syzbot

 sign-in | mailing list | source | docs
🐞 Open [974] Subsystems 🐞 Fixed [5216] 🐞 Invalid [12471] Missing Backports [82] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes 💬 Send us feedback

WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb

Status: upstream: reported C repro on 2021/03/05 14:16
Subsystems: usb wireless
[Documentation on labels]
Reported-by: syzbot+0ae4804973be759fa420@syzkaller.appspotmail.com
First crash: 1144d, last: 15d
Cause bisection: failed (error log, bisect log)
  
Fix bisection the fix commit could be any of (bisect log):
  84b3e42564ac Merge tag 'media/v5.15-3' of git://git.kernel.org/pub/scm/linux/kernel/git/mchehab/linux-media
  7ddb58cb0eca Merge tag 'clk-for-linus' of git://git.kernel.org/pub/scm/linux/kernel/git/clk/linux
   
Discussions (3)
Title Replies (including bot) Last reply
[PATCH] wifi: carl9170: add a proper sanity check for endpoints 1 (1) 2024/04/07 13:11
Re: [syzbot] WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb 1 (2) 2024/04/06 13:55
[syzbot] WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb 1 (3) 2024/04/04 01:04
Last patch testing requests (12)
Created Duration User Patch Repo Result
2024/04/05 11:04 22m n.zhandarovich@fintech.ru patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git fe46a7dd189e OK log
2024/04/03 14:47 23m n.zhandarovich@fintech.ru patch https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git master error OK
2024/04/03 07:26 14m retest repro upstream report log
2024/03/19 05:10 17m retest repro upstream report log
2024/03/06 20:31 23m retest repro linux-next error OK
2024/03/06 19:21 21m retest repro upstream report log
2024/03/06 19:21 15m retest repro upstream report log
2024/02/21 17:40 9m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing report log
2024/02/21 17:40 1h17m retest repro https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing report log
2024/02/07 15:43 14m retest repro upstream report log
2024/02/07 15:23 15m retest repro upstream report log
2024/02/07 12:44 15m retest repro linux-next report log

Sample crash report:
usb 1-1: driver   API: 1.9.9 2016-02-15 [1-1]
usb 1-1: firmware API: 1.9.6 2012-07-07
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 0 PID: 4721 at drivers/usb/core/urb.c:504 usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504
Modules linked in:
CPU: 0 PID: 4721 Comm: kworker/0:3 Not tainted 6.2.0-rc2-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
Workqueue: events request_firmware_work_func
RIP: 0010:usb_submit_urb+0xed6/0x1880 drivers/usb/core/urb.c:504
Code: 7c 24 18 e8 6c 5b 80 fb 48 8b 7c 24 18 e8 f2 2d 01 ff 41 89 d8 44 89 e1 4c 89 ea 48 89 c6 48 c7 c7 40 86 fa 8a e8 2f 84 be 03 <0f> 0b e9 58 f8 ff ff e8 3e 5b 80 fb 48 81 c5 c0 05 00 00 e9 84 f7
RSP: 0018:ffffc90003357ba0 EFLAGS: 00010282
RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
RDX: ffff88807345a080 RSI: ffffffff8165927c RDI: fffff5200066af66
RBP: ffff888020fe4140 R08: 0000000000000005 R09: 0000000000000000
R10: 0000000080000000 R11: 0000000000000000 R12: 0000000000000001
R13: ffff88802996b1c0 R14: 0000000000000002 R15: ffff8880135bf300
FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000557068778028 CR3: 000000000c48e000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 carl9170_usb_send_rx_irq_urb+0x273/0x340 drivers/net/wireless/ath/carl9170/usb.c:504
 carl9170_usb_init_device drivers/net/wireless/ath/carl9170/usb.c:939 [inline]
 carl9170_usb_firmware_finish drivers/net/wireless/ath/carl9170/usb.c:999 [inline]
 carl9170_usb_firmware_step2+0x175/0x240 drivers/net/wireless/ath/carl9170/usb.c:1028
 request_firmware_work_func+0x130/0x240 drivers/base/firmware_loader/main.c:1107
 process_one_work+0x9bf/0x1710 kernel/workqueue.c:2289
 worker_thread+0x669/0x1090 kernel/workqueue.c:2436
 kthread+0x2e8/0x3a0 kernel/kthread.c:376
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:308
 </TASK>

Crashes (18):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2023/01/03 02:54 upstream 88603b6dc419 ab32d508 .config strace log report syz C [disk image] [vmlinux] [kernel image] ci-upstream-kasan-gce-selinux-root WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2022/09/14 05:30 upstream d1221cea11fc b884348d .config strace log report syz C [disk image] [vmlinux] ci-upstream-kasan-gce-root WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2022/09/14 02:19 upstream d1221cea11fc b884348d .config strace log report syz C ci-upstream-kasan-gce WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/10/05 04:53 upstream 84b3e42564ac ce697b49 .config console log report syz C ci-upstream-kasan-gce-root WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2024/01/10 07:04 upstream 35f11a3710cd b438bd66 .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2023/07/21 22:27 upstream f7e3a1bafdea e2c3b400 .config console log report syz C [disk image (non-bootable)] [vmlinux] [kernel image] ci-qemu-upstream WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2022/10/20 17:12 linux-next acee3e83b493 b31320fc .config strace log report syz C [disk image] [vmlinux] ci-upstream-linux-next-kasan-gce-root WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2022/09/14 00:07 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 7eb2bf871454 b884348d .config console log report syz C ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/12/23 17:06 linux-next 79f063d60c8c 6caa12e4 .config console log report syz C ci-upstream-linux-next-kasan-gce-root WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/03/01 14:37 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing fe07bfda2fb9 4c37c133 .config console log report syz C ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2023/03/02 13:11 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 489fa31ea873 f8902b57 .config console log report info [disk image] [vmlinux] [kernel image] ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2022/09/13 23:37 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 7eb2bf871454 b884348d .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/12/07 23:15 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing d598c3c46ea6 0230ba3e .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/12/05 16:28 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9899aa5ba525 a617004c .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/11/22 18:11 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 4616dddcfaf7 545ab074 .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/11/17 08:47 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 8ab774587903 cafff8b6 .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/03/10 10:42 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 60a35ba9141f 26967e35 .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
2021/03/01 14:07 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing fe07bfda2fb9 4c37c133 .config console log report info ci2-upstream-usb WARNING in carl9170_usb_send_rx_irq_urb/usb_submit_urb
* Struck through repros no longer work on HEAD.