------------[ cut here ]------------
WARNING: CPU: 0 PID: 17185 at kernel/signal.c:2050 rcuref_put include/linux/rcuref.h:151 [inline]
WARNING: CPU: 0 PID: 17185 at kernel/signal.c:2050 posixtimer_putref include/linux/posix-timers.h:226 [inline]
WARNING: CPU: 0 PID: 17185 at kernel/signal.c:2050 posixtimer_send_sigqueue+0x274/0x38c kernel/signal.c:2044
Modules linked in:
CPU: 0 UID: 0 PID: 17185 Comm: syz.2.3786 Not tainted 6.13.0-rc7-syzkaller-00043-g619f0b6fad52 #0
Hardware name: linux,dummy-virt (DT)
pstate: 004020c9 (nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : posixtimer_send_sigqueue+0x274/0x38c kernel/signal.c:2050
lr : posixtimer_send_sigqueue+0x94/0x38c kernel/signal.c:2005
sp : ffff800080003e20
x29: ffff800080003e20 x28: 0000000000000000 x27: ffff800080167118
x26: 0000000000000001 x25: 00000000000000c0 x24: 0000000000000013
x23: 00000000000000c0 x22: faf000000af6aee8 x21: fbf00000063936c0
x20: 0000000000000001 x19: faf000000af6ae60 x18: 0000000000000014
x17: fff07ffffd165000 x16: ffff800080000000 x15: 00000000dd4309f4
x14: 00000000000003a7 x13: 0000000000000001 x12: 0000000000000004
x11: 00000300fd9cf210 x10: 00000000000003a7 x9 : 00000000000006d1
x8 : 0000000000000190 x7 : 00000000000b47f9 x6 : 0000000026d15e33
x5 : 0000000000000000 x4 : f7f000003e10b9c0 x3 : 0000000000000000
x2 : 0000000000000000 x1 : fbf00000063936c0 x0 : f3f000000af6ad00
Call trace:
 rcuref_put include/linux/rcuref.h:151 [inline] (P)
 posixtimer_putref include/linux/posix-timers.h:226 [inline] (P)
 posixtimer_send_sigqueue+0x274/0x38c kernel/signal.c:2044 (P)
 posix_timer_queue_signal kernel/time/posix-timers.c:308 [inline]
 posix_timer_fn+0x44/0x6c kernel/time/posix-timers.c:323
 __run_hrtimer kernel/time/hrtimer.c:1739 [inline]
 __hrtimer_run_queues+0x138/0x1bc kernel/time/hrtimer.c:1803
 hrtimer_interrupt+0xec/0x254 kernel/time/hrtimer.c:1865
 timer_handler drivers/clocksource/arm_arch_timer.c:674 [inline]
 arch_timer_handler_phys+0x2c/0x44 drivers/clocksource/arm_arch_timer.c:692
 handle_percpu_devid_irq+0x80/0x120 kernel/irq/chip.c:942
 generic_handle_irq_desc include/linux/irqdesc.h:173 [inline]
 handle_irq_desc kernel/irq/irqdesc.c:714 [inline]
 generic_handle_domain_irq+0x2c/0x44 kernel/irq/irqdesc.c:770
 gic_handle_irq+0x40/0xc4 drivers/irqchip/irq-gic.c:370
 call_on_irq_stack+0x24/0x4c arch/arm64/kernel/entry.S:891
 do_interrupt_handler+0x80/0x84 arch/arm64/kernel/entry-common.c:310
 __el1_irq arch/arm64/kernel/entry-common.c:560 [inline]
 el1_interrupt+0x34/0x64 arch/arm64/kernel/entry-common.c:575
 el1h_64_irq_handler+0x18/0x24 arch/arm64/kernel/entry-common.c:580
 el1h_64_irq+0x6c/0x70 arch/arm64/kernel/entry.S:596
 __daif_local_irq_restore arch/arm64/include/asm/irqflags.h:175 [inline] (P)
 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:195 [inline] (P)
 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:151 [inline] (P)
 _raw_spin_unlock_irqrestore+0x8/0x44 kernel/locking/spinlock.c:194 (P)
 kernel_clone+0xac/0x360 kernel/fork.c:2837
 __do_sys_clone+0x70/0xa8 kernel/fork.c:2949
 __se_sys_clone kernel/fork.c:2917 [inline]
 __arm64_sys_clone+0x20/0x2c kernel/fork.c:2917
 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline]
 invoke_syscall+0x48/0x110 arch/arm64/kernel/syscall.c:49
 el0_svc_common.constprop.0+0x40/0xe0 arch/arm64/kernel/syscall.c:132
 do_el0_svc+0x1c/0x28 arch/arm64/kernel/syscall.c:151
 el0_svc+0x30/0xe0 arch/arm64/kernel/entry-common.c:744
 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762
 el0t_64_sync+0x1a4/0x1a8 arch/arm64/kernel/entry.S:600
---[ end trace 0000000000000000 ]---
vkms_vblank_simulate: vblank timer overrun