Warning: Permanently added '10.128.0.102' (ED25519) to the list of known hosts.
2025/02/23 11:53:39 ignoring optional flag "sandboxArg"="0"
2025/02/23 11:53:40 parsed 1 programs
[ 94.401518][ T29] audit: type=1400 audit(1740311623.428:126): avc: denied { unlink } for pid=3995 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 94.487932][ T3995] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 98.329868][ T29] audit: type=1401 audit(1740311627.348:127): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/02/23 11:53:57 executed programs: 0
2025/02/23 11:54:33 executed programs: 10
[ 144.131167][ T29] audit: type=1400 audit(1740311673.158:128): avc: denied { read write } for pid=6821 comm="syz.2.18" name="raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 144.199724][ T29] audit: type=1400 audit(1740311673.158:129): avc: denied { open } for pid=6822 comm="syz.7.16" path="/dev/raw-gadget" dev="devtmpfs" ino=236 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 144.223408][ T29] audit: type=1400 audit(1740311673.158:130): avc: denied { ioctl } for pid=6822 comm="syz.7.16" path="/dev/raw-gadget" dev="devtmpfs" ino=236 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 144.409314][ T9] usb 3-1: new full-speed USB device number 2 using dummy_hcd
[ 144.418969][ T1076] usb 8-1: new full-speed USB device number 2 using dummy_hcd
[ 144.419935][ T703] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[ 144.583477][ T703] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 144.595042][ T703] usb 5-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 144.604220][ T1076] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 144.605401][ T703] usb 5-1: config 0 interface 0 has no altsetting 0
[ 144.615950][ T1076] usb 8-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 144.615988][ T1076] usb 8-1: config 0 interface 0 has no altsetting 0
[ 144.616032][ T1076] usb 8-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 144.616066][ T1076] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 144.631967][ T1076] usb 8-1: config 0 descriptor??
[ 144.632853][ T703] usb 5-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 144.670830][ T703] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 144.681689][ T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 144.692797][ T9] usb 3-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 144.702757][ T9] usb 3-1: config 0 interface 0 has no altsetting 0
[ 144.709507][ T9] usb 3-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 144.718601][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 144.730535][ T703] usb 5-1: config 0 descriptor??
[ 144.746685][ T9] usb 3-1: config 0 descriptor??
[ 144.819023][ T24] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[ 144.981853][ T24] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 144.993012][ T24] usb 6-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 145.002886][ T24] usb 6-1: config 0 interface 0 has no altsetting 0
[ 145.009624][ T24] usb 6-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 145.018749][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 145.030356][ T24] usb 6-1: config 0 descriptor??
[ 145.050323][ T1076] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0
[ 145.057792][ T1076] hid-steam 0003:28DE:1102.0001: unknown main item tag 0x0
[ 145.066766][ T1076] hid-steam 0003:28DE:1102.0001: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.7-1/input0
[ 145.089122][ T6853] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[ 145.129498][ T1076] hid-steam 0003:28DE:1102.0001: Steam Controller 'XXXXXXXXXX' connected
[ 145.141905][ T1076] input: Steam Controller as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:28DE:1102.0001/input/input5
[ 145.145929][ T703] hid-steam 0003:28DE:1102.0002: unknown main item tag 0x0
[ 145.161158][ T703] hid-steam 0003:28DE:1102.0002: unknown main item tag 0x0
[ 145.164036][ T1076] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[ 145.172924][ T703] hid-steam 0003:28DE:1102.0002: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0
[ 145.175912][ T1076] hid-steam 0003:28DE:1102.0003: unknown main item tag 0x0
[ 145.194103][ T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[ 145.194147][ T9] hid-steam 0003:28DE:1102.0004: unknown main item tag 0x0
[ 145.207576][ T1076] hid-steam 0003:28DE:1102.0003: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.7-1/input0
[ 145.211189][ T9] hid-steam 0003:28DE:1102.0004: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 145.242103][ T703] hid-steam 0003:28DE:1102.0002: Steam Controller 'XXXXXXXXXX' connected
[ 145.256214][ T6830] usb 8-1: USB disconnect, device number 2
[ 145.275712][ T703] input: Steam Controller as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:28DE:1102.0002/input/input6
[ 145.291468][ T9] hid-steam 0003:28DE:1102.0004: Steam Controller 'XXXXXXXXXX' connected
[ 145.291681][ T6853] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 145.305427][ T9] input: Steam Controller as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:28DE:1102.0004/input/input7
[ 145.311349][ T6853] usb 7-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[ 145.328704][ T703] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[ 145.333011][ T6853] usb 7-1: config 0 interface 0 has no altsetting 0
[ 145.340208][ T703] hid-steam 0003:28DE:1102.0005: unknown main item tag 0x0
[ 145.346857][ T6853] usb 7-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[ 145.362174][ T703] hid-steam 0003:28DE:1102.0005: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.4-1/input0
[ 145.363861][ T6853] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 145.379697][ T703] usb 5-1: USB disconnect, device number 2
[ 145.393722][ T6830] hid-steam 0003:28DE:1102.0001: Steam Controller 'XXXXXXXXXX' disconnected
[ 145.407364][ T9] hid-steam 0003:28DE:1102.0006: unknown main item tag 0x0
[ 145.414930][ T9] hid-steam 0003:28DE:1102.0006: unknown main item tag 0x0
[ 145.450392][ T9] hid-steam 0003:28DE:1102.0006: hidraw1: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.2-1/input0
[ 145.471808][ T24] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[ 145.479158][ T9] usb 3-1: USB disconnect, device number 2
[ 145.479197][ T24] hid-steam 0003:28DE:1102.0007: unknown main item tag 0x0
[ 145.498080][ T24] hid-steam 0003:28DE:1102.0007: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0
[ 145.513068][ T6853] usb 7-1: config 0 descriptor??
[ 145.523962][ T703] hid-steam 0003:28DE:1102.0002: Steam Controller 'XXXXXXXXXX' disconnected
[ 145.540972][ T9] hid-steam 0003:28DE:1102.0004: Steam Controller 'XXXXXXXXXX' disconnected
[ 145.579351][ T24] hid-steam 0003:28DE:1102.0007: Steam Controller 'XXXXXXXXXX' connected
[ 145.589896][ T24] input: Steam Controller as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1102.0007/input/input8
[ 145.608165][ T24] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[ 145.615621][ T24] hid-steam 0003:28DE:1102.0008: unknown main item tag 0x0
[ 145.625195][ T24] hid-steam 0003:28DE:1102.0008: hidraw0: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.5-1/input0
[ 145.645707][ T1076] usb 6-1: USB disconnect, device number 2
[ 145.665160][ T1076] hid-steam 0003:28DE:1102.0007: Steam Controller 'XXXXXXXXXX' disconnected
[ 145.701040][ T24] input: Steam Controller as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:28DE:1102.0007/input/input9
[ 145.742988][ T6864] ==================================================================
[ 145.751288][ T6864] BUG: KASAN: slab-use-after-free in steam_input_open+0x14d/0x160
[ 145.759316][ T6864] Read of size 8 at addr ffff88811f37a930 by task udevd/6864
[ 145.766732][ T6864]
[ 145.769092][ T6864] CPU: 1 UID: 0 PID: 6864 Comm: udevd Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca-dirty #0
[ 145.769123][ T6864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 145.769143][ T6864] Call Trace:
[ 145.769152][ T6864]
[ 145.769165][ T6864] dump_stack_lvl+0x116/0x1f0
[ 145.769215][ T6864] print_report+0xc3/0x670
[ 145.769241][ T6864] ? __virt_addr_valid+0x5e/0x590
[ 145.769267][ T6864] ? __phys_addr+0xc6/0x150
[ 145.769293][ T6864] kasan_report+0xd9/0x110
[ 145.769317][ T6864] ? steam_input_open+0x14d/0x160
[ 145.769357][ T6864] ? steam_input_open+0x14d/0x160
[ 145.769394][ T6864] steam_input_open+0x14d/0x160
[ 145.769427][ T6864] input_open_device+0x230/0x390
[ 145.769462][ T6864] ? __pfx_steam_input_open+0x10/0x10
[ 145.769497][ T6864] evdev_open+0x52d/0x690
[ 145.769528][ T6864] ? __pfx_evdev_open+0x10/0x10
[ 145.769557][ T6864] chrdev_open+0x237/0x6a0
[ 145.769590][ T6864] ? __pfx_chrdev_open+0x10/0x10
[ 145.769623][ T6864] ? lockref_get+0x15/0x50
[ 145.769660][ T6864] do_dentry_open+0x6cb/0x1390
[ 145.769690][ T6864] ? __pfx_chrdev_open+0x10/0x10
[ 145.769723][ T6864] ? inode_permission+0xdd/0x5f0
[ 145.769762][ T6864] vfs_open+0x82/0x3f0
[ 145.769799][ T6864] ? may_open+0x1f2/0x400
[ 145.769844][ T6864] path_openat+0x1e88/0x2d80
[ 145.769879][ T6864] ? __pfx_path_openat+0x10/0x10
[ 145.769909][ T6864] ? __pfx___lock_acquire+0x10/0x10
[ 145.769950][ T6864] ? lock_acquire.part.0+0x11b/0x380
[ 145.769974][ T6864] ? find_held_lock+0x2d/0x110
[ 145.770007][ T6864] do_filp_open+0x20c/0x470
[ 145.770038][ T6864] ? __pfx_do_filp_open+0x10/0x10
[ 145.770067][ T6864] ? find_held_lock+0x2d/0x110
[ 145.770108][ T6864] ? alloc_fd+0x41f/0x760
[ 145.770140][ T6864] do_sys_openat2+0x17a/0x1e0
[ 145.770178][ T6864] ? __pfx_do_sys_openat2+0x10/0x10
[ 145.770221][ T6864] __x64_sys_openat+0x175/0x210
[ 145.770259][ T6864] ? __pfx___x64_sys_openat+0x10/0x10
[ 145.770304][ T6864] do_syscall_64+0xcd/0x250
[ 145.770328][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 145.770368][ T6864] RIP: 0033:0x7fe1dcd049a4
[ 145.770387][ T6864] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[ 145.770419][ T6864] RSP: 002b:00007fffc6b23b20 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 145.770446][ T6864] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe1dcd049a4
[ 145.770463][ T6864] RDX: 0000000000080000 RSI: 00005565a6e265d0 RDI: 00000000ffffff9c
[ 145.770479][ T6864] RBP: 00005565a6e265d0 R08: 00005565a6e264f8 R09: fffffffffffffe98
[ 145.770496][ T6864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080000
[ 145.770511][ T6864] R13: 00007fffc6b23ce8 R14: 0000000000000000 R15: 000055658f591ed5
[ 145.770534][ T6864]
[ 145.770543][ T6864]
[ 146.044236][ T6864] Allocated by task 24:
[ 146.048407][ T6864] kasan_save_stack+0x33/0x60
[ 146.053207][ T6864] kasan_save_track+0x14/0x30
[ 146.057915][ T6864] __kasan_kmalloc+0x8f/0xa0
[ 146.062604][ T6864] __kmalloc_node_track_caller_noprof+0x20b/0x4c0
[ 146.069053][ T6864] devm_kmalloc+0xa5/0x260
[ 146.073489][ T6864] steam_probe+0x132/0x1060
[ 146.078032][ T6864] hid_device_probe+0x349/0x700
[ 146.082899][ T6864] really_probe+0x23e/0xa90
[ 146.087436][ T6864] __driver_probe_device+0x1de/0x440
[ 146.092756][ T6864] driver_probe_device+0x4c/0x1b0
[ 146.097797][ T6864] __device_attach_driver+0x1df/0x310
[ 146.103188][ T6864] bus_for_each_drv+0x157/0x1e0
[ 146.108112][ T6864] __device_attach+0x1e8/0x4b0
[ 146.112904][ T6864] bus_probe_device+0x17f/0x1c0
[ 146.117782][ T6864] device_add+0x114b/0x1a70
[ 146.122324][ T6864] hid_add_device+0x374/0xa60
[ 146.127028][ T6864] usbhid_probe+0xd32/0x1400
[ 146.131670][ T6864] usb_probe_interface+0x300/0x9c0
[ 146.137269][ T6864] really_probe+0x23e/0xa90
[ 146.141806][ T6864] __driver_probe_device+0x1de/0x440
[ 146.147186][ T6864] driver_probe_device+0x4c/0x1b0
[ 146.152227][ T6864] __device_attach_driver+0x1df/0x310
[ 146.157615][ T6864] bus_for_each_drv+0x157/0x1e0
[ 146.162492][ T6864] __device_attach+0x1e8/0x4b0
[ 146.167274][ T6864] bus_probe_device+0x17f/0x1c0
[ 146.172174][ T6864] device_add+0x114b/0x1a70
[ 146.176697][ T6864] usb_set_configuration+0x10cb/0x1c50
[ 146.182267][ T6864] usb_generic_driver_probe+0xb1/0x110
[ 146.187815][ T6864] usb_probe_device+0xec/0x3e0
[ 146.192603][ T6864] really_probe+0x23e/0xa90
[ 146.197226][ T6864] __driver_probe_device+0x1de/0x440
[ 146.202719][ T6864] driver_probe_device+0x4c/0x1b0
[ 146.207861][ T6864] __device_attach_driver+0x1df/0x310
[ 146.213266][ T6864] bus_for_each_drv+0x157/0x1e0
[ 146.218158][ T6864] __device_attach+0x1e8/0x4b0
[ 146.222952][ T6864] bus_probe_device+0x17f/0x1c0
[ 146.227843][ T6864] device_add+0x114b/0x1a70
[ 146.232369][ T6864] usb_new_device+0xd09/0x1a20
[ 146.237162][ T6864] hub_event+0x2e58/0x4f40
[ 146.241624][ T6864] process_one_work+0x9c5/0x1ba0
[ 146.246612][ T6864] worker_thread+0x6c8/0xf00
[ 146.251249][ T6864] kthread+0x3af/0x750
[ 146.255362][ T6864] ret_from_fork+0x45/0x80
[ 146.259900][ T6864] ret_from_fork_asm+0x1a/0x30
[ 146.264700][ T6864]
[ 146.267034][ T6864] Freed by task 1076:
[ 146.271031][ T6864] kasan_save_stack+0x33/0x60
[ 146.275761][ T6864] kasan_save_track+0x14/0x30
[ 146.280472][ T6864] kasan_save_free_info+0x3b/0x60
[ 146.285523][ T6864] __kasan_slab_free+0x37/0x50
[ 146.290302][ T6864] kfree+0x294/0x480
[ 146.294219][ T6864] release_nodes+0x11e/0x240
[ 146.298828][ T6864] devres_release_group+0x1be/0x2a0
[ 146.304052][ T6864] hid_device_remove+0x107/0x260
[ 146.309006][ T6864] device_remove+0xc8/0x170
[ 146.313546][ T6864] device_release_driver_internal+0x44a/0x610
[ 146.319680][ T6864] bus_remove_device+0x22f/0x420
[ 146.324650][ T6864] device_del+0x396/0x9f0
[ 146.329015][ T6864] hid_destroy_device+0x19c/0x240
[ 146.334078][ T6864] usbhid_disconnect+0xa0/0xe0
[ 146.339298][ T6864] usb_unbind_interface+0x1e2/0x960
[ 146.344526][ T6864] device_remove+0x122/0x170
[ 146.349148][ T6864] device_release_driver_internal+0x44a/0x610
[ 146.355245][ T6864] bus_remove_device+0x22f/0x420
[ 146.360212][ T6864] device_del+0x396/0x9f0
[ 146.364660][ T6864] usb_disable_device+0x36c/0x7f0
[ 146.369710][ T6864] usb_disconnect+0x2e1/0x920
[ 146.374583][ T6864] hub_event+0x1bed/0x4f40
[ 146.379031][ T6864] process_one_work+0x9c5/0x1ba0
[ 146.384001][ T6864] worker_thread+0x6c8/0xf00
[ 146.388642][ T6864] kthread+0x3af/0x750
[ 146.392757][ T6864] ret_from_fork+0x45/0x80
[ 146.397243][ T6864] ret_from_fork_asm+0x1a/0x30
[ 146.402061][ T6864]
[ 146.404422][ T6864] Last potentially related work creation:
[ 146.410144][ T6864] kasan_save_stack+0x33/0x60
[ 146.414859][ T6864] kasan_record_aux_stack+0x9b/0xb0
[ 146.420117][ T6864] insert_work+0x36/0x230
[ 146.424501][ T6864] __queue_work+0x97e/0x1080
[ 146.429106][ T6864] queue_work_on+0x11a/0x140
[ 146.433727][ T6864] hid_hw_close+0xaf/0xe0
[ 146.438097][ T6864] drop_ref+0x186/0x390
[ 146.442372][ T6864] hidraw_release+0x3e6/0x560
[ 146.447086][ T6864] __fput+0x3ff/0xb70
[ 146.451119][ T6864] task_work_run+0x14e/0x250
[ 146.455745][ T6864] syscall_exit_to_user_mode+0x24e/0x260
[ 146.461497][ T6864] do_syscall_64+0xda/0x250
[ 146.466018][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 146.472059][ T6864]
[ 146.474479][ T6864] Second to last potentially related work creation:
[ 146.481073][ T6864] kasan_save_stack+0x33/0x60
[ 146.485783][ T6864] kasan_record_aux_stack+0x9b/0xb0
[ 146.491018][ T6864] insert_work+0x36/0x230
[ 146.495469][ T6864] __queue_work+0x97e/0x1080
[ 146.500077][ T6864] queue_work_on+0x11a/0x140
[ 146.504692][ T6864] steam_client_ll_open+0xab/0xf0
[ 146.509758][ T6864] hid_hw_open+0xe2/0x170
[ 146.514155][ T6864] hidraw_open+0x274/0x7e0
[ 146.518618][ T6864] chrdev_open+0x237/0x6a0
[ 146.523108][ T6864] do_dentry_open+0x6cb/0x1390
[ 146.527902][ T6864] vfs_open+0x82/0x3f0
[ 146.531998][ T6864] path_openat+0x1e88/0x2d80
[ 146.536611][ T6864] do_filp_open+0x20c/0x470
[ 146.541162][ T6864] do_sys_openat2+0x17a/0x1e0
[ 146.545870][ T6864] __x64_sys_openat+0x175/0x210
[ 146.550758][ T6864] do_syscall_64+0xcd/0x250
[ 146.555296][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 146.561302][ T6864]
[ 146.563636][ T6864] The buggy address belongs to the object at ffff88811f37a800
[ 146.563636][ T6864] which belongs to the cache kmalloc-1k of size 1024
[ 146.577887][ T6864] The buggy address is located 304 bytes inside of
[ 146.577887][ T6864] freed 1024-byte region [ffff88811f37a800, ffff88811f37ac00)
[ 146.591792][ T6864]
[ 146.594122][ T6864] The buggy address belongs to the physical page:
[ 146.600556][ T6864] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11f378
[ 146.609459][ T6864] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 146.617972][ T6864] anon flags: 0x200000000000040(head|node=0|zone=2)
[ 146.624686][ T6864] page_type: f5(slab)
[ 146.628684][ T6864] raw: 0200000000000040 ffff888100041dc0 0000000000000000 0000000000000001
[ 146.637289][ T6864] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 146.645941][ T6864] head: 0200000000000040 ffff888100041dc0 0000000000000000 0000000000000001
[ 146.654650][ T6864] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 146.663342][ T6864] head: 0200000000000003 ffffea00047cde01 ffffffffffffffff 0000000000000000
[ 146.672036][ T6864] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 146.680748][ T6864] page dumped because: kasan: bad access detected
[ 146.687288][ T6864] page_owner tracks the page as allocated
[ 146.693032][ T6864] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3205, tgid 3205 (kworker/u8:2), ts 50125018848, free_ts 50111173019
[ 146.714851][ T6864] post_alloc_hook+0x181/0x1b0
[ 146.719640][ T6864] get_page_from_freelist+0xe76/0x2b90
[ 146.725120][ T6864] __alloc_frozen_pages_noprof+0x21c/0x2290
[ 146.731039][ T6864] alloc_pages_mpol+0xe7/0x410
[ 146.735824][ T6864] new_slab+0x23d/0x330
[ 146.740001][ T6864] ___slab_alloc+0xc41/0x1670
[ 146.744696][ T6864] __slab_alloc.constprop.0+0x56/0xb0
[ 146.750175][ T6864] __kmalloc_noprof+0x154/0x4d0
[ 146.755323][ T6864] load_elf_phdrs+0x103/0x210
[ 146.760029][ T6864] load_elf_binary+0x14eb/0x4f00
[ 146.764997][ T6864] bprm_execve+0x8dd/0x1680
[ 146.769519][ T6864] kernel_execve+0x2ef/0x3b0
[ 146.774128][ T6864] call_usermodehelper_exec_async+0x255/0x4c0
[ 146.780220][ T6864] ret_from_fork+0x45/0x80
[ 146.784682][ T6864] ret_from_fork_asm+0x1a/0x30
[ 146.789471][ T6864] page last free pid 3204 tgid 3204 stack trace:
[ 146.795811][ T6864] free_frozen_pages+0x653/0xde0
[ 146.800770][ T6864] __put_partials+0x14c/0x170
[ 146.805466][ T6864] qlist_free_all+0x4e/0x120
[ 146.810085][ T6864] kasan_quarantine_reduce+0x195/0x1e0
[ 146.815576][ T6864] __kasan_slab_alloc+0x4e/0x70
[ 146.820448][ T6864] kmem_cache_alloc_noprof+0x154/0x3b0
[ 146.826039][ T6864] getname_flags.part.0+0x4c/0x550
[ 146.831181][ T6864] getname+0x8d/0xe0
[ 146.835094][ T6864] do_sys_openat2+0x104/0x1e0
[ 146.839807][ T6864] __x64_sys_openat+0x175/0x210
[ 146.844695][ T6864] do_syscall_64+0xcd/0x250
[ 146.849213][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 146.855144][ T6864]
[ 146.857565][ T6864] Memory state around the buggy address:
[ 146.863291][ T6864] ffff88811f37a800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 146.871544][ T6864] ffff88811f37a880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 146.879622][ T6864] >ffff88811f37a900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 146.887692][ T6864] ^
[ 146.893447][ T6864] ffff88811f37a980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 146.901527][ T6864] ffff88811f37aa00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 146.909603][ T6864] ==================================================================
[ 146.918413][ T6864] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 146.925741][ T6864] CPU: 1 UID: 0 PID: 6864 Comm: udevd Not tainted 6.14.0-rc3-syzkaller-00295-g27102b38b8ca-dirty #0
[ 146.936627][ T6864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 146.947051][ T6864] Call Trace:
[ 146.950357][ T6864]
[ 146.953311][ T6864] dump_stack_lvl+0x3d/0x1f0
[ 146.957939][ T6864] panic+0x71d/0x800
[ 146.961865][ T6864] ? mark_held_locks+0x9f/0xe0
[ 146.966777][ T6864] ? __pfx_panic+0x10/0x10
[ 146.971306][ T6864] ? irqentry_exit+0x3b/0x90
[ 146.975944][ T6864] ? lockdep_hardirqs_on+0x7c/0x110
[ 146.981180][ T6864] ? check_panic_on_warn+0x1f/0xb0
[ 146.986331][ T6864] check_panic_on_warn+0xab/0xb0
[ 146.991302][ T6864] end_report+0x117/0x180
[ 146.995655][ T6864] kasan_report+0xe9/0x110
[ 147.000099][ T6864] ? steam_input_open+0x14d/0x160
[ 147.005245][ T6864] ? steam_input_open+0x14d/0x160
[ 147.010333][ T6864] steam_input_open+0x14d/0x160
[ 147.015224][ T6864] input_open_device+0x230/0x390
[ 147.020205][ T6864] ? __pfx_steam_input_open+0x10/0x10
[ 147.025612][ T6864] evdev_open+0x52d/0x690
[ 147.030061][ T6864] ? __pfx_evdev_open+0x10/0x10
[ 147.034938][ T6864] chrdev_open+0x237/0x6a0
[ 147.039403][ T6864] ? __pfx_chrdev_open+0x10/0x10
[ 147.044366][ T6864] ? lockref_get+0x15/0x50
[ 147.049085][ T6864] do_dentry_open+0x6cb/0x1390
[ 147.053879][ T6864] ? __pfx_chrdev_open+0x10/0x10
[ 147.058855][ T6864] ? inode_permission+0xdd/0x5f0
[ 147.063831][ T6864] vfs_open+0x82/0x3f0
[ 147.067936][ T6864] ? may_open+0x1f2/0x400
[ 147.072317][ T6864] path_openat+0x1e88/0x2d80
[ 147.076938][ T6864] ? __pfx_path_openat+0x10/0x10
[ 147.081910][ T6864] ? __pfx___lock_acquire+0x10/0x10
[ 147.087159][ T6864] ? lock_acquire.part.0+0x11b/0x380
[ 147.092464][ T6864] ? find_held_lock+0x2d/0x110
[ 147.097343][ T6864] do_filp_open+0x20c/0x470
[ 147.101871][ T6864] ? __pfx_do_filp_open+0x10/0x10
[ 147.106923][ T6864] ? find_held_lock+0x2d/0x110
[ 147.111726][ T6864] ? alloc_fd+0x41f/0x760
[ 147.116098][ T6864] do_sys_openat2+0x17a/0x1e0
[ 147.120812][ T6864] ? __pfx_do_sys_openat2+0x10/0x10
[ 147.126131][ T6864] __x64_sys_openat+0x175/0x210
[ 147.131018][ T6864] ? __pfx___x64_sys_openat+0x10/0x10
[ 147.136777][ T6864] do_syscall_64+0xcd/0x250
[ 147.141312][ T6864] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 147.147242][ T6864] RIP: 0033:0x7fe1dcd049a4
[ 147.151678][ T6864] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83
[ 147.171312][ T6864] RSP: 002b:00007fffc6b23b20 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 147.179749][ T6864] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe1dcd049a4
[ 147.187741][ T6864] RDX: 0000000000080000 RSI: 00005565a6e265d0 RDI: 00000000ffffff9c
[ 147.195746][ T6864] RBP: 00005565a6e265d0 R08: 00005565a6e264f8 R09: fffffffffffffe98
[ 147.203744][ T6864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000080000
[ 147.211834][ T6864] R13: 00007fffc6b23ce8 R14: 0000000000000000 R15: 000055658f591ed5
[ 147.219940][ T6864]
[ 147.223315][ T6864] Kernel Offset: disabled
[ 147.227797][ T6864] Rebooting in 86400 seconds..