syzbot

------------[ cut here ]------------
usb 2-1: BOGUS control dir, pipe 80004d80 doesn't match bRequestType 2
WARNING: CPU: 0 PID: 899 at drivers/usb/core/urb.c:410 usb_submit_urb+0x149d/0x18a0 drivers/usb/core/urb.c:410
Modules linked in:
CPU: 0 PID: 899 Comm: kworker/0:8 Not tainted 5.13.0-rc7-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0x149d/0x18a0 drivers/usb/core/urb.c:410
Code: 7c 24 40 e8 d5 e2 b2 fd 48 8b 7c 24 40 e8 5b 8e 1b ff 45 89 e8 44 89 f1 4c 89 e2 48 89 c6 48 c7 c7 40 14 63 86 e8 12 28 fc 01 <0f> 0b e9 a5 ee ff ff e8 a7 e2 b2 fd 0f b6 1d ec 79 34 05 31 ff 41
RSP: 0018:ffffc9001251eec0 EFLAGS: 00010286
RAX: 0000000000000000 RBX: ffff88814b199058 RCX: 0000000000000000
RDX: 0000000000040000 RSI: ffffffff812a6723 RDI: fffff520024a3dca
RBP: ffff888109ad3988 R08: 0000000000000001 R09: 0000000000000000
R10: ffffffff814b9d6b R11: 0000000000000000 R12: ffff888142df65a0
R13: 0000000000000002 R14: 0000000080004d80 R15: ffff888108f63600
FS:  0000000000000000(0000) GS:ffff8881f6800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ffe3ffdb427 CR3: 0000000007825000 CR4: 00000000001506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 usb_start_wait_urb+0x101/0x4c0 drivers/usb/core/message.c:58
 usb_internal_control_msg drivers/usb/core/message.c:102 [inline]
 usb_control_msg+0x31c/0x4a0 drivers/usb/core/message.c:153
 e2i_init+0xb3/0x150 drivers/input/touchscreen/usbtouchscreen.c:254
 usbtouch_probe+0xfc9/0x1c40 drivers/input/touchscreen/usbtouchscreen.c:1771
 usb_probe_interface+0x315/0x7f0 drivers/usb/core/driver.c:396
 really_probe+0x291/0xf70 drivers/base/dd.c:576
 driver_probe_device+0x2a0/0x410 drivers/base/dd.c:763
 __device_attach_driver+0x20b/0x2d0 drivers/base/dd.c:870
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:431
 __device_attach+0x228/0x4b0 drivers/base/dd.c:938
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:491
 device_add+0xc2f/0x2180 drivers/base/core.c:3352
 usb_set_configuration+0x113f/0x1910 drivers/usb/core/message.c:2170
 usb_generic_driver_probe+0xba/0x100 drivers/usb/core/generic.c:238
 usb_probe_device+0xd9/0x2c0 drivers/usb/core/driver.c:293
 really_probe+0x291/0xf70 drivers/base/dd.c:576
 driver_probe_device+0x2a0/0x410 drivers/base/dd.c:763
 __device_attach_driver+0x20b/0x2d0 drivers/base/dd.c:870
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:431
 __device_attach+0x228/0x4b0 drivers/base/dd.c:938
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:491
 device_add+0xc2f/0x2180 drivers/base/core.c:3352
 usb_new_device.cold+0x63f/0x108e drivers/usb/core/hub.c:2559
 hub_port_connect drivers/usb/core/hub.c:5300 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5440 [inline]
 port_event drivers/usb/core/hub.c:5586 [inline]
 hub_event+0x2357/0x4330 drivers/usb/core/hub.c:5668
 process_one_work+0x98d/0x1580 kernel/workqueue.c:2276
 worker_thread+0x64c/0x1120 kernel/workqueue.c:2422
 kthread+0x38c/0x460 kernel/kthread.c:313
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:294