------------[ cut here ]------------ ODEBUG: free active (active state 0) object type: timer_list hint: ml_effect_timer+0x0/0x70 drivers/input/ff-memless.c:421 WARNING: CPU: 1 PID: 3395 at lib/debugobjects.c:481 debug_print_object+0x160/0x250 lib/debugobjects.c:481 Kernel panic - not syncing: panic_on_warn set ... CPU: 1 PID: 3395 Comm: syz-executor.1 Not tainted 5.4.0-rc6-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 Call Trace: __dump_stack lib/dump_stack.c:77 [inline] dump_stack+0xca/0x13e lib/dump_stack.c:113 panic+0x2aa/0x6e1 kernel/panic.c:221 __warn.cold+0x2f/0x33 kernel/panic.c:582 report_bug+0x27b/0x2f0 lib/bug.c:195 fixup_bug arch/x86/kernel/traps.c:179 [inline] fixup_bug arch/x86/kernel/traps.c:174 [inline] do_error_trap+0x12b/0x1e0 arch/x86/kernel/traps.c:272 do_invalid_op+0x32/0x40 arch/x86/kernel/traps.c:291 invalid_op+0x23/0x30 arch/x86/entry/entry_64.S:1028 RIP: 0010:debug_print_object+0x160/0x250 lib/debugobjects.c:481 Code: dd 40 c8 da 85 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 14 dd 40 c8 da 85 48 c7 c7 e0 bd da 85 e8 25 15 30 ff <0f> 0b 83 05 1b b4 a2 05 01 48 83 c4 20 5b 5d 41 5c 41 5d c3 48 89 RSP: 0018:ffff8881c9687808 EFLAGS: 00010286 RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000 RDX: 0000000000000000 RSI: ffffffff8128c9cd RDI: ffffed10392d0ef3 RBP: 0000000000000001 R08: ffff8881cafe9800 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000000 R12: ffffffff86d0b500 R13: ffffffff812ed560 R14: ffff8881cb983310 R15: ffff8881cbbef9a0 __debug_check_no_obj_freed lib/debugobjects.c:963 [inline] debug_check_no_obj_freed+0x2df/0x443 lib/debugobjects.c:994 slab_free_hook mm/slub.c:1421 [inline] slab_free_freelist_hook mm/slub.c:1475 [inline] slab_free mm/slub.c:3025 [inline] kfree+0x20b/0x320 mm/slub.c:3977 input_ff_destroy+0xb9/0x150 drivers/input/ff-core.c:373 input_dev_release+0x19/0xd0 drivers/input/input.c:1537 device_release+0x71/0x200 drivers/base/core.c:1101 kobject_cleanup lib/kobject.c:693 [inline] kobject_release lib/kobject.c:722 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x171/0x280 lib/kobject.c:739 put_device+0x1b/0x30 drivers/base/core.c:2301 input_put_device include/linux/input.h:363 [inline] evdev_free+0x4c/0x70 drivers/input/evdev.c:347 device_release+0x71/0x200 drivers/base/core.c:1101 kobject_cleanup lib/kobject.c:693 [inline] kobject_release lib/kobject.c:722 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x171/0x280 lib/kobject.c:739 kobject_cleanup lib/kobject.c:693 [inline] kobject_release lib/kobject.c:722 [inline] kref_put include/linux/kref.h:65 [inline] kobject_put+0x171/0x280 lib/kobject.c:739 cdev_put.part.0+0x32/0x50 fs/char_dev.c:365 cdev_put+0x1b/0x30 fs/char_dev.c:363 __fput+0x669/0x840 fs/file_table.c:283 task_work_run+0x13f/0x1c0 kernel/task_work.c:113 exit_task_work include/linux/task_work.h:22 [inline] do_exit+0x8c4/0x2c00 kernel/exit.c:817 do_group_exit+0x125/0x340 kernel/exit.c:921 get_signal+0x466/0x23d0 kernel/signal.c:2734 do_signal+0x88/0x14e0 arch/x86/kernel/signal.c:815 exit_to_usermode_loop+0x1a2/0x200 arch/x86/entry/common.c:159 prepare_exit_to_usermode arch/x86/entry/common.c:194 [inline] syscall_return_slowpath arch/x86/entry/common.c:274 [inline] do_syscall_64+0x45f/0x580 arch/x86/entry/common.c:300 entry_SYSCALL_64_after_hwframe+0x49/0xbe RIP: 0033:0x4141d1 Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 RSP: 002b:00007ffdfd0c4950 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00000000004141d1 RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 RBP: 0000000000000001 R08: ffffffffffffffff R09: ffffffffffffffff R10: 00007ffdfd0c4a30 R11: 0000000000000293 R12: 000000000075c9a0 R13: 000000000075c9a0 R14: 0000000000761c50 R15: 000000000075c124 Kernel Offset: disabled Rebooting in 86400 seconds..