------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Not tainted 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1a00db360 x3 : 000008e1a10bff60 x2 : 000008e1a00db360 x1 : 000008e1a10bff60 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:161 [inline] _raw_spin_unlock_irqrestore+0x118/0x180 kernel/locking/spinlock.c:191 unlock_hrtimer_base kernel/time/hrtimer.c:915 [inline] hrtimer_start_range_ns+0x3d0/0x644 kernel/time/hrtimer.c:1153 hrtimer_start_expires include/linux/hrtimer.h:436 [inline] hrtimer_sleeper_start_expires kernel/time/hrtimer.c:1817 [inline] do_nanosleep+0x110/0x4c0 kernel/time/hrtimer.c:1893 hrtimer_nanosleep+0x180/0x2e0 kernel/time/hrtimer.c:1949 common_nsleep+0x78/0xd0 kernel/time/posix-timers.c:1227 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1267 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1245 [inline] __arm64_sys_clock_nanosleep+0x208/0x320 kernel/time/posix-timers.c:1245 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77510568 hardirqs last enabled at (77510567): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (77510567): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (77510568): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77510564): [] _stext+0x9e0/0x1084 softirqs last disabled at (77510519): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77510519): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77510519): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e35a ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1a3089760 x3 : 000008e1a406e360 x2 : 000008e1a3089760 x1 : 000008e1a406e360 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:161 [inline] _raw_spin_unlock_irqrestore+0x118/0x180 kernel/locking/spinlock.c:191 unlock_hrtimer_base kernel/time/hrtimer.c:915 [inline] hrtimer_start_range_ns+0x3d0/0x644 kernel/time/hrtimer.c:1153 hrtimer_start_expires include/linux/hrtimer.h:436 [inline] hrtimer_sleeper_start_expires kernel/time/hrtimer.c:1817 [inline] do_nanosleep+0x110/0x4c0 kernel/time/hrtimer.c:1893 hrtimer_nanosleep+0x180/0x2e0 kernel/time/hrtimer.c:1949 common_nsleep+0x78/0xd0 kernel/time/posix-timers.c:1227 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1267 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1245 [inline] __arm64_sys_clock_nanosleep+0x208/0x320 kernel/time/posix-timers.c:1245 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77510568 hardirqs last enabled at (77510567): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (77510567): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (77510568): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77510564): [] _stext+0x9e0/0x1084 softirqs last disabled at (77510519): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77510519): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77510519): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e35b ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1aafaf760 x3 : 000008e1abf94360 x2 : 000008e1aafaf760 x1 : 000008e1abf94360 x0 : 0000000000000008 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:161 [inline] _raw_spin_unlock_irqrestore+0x118/0x180 kernel/locking/spinlock.c:191 unlock_hrtimer_base kernel/time/hrtimer.c:915 [inline] hrtimer_start_range_ns+0x3d0/0x644 kernel/time/hrtimer.c:1153 hrtimer_start_expires include/linux/hrtimer.h:436 [inline] hrtimer_sleeper_start_expires kernel/time/hrtimer.c:1817 [inline] do_nanosleep+0x110/0x4c0 kernel/time/hrtimer.c:1893 hrtimer_nanosleep+0x180/0x2e0 kernel/time/hrtimer.c:1949 common_nsleep+0x78/0xd0 kernel/time/posix-timers.c:1227 __do_sys_clock_nanosleep kernel/time/posix-timers.c:1267 [inline] __se_sys_clock_nanosleep kernel/time/posix-timers.c:1245 [inline] __arm64_sys_clock_nanosleep+0x208/0x320 kernel/time/posix-timers.c:1245 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77510568 hardirqs last enabled at (77510567): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (77510567): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (77510568): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77510564): [] _stext+0x9e0/0x1084 softirqs last disabled at (77510519): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77510519): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77510519): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e35c ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1b5e83b60 x3 : 000008e1b6e68760 x2 : 000008e1b5e83b60 x1 : 000008e1b6e68760 x0 : 000000000000000b Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] __wake_up_common_lock+0xe0/0x130 kernel/sched/wait.c:140 __wake_up_sync_key+0x24/0x3c kernel/sched/wait.c:205 sock_def_readable+0xd4/0x340 net/core/sock.c:2910 unix_dgram_sendmsg+0x8fc/0x131c net/unix/af_unix.c:1800 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 46592 hardirqs last enabled at (46591): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (46591): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (46592): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (46466): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (46466): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (46466): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (46464): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e35d ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1b7e4d360 x3 : 000008e1b8e31f60 x2 : 000008e1b7e4d360 x1 : 000008e1b8e31f60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] __wake_up_common_lock+0xe0/0x130 kernel/sched/wait.c:140 __wake_up_sync_key+0x24/0x3c kernel/sched/wait.c:205 sock_def_readable+0xd4/0x340 net/core/sock.c:2910 unix_dgram_sendmsg+0x8fc/0x131c net/unix/af_unix.c:1800 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 46592 hardirqs last enabled at (46591): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (46591): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (46592): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (46466): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (46466): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (46466): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (46464): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e35e ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1bcdc4f60 x3 : 000008e1bdda9b60 x2 : 000008e1bcdc4f60 x1 : 000008e1bdda9b60 x0 : 0000000000000005 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] __wake_up_common_lock+0xe0/0x130 kernel/sched/wait.c:140 __wake_up_sync_key+0x24/0x3c kernel/sched/wait.c:205 sock_def_readable+0xd4/0x340 net/core/sock.c:2910 unix_dgram_sendmsg+0x8fc/0x131c net/unix/af_unix.c:1800 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 46592 hardirqs last enabled at (46591): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (46591): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (46592): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (46466): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (46466): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (46466): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (46464): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e35f ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 31267 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 31267 Comm: kworker/u4:2 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe0000145f472 x10: 0000000000000007 x9 : 1fffe0000145f489 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1c7c99360 x3 : 000008e1c8c7df60 x2 : 000008e1c7c99360 x1 : 000008e1c8c7df60 x0 : 000000000000000b Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 __kasan_check_write+0x34/0x60 mm/kasan/shadow.c:37 instrument_atomic_read_write include/linux/instrumented.h:101 [inline] atomic_try_cmpxchg_acquire include/asm-generic/atomic-instrumented.h:706 [inline] queued_spin_lock include/asm-generic/qspinlock.h:82 [inline] do_raw_spin_lock+0x164/0x320 kernel/locking/spinlock_debug.c:113 __raw_spin_lock include/linux/spinlock_api_smp.h:143 [inline] _raw_spin_lock+0x94/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 766998 hardirqs last enabled at (766997): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (766997): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (766998): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (766990): [] _stext+0x9e0/0x1084 softirqs last disabled at (766931): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (766931): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (766931): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e360 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 31267 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 31267 Comm: kworker/u4:2 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe0000145f472 x10: 0000000000000007 x9 : 1fffe0000145f489 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1c9c62b60 x3 : 000008e1cac47760 x2 : 000008e1c9c62b60 x1 : 000008e1cac47760 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 __kasan_check_write+0x34/0x60 mm/kasan/shadow.c:37 instrument_atomic_read_write include/linux/instrumented.h:101 [inline] atomic_try_cmpxchg_acquire include/asm-generic/atomic-instrumented.h:706 [inline] queued_spin_lock include/asm-generic/qspinlock.h:82 [inline] do_raw_spin_lock+0x164/0x320 kernel/locking/spinlock_debug.c:113 __raw_spin_lock include/linux/spinlock_api_smp.h:143 [inline] _raw_spin_lock+0x94/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 766998 hardirqs last enabled at (766997): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (766997): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (766998): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (766990): [] _stext+0x9e0/0x1084 softirqs last disabled at (766931): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (766931): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (766931): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e361 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 31267 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 31267 Comm: kworker/u4:2 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe0000145f472 x10: 0000000000000007 x9 : 1fffe0000145f489 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1ccc10f60 x3 : 000008e1cdbf5b60 x2 : 000008e1ccc10f60 x1 : 000008e1cdbf5b60 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 __kasan_check_write+0x34/0x60 mm/kasan/shadow.c:37 instrument_atomic_read_write include/linux/instrumented.h:101 [inline] atomic_try_cmpxchg_acquire include/asm-generic/atomic-instrumented.h:706 [inline] queued_spin_lock include/asm-generic/qspinlock.h:82 [inline] do_raw_spin_lock+0x164/0x320 kernel/locking/spinlock_debug.c:113 __raw_spin_lock include/linux/spinlock_api_smp.h:143 [inline] _raw_spin_lock+0x94/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 766998 hardirqs last enabled at (766997): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (766997): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (766998): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (766990): [] _stext+0x9e0/0x1084 softirqs last disabled at (766931): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (766931): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (766931): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e362 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2047 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2047 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018bdb02 x10: 0000000000000007 x9 : 1fffe000018bdb0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1d5b1bb60 x3 : 000008e1d6b00760 x2 : 000008e1d5b1bb60 x1 : 000008e1d6b00760 x0 : 0000000000000009 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 __debug_check_no_obj_freed lib/debugobjects.c:997 [inline] debug_check_no_obj_freed+0x1e4/0x420 lib/debugobjects.c:1018 free_pages_prepare mm/page_alloc.c:1276 [inline] __free_pages_ok+0x334/0xff0 mm/page_alloc.c:1540 free_compound_page+0x8c/0xd4 mm/page_alloc.c:668 free_transhuge_page+0x25c/0x3b0 mm/huge_memory.c:2808 destroy_compound_page include/linux/mm.h:930 [inline] __put_compound_page+0x84/0xec mm/swap.c:110 release_pages+0x408/0x1250 mm/swap.c:899 free_pages_and_swap_cache+0x168/0x200 mm/swap_state.c:329 tlb_batch_pages_flush mm/mmu_gather.c:49 [inline] tlb_flush_mmu_free mm/mmu_gather.c:242 [inline] tlb_flush_mmu+0xac/0x410 mm/mmu_gather.c:249 zap_pte_range mm/memory.c:1336 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0xbe0/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 get_signal+0x384/0x19a0 kernel/signal.c:2779 do_signal arch/arm64/kernel/signal.c:882 [inline] do_notify_resume+0x3cc/0x25fc arch/arm64/kernel/signal.c:936 work_pending+0xc/0x550 irq event stamp: 2120 hardirqs last enabled at (2119): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (2119): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (2120): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (644): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (644): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (644): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (642): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e363 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2047 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2047 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018bdb02 x10: 0000000000000007 x9 : 1fffe000018bdb0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1dca5cf60 x3 : 000008e1dda41b60 x2 : 000008e1dca5cf60 x1 : 000008e1dda41b60 x0 : 0000000000000007 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 __debug_check_no_obj_freed lib/debugobjects.c:997 [inline] debug_check_no_obj_freed+0x1e4/0x420 lib/debugobjects.c:1018 free_pages_prepare mm/page_alloc.c:1276 [inline] __free_pages_ok+0x334/0xff0 mm/page_alloc.c:1540 free_compound_page+0x8c/0xd4 mm/page_alloc.c:668 free_transhuge_page+0x25c/0x3b0 mm/huge_memory.c:2808 destroy_compound_page include/linux/mm.h:930 [inline] __put_compound_page+0x84/0xec mm/swap.c:110 release_pages+0x408/0x1250 mm/swap.c:899 free_pages_and_swap_cache+0x168/0x200 mm/swap_state.c:329 tlb_batch_pages_flush mm/mmu_gather.c:49 [inline] tlb_flush_mmu_free mm/mmu_gather.c:242 [inline] tlb_flush_mmu+0xac/0x410 mm/mmu_gather.c:249 zap_pte_range mm/memory.c:1336 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0xbe0/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 get_signal+0x384/0x19a0 kernel/signal.c:2779 do_signal arch/arm64/kernel/signal.c:882 [inline] do_notify_resume+0x3cc/0x25fc arch/arm64/kernel/signal.c:936 work_pending+0xc/0x550 irq event stamp: 2120 hardirqs last enabled at (2119): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (2119): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (2120): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (644): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (644): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (644): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (642): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e364 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2047 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2047 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018bdb02 x10: 0000000000000007 x9 : 1fffe000018bdb0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1e09eff60 x3 : 000008e1e19d4b60 x2 : 000008e1e09eff60 x1 : 000008e1e19d4b60 x0 : 0000000000000004 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 __debug_check_no_obj_freed lib/debugobjects.c:997 [inline] debug_check_no_obj_freed+0x1e4/0x420 lib/debugobjects.c:1018 free_pages_prepare mm/page_alloc.c:1276 [inline] __free_pages_ok+0x334/0xff0 mm/page_alloc.c:1540 free_compound_page+0x8c/0xd4 mm/page_alloc.c:668 free_transhuge_page+0x25c/0x3b0 mm/huge_memory.c:2808 destroy_compound_page include/linux/mm.h:930 [inline] __put_compound_page+0x84/0xec mm/swap.c:110 release_pages+0x408/0x1250 mm/swap.c:899 free_pages_and_swap_cache+0x168/0x200 mm/swap_state.c:329 tlb_batch_pages_flush mm/mmu_gather.c:49 [inline] tlb_flush_mmu_free mm/mmu_gather.c:242 [inline] tlb_flush_mmu+0xac/0x410 mm/mmu_gather.c:249 zap_pte_range mm/memory.c:1336 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0xbe0/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 get_signal+0x384/0x19a0 kernel/signal.c:2779 do_signal arch/arm64/kernel/signal.c:882 [inline] do_notify_resume+0x3cc/0x25fc arch/arm64/kernel/signal.c:936 work_pending+0xc/0x550 irq event stamp: 2120 hardirqs last enabled at (2119): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (2119): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (2120): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (644): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (644): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (644): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (642): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e365 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1ea8df760 x3 : 000008e1eb8c4360 x2 : 000008e1ea8df760 x1 : 000008e1eb8c4360 x0 : 000000000000000a Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] skb_queue_tail+0xd0/0x144 net/core/skbuff.c:3201 unix_dgram_sendmsg+0x8c4/0x131c net/unix/af_unix.c:1798 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48172 hardirqs last enabled at (48171): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (48171): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (48172): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48146): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48146): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48146): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48144): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e366 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1ed88db60 x3 : 000008e1ee872760 x2 : 000008e1ed88db60 x1 : 000008e1ee872760 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] skb_queue_tail+0xd0/0x144 net/core/skbuff.c:3201 unix_dgram_sendmsg+0x8c4/0x131c net/unix/af_unix.c:1798 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48172 hardirqs last enabled at (48171): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (48171): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (48172): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48146): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48146): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48146): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48144): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e367 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0f x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1ef857360 x3 : 000008e1f083bf60 x2 : 000008e1ef857360 x1 : 000008e1f083bf60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 spin_unlock_irqrestore include/linux/spinlock.h:409 [inline] skb_queue_tail+0xd0/0x144 net/core/skbuff.c:3201 unix_dgram_sendmsg+0x8c4/0x131c net/unix/af_unix.c:1798 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48172 hardirqs last enabled at (48171): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (48171): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (48172): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48146): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48146): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48146): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48144): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e368 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1f9746b60 x3 : 000008e1fa72b760 x2 : 000008e1f9746b60 x1 : 000008e1fa72b760 x0 : 000000000000000a Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 slab_alloc_node mm/slub.c:2872 [inline] kmem_cache_alloc_node+0x488/0x5b0 mm/slub.c:2944 __alloc_skb+0x1b8/0x2d0 net/core/skbuff.c:412 alloc_skb include/linux/skbuff.h:1103 [inline] alloc_skb_with_frags+0x7c/0x4e0 net/core/skbuff.c:5948 sock_alloc_send_pskb+0x59c/0x6b0 net/core/sock.c:2356 unix_dgram_sendmsg+0x2a8/0x131c net/unix/af_unix.c:1671 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48562 hardirqs last enabled at (48561): [] __slab_alloc.constprop.0+0xe8/0x114 mm/slub.c:2792 hardirqs last disabled at (48562): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48500): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48500): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48500): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48498): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e369 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e1ff6a3360 x3 : 000008e200687f60 x2 : 000008e1ff6a3360 x1 : 000008e200687f60 x0 : 0000000000000006 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 slab_alloc_node mm/slub.c:2872 [inline] kmem_cache_alloc_node+0x488/0x5b0 mm/slub.c:2944 __alloc_skb+0x1b8/0x2d0 net/core/skbuff.c:412 alloc_skb include/linux/skbuff.h:1103 [inline] alloc_skb_with_frags+0x7c/0x4e0 net/core/skbuff.c:5948 sock_alloc_send_pskb+0x59c/0x6b0 net/core/sock.c:2356 unix_dgram_sendmsg+0x2a8/0x131c net/unix/af_unix.c:1671 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48562 hardirqs last enabled at (48561): [] __slab_alloc.constprop.0+0xe8/0x114 mm/slub.c:2792 hardirqs last disabled at (48562): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48500): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48500): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48500): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48498): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e36a ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3085 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3085 Comm: klogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020e2b02 x10: 0000000000000007 x9 : 1fffe000020e2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2075c9360 x3 : 000008e2085adf60 x2 : 000008e2075c9360 x1 : 000008e2085adf60 x0 : 0000000000000008 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 slab_alloc_node mm/slub.c:2872 [inline] kmem_cache_alloc_node+0x488/0x5b0 mm/slub.c:2944 __alloc_skb+0x1b8/0x2d0 net/core/skbuff.c:412 alloc_skb include/linux/skbuff.h:1103 [inline] alloc_skb_with_frags+0x7c/0x4e0 net/core/skbuff.c:5948 sock_alloc_send_pskb+0x59c/0x6b0 net/core/sock.c:2356 unix_dgram_sendmsg+0x2a8/0x131c net/unix/af_unix.c:1671 sock_sendmsg_nosec net/socket.c:654 [inline] sock_sendmsg+0xc0/0xf4 net/socket.c:674 __sys_sendto+0x16c/0x22c net/socket.c:1977 __do_sys_sendto net/socket.c:1989 [inline] __se_sys_sendto net/socket.c:1985 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:1985 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 48562 hardirqs last enabled at (48561): [] __slab_alloc.constprop.0+0xe8/0x114 mm/slub.c:2792 hardirqs last disabled at (48562): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (48500): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (48500): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (48500): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (48498): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e36b ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2104d3f60 x3 : 000008e2114b8b60 x2 : 000008e2104d3f60 x1 : 000008e2114b8b60 x0 : 0000000000000009 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 flush_tlb_page_nosync arch/arm64/include/asm/tlbflush.h:262 [inline] flush_tlb_page arch/arm64/include/asm/tlbflush.h:269 [inline] ptep_set_access_flags+0x1b0/0x240 arch/arm64/mm/fault.c:226 wp_page_reuse+0xfc/0x250 mm/memory.c:2812 do_wp_page+0x8c8/0xbbc mm/memory.c:3147 handle_pte_fault mm/memory.c:4336 [inline] __handle_mm_fault+0x1020/0x21d4 mm/memory.c:4453 handle_mm_fault+0x1cc/0x4dc mm/memory.c:4551 __do_page_fault arch/arm64/mm/fault.c:507 [inline] do_page_fault+0x230/0x8c0 arch/arm64/mm/fault.c:607 do_mem_abort+0x64/0x1c0 arch/arm64/mm/fault.c:821 el0_da+0x3c/0x50 arch/arm64/kernel/entry-common.c:314 el0_sync_compat_handler+0x114/0x140 arch/arm64/kernel/entry-common.c:512 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77514396 hardirqs last enabled at (77514395): [] count_memcg_events include/linux/memcontrol.h:997 [inline] hardirqs last enabled at (77514395): [] count_memcg_event_mm.part.0+0x130/0x1f0 include/linux/memcontrol.h:1020 hardirqs last disabled at (77514396): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77514172): [] spin_unlock_bh include/linux/spinlock.h:399 [inline] softirqs last enabled at (77514172): [] release_sock+0x164/0x214 net/core/sock.c:3085 softirqs last disabled at (77514170): [] spin_lock_bh include/linux/spinlock.h:359 [inline] softirqs last disabled at (77514170): [] release_sock+0x28/0x214 net/core/sock.c:3072 ---[ end trace 342ed2e994e5e36c ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e213482360 x3 : 000008e214466f60 x2 : 000008e213482360 x1 : 000008e214466f60 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 flush_tlb_page_nosync arch/arm64/include/asm/tlbflush.h:262 [inline] flush_tlb_page arch/arm64/include/asm/tlbflush.h:269 [inline] ptep_set_access_flags+0x1b0/0x240 arch/arm64/mm/fault.c:226 wp_page_reuse+0xfc/0x250 mm/memory.c:2812 do_wp_page+0x8c8/0xbbc mm/memory.c:3147 handle_pte_fault mm/memory.c:4336 [inline] __handle_mm_fault+0x1020/0x21d4 mm/memory.c:4453 handle_mm_fault+0x1cc/0x4dc mm/memory.c:4551 __do_page_fault arch/arm64/mm/fault.c:507 [inline] do_page_fault+0x230/0x8c0 arch/arm64/mm/fault.c:607 do_mem_abort+0x64/0x1c0 arch/arm64/mm/fault.c:821 el0_da+0x3c/0x50 arch/arm64/kernel/entry-common.c:314 el0_sync_compat_handler+0x114/0x140 arch/arm64/kernel/entry-common.c:512 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77514396 hardirqs last enabled at (77514395): [] count_memcg_events include/linux/memcontrol.h:997 [inline] hardirqs last enabled at (77514395): [] count_memcg_event_mm.part.0+0x130/0x1f0 include/linux/memcontrol.h:1020 hardirqs last disabled at (77514396): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77514172): [] spin_unlock_bh include/linux/spinlock.h:399 [inline] softirqs last enabled at (77514172): [] release_sock+0x164/0x214 net/core/sock.c:3085 softirqs last disabled at (77514170): [] spin_lock_bh include/linux/spinlock.h:359 [inline] softirqs last disabled at (77514170): [] release_sock+0x28/0x214 net/core/sock.c:3072 ---[ end trace 342ed2e994e5e36d ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2193deb60 x3 : 000008e21a3c3760 x2 : 000008e2193deb60 x1 : 000008e21a3c3760 x0 : 0000000000000005 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 sock_has_perm security/selinux/hooks.c:4673 [inline] selinux_socket_getsockopt+0xec/0x2ac security/selinux/hooks.c:5060 security_socket_getsockopt+0x60/0xc0 security/security.c:2189 __sys_getsockopt+0xac/0x42c net/socket.c:2149 __do_sys_getsockopt net/socket.c:2176 [inline] __se_sys_getsockopt net/socket.c:2173 [inline] __arm64_sys_getsockopt+0xa4/0x100 net/socket.c:2173 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77515456 hardirqs last enabled at (77515455): [] local_daif_restore arch/arm64/include/asm/daifflags.h:75 [inline] hardirqs last enabled at (77515455): [] el0_svc_common.constprop.0+0xa0/0x1e4 arch/arm64/kernel/syscall.c:110 hardirqs last disabled at (77515456): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77515368): [] xt_replace_table+0x2d4/0x75c net/netfilter/x_tables.c:1383 softirqs last disabled at (77515366): [] xt_jumpstack_alloc net/netfilter/x_tables.c:1318 [inline] softirqs last disabled at (77515366): [] xt_replace_table+0x1f8/0x75c net/netfilter/x_tables.c:1358 ---[ end trace 342ed2e994e5e36e ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e21b3a8360 x3 : 000008e21c38cf60 x2 : 000008e21b3a8360 x1 : 000008e21c38cf60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 sock_has_perm security/selinux/hooks.c:4673 [inline] selinux_socket_getsockopt+0xec/0x2ac security/selinux/hooks.c:5060 security_socket_getsockopt+0x60/0xc0 security/security.c:2189 __sys_getsockopt+0xac/0x42c net/socket.c:2149 __do_sys_getsockopt net/socket.c:2176 [inline] __se_sys_getsockopt net/socket.c:2173 [inline] __arm64_sys_getsockopt+0xa4/0x100 net/socket.c:2173 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77515456 hardirqs last enabled at (77515455): [] local_daif_restore arch/arm64/include/asm/daifflags.h:75 [inline] hardirqs last enabled at (77515455): [] el0_svc_common.constprop.0+0xa0/0x1e4 arch/arm64/kernel/syscall.c:110 hardirqs last disabled at (77515456): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77515368): [] xt_replace_table+0x2d4/0x75c net/netfilter/x_tables.c:1383 softirqs last disabled at (77515366): [] xt_jumpstack_alloc net/netfilter/x_tables.c:1318 [inline] softirqs last disabled at (77515366): [] xt_replace_table+0x1f8/0x75c net/netfilter/x_tables.c:1358 ---[ end trace 342ed2e994e5e36f ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df47a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e21d371b60 x3 : 000008e21e356760 x2 : 000008e21d371b60 x1 : 000008e21e356760 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 sock_has_perm security/selinux/hooks.c:4673 [inline] selinux_socket_getsockopt+0xec/0x2ac security/selinux/hooks.c:5060 security_socket_getsockopt+0x60/0xc0 security/security.c:2189 __sys_getsockopt+0xac/0x42c net/socket.c:2149 __do_sys_getsockopt net/socket.c:2176 [inline] __se_sys_getsockopt net/socket.c:2173 [inline] __arm64_sys_getsockopt+0xa4/0x100 net/socket.c:2173 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77515456 hardirqs last enabled at (77515455): [] local_daif_restore arch/arm64/include/asm/daifflags.h:75 [inline] hardirqs last enabled at (77515455): [] el0_svc_common.constprop.0+0xa0/0x1e4 arch/arm64/kernel/syscall.c:110 hardirqs last disabled at (77515456): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77515368): [] xt_replace_table+0x2d4/0x75c net/netfilter/x_tables.c:1383 softirqs last disabled at (77515366): [] xt_jumpstack_alloc net/netfilter/x_tables.c:1318 [inline] softirqs last disabled at (77515366): [] xt_replace_table+0x1f8/0x75c net/netfilter/x_tables.c:1358 ---[ end trace 342ed2e994e5e370 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e228245f60 x3 : 000008e22922ab60 x2 : 000008e228245f60 x1 : 000008e22922ab60 x0 : 000000000000000b Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count+0x38/0x54 arch/arm64/include/asm/preempt.h:12 check_preemption_disabled+0x34/0x170 lib/smp_processor_id.c:16 debug_smp_processor_id+0x20/0x30 lib/smp_processor_id.c:64 rcu_lockdep_current_cpu_online kernel/rcu/tree.c:1217 [inline] rcu_lockdep_current_cpu_online+0xd4/0x24c kernel/rcu/tree.c:1208 rcu_read_lock_held_common kernel/rcu/update.c:112 [inline] rcu_read_lock_held_common kernel/rcu/update.c:102 [inline] rcu_read_lock_sched_held+0x40/0xd0 kernel/rcu/update.c:123 trace_lock_acquire include/trace/events/lock.h:13 [inline] lock_acquire+0x8c8/0xbbc kernel/locking/lockdep.c:5482 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x8c/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51532 hardirqs last enabled at (51531): [] exit_to_kernel_mode+0x38/0x230 arch/arm64/kernel/entry-common.c:63 hardirqs last disabled at (51532): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51522): [] _stext+0x9e0/0x1084 softirqs last disabled at (51471): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51471): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51471): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e371 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e22d1bdb60 x3 : 000008e22e1a2760 x2 : 000008e22d1bdb60 x1 : 000008e22e1a2760 x0 : 0000000000000005 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count+0x38/0x54 arch/arm64/include/asm/preempt.h:12 check_preemption_disabled+0x34/0x170 lib/smp_processor_id.c:16 debug_smp_processor_id+0x20/0x30 lib/smp_processor_id.c:64 rcu_lockdep_current_cpu_online kernel/rcu/tree.c:1217 [inline] rcu_lockdep_current_cpu_online+0xd4/0x24c kernel/rcu/tree.c:1208 rcu_read_lock_held_common kernel/rcu/update.c:112 [inline] rcu_read_lock_held_common kernel/rcu/update.c:102 [inline] rcu_read_lock_sched_held+0x40/0xd0 kernel/rcu/update.c:123 trace_lock_acquire include/trace/events/lock.h:13 [inline] lock_acquire+0x8c8/0xbbc kernel/locking/lockdep.c:5482 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x8c/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51532 hardirqs last enabled at (51531): [] exit_to_kernel_mode+0x38/0x230 arch/arm64/kernel/entry-common.c:63 hardirqs last disabled at (51532): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51522): [] _stext+0x9e0/0x1084 softirqs last disabled at (51471): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51471): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51471): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e372 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e23016bf60 x3 : 000008e231150b60 x2 : 000008e23016bf60 x1 : 000008e231150b60 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count+0x38/0x54 arch/arm64/include/asm/preempt.h:12 check_preemption_disabled+0x34/0x170 lib/smp_processor_id.c:16 debug_smp_processor_id+0x20/0x30 lib/smp_processor_id.c:64 rcu_lockdep_current_cpu_online kernel/rcu/tree.c:1217 [inline] rcu_lockdep_current_cpu_online+0xd4/0x24c kernel/rcu/tree.c:1208 rcu_read_lock_held_common kernel/rcu/update.c:112 [inline] rcu_read_lock_held_common kernel/rcu/update.c:102 [inline] rcu_read_lock_sched_held+0x40/0xd0 kernel/rcu/update.c:123 trace_lock_acquire include/trace/events/lock.h:13 [inline] lock_acquire+0x8c8/0xbbc kernel/locking/lockdep.c:5482 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x8c/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51532 hardirqs last enabled at (51531): [] exit_to_kernel_mode+0x38/0x230 arch/arm64/kernel/entry-common.c:63 hardirqs last disabled at (51532): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51522): [] _stext+0x9e0/0x1084 softirqs last disabled at (51471): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51471): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51471): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e373 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e239076b60 x3 : 000008e23a05b760 x2 : 000008e239076b60 x1 : 000008e23a05b760 x0 : 0000000000000009 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 return_address+0xac/0xf0 arch/arm64/kernel/return_address.c:46 get_lock_parent_ip include/linux/ftrace.h:843 [inline] preempt_latency_start kernel/sched/core.c:4709 [inline] preempt_latency_start kernel/sched/core.c:4706 [inline] preempt_count_add+0x224/0x41c kernel/sched/core.c:4734 __raw_spin_lock include/linux/spinlock_api_smp.h:141 [inline] _raw_spin_lock+0x24/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51660 hardirqs last enabled at (51659): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51659): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51660): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51646): [] _stext+0x9e0/0x1084 softirqs last disabled at (51533): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51533): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51533): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e374 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e23dfee760 x3 : 000008e23efd3360 x2 : 000008e23dfee760 x1 : 000008e23efd3360 x0 : 0000000000000005 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 return_address+0xac/0xf0 arch/arm64/kernel/return_address.c:46 get_lock_parent_ip include/linux/ftrace.h:843 [inline] preempt_latency_start kernel/sched/core.c:4709 [inline] preempt_latency_start kernel/sched/core.c:4706 [inline] preempt_count_add+0x224/0x41c kernel/sched/core.c:4734 __raw_spin_lock include/linux/spinlock_api_smp.h:141 [inline] _raw_spin_lock+0x24/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51660 hardirqs last enabled at (51659): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51659): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51660): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51646): [] _stext+0x9e0/0x1084 softirqs last disabled at (51533): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51533): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51533): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e375 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e240f9cb60 x3 : 000008e241f81760 x2 : 000008e240f9cb60 x1 : 000008e241f81760 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 return_address+0xac/0xf0 arch/arm64/kernel/return_address.c:46 get_lock_parent_ip include/linux/ftrace.h:843 [inline] preempt_latency_start kernel/sched/core.c:4709 [inline] preempt_latency_start kernel/sched/core.c:4706 [inline] preempt_count_add+0x224/0x41c kernel/sched/core.c:4734 __raw_spin_lock include/linux/spinlock_api_smp.h:141 [inline] _raw_spin_lock+0x24/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51660 hardirqs last enabled at (51659): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51659): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51660): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51646): [] _stext+0x9e0/0x1084 softirqs last disabled at (51533): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51533): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51533): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e376 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e249ea7760 x3 : 000008e24ae8c360 x2 : 000008e249ea7760 x1 : 000008e24ae8c360 x0 : 0000000000000009 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count arch/arm64/include/asm/preempt.h:12 [inline] preempt_count_sub+0x1a8/0x254 kernel/sched/core.c:4760 __raw_spin_unlock include/linux/spinlock_api_smp.h:152 [inline] _raw_spin_unlock+0x7c/0x150 kernel/locking/spinlock.c:183 spin_unlock include/linux/spinlock.h:394 [inline] wg_ratelimiter_gc_entries+0x2b8/0x5a0 drivers/net/wireguard/ratelimiter.c:76 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51866 hardirqs last enabled at (51865): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51865): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51866): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51862): [] _stext+0x9e0/0x1084 softirqs last disabled at (51661): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51661): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51661): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e377 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e24ce55b60 x3 : 000008e24de3a760 x2 : 000008e24ce55b60 x1 : 000008e24de3a760 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count arch/arm64/include/asm/preempt.h:12 [inline] preempt_count_sub+0x1a8/0x254 kernel/sched/core.c:4760 __raw_spin_unlock include/linux/spinlock_api_smp.h:152 [inline] _raw_spin_unlock+0x7c/0x150 kernel/locking/spinlock.c:183 spin_unlock include/linux/spinlock.h:394 [inline] wg_ratelimiter_gc_entries+0x2b8/0x5a0 drivers/net/wireguard/ratelimiter.c:76 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51866 hardirqs last enabled at (51865): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51865): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51866): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51862): [] _stext+0x9e0/0x1084 softirqs last disabled at (51661): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51661): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51661): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e378 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 1887 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 1887 Comm: kworker/u4:0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000015d1472 x10: 0000000000000007 x9 : 1fffe000015d1484 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e24ee1f360 x3 : 000008e24fe03f60 x2 : 000008e24ee1f360 x1 : 000008e24fe03f60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 preempt_count arch/arm64/include/asm/preempt.h:12 [inline] preempt_count_sub+0x1a8/0x254 kernel/sched/core.c:4760 __raw_spin_unlock include/linux/spinlock_api_smp.h:152 [inline] _raw_spin_unlock+0x7c/0x150 kernel/locking/spinlock.c:183 spin_unlock include/linux/spinlock.h:394 [inline] wg_ratelimiter_gc_entries+0x2b8/0x5a0 drivers/net/wireguard/ratelimiter.c:76 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 51866 hardirqs last enabled at (51865): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (51865): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (51866): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (51862): [] _stext+0x9e0/0x1084 softirqs last disabled at (51661): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (51661): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (51661): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e379 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 20337 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 20337 Comm: syz-executor.1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00001a9e7ba x10: 0000000000000007 x9 : 1fffe00001a9e7c2 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e259cf3760 x3 : 000008e25acd8360 x2 : 000008e259cf3760 x1 : 000008e25acd8360 x0 : 000000000000000b Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 task_rq_unlock kernel/sched/sched.h:1298 [inline] sched_move_task+0xfc/0x3a0 kernel/sched/core.c:8638 sched_autogroup_exit_task+0x10/0x20 kernel/sched/autogroup.c:132 do_exit+0x910/0x2290 kernel/exit.c:836 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3384 hardirqs last enabled at (3383): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (3383): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (3384): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2562): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2562): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2562): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2560): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37a ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 20337 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 20337 Comm: syz-executor.1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00001a9e7ba x10: 0000000000000007 x9 : 1fffe00001a9e7c2 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e25fc4ff60 x3 : 000008e260c34b60 x2 : 000008e25fc4ff60 x1 : 000008e260c34b60 x0 : 0000000000000006 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 task_rq_unlock kernel/sched/sched.h:1298 [inline] sched_move_task+0xfc/0x3a0 kernel/sched/core.c:8638 sched_autogroup_exit_task+0x10/0x20 kernel/sched/autogroup.c:132 do_exit+0x910/0x2290 kernel/exit.c:836 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3384 hardirqs last enabled at (3383): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (3383): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (3384): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2562): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2562): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2562): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2560): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37b ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 20337 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 20337 Comm: syz-executor.1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00001a9e7ba x10: 0000000000000007 x9 : 1fffe00001a9e7c2 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e262bfe360 x3 : 000008e263be2f60 x2 : 000008e262bfe360 x1 : 000008e263be2f60 x0 : 0000000000000003 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] _raw_spin_unlock_irqrestore+0x94/0x180 kernel/locking/spinlock.c:191 task_rq_unlock kernel/sched/sched.h:1298 [inline] sched_move_task+0xfc/0x3a0 kernel/sched/core.c:8638 sched_autogroup_exit_task+0x10/0x20 kernel/sched/autogroup.c:132 do_exit+0x910/0x2290 kernel/exit.c:836 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3384 hardirqs last enabled at (3383): [] __raw_spin_unlock_irqrestore include/linux/spinlock_api_smp.h:160 [inline] hardirqs last enabled at (3383): [] _raw_spin_unlock_irqrestore+0x108/0x180 kernel/locking/spinlock.c:191 hardirqs last disabled at (3384): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2562): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2562): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2562): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2560): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37c ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e26bb08f60 x3 : 000008e26caedb60 x2 : 000008e26bb08f60 x1 : 000008e26caedb60 x0 : 0000000000000009 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 schedule+0xac/0x22c kernel/sched/core.c:5152 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue_me+0x208/0x430 kernel/futex.c:2606 futex_wait+0x180/0x420 kernel/futex.c:2708 do_futex+0x1c4/0x1370 kernel/futex.c:3734 __do_sys_futex_time32 kernel/futex.c:3987 [inline] __se_sys_futex_time32 kernel/futex.c:3959 [inline] __arm64_sys_futex_time32+0x228/0x62c kernel/futex.c:3959 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 2044 hardirqs last enabled at (2043): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2043): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2044): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (1994): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (1994): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (1994): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (1992): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37d ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e272a4a360 x3 : 000008e273a2ef60 x2 : 000008e272a4a360 x1 : 000008e273a2ef60 x0 : 0000000000000007 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 schedule+0xac/0x22c kernel/sched/core.c:5152 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue_me+0x208/0x430 kernel/futex.c:2606 futex_wait+0x180/0x420 kernel/futex.c:2708 do_futex+0x1c4/0x1370 kernel/futex.c:3734 __do_sys_futex_time32 kernel/futex.c:3987 [inline] __se_sys_futex_time32 kernel/futex.c:3959 [inline] __arm64_sys_futex_time32+0x228/0x62c kernel/futex.c:3959 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 2044 hardirqs last enabled at (2043): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2043): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2044): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (1994): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (1994): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (1994): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (1992): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37e ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b0a x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e27c939b60 x3 : 000008e27d91e760 x2 : 000008e27c939b60 x1 : 000008e27d91e760 x0 : 000000000000000a Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 schedule+0xac/0x22c kernel/sched/core.c:5152 freezable_schedule include/linux/freezer.h:172 [inline] futex_wait_queue_me+0x208/0x430 kernel/futex.c:2606 futex_wait+0x180/0x420 kernel/futex.c:2708 do_futex+0x1c4/0x1370 kernel/futex.c:3734 __do_sys_futex_time32 kernel/futex.c:3987 [inline] __se_sys_futex_time32 kernel/futex.c:3959 [inline] __arm64_sys_futex_time32+0x228/0x62c kernel/futex.c:3959 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 2044 hardirqs last enabled at (2043): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2043): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2044): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (1994): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (1994): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (1994): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (1992): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e37f ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000007 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b14 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e28b7a0f60 x3 : 000008e28c785b60 x2 : 000008e28b7a0f60 x1 : 000008e28c785b60 x0 : 000000000000000f Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 hugepage_add_new_anon_rmap+0x380/0x68c zap_pte_range mm/memory.c:1270 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0x6b8/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3296 hardirqs last enabled at (3295): [] lock_page_memcg+0x274/0x450 mm/memcontrol.c:2154 hardirqs last disabled at (3296): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2720): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2720): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2720): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2718): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e380 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000007 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b14 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2926e2360 x3 : 000008e2936c6f60 x2 : 000008e2926e2360 x1 : 000008e2936c6f60 x0 : 0000000000000007 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 hugepage_add_new_anon_rmap+0x380/0x68c zap_pte_range mm/memory.c:1270 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0x6b8/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3296 hardirqs last enabled at (3295): [] lock_page_memcg+0x274/0x450 mm/memcontrol.c:2154 hardirqs last disabled at (3296): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2720): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2720): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2720): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2718): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e381 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2050 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2050 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000007 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2b02 x10: 0000000000000007 x9 : 1fffe000018b2b14 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e299623760 x3 : 000008e29a608360 x2 : 000008e299623760 x1 : 000008e29a608360 x0 : 0000000000000007 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 hugepage_add_new_anon_rmap+0x380/0x68c zap_pte_range mm/memory.c:1270 [inline] zap_pmd_range mm/memory.c:1374 [inline] zap_pud_range mm/memory.c:1403 [inline] zap_p4d_range mm/memory.c:1424 [inline] unmap_page_range+0x6b8/0x14f0 mm/memory.c:1445 unmap_single_vma mm/memory.c:1490 [inline] unmap_vmas+0x1a4/0x3a4 mm/memory.c:1522 exit_mmap+0x1dc/0x3e0 mm/mmap.c:3224 __mmput+0xa8/0x33c kernel/fork.c:1090 mmput+0x80/0x90 kernel/fork.c:1111 exit_mm kernel/exit.c:501 [inline] do_exit+0x854/0x2290 kernel/exit.c:812 do_group_exit+0xcc/0x23c kernel/exit.c:922 __do_sys_exit_group kernel/exit.c:933 [inline] __se_sys_exit_group kernel/exit.c:931 [inline] __arm64_sys_exit_group+0x3c/0x44 kernel/exit.c:931 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 3296 hardirqs last enabled at (3295): [] lock_page_memcg+0x274/0x450 mm/memcontrol.c:2154 hardirqs last disabled at (3296): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2720): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2720): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2720): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2718): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e382 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3081 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3081 Comm: syslogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000000 x15: 0000000000000000 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020747ba x10: 0000000000000007 x9 : 1fffe000020747c2 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2a64c1360 x3 : 000008e2a74a5f60 x2 : 000008e2a64c1360 x1 : 000008e2a74a5f60 x0 : 000000000000000d Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] lock_release+0x75c/0xa80 kernel/locking/lockdep.c:5534 percpu_up_read+0x6c/0x3b0 include/linux/percpu-rwsem.h:99 __sb_end_write include/linux/fs.h:1760 [inline] file_end_write include/linux/fs.h:3049 [inline] vfs_write+0x3b0/0x570 fs/read_write.c:613 ksys_write+0xec/0x1d0 fs/read_write.c:658 __do_sys_write fs/read_write.c:670 [inline] __se_sys_write fs/read_write.c:667 [inline] __arm64_sys_write+0x6c/0xa0 fs/read_write.c:667 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 107168 hardirqs last enabled at (107167): [] seqcount_lockdep_reader_access.constprop.0+0x19c/0x230 include/linux/seqlock.h:105 hardirqs last disabled at (107168): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (106944): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (106944): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (106944): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (106942): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e383 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3081 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3081 Comm: syslogd Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000020747ba x10: 0000000000000007 x9 : 1fffe000020747c2 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2a848ab60 x3 : 000008e2a946f760 x2 : 000008e2a848ab60 x1 : 000008e2a946f760 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] lock_release+0x75c/0xa80 kernel/locking/lockdep.c:5534 percpu_up_read+0x6c/0x3b0 include/linux/percpu-rwsem.h:99 __sb_end_write include/linux/fs.h:1760 [inline] file_end_write include/linux/fs.h:3049 [inline] vfs_write+0x3b0/0x570 fs/read_write.c:613 ksys_write+0xec/0x1d0 fs/read_write.c:658 __do_sys_write fs/read_write.c:670 [inline] __se_sys_write fs/read_write.c:667 [inline] __arm64_sys_write+0x6c/0xa0 fs/read_write.c:667 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 107168 hardirqs last enabled at (107167): [] seqcount_lockdep_reader_access.constprop.0+0x19c/0x230 include/linux/seqlock.h:105 hardirqs last disabled at (107168): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (106944): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (106944): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (106944): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (106942): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e384 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7540 x29: ffff8000180a7540 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014e5e x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df498 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2c713df60 x3 : 000008e2c8122b60 x2 : 000008e2c713df60 x1 : 000008e2c8122b60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] load_balance+0xa54/0x203c kernel/sched/fair.c:9658 rebalance_domains+0x530/0xc10 kernel/sched/fair.c:10029 run_rebalance_domains+0xec/0x160 kernel/sched/fair.c:10686 _stext+0x2b4/0x1084 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:440 [inline] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 irq_exit+0x14/0x84 kernel/softirq.c:661 __handle_domain_irq+0x120/0x1f0 kernel/irq/irqdesc.c:692 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 lock_is_held include/linux/lockdep.h:278 [inline] rcu_read_lock_held kernel/rcu/update.c:311 [inline] rcu_read_lock_held+0x54/0x70 kernel/rcu/update.c:305 ext4_get_group_info+0x200/0x2f0 fs/ext4/ext4.h:3225 ext4_free_inode+0x55c/0xf60 fs/ext4/ialloc.c:295 ext4_evict_inode+0xad8/0xf90 fs/ext4/inode.c:333 evict+0x1fc/0x4c0 fs/inode.c:577 iput_final fs/inode.c:1653 [inline] iput fs/inode.c:1679 [inline] iput+0x418/0x770 fs/inode.c:1665 dentry_unlink_inode+0x21c/0x404 fs/dcache.c:374 d_delete fs/dcache.c:2503 [inline] d_delete+0x14c/0x19c fs/dcache.c:2492 vfs_rmdir.part.0+0x2b0/0x370 fs/namei.c:3909 vfs_rmdir fs/namei.c:3881 [inline] do_rmdir+0x2d0/0x354 fs/namei.c:3958 __do_sys_rmdir fs/namei.c:3976 [inline] __se_sys_rmdir fs/namei.c:3974 [inline] __arm64_sys_rmdir+0x9c/0xe0 fs/namei.c:3974 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77518725 hardirqs last enabled at (77518724): [] load_balance+0xec0/0x203c kernel/sched/fair.c:9658 hardirqs last disabled at (77518725): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77518614): [] _stext+0x9e0/0x1084 softirqs last disabled at (77518693): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77518693): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77518693): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e385 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7540 x29: ffff8000180a7540 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014e5e x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df498 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2cb0d0f60 x3 : 000008e2cc0b5b60 x2 : 000008e2cb0d0f60 x1 : 000008e2cc0b5b60 x0 : 0000000000000004 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] load_balance+0xa54/0x203c kernel/sched/fair.c:9658 rebalance_domains+0x530/0xc10 kernel/sched/fair.c:10029 run_rebalance_domains+0xec/0x160 kernel/sched/fair.c:10686 _stext+0x2b4/0x1084 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:440 [inline] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 irq_exit+0x14/0x84 kernel/softirq.c:661 __handle_domain_irq+0x120/0x1f0 kernel/irq/irqdesc.c:692 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 lock_is_held include/linux/lockdep.h:278 [inline] rcu_read_lock_held kernel/rcu/update.c:311 [inline] rcu_read_lock_held+0x54/0x70 kernel/rcu/update.c:305 ext4_get_group_info+0x200/0x2f0 fs/ext4/ext4.h:3225 ext4_free_inode+0x55c/0xf60 fs/ext4/ialloc.c:295 ext4_evict_inode+0xad8/0xf90 fs/ext4/inode.c:333 evict+0x1fc/0x4c0 fs/inode.c:577 iput_final fs/inode.c:1653 [inline] iput fs/inode.c:1679 [inline] iput+0x418/0x770 fs/inode.c:1665 dentry_unlink_inode+0x21c/0x404 fs/dcache.c:374 d_delete fs/dcache.c:2503 [inline] d_delete+0x14c/0x19c fs/dcache.c:2492 vfs_rmdir.part.0+0x2b0/0x370 fs/namei.c:3909 vfs_rmdir fs/namei.c:3881 [inline] do_rmdir+0x2d0/0x354 fs/namei.c:3958 __do_sys_rmdir fs/namei.c:3976 [inline] __se_sys_rmdir fs/namei.c:3974 [inline] __arm64_sys_rmdir+0x9c/0xe0 fs/namei.c:3974 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77518725 hardirqs last enabled at (77518724): [] load_balance+0xec0/0x203c kernel/sched/fair.c:9658 hardirqs last disabled at (77518725): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77518614): [] _stext+0x9e0/0x1084 softirqs last disabled at (77518693): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77518693): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77518693): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e386 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3290 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3290 Comm: syz-executor.0 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7540 x29: ffff8000180a7540 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014e5e x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013df472 x10: 0000000000000007 x9 : 1fffe000013df498 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2cf063f60 x3 : 000008e2d0048b60 x2 : 000008e2cf063f60 x1 : 000008e2d0048b60 x0 : 0000000000000004 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] load_balance+0xa54/0x203c kernel/sched/fair.c:9658 rebalance_domains+0x530/0xc10 kernel/sched/fair.c:10029 run_rebalance_domains+0xec/0x160 kernel/sched/fair.c:10686 _stext+0x2b4/0x1084 do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] invoke_softirq kernel/softirq.c:440 [inline] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 irq_exit+0x14/0x84 kernel/softirq.c:661 __handle_domain_irq+0x120/0x1f0 kernel/irq/irqdesc.c:692 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore+0x8/0x10 arch/arm64/include/asm/irqflags.h:122 lock_is_held include/linux/lockdep.h:278 [inline] rcu_read_lock_held kernel/rcu/update.c:311 [inline] rcu_read_lock_held+0x54/0x70 kernel/rcu/update.c:305 ext4_get_group_info+0x200/0x2f0 fs/ext4/ext4.h:3225 ext4_free_inode+0x55c/0xf60 fs/ext4/ialloc.c:295 ext4_evict_inode+0xad8/0xf90 fs/ext4/inode.c:333 evict+0x1fc/0x4c0 fs/inode.c:577 iput_final fs/inode.c:1653 [inline] iput fs/inode.c:1679 [inline] iput+0x418/0x770 fs/inode.c:1665 dentry_unlink_inode+0x21c/0x404 fs/dcache.c:374 d_delete fs/dcache.c:2503 [inline] d_delete+0x14c/0x19c fs/dcache.c:2492 vfs_rmdir.part.0+0x2b0/0x370 fs/namei.c:3909 vfs_rmdir fs/namei.c:3881 [inline] do_rmdir+0x2d0/0x354 fs/namei.c:3958 __do_sys_rmdir fs/namei.c:3976 [inline] __se_sys_rmdir fs/namei.c:3974 [inline] __arm64_sys_rmdir+0x9c/0xe0 fs/namei.c:3974 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc_compat+0x40/0x7c arch/arm64/kernel/syscall.c:190 el0_svc_compat+0x24/0x3c arch/arm64/kernel/entry-common.c:500 el0_sync_compat_handler+0x90/0x140 arch/arm64/kernel/entry-common.c:509 el0_sync_compat+0x190/0x1c0 arch/arm64/kernel/entry.S:752 irq event stamp: 77518725 hardirqs last enabled at (77518724): [] load_balance+0xec0/0x203c kernel/sched/fair.c:9658 hardirqs last disabled at (77518725): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (77518614): [] _stext+0x9e0/0x1084 softirqs last disabled at (77518693): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (77518693): [] invoke_softirq kernel/softirq.c:440 [inline] softirqs last disabled at (77518693): [] __irq_exit_rcu+0x46c/0x510 kernel/softirq.c:637 ---[ end trace 342ed2e994e5e387 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3284 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3284 Comm: syz-fuzzer Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: 0000000000000000 x17: 0000000000000000 x16: 0000000000000002 x15: ffff8000164932c0 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013ba12a x10: 0000000000000007 x9 : 1fffe000013ba141 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2dcee6760 x3 : 000008e2ddecb360 x2 : 000008e2dcee6760 x1 : 000008e2ddecb360 x0 : 000000000000000e Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 ____kasan_slab_free mm/kasan/common.c:362 [inline] ____kasan_slab_free+0x108/0x160 mm/kasan/common.c:325 __kasan_slab_free+0x14/0x20 mm/kasan/common.c:367 kasan_slab_free include/linux/kasan.h:199 [inline] slab_free_hook mm/slub.c:1563 [inline] slab_free_freelist_hook+0x8c/0x260 mm/slub.c:1601 slab_free mm/slub.c:3162 [inline] kfree+0x154/0x7d0 mm/slub.c:4214 tomoyo_add_entry security/tomoyo/common.c:2045 [inline] tomoyo_supervisor+0x804/0xa40 security/tomoyo/common.c:2103 tomoyo_audit_path_log security/tomoyo/file.c:168 [inline] tomoyo_path_permission security/tomoyo/file.c:587 [inline] tomoyo_path_permission+0x234/0x334 security/tomoyo/file.c:573 tomoyo_path_perm+0x284/0x334 security/tomoyo/file.c:838 tomoyo_path_unlink+0x94/0xe0 security/tomoyo/tomoyo.c:150 security_path_unlink+0xbc/0x11c security/security.c:1117 do_unlinkat+0x260/0x48c fs/namei.c:4088 __do_sys_unlinkat fs/namei.c:4134 [inline] __se_sys_unlinkat fs/namei.c:4127 [inline] __arm64_sys_unlinkat+0x90/0xf0 fs/namei.c:4127 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 2024992 hardirqs last enabled at (2024991): [] kasan_quarantine_put+0x108/0x254 mm/kasan/quarantine.c:220 hardirqs last disabled at (2024992): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2024288): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2024288): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2024288): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2024286): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e388 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3284 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3284 Comm: syz-fuzzer Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000002 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013ba12a x10: 0000000000000007 x9 : 1fffe000013ba141 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2e4e0c760 x3 : 000008e2e5df1360 x2 : 000008e2e4e0c760 x1 : 000008e2e5df1360 x0 : 0000000000000008 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 ____kasan_slab_free mm/kasan/common.c:362 [inline] ____kasan_slab_free+0x108/0x160 mm/kasan/common.c:325 __kasan_slab_free+0x14/0x20 mm/kasan/common.c:367 kasan_slab_free include/linux/kasan.h:199 [inline] slab_free_hook mm/slub.c:1563 [inline] slab_free_freelist_hook+0x8c/0x260 mm/slub.c:1601 slab_free mm/slub.c:3162 [inline] kfree+0x154/0x7d0 mm/slub.c:4214 tomoyo_add_entry security/tomoyo/common.c:2045 [inline] tomoyo_supervisor+0x804/0xa40 security/tomoyo/common.c:2103 tomoyo_audit_path_log security/tomoyo/file.c:168 [inline] tomoyo_path_permission security/tomoyo/file.c:587 [inline] tomoyo_path_permission+0x234/0x334 security/tomoyo/file.c:573 tomoyo_path_perm+0x284/0x334 security/tomoyo/file.c:838 tomoyo_path_unlink+0x94/0xe0 security/tomoyo/tomoyo.c:150 security_path_unlink+0xbc/0x11c security/security.c:1117 do_unlinkat+0x260/0x48c fs/namei.c:4088 __do_sys_unlinkat fs/namei.c:4134 [inline] __se_sys_unlinkat fs/namei.c:4127 [inline] __arm64_sys_unlinkat+0x90/0xf0 fs/namei.c:4127 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 2024992 hardirqs last enabled at (2024991): [] kasan_quarantine_put+0x108/0x254 mm/kasan/quarantine.c:220 hardirqs last disabled at (2024992): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2024288): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2024288): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2024288): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2024286): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e389 ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 3284 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 3284 Comm: syz-fuzzer Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000002 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000013ba12a x10: 0000000000000007 x9 : 1fffe000013ba141 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2ebd4db60 x3 : 000008e2ecd32760 x2 : 000008e2ebd4db60 x1 : 000008e2ecd32760 x0 : 0000000000000007 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 ____kasan_slab_free mm/kasan/common.c:362 [inline] ____kasan_slab_free+0x108/0x160 mm/kasan/common.c:325 __kasan_slab_free+0x14/0x20 mm/kasan/common.c:367 kasan_slab_free include/linux/kasan.h:199 [inline] slab_free_hook mm/slub.c:1563 [inline] slab_free_freelist_hook+0x8c/0x260 mm/slub.c:1601 slab_free mm/slub.c:3162 [inline] kfree+0x154/0x7d0 mm/slub.c:4214 tomoyo_add_entry security/tomoyo/common.c:2045 [inline] tomoyo_supervisor+0x804/0xa40 security/tomoyo/common.c:2103 tomoyo_audit_path_log security/tomoyo/file.c:168 [inline] tomoyo_path_permission security/tomoyo/file.c:587 [inline] tomoyo_path_permission+0x234/0x334 security/tomoyo/file.c:573 tomoyo_path_perm+0x284/0x334 security/tomoyo/file.c:838 tomoyo_path_unlink+0x94/0xe0 security/tomoyo/tomoyo.c:150 security_path_unlink+0xbc/0x11c security/security.c:1117 do_unlinkat+0x260/0x48c fs/namei.c:4088 __do_sys_unlinkat fs/namei.c:4134 [inline] __se_sys_unlinkat fs/namei.c:4127 [inline] __arm64_sys_unlinkat+0x90/0xf0 fs/namei.c:4127 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x6c/0x260 arch/arm64/kernel/syscall.c:52 el0_svc_common.constprop.0+0xc4/0x1e4 arch/arm64/kernel/syscall.c:145 do_el0_svc+0xa4/0xd0 arch/arm64/kernel/syscall.c:184 el0_svc+0x24/0x3c arch/arm64/kernel/entry-common.c:422 el0_sync_handler+0x1a4/0x1b0 arch/arm64/kernel/entry-common.c:438 el0_sync+0x18c/0x1c0 arch/arm64/kernel/entry.S:743 irq event stamp: 2024992 hardirqs last enabled at (2024991): [] kasan_quarantine_put+0x108/0x254 mm/kasan/quarantine.c:220 hardirqs last disabled at (2024992): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2024288): [] test_and_clear_bit include/asm-generic/bitops/atomic.h:51 [inline] softirqs last enabled at (2024288): [] test_and_clear_ti_thread_flag include/linux/thread_info.h:112 [inline] softirqs last enabled at (2024288): [] fpsimd_restore_current_state+0x3c/0x120 arch/arm64/kernel/fpsimd.c:1172 softirqs last disabled at (2024286): [] get_cpu_fpsimd_context+0x0/0xa0 include/asm-generic/bitops/non-atomic.h:106 ---[ end trace 342ed2e994e5e38a ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 2052 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 2052 Comm: kworker/u4:5 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: events_power_efficient wg_ratelimiter_gc_entries pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab1bb48 x17: 0000000000000000 x16: 0000000000000002 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe000018b2472 x10: 0000000000000007 x9 : 1fffe000018b2489 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e2f5c3d360 x3 : 000008e2f6c21f60 x2 : 000008e2f5c3d360 x1 : 000008e2f6c21f60 x0 : 000000000000000a Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_restore arch/arm64/include/asm/irqflags.h:122 [inline] lock_acquire kernel/locking/lockdep.c:5514 [inline] lock_acquire+0x60c/0xbbc kernel/locking/lockdep.c:5476 __raw_spin_lock include/linux/spinlock_api_smp.h:142 [inline] _raw_spin_lock+0x8c/0x120 kernel/locking/spinlock.c:151 spin_lock include/linux/spinlock.h:354 [inline] wg_ratelimiter_gc_entries+0x70/0x5a0 drivers/net/wireguard/ratelimiter.c:63 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 282 hardirqs last enabled at (281): [] seqcount_lockdep_reader_access.constprop.0+0x19c/0x230 include/linux/seqlock.h:105 hardirqs last disabled at (282): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (0): [] copy_process+0x139c/0x574c kernel/fork.c:2062 softirqs last disabled at (0): [<0000000000000000>] 0x0 ---[ end trace 342ed2e994e5e38b ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 22042 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 22042 Comm: kworker/u4:1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: netns cleanup_net pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00002740472 x10: 0000000000000007 x9 : 1fffe00002740493 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e306a6df60 x3 : 000008e307a52b60 x2 : 000008e306a6df60 x1 : 000008e307a52b60 x0 : 0000000000000002 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __local_bh_enable_ip+0x3d8/0x5d0 kernel/softirq.c:391 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:176 [inline] _raw_spin_unlock_bh+0xc0/0x1f0 kernel/locking/spinlock.c:207 spin_unlock_bh include/linux/spinlock.h:399 [inline] sctp_inetaddr_event+0x24c/0x590 net/sctp/protocol.c:807 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 blocking_notifier_call_chain kernel/notifier.c:337 [inline] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:325 __inet_del_ifa+0x500/0xbc4 net/ipv4/devinet.c:428 inet_del_ifa net/ipv4/devinet.c:465 [inline] inetdev_destroy net/ipv4/devinet.c:318 [inline] inetdev_event+0x33c/0x11f0 net/ipv4/devinet.c:1598 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 raw_notifier_call_chain+0x18/0x24 kernel/notifier.c:410 call_netdevice_notifiers_info+0x84/0xec net/core/dev.c:2075 call_netdevice_notifiers_extack net/core/dev.c:2087 [inline] call_netdevice_notifiers net/core/dev.c:2101 [inline] unregister_netdevice_many+0x6f0/0x12c0 net/core/dev.c:10936 ip6gre_exit_batch_net+0x3a4/0x53c net/ipv6/ip6_gre.c:1630 ops_exit_list+0xd0/0x124 net/core/net_namespace.c:178 cleanup_net+0x3a4/0x820 net/core/net_namespace.c:595 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 2363922 hardirqs last enabled at (2363921): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2363921): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2363922): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2363918): [] _stext+0x9e0/0x1084 softirqs last disabled at (2363887): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (2363887): [] do_softirq.part.0+0xd0/0xf4 kernel/softirq.c:460 ---[ end trace 342ed2e994e5e38c ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 22042 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 22042 Comm: kworker/u4:1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: netns cleanup_net pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00002740472 x10: 0000000000000007 x9 : 1fffe00002740493 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e30aa00f60 x3 : 000008e30b9e5b60 x2 : 000008e30aa00f60 x1 : 000008e30b9e5b60 x0 : 0000000000000004 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __local_bh_enable_ip+0x3d8/0x5d0 kernel/softirq.c:391 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:176 [inline] _raw_spin_unlock_bh+0xc0/0x1f0 kernel/locking/spinlock.c:207 spin_unlock_bh include/linux/spinlock.h:399 [inline] sctp_inetaddr_event+0x24c/0x590 net/sctp/protocol.c:807 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 blocking_notifier_call_chain kernel/notifier.c:337 [inline] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:325 __inet_del_ifa+0x500/0xbc4 net/ipv4/devinet.c:428 inet_del_ifa net/ipv4/devinet.c:465 [inline] inetdev_destroy net/ipv4/devinet.c:318 [inline] inetdev_event+0x33c/0x11f0 net/ipv4/devinet.c:1598 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 raw_notifier_call_chain+0x18/0x24 kernel/notifier.c:410 call_netdevice_notifiers_info+0x84/0xec net/core/dev.c:2075 call_netdevice_notifiers_extack net/core/dev.c:2087 [inline] call_netdevice_notifiers net/core/dev.c:2101 [inline] unregister_netdevice_many+0x6f0/0x12c0 net/core/dev.c:10936 ip6gre_exit_batch_net+0x3a4/0x53c net/ipv6/ip6_gre.c:1630 ops_exit_list+0xd0/0x124 net/core/net_namespace.c:178 cleanup_net+0x3a4/0x820 net/core/net_namespace.c:595 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 2363922 hardirqs last enabled at (2363921): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2363921): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2363922): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2363918): [] _stext+0x9e0/0x1084 softirqs last disabled at (2363887): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (2363887): [] do_softirq.part.0+0xd0/0xf4 kernel/softirq.c:460 ---[ end trace 342ed2e994e5e38d ]--- ------------[ cut here ]------------ WARNING: CPU: 1 PID: 22042 at drivers/gpu/drm/vkms/vkms_crtc.c:21 vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 Modules linked in: CPU: 1 PID: 22042 Comm: kworker/u4:1 Tainted: G W 5.12.0-syzkaller-04637-gacd3d2859453 #0 Hardware name: linux,dummy-virt (DT) Workqueue: netns cleanup_net pstate: 200000c5 (nzCv daIF -PAN -UAO -TCO BTYPE=--) pc : vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:21 lr : hrtimer_forward_now include/linux/hrtimer.h:510 [inline] lr : vkms_vblank_simulate+0x90/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:19 sp : ffff8000180a7c10 x29: ffff8000180a7c10 x28: ffff000010bfde58 x27: dfff800000000000 x26: ffff00006ab44540 x25: 1fffe0000d5688b1 x24: 1fffe0000d5688aa x23: ffff000010bfcd30 x22: 0000000000fe4c00 x21: ffff00006ab44540 x20: ffff000010bfce58 x19: ffff000010bfde58 x18: ffff00006ab3db48 x17: 0000000000000000 x16: 0000000000000000 x15: ffff800017306010 x14: 1ffff00003014f38 x13: 0000000000000001 x12: 0000000000000033 x11: 1fffe00002740472 x10: 0000000000000007 x9 : 1fffe00002740493 x8 : ffff800015e59c00 x7 : 00000000f1f1f1f1 x6 : dfff800000000000 x5 : 7fffffffffffffff x4 : 000008e30e993f60 x3 : 000008e30f978b60 x2 : 000008e30e993f60 x1 : 000008e30f978b60 x0 : 0000000000000004 Call trace: vkms_vblank_simulate+0x26c/0x2f4 drivers/gpu/drm/vkms/vkms_crtc.c:41 __run_hrtimer kernel/time/hrtimer.c:1537 [inline] __hrtimer_run_queues+0x590/0xe40 kernel/time/hrtimer.c:1601 hrtimer_interrupt+0x2e0/0x910 kernel/time/hrtimer.c:1663 timer_handler drivers/clocksource/arm_arch_timer.c:656 [inline] arch_timer_handler_phys+0x4c/0x70 drivers/clocksource/arm_arch_timer.c:674 handle_percpu_devid_irq+0x19c/0x330 kernel/irq/chip.c:930 generic_handle_irq_desc include/linux/irqdesc.h:158 [inline] generic_handle_irq kernel/irq/irqdesc.c:652 [inline] __handle_domain_irq+0x11c/0x1f0 kernel/irq/irqdesc.c:689 handle_domain_irq include/linux/irqdesc.h:176 [inline] gic_handle_irq+0x5c/0x1b0 drivers/irqchip/irq-gic.c:370 el1_irq+0xb4/0x14c arch/arm64/kernel/entry.S:726 arch_local_irq_enable arch/arm64/include/asm/irqflags.h:35 [inline] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] _raw_spin_unlock_irq+0x80/0x15c kernel/locking/spinlock.c:199 finish_lock_switch kernel/sched/core.c:4074 [inline] finish_task_switch.isra.0+0x1b4/0x6f0 kernel/sched/core.c:4191 context_switch kernel/sched/core.c:4325 [inline] __schedule+0x818/0x1bc4 kernel/sched/core.c:5073 preempt_schedule_common+0xa4/0x2a0 kernel/sched/core.c:5233 preempt_schedule+0x60/0x6c kernel/sched/core.c:5258 __local_bh_enable_ip+0x3d8/0x5d0 kernel/softirq.c:391 __raw_spin_unlock_bh include/linux/spinlock_api_smp.h:176 [inline] _raw_spin_unlock_bh+0xc0/0x1f0 kernel/locking/spinlock.c:207 spin_unlock_bh include/linux/spinlock.h:399 [inline] sctp_inetaddr_event+0x24c/0x590 net/sctp/protocol.c:807 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 blocking_notifier_call_chain kernel/notifier.c:337 [inline] blocking_notifier_call_chain+0x68/0xa0 kernel/notifier.c:325 __inet_del_ifa+0x500/0xbc4 net/ipv4/devinet.c:428 inet_del_ifa net/ipv4/devinet.c:465 [inline] inetdev_destroy net/ipv4/devinet.c:318 [inline] inetdev_event+0x33c/0x11f0 net/ipv4/devinet.c:1598 notifier_call_chain+0xc0/0x180 kernel/notifier.c:83 raw_notifier_call_chain+0x18/0x24 kernel/notifier.c:410 call_netdevice_notifiers_info+0x84/0xec net/core/dev.c:2075 call_netdevice_notifiers_extack net/core/dev.c:2087 [inline] call_netdevice_notifiers net/core/dev.c:2101 [inline] unregister_netdevice_many+0x6f0/0x12c0 net/core/dev.c:10936 ip6gre_exit_batch_net+0x3a4/0x53c net/ipv6/ip6_gre.c:1630 ops_exit_list+0xd0/0x124 net/core/net_namespace.c:178 cleanup_net+0x3a4/0x820 net/core/net_namespace.c:595 process_one_work+0x798/0x1764 kernel/workqueue.c:2275 worker_thread+0x3d4/0xcd0 kernel/workqueue.c:2421 kthread+0x320/0x3bc kernel/kthread.c:292 ret_from_fork+0x10/0x3c arch/arm64/kernel/entry.S:1006 irq event stamp: 2363922 hardirqs last enabled at (2363921): [] __raw_spin_unlock_irq include/linux/spinlock_api_smp.h:168 [inline] hardirqs last enabled at (2363921): [] _raw_spin_unlock_irq+0x78/0x15c kernel/locking/spinlock.c:199 hardirqs last disabled at (2363922): [] enter_el1_irq_or_nmi+0x10/0x20 arch/arm64/kernel/entry-common.c:105 softirqs last enabled at (2363918): [] _stext+0x9e0/0x1084 softirqs last disabled at (2363887): [] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline] softirqs last disabled at (2363887): [] do_softirq.part.0+0xd0/0xf4 kernel/softirq.c:460 ---[ end trace 342ed2e994e5e38e ]---