf57 [ 2917.644306][T32330] btrfs_put_super+0x53/0x70 [ 2917.644306][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.644306][T32330] kill_anon_super+0x63/0xb0 [ 2917.644306][T32330] btrfs_kill_super+0x61/0x90 [ 2917.644306][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.644306][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.644306][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.644306][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.644306][T32330] task_work_run+0x140/0x280 [ 2917.644306][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.644306][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.644306][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.644306][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.644306][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.644306][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.644306][T32330] [ 2917.644306][T32330] Uninit was stored to memory at: [ 2917.644306][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.644306][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.644306][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.644306][T32330] __msan_memmove+0x46/0x60 [ 2917.644306][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.644306][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.644306][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.644306][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.644306][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.644306][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.644306][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.644306][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.644306][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.644306][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.644306][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.644306][T32330] close_ctree+0x4b1/0xf57 [ 2917.644306][T32330] btrfs_put_super+0x53/0x70 [ 2917.644306][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.644306][T32330] kill_anon_super+0x63/0xb0 [ 2917.644306][T32330] btrfs_kill_super+0x61/0x90 [ 2917.644306][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.644306][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.644306][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.644306][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.644306][T32330] task_work_run+0x140/0x280 [ 2917.644306][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.644306][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.644306][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.644306][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.644306][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.644306][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.644306][T32330] [ 2917.644306][T32330] Uninit was created at: [ 2917.644306][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.644306][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.644306][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.644306][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.644306][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.644306][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.644306][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.644306][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.644306][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.644306][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.644306][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.644306][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.644306][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.644306][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.644306][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.644306][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.644306][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.644306][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.644306][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.644306][T32330] close_ctree+0x4b1/0xf57 [ 2917.644306][T32330] btrfs_put_super+0x53/0x70 [ 2917.644306][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.644306][T32330] kill_anon_super+0x63/0xb0 [ 2917.644306][T32330] btrfs_kill_super+0x61/0x90 [ 2917.644306][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.644306][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.644306][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.644306][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.644306][T32330] task_work_run+0x140/0x280 [ 2917.644306][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.644306][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.644306][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.644306][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.644306][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.644306][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.644306][T32330] ===================================================== [ 2917.647192][T32330] ===================================================== [ 2917.647205][T32330] BUG: KMSAN: uninit-value in check_leaf+0x35de/0xc1d0 [ 2917.647241][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.647272][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.647287][T32330] Call Trace: [ 2917.647298][T32330] dump_stack+0x24c/0x2e0 [ 2917.647333][T32330] kmsan_report+0xfb/0x1e0 [ 2917.647363][T32330] __msan_warning+0x5c/0xa0 [ 2917.647391][T32330] check_leaf+0x35de/0xc1d0 [ 2917.647432][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.647461][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.647502][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.647532][T32330] ? memcmp+0xc4/0x180 [ 2917.647565][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.647602][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.647635][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.647675][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.647707][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.647747][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.647789][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.647825][T32330] btree_writepages+0xce/0x2e0 [ 2917.647861][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.647891][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.647927][T32330] do_writepages+0x15f/0x420 [ 2917.647959][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.647991][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.648031][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.648067][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.648103][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.648186][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.648224][T32330] close_ctree+0x4b1/0xf57 [ 2917.648259][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.648291][T32330] btrfs_put_super+0x53/0x70 [ 2917.648325][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.648359][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.648394][T32330] kill_anon_super+0x63/0xb0 [ 2917.648426][T32330] btrfs_kill_super+0x61/0x90 [ 2917.648461][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.648497][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.648531][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.648563][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.648592][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.648624][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.648653][T32330] ? mntns_owner+0x70/0x70 [ 2917.648681][T32330] task_work_run+0x140/0x280 [ 2917.648712][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.648751][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.648790][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.648824][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.648858][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.648890][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.648924][T32330] RIP: 0023:0xf7fc2549 [ 2917.648945][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.648972][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.649003][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.649023][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.649043][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.649063][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.649083][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.649107][T32330] [ 2917.649118][T32330] Uninit was stored to memory at: [ 2917.649127][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.649157][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.649184][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.649211][T32330] __msan_memmove+0x46/0x60 [ 2917.649236][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.649268][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.649300][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.649329][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.649358][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.649389][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.649418][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.649448][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.649477][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.649505][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.649533][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.649567][T32330] close_ctree+0x4b1/0xf57 [ 2917.649598][T32330] btrfs_put_super+0x53/0x70 [ 2917.649631][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.649661][T32330] kill_anon_super+0x63/0xb0 [ 2917.649689][T32330] btrfs_kill_super+0x61/0x90 [ 2917.649721][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.649750][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.649779][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.649806][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.649832][T32330] task_work_run+0x140/0x280 [ 2917.649858][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.649893][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.649924][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.649954][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.649983][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.650009][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.650038][T32330] [ 2917.650042][T32330] Uninit was stored to memory at: [ 2917.650049][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.650075][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.650103][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.650137][T32330] __msan_memmove+0x46/0x60 [ 2917.650162][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.650194][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.650226][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.650254][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.650282][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.650313][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.650343][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.650373][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.650402][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.650430][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.650459][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.650493][T32330] close_ctree+0x4b1/0xf57 [ 2917.650524][T32330] btrfs_put_super+0x53/0x70 [ 2917.650557][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.650587][T32330] kill_anon_super+0x63/0xb0 [ 2917.650615][T32330] btrfs_kill_super+0x61/0x90 [ 2917.650647][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.650677][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.650704][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.650732][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.650759][T32330] task_work_run+0x140/0x280 [ 2917.650785][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.650820][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.650856][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.650887][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.650918][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.650948][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.650980][T32330] [ 2917.650985][T32330] Uninit was stored to memory at: [ 2917.650994][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.651021][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.651051][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.651077][T32330] __msan_memmove+0x46/0x60 [ 2917.651102][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.651140][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.651172][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.651200][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.651228][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.651258][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.651288][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.651318][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.651347][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.651375][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.651404][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.651438][T32330] close_ctree+0x4b1/0xf57 [ 2917.651470][T32330] btrfs_put_super+0x53/0x70 [ 2917.651502][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.651531][T32330] kill_anon_super+0x63/0xb0 [ 2917.651560][T32330] btrfs_kill_super+0x61/0x90 [ 2917.651593][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.651622][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.651649][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.651676][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.651703][T32330] task_work_run+0x140/0x280 [ 2917.651729][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.651765][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.651800][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.651831][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.651862][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.651892][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.651924][T32330] [ 2917.651930][T32330] Uninit was created at: [ 2917.651937][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.651979][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.652006][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.652039][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.652066][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.652099][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.652137][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.652171][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.652200][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.652226][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.652260][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.652286][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.652314][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.652345][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.652376][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.652406][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.652435][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.652463][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.652492][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.652526][T32330] close_ctree+0x4b1/0xf57 [ 2917.652557][T32330] btrfs_put_super+0x53/0x70 [ 2917.652589][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.652618][T32330] kill_anon_super+0x63/0xb0 [ 2917.652646][T32330] btrfs_kill_super+0x61/0x90 [ 2917.652679][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.652708][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.652736][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.652763][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.652790][T32330] task_work_run+0x140/0x280 [ 2917.652817][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.652852][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.652887][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.652919][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.652950][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.652980][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.653013][T32330] ===================================================== [ 2917.653013][T32330] ===================================================== [ 2917.653013][T32330] BUG: KMSAN: uninit-value in check_leaf+0x35f3/0xc1d0 [ 2917.653013][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.653013][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.653013][T32330] Call Trace: [ 2917.653013][T32330] dump_stack+0x24c/0x2e0 [ 2917.653013][T32330] kmsan_report+0xfb/0x1e0 [ 2917.653013][T32330] __msan_warning+0x5c/0xa0 [ 2917.653013][T32330] check_leaf+0x35f3/0xc1d0 [ 2917.653013][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.653013][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.653013][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.653013][T32330] ? memcmp+0xc4/0x180 [ 2917.653013][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.653013][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.653013][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.653052][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.653085][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.653125][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.653167][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.653204][T32330] btree_writepages+0xce/0x2e0 [ 2917.653239][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.653269][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.653306][T32330] do_writepages+0x15f/0x420 [ 2917.653337][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.653368][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.653408][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.653444][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.653479][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.653519][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.653562][T32330] close_ctree+0x4b1/0xf57 [ 2917.653597][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.653627][T32330] btrfs_put_super+0x53/0x70 [ 2917.653662][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.653719][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.653754][T32330] kill_anon_super+0x63/0xb0 [ 2917.653786][T32330] btrfs_kill_super+0x61/0x90 [ 2917.653821][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.653857][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.653891][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.653922][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.653952][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.653985][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.654014][T32330] ? mntns_owner+0x70/0x70 [ 2917.654042][T32330] task_work_run+0x140/0x280 [ 2917.654073][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.654113][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.654151][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.654186][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.654220][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.654253][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.654287][T32330] RIP: 0023:0xf7fc2549 [ 2917.654308][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.654335][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.654366][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.654386][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.654407][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.654427][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.654447][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.654471][T32330] [ 2917.654476][T32330] Uninit was stored to memory at: [ 2917.654484][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.654514][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.654549][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.654576][T32330] __msan_memmove+0x46/0x60 [ 2917.654601][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.654634][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.654666][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.654695][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.654722][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.654753][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.654783][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.654813][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.654842][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.654869][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.654897][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.654930][T32330] close_ctree+0x4b1/0xf57 [ 2917.654962][T32330] btrfs_put_super+0x53/0x70 [ 2917.654994][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.655024][T32330] kill_anon_super+0x63/0xb0 [ 2917.655053][T32330] btrfs_kill_super+0x61/0x90 [ 2917.655085][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.655114][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.655142][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.655169][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.655196][T32330] task_work_run+0x140/0x280 [ 2917.655222][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.655257][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.655292][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.655324][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.655354][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.655384][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.655416][T32330] [ 2917.655421][T32330] Uninit was stored to memory at: [ 2917.655429][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.655458][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.655487][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.655513][T32330] __msan_memmove+0x46/0x60 [ 2917.655544][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.655577][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.655608][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.655636][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.655664][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.655695][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.655726][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.655756][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.655784][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.655813][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.655842][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.655875][T32330] close_ctree+0x4b1/0xf57 [ 2917.655907][T32330] btrfs_put_super+0x53/0x70 [ 2917.655940][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.655969][T32330] kill_anon_super+0x63/0xb0 [ 2917.655998][T32330] btrfs_kill_super+0x61/0x90 [ 2917.656031][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.656059][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.656087][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.656114][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.656141][T32330] task_work_run+0x140/0x280 [ 2917.656167][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.656202][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.656237][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.656269][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.656299][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.656329][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.656361][T32330] [ 2917.656366][T32330] Uninit was stored to memory at: [ 2917.656375][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.656403][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.656432][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.656458][T32330] __msan_memmove+0x46/0x60 [ 2917.656484][T32330] memcpy_extent_buffer+0x696/0xbc0 [ 2917.656516][T32330] memmove_extent_buffer+0x260/0xd30 [ 2917.656555][T32330] setup_items_for_insert+0x1258/0x1a00 [ 2917.656584][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.656612][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.656642][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.656673][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.656702][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.656731][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.656759][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.656788][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.656822][T32330] close_ctree+0x4b1/0xf57 [ 2917.656853][T32330] btrfs_put_super+0x53/0x70 [ 2917.656885][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.656915][T32330] kill_anon_super+0x63/0xb0 [ 2917.656943][T32330] btrfs_kill_super+0x61/0x90 [ 2917.656976][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.657005][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.657033][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.657060][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.657086][T32330] task_work_run+0x140/0x280 [ 2917.657113][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.657147][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.657183][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.657214][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.657245][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.657275][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.657307][T32330] [ 2917.657312][T32330] Uninit was created at: [ 2917.657320][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.657350][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.657378][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.657410][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.657437][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.657469][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.657501][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.657534][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.657570][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.657594][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.657628][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.657655][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.657679][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.657708][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.657737][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.657764][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.657791][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.657817][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.657841][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.657871][T32330] close_ctree+0x4b1/0xf57 [ 2917.657900][T32330] btrfs_put_super+0x53/0x70 [ 2917.657931][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.657958][T32330] kill_anon_super+0x63/0xb0 [ 2917.657984][T32330] btrfs_kill_super+0x61/0x90 [ 2917.658013][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.658040][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.658067][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.658096][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.658122][T32330] task_work_run+0x140/0x280 [ 2917.658148][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.658183][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.658219][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.658250][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.658280][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.658309][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.658343][T32330] ===================================================== [ 2917.658354][T32330] ===================================================== [ 2917.658364][T32330] BUG: KMSAN: uninit-value in check_leaf+0x3bfc/0xc1d0 [ 2917.658398][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.658429][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.658444][T32330] Call Trace: [ 2917.658456][T32330] dump_stack+0x24c/0x2e0 [ 2917.658490][T32330] kmsan_report+0xfb/0x1e0 [ 2917.658520][T32330] __msan_warning+0x5c/0xa0 [ 2917.658557][T32330] check_leaf+0x3bfc/0xc1d0 [ 2917.658598][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.658626][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.658665][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.658696][T32330] ? memcmp+0xc4/0x180 [ 2917.658729][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.658765][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.658800][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.658839][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.658872][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.658912][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.658953][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.658990][T32330] btree_writepages+0xce/0x2e0 [ 2917.659026][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.659056][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.659092][T32330] do_writepages+0x15f/0x420 [ 2917.659124][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.659155][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.659196][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.659230][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.659266][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.659305][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.659343][T32330] close_ctree+0x4b1/0xf57 [ 2917.659378][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.659409][T32330] btrfs_put_super+0x53/0x70 [ 2917.659444][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.659479][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.659513][T32330] kill_anon_super+0x63/0xb0 [ 2917.659550][T32330] btrfs_kill_super+0x61/0x90 [ 2917.659585][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.659620][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.659653][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.659685][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.659714][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.659747][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.659775][T32330] ? mntns_owner+0x70/0x70 [ 2917.659804][T32330] task_work_run+0x140/0x280 [ 2917.659835][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.659875][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.659913][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.659948][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.659982][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.660015][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.660049][T32330] RIP: 0023:0xf7fc2549 [ 2917.660071][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.660098][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.660128][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.660148][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.660168][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.660188][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.660206][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.660230][T32330] [ 2917.660236][T32330] Uninit was stored to memory at: [ 2917.660245][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.660274][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.660303][T32330] kmsan_memcpy_metadata+0xb/0x10 [ 2917.660328][T32330] __msan_memcpy+0x46/0x60 [ 2917.660353][T32330] read_extent_buffer+0x316/0x7b0 [ 2917.660385][T32330] check_leaf+0x34c/0xc1d0 [ 2917.660414][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.660445][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.660477][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.660518][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.660555][T32330] btree_writepages+0xce/0x2e0 [ 2917.660589][T32330] do_writepages+0x15f/0x420 [ 2917.660617][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.660648][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.660680][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.660708][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.660736][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.660769][T32330] close_ctree+0x4b1/0xf57 [ 2917.660801][T32330] btrfs_put_super+0x53/0x70 [ 2917.660833][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.660863][T32330] kill_anon_super+0x63/0xb0 [ 2917.660891][T32330] btrfs_kill_super+0x61/0x90 [ 2917.660923][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.660952][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.660980][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.661007][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.661034][T32330] task_work_run+0x140/0x280 [ 2917.661061][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.661096][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.661131][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.661163][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.661194][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.661223][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.661255][T32330] [ 2917.661261][T32330] Uninit was stored to memory at: [ 2917.661270][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.661298][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.661327][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.661352][T32330] __msan_memmove+0x46/0x60 [ 2917.661377][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.661410][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.661438][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.661466][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.661497][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.661525][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.661560][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.661584][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.661609][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.661636][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.661668][T32330] close_ctree+0x4b1/0xf57 [ 2917.661700][T32330] btrfs_put_super+0x53/0x70 [ 2917.661731][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.661759][T32330] kill_anon_super+0x63/0xb0 [ 2917.661787][T32330] btrfs_kill_super+0x61/0x90 [ 2917.661818][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.661847][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.661873][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.661900][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.661926][T32330] task_work_run+0x140/0x280 [ 2917.661951][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.661985][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.662020][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.662050][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.662080][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.662109][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.662141][T32330] [ 2917.662145][T32330] Uninit was stored to memory at: [ 2917.662153][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.662182][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.662210][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.662235][T32330] __msan_memmove+0x46/0x60 [ 2917.662260][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.662292][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.662320][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.662347][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.662377][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.662406][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.662434][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.662462][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.662489][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.662504][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.662504][T32330] close_ctree+0x4b1/0xf57 [ 2917.662504][T32330] btrfs_put_super+0x53/0x70 [ 2917.662504][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.662504][T32330] kill_anon_super+0x63/0xb0 [ 2917.662504][T32330] btrfs_kill_super+0x61/0x90 [ 2917.662504][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.662504][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.662504][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.662504][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.662504][T32330] task_work_run+0x140/0x280 [ 2917.662504][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.662504][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.662504][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.662504][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.662504][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.662504][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.662504][T32330] [ 2917.662504][T32330] Uninit was stored to memory at: [ 2917.662504][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.662504][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.662504][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.662504][T32330] __msan_memmove+0x46/0x60 [ 2917.662504][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.662504][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.662504][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.662504][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.662504][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.662504][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.662504][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.662504][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.662504][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.662504][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.662504][T32330] close_ctree+0x4b1/0xf57 [ 2917.662504][T32330] btrfs_put_super+0x53/0x70 [ 2917.662504][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.662504][T32330] kill_anon_super+0x63/0xb0 [ 2917.662504][T32330] btrfs_kill_super+0x61/0x90 [ 2917.662504][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.662504][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.662504][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.662504][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.662504][T32330] task_work_run+0x140/0x280 [ 2917.662504][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.662504][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.662504][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.662504][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.662504][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.662504][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.662504][T32330] [ 2917.662504][T32330] Uninit was created at: [ 2917.662504][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.662504][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.662504][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.662504][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.662504][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.662504][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.662504][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.662504][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.662504][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.662504][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.662504][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.662504][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.662504][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.662504][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.662504][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.662504][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.662504][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.662504][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.662504][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.662504][T32330] close_ctree+0x4b1/0xf57 [ 2917.662504][T32330] btrfs_put_super+0x53/0x70 [ 2917.662504][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.662504][T32330] kill_anon_super+0x63/0xb0 [ 2917.662504][T32330] btrfs_kill_super+0x61/0x90 [ 2917.662504][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.662504][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.662504][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.662504][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.662504][T32330] task_work_run+0x140/0x280 [ 2917.662504][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.662504][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.662504][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.662504][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.662504][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.662504][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.662504][T32330] ===================================================== [ 2917.663986][T32330] ===================================================== [ 2917.663998][T32330] BUG: KMSAN: uninit-value in check_leaf+0x6603/0xc1d0 [ 2917.664036][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.664067][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.664083][T32330] Call Trace: [ 2917.664094][T32330] dump_stack+0x24c/0x2e0 [ 2917.664131][T32330] kmsan_report+0xfb/0x1e0 [ 2917.664160][T32330] __msan_warning+0x5c/0xa0 [ 2917.664189][T32330] check_leaf+0x6603/0xc1d0 [ 2917.664230][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.664257][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.664296][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.664334][T32330] ? memcmp+0xc4/0x180 [ 2917.664366][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.664402][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.664435][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.664475][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.664506][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.664546][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.664586][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.664622][T32330] btree_writepages+0xce/0x2e0 [ 2917.664657][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.664686][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.664721][T32330] do_writepages+0x15f/0x420 [ 2917.664752][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.664782][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.664820][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.664856][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.664891][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.664931][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.664967][T32330] close_ctree+0x4b1/0xf57 [ 2917.665001][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.665031][T32330] btrfs_put_super+0x53/0x70 [ 2917.665065][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.665099][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.665132][T32330] kill_anon_super+0x63/0xb0 [ 2917.665163][T32330] btrfs_kill_super+0x61/0x90 [ 2917.665197][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.665233][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.665266][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.665296][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.665331][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.665363][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.665392][T32330] ? mntns_owner+0x70/0x70 [ 2917.665419][T32330] task_work_run+0x140/0x280 [ 2917.665477][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.665516][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.665553][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.665588][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.665621][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.665653][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.665687][T32330] RIP: 0023:0xf7fc2549 [ 2917.665708][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.665735][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.665765][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.665784][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.665804][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.665822][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.665840][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.665863][T32330] [ 2917.665869][T32330] Uninit was stored to memory at: [ 2917.665877][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.665906][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.665935][T32330] kmsan_memcpy_metadata+0xb/0x10 [ 2917.665960][T32330] __msan_memcpy+0x46/0x60 [ 2917.665984][T32330] read_extent_buffer+0x316/0x7b0 [ 2917.666015][T32330] check_leaf+0x34c/0xc1d0 [ 2917.666043][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.666073][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.666104][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.666137][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.666168][T32330] btree_writepages+0xce/0x2e0 [ 2917.666200][T32330] do_writepages+0x15f/0x420 [ 2917.666227][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.666259][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.666290][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.666317][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.666351][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.666383][T32330] close_ctree+0x4b1/0xf57 [ 2917.666414][T32330] btrfs_put_super+0x53/0x70 [ 2917.666445][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.666474][T32330] kill_anon_super+0x63/0xb0 [ 2917.666501][T32330] btrfs_kill_super+0x61/0x90 [ 2917.666532][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.666562][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.666589][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.666616][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.666643][T32330] task_work_run+0x140/0x280 [ 2917.666669][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.666704][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.666739][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.666771][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.666800][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.666828][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.666860][T32330] [ 2917.666865][T32330] Uninit was stored to memory at: [ 2917.666873][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.666901][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.666929][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.666955][T32330] __msan_memmove+0x46/0x60 [ 2917.666979][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.667012][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.667040][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.667067][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.667098][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.667128][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.667158][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.667186][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.667212][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.667240][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.667272][T32330] close_ctree+0x4b1/0xf57 [ 2917.667303][T32330] btrfs_put_super+0x53/0x70 [ 2917.667339][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.667368][T32330] kill_anon_super+0x63/0xb0 [ 2917.667395][T32330] btrfs_kill_super+0x61/0x90 [ 2917.667427][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.667455][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.667482][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.667510][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.667537][T32330] task_work_run+0x140/0x280 [ 2917.667562][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.667596][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.667631][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.667661][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.667691][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.667721][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.667753][T32330] [ 2917.667757][T32330] Uninit was stored to memory at: [ 2917.667765][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.667793][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.667821][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.667846][T32330] __msan_memmove+0x46/0x60 [ 2917.667872][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.667903][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.667931][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.667958][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.667989][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.668019][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.668048][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.668076][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.668103][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.668131][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.668163][T32330] close_ctree+0x4b1/0xf57 [ 2917.668194][T32330] btrfs_put_super+0x53/0x70 [ 2917.668226][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.668256][T32330] kill_anon_super+0x63/0xb0 [ 2917.668284][T32330] btrfs_kill_super+0x61/0x90 [ 2917.668317][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.668351][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.668378][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.668404][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.668430][T32330] task_work_run+0x140/0x280 [ 2917.668456][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.668491][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.668525][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.668556][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.668586][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.668615][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.668646][T32330] [ 2917.668651][T32330] Uninit was stored to memory at: [ 2917.668660][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.668689][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.668716][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.668742][T32330] __msan_memmove+0x46/0x60 [ 2917.668767][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.668799][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.668827][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.668856][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.668886][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.668915][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.668944][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.668972][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.669000][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.669027][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.669060][T32330] close_ctree+0x4b1/0xf57 [ 2917.669091][T32330] btrfs_put_super+0x53/0x70 [ 2917.669124][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.669153][T32330] kill_anon_super+0x63/0xb0 [ 2917.669182][T32330] btrfs_kill_super+0x61/0x90 [ 2917.669213][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.669242][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.669269][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.669295][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.669327][T32330] task_work_run+0x140/0x280 [ 2917.669353][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.669387][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.669422][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.669452][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.669482][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.669511][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.669543][T32330] [ 2917.669549][T32330] Uninit was created at: [ 2917.669556][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.669592][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.669618][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.669650][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.669676][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.669707][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.669737][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.669770][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.669800][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.669824][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.669857][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.669882][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.669909][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.669940][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.669969][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.669998][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.670027][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.670054][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.670082][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.670114][T32330] close_ctree+0x4b1/0xf57 [ 2917.670145][T32330] btrfs_put_super+0x53/0x70 [ 2917.670177][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.670206][T32330] kill_anon_super+0x63/0xb0 [ 2917.670234][T32330] btrfs_kill_super+0x61/0x90 [ 2917.670266][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.670295][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.670327][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.670353][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.670379][T32330] task_work_run+0x140/0x280 [ 2917.670405][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.670439][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.670473][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.670504][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.670535][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.670564][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.670597][T32330] ===================================================== [ 2917.670607][T32330] ===================================================== [ 2917.670620][T32330] BUG: KMSAN: uninit-value in check_leaf+0x454f/0xc1d0 [ 2917.670654][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.670684][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.670699][T32330] Call Trace: [ 2917.670710][T32330] dump_stack+0x24c/0x2e0 [ 2917.670744][T32330] kmsan_report+0xfb/0x1e0 [ 2917.670774][T32330] __msan_warning+0x5c/0xa0 [ 2917.670802][T32330] check_leaf+0x454f/0xc1d0 [ 2917.670842][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.670869][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.670909][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.670940][T32330] ? memcmp+0xc4/0x180 [ 2917.670972][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.671010][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.671042][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.671082][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.671113][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.671152][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.671192][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.671228][T32330] btree_writepages+0xce/0x2e0 [ 2917.671263][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.671294][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.671335][T32330] do_writepages+0x15f/0x420 [ 2917.671368][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.671400][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.671439][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.671480][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.671515][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.671553][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.671590][T32330] close_ctree+0x4b1/0xf57 [ 2917.671625][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.671657][T32330] btrfs_put_super+0x53/0x70 [ 2917.671692][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.671725][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.671757][T32330] kill_anon_super+0x63/0xb0 [ 2917.671788][T32330] btrfs_kill_super+0x61/0x90 [ 2917.671823][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.671859][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.671893][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.671923][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.671957][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.671989][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.672017][T32330] ? mntns_owner+0x70/0x70 [ 2917.672045][T32330] task_work_run+0x140/0x280 [ 2917.672075][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.672115][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.672152][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.672187][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.672220][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.672253][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.672287][T32330] RIP: 0023:0xf7fc2549 [ 2917.672307][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.672339][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.672369][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.672389][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.672408][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.672427][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.672445][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.672468][T32330] [ 2917.672475][T32330] Uninit was stored to memory at: [ 2917.672500][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.672530][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.672560][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.672585][T32330] __msan_memmove+0x46/0x60 [ 2917.672610][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.672643][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.672671][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.672698][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.672729][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.672758][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.672788][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.672816][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.672843][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.672868][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.672899][T32330] close_ctree+0x4b1/0xf57 [ 2917.672928][T32330] btrfs_put_super+0x53/0x70 [ 2917.672957][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.672984][T32330] kill_anon_super+0x63/0xb0 [ 2917.673011][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673042][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673069][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673096][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673122][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673149][T32330] task_work_run+0x140/0x280 [ 2917.673174][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673208][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673243][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673275][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673304][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673338][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673370][T32330] [ 2917.673375][T32330] Uninit was stored to memory at: [ 2917.673383][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.673412][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.673438][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.673466][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.673494][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.673522][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673553][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673583][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673613][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.673642][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673669][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673697][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673730][T32330] close_ctree+0x4b1/0xf57 [ 2917.673761][T32330] btrfs_put_super+0x53/0x70 [ 2917.673793][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673821][T32330] kill_anon_super+0x63/0xb0 [ 2917.673849][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673881][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673910][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] [ 2917.673934][T32330] Uninit was stored to memory at: [ 2917.673934][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.673934][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.673934][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.673934][T32330] __msan_memmove+0x46/0x60 [ 2917.673934][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.673934][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.673934][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.673934][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673934][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673934][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673934][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.673934][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673934][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673934][T32330] close_ctree+0x4b1/0xf57 [ 2917.673934][T32330] btrfs_put_super+0x53/0x70 [ 2917.673934][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673934][T32330] kill_anon_super+0x63/0xb0 [ 2917.673934][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673934][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673934][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] [ 2917.673934][T32330] Uninit was stored to memory at: [ 2917.673934][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.673934][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.673934][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.673934][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.673934][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.673934][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673934][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673934][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673934][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.673934][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673934][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673934][T32330] close_ctree+0x4b1/0xf57 [ 2917.673934][T32330] btrfs_put_super+0x53/0x70 [ 2917.673934][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673934][T32330] kill_anon_super+0x63/0xb0 [ 2917.673934][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673934][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673934][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] [ 2917.673934][T32330] Uninit was stored to memory at: [ 2917.673934][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.673934][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.673934][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.673934][T32330] __msan_memmove+0x46/0x60 [ 2917.673934][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.673934][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.673934][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.673934][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673934][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673934][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673934][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.673934][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673934][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673934][T32330] close_ctree+0x4b1/0xf57 [ 2917.673934][T32330] btrfs_put_super+0x53/0x70 [ 2917.673934][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673934][T32330] kill_anon_super+0x63/0xb0 [ 2917.673934][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673934][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673934][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] [ 2917.673934][T32330] Uninit was stored to memory at: [ 2917.673934][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.673934][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.673934][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.673934][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.673934][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.673934][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673934][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673934][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673934][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.673934][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673934][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673934][T32330] close_ctree+0x4b1/0xf57 [ 2917.673934][T32330] btrfs_put_super+0x53/0x70 [ 2917.673934][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673934][T32330] kill_anon_super+0x63/0xb0 [ 2917.673934][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673934][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673934][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] [ 2917.673934][T32330] Uninit was created at: [ 2917.673934][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.673934][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.673934][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.673934][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.673934][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.673934][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.673934][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.673934][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.673934][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.673934][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.673934][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.673934][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.673934][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.673934][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.673934][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.673934][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.673934][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.673934][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.673934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.673934][T32330] close_ctree+0x4b1/0xf57 [ 2917.673934][T32330] btrfs_put_super+0x53/0x70 [ 2917.673934][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.673934][T32330] kill_anon_super+0x63/0xb0 [ 2917.673934][T32330] btrfs_kill_super+0x61/0x90 [ 2917.673934][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.673934][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.673934][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.673934][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.673934][T32330] task_work_run+0x140/0x280 [ 2917.673934][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.673934][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.673934][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.673934][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.673934][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.673934][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.673934][T32330] ===================================================== [ 2917.677528][T32330] ===================================================== [ 2917.677542][T32330] BUG: KMSAN: uninit-value in check_leaf+0x4452/0xc1d0 [ 2917.677579][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.677611][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.677627][T32330] Call Trace: [ 2917.677639][T32330] dump_stack+0x24c/0x2e0 [ 2917.677674][T32330] kmsan_report+0xfb/0x1e0 [ 2917.677704][T32330] __msan_warning+0x5c/0xa0 [ 2917.677733][T32330] check_leaf+0x4452/0xc1d0 [ 2917.677774][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.677803][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.677844][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.677874][T32330] ? memcmp+0xc4/0x180 [ 2917.677915][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.677952][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.677982][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.678022][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.678050][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.678087][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.678124][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.678714][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.678166][T32330] btree_writepages+0xce/0x2e0 [ 2917.678201][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.678229][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.678265][T32330] do_writepages+0x15f/0x420 [ 2917.678297][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.678329][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.678368][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.678404][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.678440][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.678479][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.678517][T32330] close_ctree+0x4b1/0xf57 [ 2917.678552][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.678584][T32330] btrfs_put_super+0x53/0x70 [ 2917.678619][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.678654][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.678716][T32330] kill_anon_super+0x63/0xb0 [ 2917.678748][T32330] btrfs_kill_super+0x61/0x90 [ 2917.678783][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.678819][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.678853][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.678892][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.678922][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.678954][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.678985][T32330] ? mntns_owner+0x70/0x70 [ 2917.679014][T32330] task_work_run+0x140/0x280 [ 2917.679045][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.679085][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.679123][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.679159][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.679193][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.679226][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.679260][T32330] RIP: 0023:0xf7fc2549 [ 2917.679283][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.679310][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.679343][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.679363][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.679383][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.679403][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.679422][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.679446][T32330] [ 2917.679452][T32330] Uninit was stored to memory at: [ 2917.679461][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.679490][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.679520][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.679546][T32330] __msan_memmove+0x46/0x60 [ 2917.679572][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.679605][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.679633][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.679661][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.679692][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.679723][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.679753][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.679782][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.679810][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.679839][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.679873][T32330] close_ctree+0x4b1/0xf57 [ 2917.679912][T32330] btrfs_put_super+0x53/0x70 [ 2917.679945][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.679975][T32330] kill_anon_super+0x63/0xb0 [ 2917.680003][T32330] btrfs_kill_super+0x61/0x90 [ 2917.680043][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.680073][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.680101][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.680128][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.680156][T32330] task_work_run+0x140/0x280 [ 2917.680182][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.680218][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.680253][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.680285][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.680315][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.680346][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.680379][T32330] [ 2917.680383][T32330] Uninit was stored to memory at: [ 2917.680391][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.680419][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.680445][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.680473][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.680502][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.680530][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.680561][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.680590][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.680620][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.680649][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.680677][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.680705][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.680738][T32330] close_ctree+0x4b1/0xf57 [ 2917.680769][T32330] btrfs_put_super+0x53/0x70 [ 2917.680799][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.680830][T32330] kill_anon_super+0x63/0xb0 [ 2917.680858][T32330] btrfs_kill_super+0x61/0x90 [ 2917.680898][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.680928][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.680955][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.680982][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.681562][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.681008][T32330] task_work_run+0x140/0x280 [ 2917.681035][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.681070][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.681105][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.681136][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.681167][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.681197][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.681230][T32330] [ 2917.681236][T32330] Uninit was stored to memory at: [ 2917.681244][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.681273][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.681302][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.681888][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.681328][T32330] __msan_memmove+0x46/0x60 [ 2917.681353][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.681383][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.681410][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.681438][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.681468][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.681497][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.681527][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.681558][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.681585][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.681614][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.681648][T32330] close_ctree+0x4b1/0xf57 [ 2917.681680][T32330] btrfs_put_super+0x53/0x70 [ 2917.682004][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.681712][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.681741][T32330] kill_anon_super+0x63/0xb0 [ 2917.681770][T32330] btrfs_kill_super+0x61/0x90 [ 2917.681802][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.681831][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.681859][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.681894][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.681922][T32330] task_work_run+0x140/0x280 [ 2917.681955][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.681991][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.682004][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.682026][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.682058][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.682089][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.682119][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.682151][T32330] [ 2917.682156][T32330] Uninit was stored to memory at: [ 2917.682163][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.682193][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.682221][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.682248][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.682277][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.682306][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.682337][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.682366][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.682395][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.682004][ T4685] systemd-journald[4685]: /dev/kmsg buffer overrun, some messages lost. [ 2917.682424][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.682452][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.682480][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.682512][T32330] close_ctree+0x4b1/0xf57 [ 2917.682543][T32330] btrfs_put_super+0x53/0x70 [ 2917.682574][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.682602][T32330] kill_anon_super+0x63/0xb0 [ 2917.682629][T32330] btrfs_kill_super+0x61/0x90 [ 2917.682660][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.682688][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.682714][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.682738][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.682763][T32330] task_work_run+0x140/0x280 [ 2917.682789][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.682824][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.682860][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.682899][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.682931][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.682960][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.682991][T32330] [ 2917.682997][T32330] Uninit was stored to memory at: [ 2917.683006][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.683034][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.683062][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.683089][T32330] __msan_memmove+0x46/0x60 [ 2917.683113][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.683145][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.683172][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.683200][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.683230][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.683259][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.683289][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.683317][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.683344][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.683372][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.683404][T32330] close_ctree+0x4b1/0xf57 [ 2917.683436][T32330] btrfs_put_super+0x53/0x70 [ 2917.683467][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.683497][T32330] kill_anon_super+0x63/0xb0 [ 2917.683525][T32330] btrfs_kill_super+0x61/0x90 [ 2917.683556][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.683585][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.683612][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.683639][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.683666][T32330] task_work_run+0x140/0x280 [ 2917.683692][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.683726][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.683761][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.683793][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.683822][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.683852][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.683889][T32330] [ 2917.683895][T32330] Uninit was stored to memory at: [ 2917.683903][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.683930][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.683956][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.683983][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.684011][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.684038][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.684068][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.684097][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.684128][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.684157][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.684184][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.684211][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.684244][T32330] close_ctree+0x4b1/0xf57 [ 2917.684276][T32330] btrfs_put_super+0x53/0x70 [ 2917.684307][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.684336][T32330] kill_anon_super+0x63/0xb0 [ 2917.684364][T32330] btrfs_kill_super+0x61/0x90 [ 2917.684395][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.684424][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.684451][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.684478][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.684504][T32330] task_work_run+0x140/0x280 [ 2917.684530][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.684564][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.684598][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.684628][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.684658][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.684687][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.684718][T32330] [ 2917.684724][T32330] Uninit was created at: [ 2917.684730][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.684766][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.684793][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.684825][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.684851][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.684888][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.684918][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.684951][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.684980][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.685005][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.685038][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.685064][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.685091][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.685121][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.685150][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.685179][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.685207][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.685234][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.685262][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.685295][T32330] close_ctree+0x4b1/0xf57 [ 2917.685326][T32330] btrfs_put_super+0x53/0x70 [ 2917.685357][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.685385][T32330] kill_anon_super+0x63/0xb0 [ 2917.685413][T32330] btrfs_kill_super+0x61/0x90 [ 2917.685446][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.685474][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.685502][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.685529][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.685556][T32330] task_work_run+0x140/0x280 [ 2917.685582][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.685618][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.685652][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.685682][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.685712][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.685741][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.685773][T32330] ===================================================== [ 2917.685773][T32330] ===================================================== [ 2917.685773][T32330] BUG: KMSAN: uninit-value in btrfs_get_8+0x2c8/0x470 [ 2917.685773][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.685773][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.685773][T32330] Call Trace: [ 2917.685773][T32330] dump_stack+0x24c/0x2e0 [ 2917.685773][T32330] kmsan_report+0xfb/0x1e0 [ 2917.685773][T32330] __msan_warning+0x5c/0xa0 [ 2917.685773][T32330] btrfs_get_8+0x2c8/0x470 [ 2917.685773][T32330] ? add_taint+0x17c/0x210 [ 2917.685773][T32330] check_leaf+0x3e69/0xc1d0 [ 2917.685773][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.685773][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.685773][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.685773][T32330] ? memcmp+0xc4/0x180 [ 2917.685773][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.685773][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.685773][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.685773][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.685773][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.685773][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.685773][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.685773][T32330] btree_writepages+0xce/0x2e0 [ 2917.685805][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.685834][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.685869][T32330] do_writepages+0x15f/0x420 [ 2917.685900][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.685930][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.685969][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.686003][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.686038][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.686081][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.686119][T32330] close_ctree+0x4b1/0xf57 [ 2917.686153][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.686184][T32330] btrfs_put_super+0x53/0x70 [ 2917.686217][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.686251][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.686284][T32330] kill_anon_super+0x63/0xb0 [ 2917.686315][T32330] btrfs_kill_super+0x61/0x90 [ 2917.686349][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.686383][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.686416][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.686447][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.686477][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.686509][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.686538][T32330] ? mntns_owner+0x70/0x70 [ 2917.686565][T32330] task_work_run+0x140/0x280 [ 2917.686596][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.686636][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.686674][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.686708][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.686741][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.686773][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.686806][T32330] RIP: 0023:0xf7fc2549 [ 2917.686827][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.686853][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.686884][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.686902][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.686923][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.686941][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.686960][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.686983][T32330] [ 2917.686988][T32330] Uninit was stored to memory at: [ 2917.686997][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.687026][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.687054][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.687086][T32330] __msan_memmove+0x46/0x60 [ 2917.687111][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.687142][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.687170][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.687198][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.687228][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.687257][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.687286][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.687316][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.687343][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.687370][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.687403][T32330] close_ctree+0x4b1/0xf57 [ 2917.687434][T32330] btrfs_put_super+0x53/0x70 [ 2917.687465][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.687495][T32330] kill_anon_super+0x63/0xb0 [ 2917.687523][T32330] btrfs_kill_super+0x61/0x90 [ 2917.687554][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.687583][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.687610][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.687636][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.687663][T32330] task_work_run+0x140/0x280 [ 2917.687688][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.687723][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.687758][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.687789][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.687818][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.687847][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.687879][T32330] [ 2917.687884][T32330] Uninit was stored to memory at: [ 2917.687891][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.687919][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.687945][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.687972][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.687999][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.688027][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.688056][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.688091][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.688120][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.688149][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.688177][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.688205][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.688237][T32330] close_ctree+0x4b1/0xf57 [ 2917.688268][T32330] btrfs_put_super+0x53/0x70 [ 2917.688299][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.688328][T32330] kill_anon_super+0x63/0xb0 [ 2917.688357][T32330] btrfs_kill_super+0x61/0x90 [ 2917.688388][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.688417][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.688444][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.688470][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.688496][T32330] task_work_run+0x140/0x280 [ 2917.688522][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.688555][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.688589][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.688620][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.688650][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.688679][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.688711][T32330] [ 2917.688716][T32330] Uninit was stored to memory at: [ 2917.688723][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.688751][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.688778][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.688803][T32330] __msan_memmove+0x46/0x60 [ 2917.688829][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.688861][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.688889][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.688916][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.688946][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.688975][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.689005][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.689034][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.689061][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.689094][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.689127][T32330] close_ctree+0x4b1/0xf57 [ 2917.689157][T32330] btrfs_put_super+0x53/0x70 [ 2917.689188][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.689218][T32330] kill_anon_super+0x63/0xb0 [ 2917.689254][T32330] btrfs_kill_super+0x61/0x90 [ 2917.689287][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.689317][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.689344][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.689370][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.689396][T32330] task_work_run+0x140/0x280 [ 2917.689422][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.689456][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.689491][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.689521][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.689551][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.689580][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.689612][T32330] [ 2917.689617][T32330] Uninit was stored to memory at: [ 2917.689624][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.689652][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.689678][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.689705][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.689733][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.689761][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.689791][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.689820][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.689849][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.689877][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.689906][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.689934][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.689967][T32330] close_ctree+0x4b1/0xf57 [ 2917.689998][T32330] btrfs_put_super+0x53/0x70 [ 2917.690030][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.690059][T32330] kill_anon_super+0x63/0xb0 [ 2917.690093][T32330] btrfs_kill_super+0x61/0x90 [ 2917.690124][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.690154][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.690180][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.690207][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.690251][T32330] task_work_run+0x140/0x280 [ 2917.690278][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.690311][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.690345][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.690376][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.690406][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.690436][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.690468][T32330] [ 2917.690473][T32330] Uninit was stored to memory at: [ 2917.690482][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.690510][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.690539][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.690565][T32330] __msan_memmove+0x46/0x60 [ 2917.690589][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.690620][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.690648][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.690675][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.690705][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.690735][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.690764][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.690794][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.690821][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.690848][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.690881][T32330] close_ctree+0x4b1/0xf57 [ 2917.690912][T32330] btrfs_put_super+0x53/0x70 [ 2917.690944][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.690973][T32330] kill_anon_super+0x63/0xb0 [ 2917.691001][T32330] btrfs_kill_super+0x61/0x90 [ 2917.691033][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.691061][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.691094][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.691121][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.691147][T32330] task_work_run+0x140/0x280 [ 2917.691172][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.691206][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.691240][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.691272][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.691303][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.691333][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.691365][T32330] [ 2917.691370][T32330] Uninit was stored to memory at: [ 2917.691378][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.691406][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.691432][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.691459][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.691487][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.691514][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.691545][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.691574][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.691603][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.691630][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.691656][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.691685][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.691718][T32330] close_ctree+0x4b1/0xf57 [ 2917.691750][T32330] btrfs_put_super+0x53/0x70 [ 2917.691781][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.691810][T32330] kill_anon_super+0x63/0xb0 [ 2917.691838][T32330] btrfs_kill_super+0x61/0x90 [ 2917.691869][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.691898][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.691925][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.691956][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.691983][T32330] task_work_run+0x140/0x280 [ 2917.692009][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.692043][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.692083][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.692115][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.692145][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.692173][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.692205][T32330] [ 2917.692210][T32330] Uninit was created at: [ 2917.692217][T32330] kmsan_save_stack_with_flags+0x3c/0x90 [ 2917.692251][T32330] kmsan_alloc_page+0xd0/0x1e0 [ 2917.692278][T32330] __alloc_pages_nodemask+0x827/0xf90 [ 2917.692310][T32330] alloc_pages_current+0x7b6/0xb60 [ 2917.692336][T32330] pagecache_get_page+0x111d/0x2040 [ 2917.692367][T32330] alloc_extent_buffer+0x8f8/0x33d0 [ 2917.692399][T32330] btrfs_find_create_tree_block+0xb6/0xd0 [ 2917.692432][T32330] btrfs_alloc_tree_block+0x545/0x2140 [ 2917.692461][T32330] __btrfs_cow_block+0xb93/0x2760 [ 2917.692486][T32330] btrfs_cow_block+0xa3c/0xc90 [ 2917.692519][T32330] btrfs_search_slot+0x1ad5/0x3f20 [ 2917.692545][T32330] btrfs_insert_empty_items+0x5a7/0x790 [ 2917.692572][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.692602][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.692632][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.692661][T32330] btrfs_run_delayed_refs+0x2cc/0x910 [ 2917.692689][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.692715][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.692741][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.692772][T32330] close_ctree+0x4b1/0xf57 [ 2917.692802][T32330] btrfs_put_super+0x53/0x70 [ 2917.692831][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.692857][T32330] kill_anon_super+0x63/0xb0 [ 2917.692883][T32330] btrfs_kill_super+0x61/0x90 [ 2917.692912][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.692940][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.692964][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.692989][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.693015][T32330] task_work_run+0x140/0x280 [ 2917.693040][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.693080][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.693116][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.693147][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.693176][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.693205][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.693234][T32330] ===================================================== [ 2917.693234][T32330] ===================================================== [ 2917.693234][T32330] BUG: KMSAN: uninit-value in btrfs_get_8+0x2e7/0x470 [ 2917.693234][T32330] CPU: 0 PID: 32330 Comm: syz-executor.5 Tainted: G B W 5.12.0-rc6-syzkaller #0 [ 2917.693234][T32330] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 2917.693234][T32330] Call Trace: [ 2917.693234][T32330] dump_stack+0x24c/0x2e0 [ 2917.693234][T32330] kmsan_report+0xfb/0x1e0 [ 2917.693234][T32330] __msan_warning+0x5c/0xa0 [ 2917.693234][T32330] btrfs_get_8+0x2e7/0x470 [ 2917.693234][T32330] check_leaf+0x3e69/0xc1d0 [ 2917.693234][T32330] ? __msan_memset+0x7e/0xb0 [ 2917.693234][T32330] ? csum_tree_block+0x665/0x6f0 [ 2917.693234][T32330] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 2917.693234][T32330] ? memcmp+0xc4/0x180 [ 2917.693234][T32330] ? memcmp_extent_buffer+0x411/0x650 [ 2917.693234][T32330] btrfs_check_leaf_full+0x4a/0x60 [ 2917.693234][T32330] btree_csum_one_bio+0xcca/0xfe0 [ 2917.693234][T32330] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 2917.693234][T32330] btrfs_submit_metadata_bio+0x949/0xcd0 [ 2917.693234][T32330] btree_write_cache_pages+0x20a4/0x2270 [ 2917.693234][T32330] ? btrfs_wait_ordered_extents+0x1010/0x1ca0 [ 2917.693234][T32330] btree_writepages+0xce/0x2e0 [ 2917.693265][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.693304][T32330] ? end_workqueue_fn+0x260/0x260 [ 2917.693340][T32330] do_writepages+0x15f/0x420 [ 2917.693373][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.693405][T32330] __filemap_fdatawrite_range+0x59c/0x600 [ 2917.693445][T32330] filemap_fdatawrite_range+0x9d/0xb0 [ 2917.693482][T32330] btrfs_write_marked_extents+0x464/0x830 [ 2917.693518][T32330] btrfs_commit_transaction+0x4045/0x5640 [ 2917.693557][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.693596][T32330] close_ctree+0x4b1/0xf57 [ 2917.693631][T32330] ? kmsan_get_metadata+0x116/0x180 [ 2917.693663][T32330] btrfs_put_super+0x53/0x70 [ 2917.693698][T32330] ? btrfs_set_super+0x150/0x150 [ 2917.693734][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.693769][T32330] kill_anon_super+0x63/0xb0 [ 2917.693801][T32330] btrfs_kill_super+0x61/0x90 [ 2917.693843][T32330] ? btrfs_mount_root+0x1bb0/0x1bb0 [ 2917.693879][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.693913][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.693945][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.693975][T32330] ? kmsan_internal_set_origin+0x85/0xc0 [ 2917.694008][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.694037][T32330] ? mntns_owner+0x70/0x70 [ 2917.694066][T32330] task_work_run+0x140/0x280 [ 2917.694097][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.694138][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.694176][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.694212][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.694247][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.694286][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.694321][T32330] RIP: 0023:0xf7fc2549 [ 2917.694343][T32330] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00 [ 2917.694371][T32330] RSP: 002b:00000000ffd7479c EFLAGS: 00000296 ORIG_RAX: 0000000000000034 [ 2917.694403][T32330] RAX: 0000000000000000 RBX: 00000000ffd74840 RCX: 0000000000000002 [ 2917.694423][T32330] RDX: 000000000816c000 RSI: 0000000000000000 RDI: 00000000080e9e6a [ 2917.694444][T32330] RBP: 00000000ffd74840 R08: 0000000000000000 R09: 0000000000000000 [ 2917.694464][T32330] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 2917.694484][T32330] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 2917.694508][T32330] [ 2917.694514][T32330] Uninit was stored to memory at: [ 2917.694523][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.694552][T32330] kmsan_memcpy_memmove_metadata+0x25e/0x2d0 [ 2917.694579][T32330] kmsan_memmove_metadata+0xe/0x10 [ 2917.694604][T32330] __msan_memmove+0x46/0x60 [ 2917.694627][T32330] memmove_extent_buffer+0x7c3/0xd30 [ 2917.694659][T32330] setup_items_for_insert+0x11d8/0x1a00 [ 2917.694687][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.694715][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.694747][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.694776][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20 [ 2917.694807][T32330] btrfs_run_delayed_refs+0x5df/0x910 [ 2917.694836][T32330] commit_cowonly_roots+0xea1/0x1560 [ 2917.694863][T32330] btrfs_commit_transaction+0x212b/0x5640 [ 2917.694892][T32330] btrfs_commit_super+0x1b7/0x1f0 [ 2917.694926][T32330] close_ctree+0x4b1/0xf57 [ 2917.694957][T32330] btrfs_put_super+0x53/0x70 [ 2917.694989][T32330] generic_shutdown_super+0x2ab/0x650 [ 2917.695018][T32330] kill_anon_super+0x63/0xb0 [ 2917.695046][T32330] btrfs_kill_super+0x61/0x90 [ 2917.695079][T32330] deactivate_locked_super+0x10d/0x1e0 [ 2917.695108][T32330] deactivate_super+0x1b7/0x1d0 [ 2917.695136][T32330] cleanup_mnt+0x7a0/0x870 [ 2917.695163][T32330] __cleanup_mnt+0x3b/0x50 [ 2917.695189][T32330] task_work_run+0x140/0x280 [ 2917.695215][T32330] exit_to_user_mode_prepare+0x486/0x560 [ 2917.695250][T32330] syscall_exit_to_user_mode+0x35/0x60 [ 2917.695292][T32330] __do_fast_syscall_32+0x14f/0x180 [ 2917.695323][T32330] do_fast_syscall_32+0x6a/0xc0 [ 2917.695354][T32330] do_SYSENTER_32+0x73/0x90 [ 2917.695384][T32330] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 2917.695416][T32330] [ 2917.695421][T32330] Uninit was stored to memory at: [ 2917.695430][T32330] kmsan_internal_chain_origin+0xad/0x130 [ 2917.695458][T32330] __msan_chain_origin+0x54/0xa0 [ 2917.695485][T32330] btrfs_set_token_32+0x9a6/0xb40 [ 2917.695512][T32330] setup_items_for_insert+0x10e9/0x1a00 [ 2917.695540][T32330] btrfs_insert_empty_items+0x6f9/0x790 [ 2917.695568][T32330] alloc_reserved_tree_block+0x403/0xef0 [ 2917.695599][T32330] run_delayed_tree_ref+0x3ea/0xa30 [ 2917.695628][T32330] __btrfs_run_delayed_refs+0xf48/0x2c20