Warning: Permanently added '10.128.0.244' (ED25519) to the list of known hosts.
2025/02/24 05:19:25 ignoring optional flag "sandboxArg"="0"
2025/02/24 05:19:26 parsed 1 programs
[ 97.515483][ T29] audit: type=1400 audit(1740374369.137:126): avc: denied { unlink } for pid=4002 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 97.603844][ T4002] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 99.204308][ T29] audit: type=1401 audit(1740374370.817:127): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/02/24 05:19:42 executed programs: 0
2025/02/24 05:20:18 executed programs: 10
[ 147.395025][ T29] audit: type=1400 audit(1740374419.007:128): avc: denied { read write } for pid=6823 comm="syz.0.16" name="raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 147.418883][ T29] audit: type=1400 audit(1740374419.007:129): avc: denied { open } for pid=6823 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 147.442781][ T29] audit: type=1400 audit(1740374419.007:130): avc: denied { ioctl } for pid=6823 comm="syz.0.16" path="/dev/raw-gadget" dev="devtmpfs" ino=236 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 147.675895][ T1120] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[ 147.842586][ T9] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[ 147.874758][ T1120] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 147.886166][ T1120] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 147.896243][ T1120] usb 1-1: config 0 interface 0 has no altsetting 0
[ 147.903444][ T1120] usb 1-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 147.912796][ T1120] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 147.929696][ T1120] usb 1-1: config 0 descriptor??
[ 148.015703][ T9] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 148.027068][ T9] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 148.037160][ T9] usb 7-1: config 0 interface 0 has no altsetting 0
[ 148.044398][ T9] usb 7-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 148.053658][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 148.074923][ T9] usb 7-1: config 0 descriptor??
[ 148.122749][ T699] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[ 148.202499][ T24] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[ 148.295025][ T699] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 148.306314][ T699] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 148.316222][ T699] usb 6-1: config 0 interface 0 has no altsetting 0
[ 148.323043][ T699] usb 6-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 148.332477][ T699] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 148.343856][ T699] usb 6-1: config 0 descriptor??
[ 148.347302][ T1120] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0
[ 148.356723][ T1120] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0
[ 148.361588][ T24] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 148.364406][ T6840] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[ 148.375335][ T24] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 148.375375][ T24] usb 3-1: config 0 interface 0 has no altsetting 0
[ 148.375424][ T24] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 148.385706][ T1120] hid-steam 0003:28DE:1102.0001: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[ 148.392741][ T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 148.431690][ T24] usb 3-1: config 0 descriptor??
[ 148.452676][ T1120] hid-steam 0003:28DE:1102.0001: Steam Controller 'XXXXXXXXXX' connected
[ 148.466741][ T1120] input: Steam Controller as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:28DE:1102.0001/input/input5
[ 148.487927][ T9] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[ 148.495414][ T9] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[ 148.507361][ T1120] hid-steam 0003:28DE:1102.0002: unknown main item tag 0x0
[ 148.515011][ T1120] hid-steam 0003:28DE:1102.0002: unknown main item tag 0x0
[ 148.524397][ T9] hid-steam 0003:28DE:1102.0003: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0
[ 148.540206][ T1120] hid-steam 0003:28DE:1102.0002: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.0-1/input0
[ 148.554490][ T6840] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 148.559548][ T6861] input: Steam Controller as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:28DE:1102.0001/input/input6
[ 148.565583][ T6840] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 148.565623][ T6840] usb 8-1: config 0 interface 0 has no altsetting 0
[ 148.594077][ T6840] usb 8-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 148.603298][ T6840] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 148.614656][ T9] hid-steam 0003:28DE:1102.0003: Steam Controller 'XXXXXXXXXX' connected
[ 148.626627][ T9] input: Steam Controller as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:28DE:1102.0003/input/input7
[ 148.641883][ T1120] usb 1-1: USB disconnect, device number 2
[ 148.655983][ T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[ 148.663440][ T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[ 148.681327][ T9] hid-steam 0003:28DE:1102.0004: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0
[ 148.704200][ T9] usb 7-1: USB disconnect, device number 2
[ 148.713186][ T6871] input: Steam Controller as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:28DE:1102.0003/input/input8
[ 148.733021][ T6840] usb 8-1: config 0 descriptor??
[ 148.746974][ T1120] hid-steam 0003:28DE:1102.0001: Steam Controller 'XXXXXXXXXX' disconnected
[ 148.789204][ T699] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[ 148.796863][ T699] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[ 148.815606][ T699] hid-steam 0003:28DE:1102.0005: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0
[ 148.831652][ T9] hid-steam 0003:28DE:1102.0003: Steam Controller 'XXXXXXXXXX' disconnected
[ 148.863918][ T24] hid-steam 0003:28DE:1102.0006: unknown main item tag 0x0
[ 148.871363][ T24] hid-steam 0003:28DE:1102.0006: unknown main item tag 0x0
[ 148.879555][ T24] hid-steam 0003:28DE:1102.0006: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 148.890631][ T699] hid-steam 0003:28DE:1102.0005: Steam Controller 'XXXXXXXXXX' connected
[ 148.901617][ T699] input: Steam Controller as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1102.0005/input/input9
[ 148.918461][ T699] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[ 148.925956][ T699] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[ 148.935150][ T699] hid-steam 0003:28DE:1102.0007: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0
[ 148.952441][ T24] hid-steam 0003:28DE:1102.0006: Steam Controller 'XXXXXXXXXX' connected
[ 148.968219][ T6861] input: Steam Controller as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1102.0005/input/input10
[ 148.987311][ T24] input: Steam Controller as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:28DE:1102.0006/input/input11
[ 148.999857][ T51] usb 6-1: USB disconnect, device number 2
[ 149.027914][ T24] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[ 149.035365][ T24] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[ 149.048870][ T51] hid-steam 0003:28DE:1102.0005: Steam Controller 'XXXXXXXXXX' disconnected
[ 149.065153][ T24] hid-steam 0003:28DE:1102.0008: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 149.067133][ T1120] input: Steam Controller as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:28DE:1102.0006/input/input12
[ 149.092292][ T8] usb 3-1: USB disconnect, device number 2
[ 149.115813][ T8] hid-steam 0003:28DE:1102.0006: Steam Controller 'XXXXXXXXXX' disconnected
[ 149.137258][ T2830] ==================================================================
[ 149.145404][ T2830] BUG: KASAN: slab-use-after-free in steam_input_close+0x187/0x1a0
[ 149.153728][ T2830] Read of size 8 at addr ffff88811f5a0130 by task acpid/2830
[ 149.161145][ T2830]
[ 149.163525][ T2830] CPU: 1 UID: 0 PID: 2830 Comm: acpid Not tainted 6.14.0-rc4-syzkaller-gd082ecbc71e9-dirty #0
[ 149.163563][ T2830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 149.163585][ T2830] Call Trace:
[ 149.163595][ T2830]
[ 149.163610][ T2830] dump_stack_lvl+0x116/0x1f0
[ 149.163665][ T2830] print_report+0xc3/0x670
[ 149.163696][ T2830] ? __virt_addr_valid+0x5e/0x590
[ 149.163728][ T2830] ? __phys_addr+0xc6/0x150
[ 149.163760][ T2830] kasan_report+0xd9/0x110
[ 149.163791][ T2830] ? steam_input_close+0x187/0x1a0
[ 149.163832][ T2830] ? steam_input_close+0x187/0x1a0
[ 149.163875][ T2830] ? __pfx_steam_input_close+0x10/0x10
[ 149.163918][ T2830] steam_input_close+0x187/0x1a0
[ 149.163960][ T2830] ? __pfx_steam_input_close+0x10/0x10
[ 149.164001][ T2830] input_close_device+0x21f/0x290
[ 149.164036][ T2830] evdev_release+0x350/0x400
[ 149.164077][ T2830] ? __pfx_evdev_release+0x10/0x10
[ 149.164115][ T2830] __fput+0x3ff/0xb70
[ 149.164163][ T2830] __fput_sync+0xa1/0xc0
[ 149.164220][ T2830] __x64_sys_close+0x86/0x100
[ 149.164270][ T2830] do_syscall_64+0xcd/0x250
[ 149.164299][ T2830] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 149.164339][ T2830] RIP: 0033:0x7fe0a26660a8
[ 149.164363][ T2830] Code: 48 8b 05 83 9d 0d 00 64 c7 00 16 00 00 00 83 c8 ff 48 83 c4 20 5b c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 5b 48 8b 15 51 9d 0d 00 f7 d8 64 89 02 48 83
[ 149.164399][ T2830] RSP: 002b:00007fff48ef2008 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 149.164432][ T2830] RAX: ffffffffffffffda RBX: 00007fff48ef2278 RCX: 00007fe0a26660a8
[ 149.164453][ T2830] RDX: 0000000000000000 RSI: 000000000000001e RDI: 000000000000000a
[ 149.164471][ T2830] RBP: 000000000000000a R08: 0000000000000008 R09: 00007fff48ef2178
[ 149.164489][ T2830] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff48ef2178
[ 149.164507][ T2830] R13: 0000000000000040 R14: 00007fff48ef2278 R15: 00007fff48ef2178
[ 149.164535][ T2830]
[ 149.164546][ T2830]
[ 149.168429][ T6840] hid-steam 0003:28DE:1102.0009: unknown main item tag 0x0
[ 149.174784][ T2830] Allocated by task 24:
[ 149.174801][ T2830] kasan_save_stack+0x33/0x60
[ 149.174850][ T2830] kasan_save_track+0x14/0x30
[ 149.185048][ T6840] hid-steam 0003:28DE:1102.0009: unknown main item tag 0x0
[ 149.188181][ T2830] __kasan_kmalloc+0x8f/0xa0
[ 149.389937][ T2830] __kmalloc_node_track_caller_noprof+0x20b/0x4c0
[ 149.396523][ T2830] devm_kmalloc+0xa5/0x260
[ 149.400978][ T2830] steam_probe+0x132/0x1190
[ 149.405524][ T2830] hid_device_probe+0x349/0x700
[ 149.410420][ T2830] really_probe+0x23e/0xa90
[ 149.415052][ T2830] __driver_probe_device+0x1de/0x440
[ 149.420368][ T2830] driver_probe_device+0x4c/0x1b0
[ 149.425406][ T2830] __device_attach_driver+0x1df/0x310
[ 149.430815][ T2830] bus_for_each_drv+0x157/0x1e0
[ 149.435864][ T2830] __device_attach+0x1e8/0x4b0
[ 149.440643][ T2830] bus_probe_device+0x17f/0x1c0
[ 149.445546][ T2830] device_add+0x114b/0x1a70
[ 149.450080][ T2830] hid_add_device+0x374/0xa60
[ 149.454788][ T2830] usbhid_probe+0xd32/0x1400
[ 149.459579][ T2830] usb_probe_interface+0x300/0x9c0
[ 149.464719][ T2830] really_probe+0x23e/0xa90
[ 149.469262][ T2830] __driver_probe_device+0x1de/0x440
[ 149.474671][ T2830] driver_probe_device+0x4c/0x1b0
[ 149.479712][ T2830] __device_attach_driver+0x1df/0x310
[ 149.485191][ T2830] bus_for_each_drv+0x157/0x1e0
[ 149.490341][ T2830] __device_attach+0x1e8/0x4b0
[ 149.495229][ T2830] bus_probe_device+0x17f/0x1c0
[ 149.500160][ T2830] device_add+0x114b/0x1a70
[ 149.504815][ T2830] usb_set_configuration+0x10cb/0x1c50
[ 149.510497][ T2830] usb_generic_driver_probe+0xb1/0x110
[ 149.516062][ T2830] usb_probe_device+0xec/0x3e0
[ 149.520941][ T2830] really_probe+0x23e/0xa90
[ 149.525568][ T2830] __driver_probe_device+0x1de/0x440
[ 149.531006][ T2830] driver_probe_device+0x4c/0x1b0
[ 149.536070][ T2830] __device_attach_driver+0x1df/0x310
[ 149.541570][ T2830] bus_for_each_drv+0x157/0x1e0
[ 149.546512][ T2830] __device_attach+0x1e8/0x4b0
[ 149.551327][ T2830] bus_probe_device+0x17f/0x1c0
[ 149.556226][ T2830] device_add+0x114b/0x1a70
[ 149.560770][ T2830] usb_new_device+0xd09/0x1a20
[ 149.565569][ T2830] hub_event+0x2e58/0x4f40
[ 149.570058][ T2830] process_one_work+0x9c5/0x1ba0
[ 149.575048][ T2830] worker_thread+0x6c8/0xf00
[ 149.579699][ T2830] kthread+0x3af/0x750
[ 149.583799][ T2830] ret_from_fork+0x45/0x80
[ 149.588260][ T2830] ret_from_fork_asm+0x1a/0x30
[ 149.593050][ T2830]
[ 149.595383][ T2830] Freed by task 8:
[ 149.599207][ T2830] kasan_save_stack+0x33/0x60
[ 149.603925][ T2830] kasan_save_track+0x14/0x30
[ 149.608635][ T2830] kasan_save_free_info+0x3b/0x60
[ 149.613689][ T2830] __kasan_slab_free+0x37/0x50
[ 149.618472][ T2830] kfree+0x294/0x480
[ 149.622477][ T2830] release_nodes+0x11e/0x240
[ 149.627082][ T2830] devres_release_group+0x1be/0x2a0
[ 149.632399][ T2830] hid_device_remove+0x107/0x260
[ 149.637439][ T2830] device_remove+0xc8/0x170
[ 149.641976][ T2830] device_release_driver_internal+0x44a/0x610
[ 149.648216][ T2830] bus_remove_device+0x22f/0x420
[ 149.653211][ T2830] device_del+0x396/0x9f0
[ 149.657667][ T2830] hid_destroy_device+0x19c/0x240
[ 149.662735][ T2830] usbhid_disconnect+0xa0/0xe0
[ 149.667617][ T2830] usb_unbind_interface+0x1e2/0x960
[ 149.672864][ T2830] device_remove+0x122/0x170
[ 149.677501][ T2830] device_release_driver_internal+0x44a/0x610
[ 149.683610][ T2830] bus_remove_device+0x22f/0x420
[ 149.688578][ T2830] device_del+0x396/0x9f0
[ 149.692953][ T2830] usb_disable_device+0x36c/0x7f0
[ 149.698095][ T2830] usb_disconnect+0x2e1/0x920
[ 149.702840][ T2830] hub_event+0x1bed/0x4f40
[ 149.707283][ T2830] process_one_work+0x9c5/0x1ba0
[ 149.712260][ T2830] worker_thread+0x6c8/0xf00
[ 149.716888][ T2830] kthread+0x3af/0x750
[ 149.720987][ T2830] ret_from_fork+0x45/0x80
[ 149.725531][ T2830] ret_from_fork_asm+0x1a/0x30
[ 149.730429][ T2830]
[ 149.732763][ T2830] Last potentially related work creation:
[ 149.738684][ T2830] kasan_save_stack+0x33/0x60
[ 149.743400][ T2830] kasan_record_aux_stack+0x9b/0xb0
[ 149.748626][ T2830] insert_work+0x36/0x230
[ 149.753072][ T2830] __queue_work+0x97e/0x1080
[ 149.757684][ T2830] queue_work_on+0x11a/0x140
[ 149.762307][ T2830] hid_hw_close+0xaf/0xe0
[ 149.766709][ T2830] drop_ref+0x186/0x390
[ 149.770983][ T2830] hidraw_release+0x3e6/0x560
[ 149.775962][ T2830] __fput+0x3ff/0xb70
[ 149.779997][ T2830] task_work_run+0x14e/0x250
[ 149.784673][ T2830] syscall_exit_to_user_mode+0x24e/0x260
[ 149.790344][ T2830] do_syscall_64+0xda/0x250
[ 149.794868][ T2830] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 149.800946][ T2830]
[ 149.803278][ T2830] Second to last potentially related work creation:
[ 149.809984][ T2830] kasan_save_stack+0x33/0x60
[ 149.814785][ T2830] kasan_record_aux_stack+0x9b/0xb0
[ 149.820033][ T2830] insert_work+0x36/0x230
[ 149.824415][ T2830] __queue_work+0x97e/0x1080
[ 149.829056][ T2830] queue_work_on+0x11a/0x140
[ 149.833670][ T2830] steam_client_ll_open+0xab/0xf0
[ 149.838747][ T2830] hid_hw_open+0xe2/0x170
[ 149.843122][ T2830] hidraw_open+0x274/0x7e0
[ 149.847777][ T2830] chrdev_open+0x237/0x6a0
[ 149.852224][ T2830] do_dentry_open+0x6cb/0x1390
[ 149.857027][ T2830] vfs_open+0x82/0x3f0
[ 149.861143][ T2830] path_openat+0x1e88/0x2d80
[ 149.865847][ T2830] do_filp_open+0x20c/0x470
[ 149.870373][ T2830] do_sys_openat2+0x17a/0x1e0
[ 149.875232][ T2830] __x64_sys_openat+0x175/0x210
[ 149.880149][ T2830] do_syscall_64+0xcd/0x250
[ 149.884681][ T2830] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 149.890620][ T2830]
[ 149.892960][ T2830] The buggy address belongs to the object at ffff88811f5a0000
[ 149.892960][ T2830] which belongs to the cache kmalloc-1k of size 1024
[ 149.907052][ T2830] The buggy address is located 304 bytes inside of
[ 149.907052][ T2830] freed 1024-byte region [ffff88811f5a0000, ffff88811f5a0400)
[ 149.920960][ T2830]
[ 149.923298][ T2830] The buggy address belongs to the physical page:
[ 149.929724][ T2830] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff88811f5a7800 pfn:0x11f5a0
[ 149.939904][ T2830] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 149.948419][ T2830] flags: 0x200000000000040(head|node=0|zone=2)
[ 149.954596][ T2830] page_type: f5(slab)
[ 149.958593][ T2830] raw: 0200000000000040 ffff888100041dc0 ffffea00046a3400 0000000000000002
[ 149.967211][ T2830] raw: ffff88811f5a7800 000000008010000d 00000000f5000000 0000000000000000
[ 149.975901][ T2830] head: 0200000000000040 ffff888100041dc0 ffffea00046a3400 0000000000000002
[ 149.984603][ T2830] head: ffff88811f5a7800 000000008010000d 00000000f5000000 0000000000000000
[ 149.993301][ T2830] head: 0200000000000003 ffffea00047d6801 ffffffffffffffff 0000000000000000
[ 150.002005][ T2830] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 150.010712][ T2830] page dumped because: kasan: bad access detected
[ 150.017238][ T2830] page_owner tracks the page as allocated
[ 150.022958][ T2830] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6261, tgid 6261 (kworker/u8:2), ts 138508866510, free_ts 138420548355
[ 150.044741][ T2830] post_alloc_hook+0x181/0x1b0
[ 150.049557][ T2830] get_page_from_freelist+0xe76/0x2b90
[ 150.055056][ T2830] __alloc_frozen_pages_noprof+0x21c/0x2290
[ 150.060996][ T2830] alloc_pages_mpol+0xe7/0x410
[ 150.065797][ T2830] new_slab+0x23d/0x330
[ 150.069993][ T2830] ___slab_alloc+0xc41/0x1670
[ 150.074710][ T2830] __slab_alloc.constprop.0+0x56/0xb0
[ 150.080117][ T2830] __kmalloc_noprof+0x154/0x4d0
[ 150.085087][ T2830] load_elf_phdrs+0x103/0x210
[ 150.089796][ T2830] load_elf_binary+0x14eb/0x4f00
[ 150.094764][ T2830] bprm_execve+0x8dd/0x1680
[ 150.099297][ T2830] kernel_execve+0x2ef/0x3b0
[ 150.103915][ T2830] call_usermodehelper_exec_async+0x255/0x4c0
[ 150.110107][ T2830] ret_from_fork+0x45/0x80
[ 150.114556][ T2830] ret_from_fork_asm+0x1a/0x30
[ 150.119377][ T2830] page last free pid 6255 tgid 6255 stack trace:
[ 150.125802][ T2830] free_frozen_pages+0x653/0xde0
[ 150.130775][ T2830] __put_partials+0x14c/0x170
[ 150.135495][ T2830] qlist_free_all+0x4e/0x120
[ 150.140132][ T2830] kasan_quarantine_reduce+0x195/0x1e0
[ 150.145689][ T2830] __kasan_slab_alloc+0x4e/0x70
[ 150.150567][ T2830] kmem_cache_alloc_noprof+0x154/0x3b0
[ 150.156066][ T2830] vm_area_alloc+0x1f/0x1f0
[ 150.160605][ T2830] __mmap_region+0xfc8/0x2620
[ 150.165311][ T2830] mmap_region+0x1ab/0x3f0
[ 150.169779][ T2830] do_mmap+0xd8d/0x11b0
[ 150.173971][ T2830] vm_mmap_pgoff+0x203/0x390
[ 150.178612][ T2830] ksys_mmap_pgoff+0x32c/0x5c0
[ 150.183428][ T2830] __x64_sys_mmap+0x125/0x190
[ 150.188140][ T2830] do_syscall_64+0xcd/0x250
[ 150.192756][ T2830] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 150.198684][ T2830]
[ 150.201030][ T2830] Memory state around the buggy address:
[ 150.206671][ T2830] ffff88811f5a0000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 150.214755][ T2830] ffff88811f5a0080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 150.223093][ T2830] >ffff88811f5a0100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 150.231186][ T2830] ^
[ 150.236846][ T2830] ffff88811f5a0180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 150.245210][ T2830] ffff88811f5a0200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 150.253326][ T2830] ==================================================================
[ 150.261875][ T2830] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 150.269160][ T2830] CPU: 1 UID: 0 PID: 2830 Comm: acpid Not tainted 6.14.0-rc4-syzkaller-gd082ecbc71e9-dirty #0
[ 150.279440][ T2830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 150.289691][ T2830] Call Trace:
[ 150.292983][ T2830]
[ 150.295929][ T2830] dump_stack_lvl+0x3d/0x1f0
[ 150.300560][ T2830] panic+0x71d/0x800
[ 150.304489][ T2830] ? __pfx_panic+0x10/0x10
[ 150.308944][ T2830] ? check_panic_on_warn+0x1f/0xb0
[ 150.314092][ T2830] check_panic_on_warn+0xab/0xb0
[ 150.319062][ T2830] end_report+0x117/0x180
[ 150.323417][ T2830] kasan_report+0xe9/0x110
[ 150.327862][ T2830] ? steam_input_close+0x187/0x1a0
[ 150.333004][ T2830] ? steam_input_close+0x187/0x1a0
[ 150.338150][ T2830] ? __pfx_steam_input_close+0x10/0x10
[ 150.343640][ T2830] steam_input_close+0x187/0x1a0
[ 150.348695][ T2830] ? __pfx_steam_input_close+0x10/0x10
[ 150.354192][ T2830] input_close_device+0x21f/0x290
[ 150.359239][ T2830] evdev_release+0x350/0x400
[ 150.363958][ T2830] ? __pfx_evdev_release+0x10/0x10
[ 150.369103][ T2830] __fput+0x3ff/0xb70
[ 150.373125][ T2830] __fput_sync+0xa1/0xc0
[ 150.377422][ T2830] __x64_sys_close+0x86/0x100
[ 150.382168][ T2830] do_syscall_64+0xcd/0x250
[ 150.386692][ T2830] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 150.392620][ T2830] RIP: 0033:0x7fe0a26660a8
[ 150.397054][ T2830] Code: 48 8b 05 83 9d 0d 00 64 c7 00 16 00 00 00 83 c8 ff 48 83 c4 20 5b c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 5b 48 8b 15 51 9d 0d 00 f7 d8 64 89 02 48 83
[ 150.416702][ T2830] RSP: 002b:00007fff48ef2008 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 150.425240][ T2830] RAX: ffffffffffffffda RBX: 00007fff48ef2278 RCX: 00007fe0a26660a8
[ 150.433415][ T2830] RDX: 0000000000000000 RSI: 000000000000001e RDI: 000000000000000a
[ 150.442014][ T2830] RBP: 000000000000000a R08: 0000000000000008 R09: 00007fff48ef2178
[ 150.450007][ T2830] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff48ef2178
[ 150.458039][ T2830] R13: 0000000000000040 R14: 00007fff48ef2278 R15: 00007fff48ef2178
[ 150.466059][ T2830]
[ 150.469382][ T2830] Kernel Offset: disabled
[ 150.473741][ T2830] Rebooting in 86400 seconds..