./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3367051764

<...>
DUID 00:04:d9:3a:76:1c:b4:63:be:bc:0b:c2:08:9c:83:36:98:31
forked to background, child pid 3186
[   27.750994][ T3187] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.760431][ T3187] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.110' (ECDSA) to the list of known hosts.
execve("./syz-executor3367051764", ["./syz-executor3367051764"], 0x7ffd9bec55a0 /* 10 vars */) = 0
brk(NULL)                               = 0x5555568a6000
brk(0x5555568a6c40)                     = 0x5555568a6c40
arch_prctl(ARCH_SET_FS, 0x5555568a6300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3367051764", 4096) = 28
brk(0x5555568c7c40)                     = 0x5555568c7c40
brk(0x5555568c8000)                     = 0x5555568c8000
mprotect(0x7f1e61218000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
ioctl(3, USB_RAW_IOCTL_INIT, 0x7fff393f5950) = 0
ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff393f4940) = 18
syzkaller login: [   49.310712][ T3272] usb 1-1: new high-speed USB device number 2 using dummy_hcd
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff393f4940) = 18
[   49.550673][ T3272] usb 1-1: Using ep0 maxpacket: 16
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff393f4940) = 9
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff393f4940) = 36
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5950) = 0
ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0)    = 0
ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0)    = 0
ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7f1e6121e3ac) = 0
[   49.671502][ T3272] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   49.682586][ T3272] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   49.695513][ T3272] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   49.704619][ T3272] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   49.716114][ T3272] usb 1-1: config 0 descriptor??
ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7fff393f4940) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5980) = 0
ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7fff393f4970) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7fff393f5980) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7fff393f4970) = 34
[   50.215174][ T3272] HID 045e:07da: Invalid code 65791 type 1
[   50.223235][ T3272] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0001/input/input5
[   50.305897][ T3272] microsoft 0003:045E:07DA.0001: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
ioctl(3, USB_RAW_IOCTL_EP_WRITE, 0x7fff393f5990) = 17
[   50.430897][    C0] microsoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) > 32! (swapper/0)
[   50.441047][    C0] ================================================================================
[   50.450328][    C0] UBSAN: shift-out-of-bounds in drivers/hid/hid-core.c:1323:20
[   50.457870][    C0] shift exponent 127 is too large for 32-bit type 'int'
[   50.464806][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.1.0-rc4-syzkaller-00159-g4bbf3422df78 #0
[   50.474526][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   50.484570][    C0] Call Trace:
[   50.487839][    C0]  <IRQ>
[   50.490671][    C0]  dump_stack_lvl+0x1e3/0x2cb
[   50.495358][    C0]  ? nf_tcp_handle_invalid+0x62e/0x62e
[   50.500804][    C0]  ? panic+0x766/0x766
[   50.504909][    C0]  ? __wake_up+0x123/0x1c0
[   50.509316][    C0]  ? _dev_warn+0x12f/0x176
[   50.513720][    C0]  __ubsan_handle_shift_out_of_bounds+0x3a6/0x420
[   50.520129][    C0]  hid_report_raw_event+0xd56/0x18b0
[   50.525426][    C0]  hid_input_report+0x408/0x4f0
[   50.530277][    C0]  hid_irq_in+0x459/0x690
[   50.534606][    C0]  __usb_hcd_giveback_urb+0x369/0x530
[   50.539976][    C0]  dummy_timer+0x86b/0x3110
[   50.544519][    C0]  ? dummy_free_streams+0x320/0x320
[   50.549717][    C0]  ? trace_lock_release+0x95/0x220
[   50.554851][    C0]  ? dummy_free_streams+0x320/0x320
[   50.560051][    C0]  ? dummy_free_streams+0x320/0x320
[   50.565242][    C0]  call_timer_fn+0xf5/0x210
[   50.569734][    C0]  ? dummy_free_streams+0x320/0x320
[   50.574936][    C0]  ? dummy_free_streams+0x320/0x320
[   50.580148][    C0]  ? __run_timers+0x980/0x980
[   50.584833][    C0]  ? do_raw_spin_unlock+0x134/0x8a0
[   50.590054][    C0]  ? dummy_free_streams+0x320/0x320
[   50.595260][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[   50.600474][    C0]  ? lockdep_hardirqs_on+0x95/0x140
[   50.605690][    C0]  ? dummy_free_streams+0x320/0x320
[   50.610894][    C0]  __run_timers+0x76a/0x980
[   50.615410][    C0]  ? trace_timer_cancel+0x2b0/0x2b0
[   50.620607][    C0]  ? print_irqtrace_events+0x220/0x220
[   50.626079][    C0]  run_timer_softirq+0x63/0xf0
[   50.631019][    C0]  __do_softirq+0x277/0x75b
[   50.635531][    C0]  ? __irq_exit_rcu+0xec/0x170
[   50.640309][    C0]  ? __entry_text_end+0x1feacb/0x1feacb
[   50.645861][    C0]  __irq_exit_rcu+0xec/0x170
[   50.650445][    C0]  ? irq_exit_rcu+0x20/0x20
[   50.654948][    C0]  irq_exit_rcu+0x5/0x20
[   50.659183][    C0]  sysvec_apic_timer_interrupt+0x91/0xb0
[   50.664832][    C0]  </IRQ>
[   50.667763][    C0]  <TASK>
[   50.670687][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   50.676670][    C0] RIP: 0010:acpi_idle_enter+0x43d/0x800
[   50.682298][    C0] Code: ff e8 a7 8d 38 f7 48 83 e3 08 44 8b 7c 24 04 0f 85 00 01 00 00 e8 33 4d 3f f7 66 90 e8 cc 88 38 f7 0f 00 2d f5 af c4 00 fb f4 <4c> 89 e3 48 c1 eb 03 42 80 3c 2b 00 74 08 4c 89 e7 e8 7d 64 8d f7
[   50.701900][    C0] RSP: 0018:ffffffff8ca07b80 EFLAGS: 000002d3
[   50.707968][    C0] RAX: ffffffff8a512d84 RBX: 0000000000000000 RCX: ffffffff8cabb7c0
[   50.715957][    C0] RDX: 0000000000000000 RSI: ffffffff8aad68a0 RDI: ffffffff8b0ac540
[   50.723930][    C0] RBP: ffffffff8ca07c30 R08: ffffffff8a512d69 R09: fffffbfff19576f9
[   50.731900][    C0] R10: fffffbfff19576f9 R11: 1ffffffff19576f8 R12: ffffffff8ca07bc0
[   50.739869][    C0] R13: dffffc0000000000 R14: ffff8880121c6800 R15: 0000000000000001
[   50.747938][    C0]  ? acpi_idle_enter+0x419/0x800
[   50.752872][    C0]  ? acpi_idle_enter+0x434/0x800
[   50.757813][    C0]  ? intel_idle_xstate+0x90/0x90
[   50.765098][    C0]  cpuidle_enter_state+0x50b/0xf50
[   50.770221][    C0]  ? cpuidle_enter_s2idle+0x6b0/0x6b0
[   50.775596][    C0]  cpuidle_enter+0x59/0x90
[   50.780013][    C0]  do_idle+0x3da/0x680
[   50.784084][    C0]  ? idle_inject_timer_fn+0x60/0x60
[   50.789286][    C0]  cpu_startup_entry+0x15/0x20
[   50.794045][    C0]  rest_init+0x24f/0x270
[   50.798282][    C0]  ? time_init+0x33/0x33
[   50.802519][    C0]  arch_call_rest_init+0xa/0xa
[   50.807288][    C0]  start_kernel+0x4b6/0x565
[   50.811787][    C0]  secondary_startup_64_no_verify+0xcf/0xdb
[   50.817694][    C0]  </TASK>
[   50.820788][    C0] ================================================================================
[   50.830058][    C0] Kernel panic - not syncing: panic_on_warn set ...
[   50.836627][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.1.0-rc4-syzkaller-00159-g4bbf3422df78 #0
[   50.846241][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   50.856306][    C0] Call Trace:
[   50.859706][    C0]  <IRQ>
[   50.862560][    C0]  dump_stack_lvl+0x1e3/0x2cb
[   50.867245][    C0]  ? nf_tcp_handle_invalid+0x62e/0x62e
[   50.872707][    C0]  ? panic+0x766/0x766
[   50.876787][    C0]  ? vscnprintf+0x59/0x80
[   50.881116][    C0]  panic+0x316/0x766
[   50.885015][    C0]  ? __ubsan_handle_shift_out_of_bounds+0x3c9/0x420
[   50.891597][    C0]  ? memcpy_page_flushcache+0xfc/0xfc
[   50.896966][    C0]  ? panic+0x766/0x766
[   50.901026][    C0]  ? __wake_up+0x123/0x1c0
[   50.905437][    C0]  ? _dev_warn+0x12f/0x176
[   50.909850][    C0]  __ubsan_handle_shift_out_of_bounds+0x418/0x420
[   50.917058][    C0]  hid_report_raw_event+0xd56/0x18b0
[   50.922806][    C0]  hid_input_report+0x408/0x4f0
[   50.927672][    C0]  hid_irq_in+0x459/0x690
[   50.932010][    C0]  __usb_hcd_giveback_urb+0x369/0x530
[   50.937408][    C0]  dummy_timer+0x86b/0x3110
[   50.941992][    C0]  ? dummy_free_streams+0x320/0x320
[   50.947199][    C0]  ? trace_lock_release+0x95/0x220
[   50.952315][    C0]  ? dummy_free_streams+0x320/0x320
[   50.957515][    C0]  ? dummy_free_streams+0x320/0x320
[   50.962708][    C0]  call_timer_fn+0xf5/0x210
[   50.967212][    C0]  ? dummy_free_streams+0x320/0x320
[   50.972410][    C0]  ? dummy_free_streams+0x320/0x320
[   50.977605][    C0]  ? __run_timers+0x980/0x980
[   50.982281][    C0]  ? do_raw_spin_unlock+0x134/0x8a0
[   50.987479][    C0]  ? dummy_free_streams+0x320/0x320
[   50.992672][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[   50.997887][    C0]  ? lockdep_hardirqs_on+0x95/0x140
[   51.003105][    C0]  ? dummy_free_streams+0x320/0x320
[   51.008320][    C0]  __run_timers+0x76a/0x980
[   51.012859][    C0]  ? trace_timer_cancel+0x2b0/0x2b0
[   51.018077][    C0]  ? print_irqtrace_events+0x220/0x220
[   51.023548][    C0]  run_timer_softirq+0x63/0xf0
[   51.028320][    C0]  __do_softirq+0x277/0x75b
[   51.032826][    C0]  ? __irq_exit_rcu+0xec/0x170
[   51.037588][    C0]  ? __entry_text_end+0x1feacb/0x1feacb
[   51.043139][    C0]  __irq_exit_rcu+0xec/0x170
[   51.047726][    C0]  ? irq_exit_rcu+0x20/0x20
[   51.052243][    C0]  irq_exit_rcu+0x5/0x20
[   51.056480][    C0]  sysvec_apic_timer_interrupt+0x91/0xb0
[   51.062108][    C0]  </IRQ>
[   51.065031][    C0]  <TASK>
[   51.067953][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   51.073929][    C0] RIP: 0010:acpi_idle_enter+0x43d/0x800
[   51.079470][    C0] Code: ff e8 a7 8d 38 f7 48 83 e3 08 44 8b 7c 24 04 0f 85 00 01 00 00 e8 33 4d 3f f7 66 90 e8 cc 88 38 f7 0f 00 2d f5 af c4 00 fb f4 <4c> 89 e3 48 c1 eb 03 42 80 3c 2b 00 74 08 4c 89 e7 e8 7d 64 8d f7
[   51.099131][    C0] RSP: 0018:ffffffff8ca07b80 EFLAGS: 000002d3
[   51.105222][    C0] RAX: ffffffff8a512d84 RBX: 0000000000000000 RCX: ffffffff8cabb7c0
[   51.113200][    C0] RDX: 0000000000000000 RSI: ffffffff8aad68a0 RDI: ffffffff8b0ac540
[   51.121176][    C0] RBP: ffffffff8ca07c30 R08: ffffffff8a512d69 R09: fffffbfff19576f9
[   51.129164][    C0] R10: fffffbfff19576f9 R11: 1ffffffff19576f8 R12: ffffffff8ca07bc0
[   51.137132][    C0] R13: dffffc0000000000 R14: ffff8880121c6800 R15: 0000000000000001
[   51.145113][    C0]  ? acpi_idle_enter+0x419/0x800
[   51.150051][    C0]  ? acpi_idle_enter+0x434/0x800
[   51.154992][    C0]  ? intel_idle_xstate+0x90/0x90
[   51.159941][    C0]  cpuidle_enter_state+0x50b/0xf50
[   51.165061][    C0]  ? cpuidle_enter_s2idle+0x6b0/0x6b0
[   51.170450][    C0]  cpuidle_enter+0x59/0x90
[   51.174942][    C0]  do_idle+0x3da/0x680
[   51.179036][    C0]  ? idle_inject_timer_fn+0x60/0x60
[   51.184252][    C0]  cpu_startup_entry+0x15/0x20
[   51.189017][    C0]  rest_init+0x24f/0x270
[   51.193265][    C0]  ? time_init+0x33/0x33
[   51.197512][    C0]  arch_call_rest_init+0xa/0xa
[   51.202279][    C0]  start_kernel+0x4b6/0x565
[   51.206784][    C0]  secondary_startup_64_no_verify+0xcf/0xdb
[   51.212685][    C0]  </TASK>
[   51.216292][    C0] Kernel Offset: disabled
[   51.220681][    C0] Rebooting in 86400 seconds..