./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1043123896

<...>
Warning: Permanently added '10.128.1.122' (ECDSA) to the list of known hosts.
execve("./syz-executor1043123896", ["./syz-executor1043123896"], 0x7ffed593ee00 /* 10 vars */) = 0
brk(NULL)                               = 0x555555ac6000
brk(0x555555ac6c40)                     = 0x555555ac6c40
arch_prctl(ARCH_SET_FS, 0x555555ac6300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1043123896", 4096) = 28
brk(0x555555ae7c40)                     = 0x555555ae7c40
brk(0x555555ae8000)                     = 0x555555ae8000
mprotect(0x7f2bb4c65000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555ac65d0) = 3603
./strace-static-x86_64: Process 3603 attached
[pid  3603] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  3603] setpgid(0, 0)               = 0
[pid  3603] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  3603] write(3, "1000", 4)         = 4
[pid  3603] close(3)                    = 0
[pid  3603] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 3
[pid  3603] ioctl(3, USB_RAW_IOCTL_INIT, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe820115b0) = 18
syzkaller login: [   36.343306][   T26] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe820115b0) = 18
[   36.583300][   T26] usb 1-1: Using ep0 maxpacket: 8
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe820115b0) = 9
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP0_WRITE, 0x7ffe820115b0) = 27
[   36.703394][   T26] usb 1-1: config 0 has an invalid interface number: 228 but max is 0
[   36.711865][   T26] usb 1-1: config 0 has an invalid descriptor of length 119, skipping remainder of the config
[   36.722239][   T26] usb 1-1: config 0 has no interface number 0
[   36.728350][   T26] usb 1-1: config 0 interface 228 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[   36.739504][   T26] usb 1-1: config 0 interface 228 altsetting 0 endpoint 0x81 has invalid maxpacket 17023, setting to 1024
[pid  3603] ioctl(3, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffe820125c0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_VBUS_DRAW, 0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_CONFIGURE, 0) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP_ENABLE, 0x7f2bb4c6b46c) = 0
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP0_READ, 0x7ffe820115b0) = 0
[   36.750905][   T26] usb 1-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=af.8a
[   36.759982][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   36.769070][   T26] usb 1-1: config 0 descriptor??
[   36.863300][   T26] rc_core: IR keymap rc-streamzap not found
[   36.869312][   T26] Registered IR keymap rc-empty
[   36.874859][   T26] rc rc0: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.228/rc/rc0
[   36.886974][   T26] input: Streamzap PC Remote Infrared Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.228/rc/rc0/input5
[pid  3603] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 4
[pid  3603] ioctl(4, USB_RAW_IOCTL_INIT, 0x7ffe820125c0) = 0
[pid  3603] ioctl(4, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = -1 EBUSY (Device or resource busy)
[pid  3603] openat(AT_FDCWD, "/dev/raw-gadget", O_RDWR) = 5
[pid  3603] ioctl(5, USB_RAW_IOCTL_INIT, 0x7ffe820125c0) = 0
[pid  3603] ioctl(5, UI_DEV_CREATE or USB_RAW_IOCTL_RUN, 0) = -1 EBUSY (Device or resource busy)
[pid  3603] ioctl(3, USB_RAW_IOCTL_EP_WRITE, 0x7ffe820125f0) = 428
[   37.015425][ T3603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   37.023975][ T3603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   37.033002][ T3603] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   37.041930][ T3603] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   37.053447][    C1] rc rc0: IR event FIFO is full!
[   37.058491][    C1] rc rc0: IR event FIFO is full!
[   37.063405][    C1] rc rc0: IR event FIFO is full!
[   37.068480][    C1] rc rc0: IR event FIFO is full!
[   37.073395][    C1] rc rc0: IR event FIFO is full!
[   37.078305][    C1] rc rc0: IR event FIFO is full!
[   37.083217][    C1] rc rc0: IR event FIFO is full!
[   37.088143][    C1] rc rc0: IR event FIFO is full!
[   37.093053][    C1] rc rc0: IR event FIFO is full!
[   37.097967][    C1] rc rc0: IR event FIFO is full!
[   37.102883][    C1] rc rc0: IR event FIFO is full!
[   37.107797][    C1] rc rc0: IR event FIFO is full!
[   37.112708][    C1] rc rc0: IR event FIFO is full!
[   37.117638][    C1] rc rc0: IR event FIFO is full!
[   37.122573][    C1] rc rc0: IR event FIFO is full!
[   37.127488][    C1] rc rc0: IR event FIFO is full!
[   37.132405][    C1] rc rc0: IR event FIFO is full!
[   37.137318][    C1] rc rc0: IR event FIFO is full!
[   37.142237][    C1] rc rc0: IR event FIFO is full!
[   37.147153][    C1] rc rc0: IR event FIFO is full!
[   37.152067][    C1] rc rc0: IR event FIFO is full!
[   37.156982][    C1] rc rc0: IR event FIFO is full!
[   37.162070][    C1] rc rc0: IR event FIFO is full!
[   37.167158][    C1] rc rc0: IR event FIFO is full!
[   37.172071][    C1] rc rc0: IR event FIFO is full!
[   37.176985][    C1] rc rc0: IR event FIFO is full!
[   37.181914][    C1] rc rc0: IR event FIFO is full!
[   37.186826][    C1] rc rc0: IR event FIFO is full!
[   37.191738][    C1] rc rc0: IR event FIFO is full!
[   37.196736][    C1] rc rc0: IR event FIFO is full!
[   37.201647][    C1] rc rc0: IR event FIFO is full!
[   37.206751][    C1] rc rc0: IR event FIFO is full!
[   37.211662][    C1] rc rc0: IR event FIFO is full!
[pid  3603] exit_group(0)               = ?
[pid  3603] +++ exited with 0 +++
[   37.216574][    C1] rc rc0: IR event FIFO is full!
[   37.221660][    C1] rc rc0: IR event FIFO is full!
[   37.226572][    C1] rc rc0: IR event FIFO is full!
[   37.231482][    C1] rc rc0: IR event FIFO is full!
[   37.236392][    C1] rc rc0: IR event FIFO is full!
[   37.241326][    C1] rc rc0: IR event FIFO is full!
[   37.246260][    C1] rc rc0: IR event FIFO is full!
[   37.251169][    C1] rc rc0: IR event FIFO is full!
[   37.255844][  T144] usb 1-1: USB disconnect, device number 2
[   37.256165][    C1] rc rc0: IR event FIFO is full!
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3603, si_uid=0, si_status=0, si_utime=0, si_stime=4} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[   37.256176][    C1] rc rc0: IR event FIFO is full!
[   37.272135][    C1] general protection fault, probably for non-canonical address 0xdffffc000000021b: 0000 [#1] PREEMPT SMP KASAN
[   37.284106][    C1] KASAN: probably user-memory-access in range [0x00000000000010d8-0x00000000000010df]
[   37.293829][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.0-rc2-syzkaller #0
[   37.301710][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[   37.312185][    C1] RIP: 0010:ir_raw_event_store_with_filter+0x424/0x590
[   37.319131][    C1] Code: 80 3c 02 00 0f 85 5b 01 00 00 4c 8b a5 b8 05 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d bc 24 d8 10 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 4b 01 00 00 48 ba 00 00 00 00 00 fc ff df 48 89
[   37.338836][    C1] RSP: 0018:ffffc900001e0940 EFLAGS: 00010016
[   37.344899][    C1] RAX: dffffc0000000000 RBX: ffffc900001e09b0 RCX: 0000000000000100
[   37.352860][    C1] RDX: 000000000000021b RSI: ffffffff861d41c9 RDI: 00000000000010d8
[   37.360826][    C1] RBP: ffff888017615000 R08: 000000000000001e R09: 0000000000000000
[   37.368789][    C1] R10: 0000000000000101 R11: 203a306372206372 R12: 0000000000000000
[   37.376838][    C1] R13: ffffc900001e09b5 R14: 0000000000000e80 R15: ffff8880176155b8
[   37.384896][    C1] FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   37.393819][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   37.400394][    C1] CR2: 00007f2d9dbe3160 CR3: 000000007281c000 CR4: 0000000000350ee0
[   37.408444][    C1] Call Trace:
[   37.411798][    C1]  <IRQ>
[   37.414634][    C1]  sz_push+0x97/0x1d0
[   37.418609][    C1]  ? do_raw_spin_lock+0x120/0x2a0
[   37.423631][    C1]  ? streamzap_disconnect+0x1f0/0x1f0
[   37.428998][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   37.434015][    C1]  ? lock_acquire+0x4fc/0x630
[   37.438688][    C1]  ? __sanitizer_cov_trace_switch+0x50/0x90
[   37.444669][    C1]  streamzap_callback+0x338/0x7b0
[   37.449791][    C1]  __usb_hcd_giveback_urb+0x2b0/0x5c0
[   37.455159][    C1]  usb_hcd_giveback_urb+0x380/0x430
[   37.460354][    C1]  dummy_timer+0x11ff/0x32c0
[   37.464978][    C1]  ? lock_downgrade+0x6e0/0x6e0
[   37.469822][    C1]  ? dummy_dequeue+0x500/0x500
[   37.474589][    C1]  call_timer_fn+0x1da/0x7c0
[   37.479173][    C1]  ? dummy_dequeue+0x500/0x500
[   37.483933][    C1]  ? lock_release+0x5cb/0x810
[   37.488685][    C1]  ? timer_fixup_activate+0x3e0/0x3e0
[   37.494049][    C1]  ? lock_downgrade+0x6e0/0x6e0
[   37.498891][    C1]  ? rwlock_bug.part.0+0x90/0x90
[   37.503822][    C1]  ? __next_timer_interrupt+0x234/0x2b0
[   37.509361][    C1]  ? dummy_dequeue+0x500/0x500
[   37.514123][    C1]  ? dummy_dequeue+0x500/0x500
[   37.519062][    C1]  ? dummy_dequeue+0x500/0x500
[   37.523827][    C1]  __run_timers.part.0+0x6a2/0xaf0
[   37.528958][    C1]  ? call_timer_fn+0x7c0/0x7c0
[   37.533719][    C1]  ? prepare_to_wait+0x370/0x370
[   37.538651][    C1]  ? kvm_sched_clock_read+0x14/0x40
[   37.543857][    C1]  ? sched_clock_cpu+0x69/0x2b0
[   37.548700][    C1]  run_timer_softirq+0xb3/0x1d0
[   37.553552][    C1]  __do_softirq+0x1f7/0xad8
[   37.558060][    C1]  __irq_exit_rcu+0x123/0x180
[   37.562729][    C1]  irq_exit_rcu+0x5/0x20
[   37.566983][    C1]  sysvec_apic_timer_interrupt+0x93/0xc0
[   37.572609][    C1]  </IRQ>
[   37.575543][    C1]  <TASK>
[   37.578460][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[   37.584442][    C1] RIP: 0010:acpi_idle_do_entry+0x1fd/0x2a0
[   37.590290][    C1] Code: 89 de e8 56 f8 ea f7 84 db 75 ac e8 bd fb ea f7 e8 78 72 f1 f7 eb 0c e8 b1 fb ea f7 0f 00 2d ca fc c2 00 e8 a5 fb ea f7 fb f4 <9c> 5b 81 e3 00 02 00 00 fa 31 ff 48 89 de e8 80 f8 ea f7 48 85 db
[   37.609887][    C1] RSP: 0018:ffffc90000177d10 EFLAGS: 00000293
[   37.615944][    C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[   37.623908][    C1] RDX: ffff888011a41d40 RSI: ffffffff89919ffb RDI: ffffffff89919fe8
[   37.631870][    C1] RBP: ffff88801713c064 R08: 0000000000000000 R09: 0000000000000000
[   37.639830][    C1] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000001
[   37.647789][    C1] R13: ffff88801713c000 R14: ffff88801713c064 R15: ffff888018433804
[   37.655752][    C1]  ? acpi_idle_do_entry+0x1fb/0x2a0
[   37.660945][    C1]  ? acpi_idle_do_entry+0x1e8/0x2a0
[   37.666158][    C1]  acpi_idle_enter+0x364/0x500
[   37.671006][    C1]  cpuidle_enter_state+0x1ab/0xd30
[   37.676116][    C1]  cpuidle_enter+0x4a/0xa0
[   37.680531][    C1]  do_idle+0x3f7/0x590
[   37.684615][    C1]  ? arch_cpu_idle_exit+0x30/0x30
[   37.689633][    C1]  ? _raw_spin_unlock_irq+0x10/0x40
[   37.694828][    C1]  ? lockdep_hardirqs_on+0x79/0x100
[   37.700108][    C1]  cpu_startup_entry+0x14/0x20
[   37.704884][    C1]  start_secondary+0x252/0x300
[   37.709650][    C1]  ? set_cpu_sibling_map+0x24f0/0x24f0
[   37.715116][    C1]  secondary_startup_64_no_verify+0xce/0xdb
[   37.721011][    C1]  </TASK>
[   37.724021][    C1] Modules linked in:
[   37.727905][    C1] ---[ end trace 0000000000000000 ]---
[   37.733341][    C1] RIP: 0010:ir_raw_event_store_with_filter+0x424/0x590
[   37.740192][    C1] Code: 80 3c 02 00 0f 85 5b 01 00 00 4c 8b a5 b8 05 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d bc 24 d8 10 00 00 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 4b 01 00 00 48 ba 00 00 00 00 00 fc ff df 48 89
[   37.759874][    C1] RSP: 0018:ffffc900001e0940 EFLAGS: 00010016
[   37.765929][    C1] RAX: dffffc0000000000 RBX: ffffc900001e09b0 RCX: 0000000000000100
[   37.773890][    C1] RDX: 000000000000021b RSI: ffffffff861d41c9 RDI: 00000000000010d8
[   37.782480][    C1] RBP: ffff888017615000 R08: 000000000000001e R09: 0000000000000000
[   37.790445][    C1] R10: 0000000000000101 R11: 203a306372206372 R12: 0000000000000000
[   37.798405][    C1] R13: ffffc900001e09b5 R14: 0000000000000e80 R15: ffff8880176155b8
[   37.806370][    C1] FS:  0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   37.815314][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   37.821905][    C1] CR2: 00007f2d9dbe3160 CR3: 000000007281c000 CR4: 0000000000350ee0
[   37.829869][    C1] Kernel panic - not syncing: Fatal exception in interrupt
[   37.837711][    C1] Kernel Offset: disabled
[   37.842111][    C1] Rebooting in 86400 seconds..