./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3850794381
<...>
Warning: Permanently added '10.128.10.1' (ECDSA) to the list of known hosts.
execve("./syz-executor3850794381", ["./syz-executor3850794381"], 0x7fff479eb7c0 /* 10 vars */) = 0
brk(NULL) = 0x555556b6f000
brk(0x555556b6fc40) = 0x555556b6fc40
arch_prctl(ARCH_SET_FS, 0x555556b6f300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3850794381", 4096) = 28
brk(0x555556b90c40) = 0x555556b90c40
brk(0x555556b91000) = 0x555556b91000
mprotect(0x7fa96ccc7000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffd82ded180) = 0
ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd82dec170) = 18
syzkaller login: [ 48.638798][ T145] usb 1-1: new high-speed USB device number 2 using dummy_hcd
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
[ 48.878746][ T145] usb 1-1: Using ep0 maxpacket: 16
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd82dec170) = 18
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd82dec170) = 9
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd82dec170) = 36
[ 48.999957][ T145] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 49.011035][ T145] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 49.023912][ T145] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 49.032992][ T145] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 49.045440][ T145] usb 1-1: config 0 descriptor??
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded180) = 0
ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0
ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0
ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7fa96cccd3ac) = 0
ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffd82dec170) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded1b0) = 0
ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffd82dec1a0) = 0
ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffd82ded1b0) = 0
ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffd82dec1a0) = 34
[ 49.532625][ T145] HID 045e:07da: Invalid code 65791 type 1
[ 49.540441][ T145] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0001/input/input5
[ 49.623911][ T145] microsoft 0003:045E:07DA.0001: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
ioctl(3, USB_RAW_IOCTL_EP_WRITE, 0x7ffd82ded1c0) = 17
[ 49.748968][ C0] microsoft 0003:045E:07DA.0001: hid_field_extract() called with n (128) > 32! (swapper/0)
[ 49.759217][ C0] ================================================================================
[ 49.768488][ C0] UBSAN: shift-out-of-bounds in drivers/hid/hid-core.c:1323:20
[ 49.776016][ C0] shift exponent 127 is too large for 32-bit type 'int'
[ 49.782939][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.0.0-rc3-syzkaller-00007-gdcf8e5633e2e #0
[ 49.792574][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 49.802642][ C0] Call Trace:
[ 49.805925][ C0]
[ 49.808770][ C0] dump_stack_lvl+0xcd/0x134
[ 49.813383][ C0] ubsan_epilogue+0xb/0x50
[ 49.817802][ C0] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187
[ 49.824566][ C0] snto32.cold+0x19/0x48
[ 49.828820][ C0] hid_report_raw_event+0x88b/0x1280
[ 49.834102][ C0] hid_input_report+0x360/0x4c0
[ 49.838954][ C0] ? ktime_get_mono_fast_ns+0x181/0x200
[ 49.844503][ C0] hid_irq_in+0x50e/0x690
[ 49.848839][ C0] __usb_hcd_giveback_urb+0x2b0/0x5c0
[ 49.854206][ C0] usb_hcd_giveback_urb+0x380/0x430
[ 49.859429][ C0] dummy_timer+0x11ff/0x32c0
[ 49.864031][ C0] ? dummy_dequeue+0x500/0x500
[ 49.868808][ C0] ? dummy_dequeue+0x500/0x500
[ 49.873573][ C0] call_timer_fn+0x1a0/0x6b0
[ 49.878784][ C0] ? timer_fixup_activate+0x350/0x350
[ 49.884862][ C0] ? lock_downgrade+0x6e0/0x6e0
[ 49.889739][ C0] ? _raw_spin_unlock_irq+0x1f/0x40
[ 49.894983][ C0] ? _raw_spin_unlock_irq+0x1f/0x40
[ 49.900369][ C0] ? dummy_dequeue+0x500/0x500
[ 49.905837][ C0] __run_timers.part.0+0x674/0xa80
[ 49.910957][ C0] ? call_timer_fn+0x6b0/0x6b0
[ 49.915812][ C0] ? cpuacct_all_seq_show+0x520/0x520
[ 49.921172][ C0] ? kvm_sched_clock_read+0x14/0x40
[ 49.926362][ C0] ? sched_clock_cpu+0x69/0x2b0
[ 49.931227][ C0] run_timer_softirq+0xb3/0x1d0
[ 49.934184][ T142] usb 1-1: USB disconnect, device number 2
[ 49.936094][ C0] __do_softirq+0x1d3/0x9c6
[ 49.946452][ C0] __irq_exit_rcu+0x123/0x180
[ 49.951166][ C0] irq_exit_rcu+0x5/0x20
[ 49.955483][ C0] sysvec_apic_timer_interrupt+0x93/0xc0
[ 49.961130][ C0]
[ 49.964067][ C0]
[ 49.966996][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 49.973131][ C0] RIP: 0010:acpi_safe_halt+0x6f/0xb0
[ 49.978469][ C0] Code: f7 84 db 74 06 5b e9 60 8f f9 f7 e8 5b 8f f9 f7 e8 86 06 00 f8 66 90 e8 4f 8f f9 f7 0f 00 2d f8 44 d2 00 e8 43 8f f9 f7 fb f4 <9c> 5b 81 e3 00 02 00 00 fa 31 ff 48 89 de e8 0e 8c f9 f7 48 85 db
[ 49.998098][ C0] RSP: 0018:ffffffff8bc07d38 EFLAGS: 00000293
[ 50.004279][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 50.012277][ C0] RDX: ffffffff8bcbc980 RSI: ffffffff89827aed RDI: 0000000000000000
[ 50.020362][ C0] RBP: ffff888011be9064 R08: 0000000000000001 R09: 0000000000000001
[ 50.028441][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[ 50.036427][ C0] R13: 0000000000000001 R14: ffff888011be9000 R15: ffff888146903004
[ 50.044437][ C0] ? acpi_safe_halt+0x6d/0xb0
[ 50.049232][ C0] ? acpi_safe_halt+0x6d/0xb0
[ 50.053964][ C0] acpi_idle_enter+0x524/0x6a0
[ 50.058744][ C0] cpuidle_enter_state+0x1ab/0xd30
[ 50.063880][ C0] cpuidle_enter+0x4a/0xa0
[ 50.068298][ C0] do_idle+0x3e8/0x590
[ 50.072498][ C0] ? arch_cpu_idle_exit+0x30/0x30
[ 50.077548][ C0] cpu_startup_entry+0x14/0x20
[ 50.082351][ C0] rest_init+0x169/0x270
[ 50.086617][ C0] ? trace_init_perf_perm_irq_work_exit+0xe/0xe
[ 50.092866][ C0] arch_call_rest_init+0xf/0x14
[ 50.097745][ C0] start_kernel+0x46e/0x48f
[ 50.102247][ C0] secondary_startup_64_no_verify+0xce/0xdb
[ 50.108149][ C0]
[ 50.111159][ C0] ================================================================================
[ 50.120428][ C0] Kernel panic - not syncing: panic_on_warn set ...
[ 50.127094][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 6.0.0-rc3-syzkaller-00007-gdcf8e5633e2e #0
[ 50.136706][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 50.146871][ C0] Call Trace:
[ 50.150143][ C0]
[ 50.152980][ C0] dump_stack_lvl+0xcd/0x134
[ 50.157584][ C0] panic+0x2c8/0x627
[ 50.161569][ C0] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 50.167567][ C0] ? secondary_startup_64_no_verify+0xce/0xdb
[ 50.173641][ C0] ? ubsan_epilogue+0x3e/0x50
[ 50.178316][ C0] ubsan_epilogue+0x4a/0x50
[ 50.182810][ C0] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187
[ 50.189615][ C0] snto32.cold+0x19/0x48
[ 50.193851][ C0] hid_report_raw_event+0x88b/0x1280
[ 50.199145][ C0] hid_input_report+0x360/0x4c0
[ 50.204022][ C0] ? ktime_get_mono_fast_ns+0x181/0x200
[ 50.209563][ C0] hid_irq_in+0x50e/0x690
[ 50.213918][ C0] __usb_hcd_giveback_urb+0x2b0/0x5c0
[ 50.219316][ C0] usb_hcd_giveback_urb+0x380/0x430
[ 50.224608][ C0] dummy_timer+0x11ff/0x32c0
[ 50.229215][ C0] ? dummy_dequeue+0x500/0x500
[ 50.233996][ C0] ? dummy_dequeue+0x500/0x500
[ 50.238750][ C0] call_timer_fn+0x1a0/0x6b0
[ 50.243338][ C0] ? timer_fixup_activate+0x350/0x350
[ 50.248824][ C0] ? lock_downgrade+0x6e0/0x6e0
[ 50.253690][ C0] ? _raw_spin_unlock_irq+0x1f/0x40
[ 50.258904][ C0] ? _raw_spin_unlock_irq+0x1f/0x40
[ 50.264122][ C0] ? dummy_dequeue+0x500/0x500
[ 50.269029][ C0] __run_timers.part.0+0x674/0xa80
[ 50.274165][ C0] ? call_timer_fn+0x6b0/0x6b0
[ 50.278937][ C0] ? cpuacct_all_seq_show+0x520/0x520
[ 50.284309][ C0] ? kvm_sched_clock_read+0x14/0x40
[ 50.289501][ C0] ? sched_clock_cpu+0x69/0x2b0
[ 50.294349][ C0] run_timer_softirq+0xb3/0x1d0
[ 50.299196][ C0] __do_softirq+0x1d3/0x9c6
[ 50.303692][ C0] __irq_exit_rcu+0x123/0x180
[ 50.308363][ C0] irq_exit_rcu+0x5/0x20
[ 50.312593][ C0] sysvec_apic_timer_interrupt+0x93/0xc0
[ 50.318218][ C0]
[ 50.321148][ C0]
[ 50.324082][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 50.330054][ C0] RIP: 0010:acpi_safe_halt+0x6f/0xb0
[ 50.335335][ C0] Code: f7 84 db 74 06 5b e9 60 8f f9 f7 e8 5b 8f f9 f7 e8 86 06 00 f8 66 90 e8 4f 8f f9 f7 0f 00 2d f8 44 d2 00 e8 43 8f f9 f7 fb f4 <9c> 5b 81 e3 00 02 00 00 fa 31 ff 48 89 de e8 0e 8c f9 f7 48 85 db
[ 50.354928][ C0] RSP: 0018:ffffffff8bc07d38 EFLAGS: 00000293
[ 50.360988][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[ 50.369034][ C0] RDX: ffffffff8bcbc980 RSI: ffffffff89827aed RDI: 0000000000000000
[ 50.376992][ C0] RBP: ffff888011be9064 R08: 0000000000000001 R09: 0000000000000001
[ 50.384949][ C0] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[ 50.392903][ C0] R13: 0000000000000001 R14: ffff888011be9000 R15: ffff888146903004
[ 50.400867][ C0] ? acpi_safe_halt+0x6d/0xb0
[ 50.405543][ C0] ? acpi_safe_halt+0x6d/0xb0
[ 50.410208][ C0] acpi_idle_enter+0x524/0x6a0
[ 50.414963][ C0] cpuidle_enter_state+0x1ab/0xd30
[ 50.420068][ C0] cpuidle_enter+0x4a/0xa0
[ 50.424478][ C0] do_idle+0x3e8/0x590
[ 50.428537][ C0] ? arch_cpu_idle_exit+0x30/0x30
[ 50.433577][ C0] cpu_startup_entry+0x14/0x20
[ 50.438385][ C0] rest_init+0x169/0x270
[ 50.442636][ C0] ? trace_init_perf_perm_irq_work_exit+0xe/0xe
[ 50.448963][ C0] arch_call_rest_init+0xf/0x14
[ 50.453821][ C0] start_kernel+0x46e/0x48f
[ 50.458353][ C0] secondary_startup_64_no_verify+0xce/0xdb
[ 50.464295][ C0]
[ 50.467509][ C0] Kernel Offset: disabled
[ 50.471908][ C0] Rebooting in 86400 seconds..