syzbot

 sign-in | mailing list | source | docs
🐞 Open [681]
🐞 Fixed [69]
🐞 Invalid [841]
Missing Backports [102]
Crashes
Kernel Health Bugs/Month Bug Lifetimes Fuzzing
💬 Send us feedback

WARNING in amradio_set_mute/usb_submit_urb

Status: upstream: reported C repro on 2023/05/14 10:18
Bug presence: origin:upstream
[Documentation on labels]
Reported-by: syzbot+b3459a4baae267c6671b@syzkaller.appspotmail.com
First crash: 708d, last: 38d
Fix bisection: failed (error log, bisect log)
  
Bug presence (1)
Date Name Commit Repro Result
2023/05/15 upstream (ToT) f1fcbaa18b28 C [report] WARNING in amradio_set_mute/usb_submit_urb
Similar bugs (2)
Kernel Title Repro Cause bisect Fix bisect Count Last Reported Patched Status
upstream WARNING in amradio_set_mute/usb_submit_urb usb C 3 79d 710d 0/28 upstream: reported C repro on 2023/05/12 02:38
linux-6.1 WARNING in amradio_set_mute/usb_submit_urb origin:upstream C error 3 86d 714d 0/3 upstream: reported C repro on 2023/05/08 04:01
Last patch testing requests (4)
Created Duration User Patch Repo Result
2025/03/14 14:33 12m retest repro linux-5.15.y report log
2025/02/22 13:05 1h04m retest repro linux-5.15.y report log
2024/12/14 12:22 14m retest repro linux-5.15.y report log
2024/10/04 17:59 1h32m retest repro linux-5.15.y report log

Sample crash report:
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Not tainted 5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000c0bff800 x25: ffff0000c20cc000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0fc1e00 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 worker_thread+0x910/0x1034 kernel/workqueue.c:2457
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 26410
hardirqs last  enabled at (26409): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (26410): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (24686): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (24686): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (24681): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (24681): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (24681): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (24681): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd4871e ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 2
usb 1-1: new high-speed USB device number 3 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000d2000500 x25: ffff0000dd206000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0870e00 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 33016
hardirqs last  enabled at (33015): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (33016): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (31676): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (31676): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (31671): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (31671): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (31671): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (31671): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd4871f ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 3
usb 1-1: new high-speed USB device number 4 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000cdf0ab00 x25: ffff0000cbfd7000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0fe1600 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 38916
hardirqs last  enabled at (38915): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (38916): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (37106): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (37106): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (37097): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (37097): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (37097): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (37097): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd48720 ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 4
usb 1-1: new high-speed USB device number 5 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000c8fae700 x25: ffff0000cce48000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0fda600 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 44706
hardirqs last  enabled at (44705): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (44706): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (43468): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (43468): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (43459): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (43459): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (43459): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (43459): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd48721 ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 5
usb 1-1: new high-speed USB device number 6 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000c27a7e00 x25: ffff0000cbae9000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c140ec00 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 51444
hardirqs last  enabled at (51443): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (51444): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (49990): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (49990): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (49979): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (49979): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (49979): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (49979): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd48722 ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 6
usb 1-1: new high-speed USB device number 7 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000cd767500 x25: ffff0000cd4ca000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0fee200 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 57708
hardirqs last  enabled at (57707): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (57708): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (55188): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (55188): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (55183): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (55183): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (55183): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (55183): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd48723 ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 7
usb 1-1: new high-speed USB device number 8 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x5 has invalid maxpacket 1024, setting to 64
usb 1-1: config 6 interface 97 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 8
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0xA has invalid maxpacket 1527, setting to 64
usb 1-1: config 6 interface 97 has no altsetting 0
usb 1-1: config 6 interface 114 has no altsetting 0
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=10.4c
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
usb 1-1: Product: syz
usb 1-1: Manufacturer: syz
usb 1-1: SerialNumber: syz
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 3606 at drivers/usb/core/urb.c:503 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 3606 Comm: kworker/1:3 Tainted: G        W         5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: usb_hub_wq hub_event
pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
lr : usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
sp : ffff8000229a6800
x29: ffff8000229a6840 x28: 0000000000000001 x27: ffff800012d51948
x26: ffff0000d60bd800 x25: ffff0000cdffb000 x24: 0000000000000008
x23: ffff800012d58200 x22: dfff800000000000 x21: 0000000000000002
x20: 0000000000000c00 x19: ffff0000c0fe4000 x18: 0000000000000001
x17: 0000000000000000 x16: ffff800011b4e3fc x15: 00000000ffffffff
x14: ffff0000d44e0000 x13: 0000000000000001 x12: 0000000000000001
x11: 0000000000000000 x10: 0000000000000000 x9 : a103b20429c22100
x8 : a103b20429c22100 x7 : 0000000000000001 x6 : 0000000000000001
x5 : ffff8000229a5f78 x4 : ffff800014c50660 x3 : ffff8000085568c0
x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000029
Call trace:
 usb_submit_urb+0xa44/0x1588 drivers/usb/core/urb.c:502
 usb_start_wait_urb+0xec/0x414 drivers/usb/core/message.c:58
 usb_bulk_msg+0x2ec/0x3ec drivers/usb/core/message.c:387
 amradio_send_cmd drivers/media/radio/radio-mr800.c:150 [inline]
 amradio_set_mute+0x1d4/0x428 drivers/media/radio/radio-mr800.c:182
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x388/0x6f8 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x500/0x984 drivers/usb/core/driver.c:396
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_set_configuration+0x15e0/0x1b60 drivers/usb/core/message.c:2165
 usb_generic_driver_probe+0x8c/0x148 drivers/usb/core/generic.c:238
 usb_probe_device+0x120/0x25c drivers/usb/core/driver.c:293
 really_probe+0x26c/0xaec drivers/base/dd.c:595
 __driver_probe_device+0x194/0x3b4 drivers/base/dd.c:755
 driver_probe_device+0x78/0x34c drivers/base/dd.c:785
 __device_attach_driver+0x28c/0x4d8 drivers/base/dd.c:907
 bus_for_each_drv+0x158/0x1e0 drivers/base/bus.c:429
 __device_attach+0x2f0/0x480 drivers/base/dd.c:979
 device_initial_probe+0x24/0x34 drivers/base/dd.c:1028
 bus_probe_device+0xbc/0x1c8 drivers/base/bus.c:489
 device_add+0xae0/0xef4 drivers/base/core.c:3412
 usb_new_device+0x900/0x1468 drivers/usb/core/hub.c:2593
 hub_port_connect drivers/usb/core/hub.c:5457 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5597 [inline]
 port_event drivers/usb/core/hub.c:5743 [inline]
 hub_event+0x236c/0x46b8 drivers/usb/core/hub.c:5825
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 process_scheduled_works kernel/workqueue.c:2373 [inline]
 worker_thread+0xb88/0x1034 kernel/workqueue.c:2459
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
irq event stamp: 63460
hardirqs last  enabled at (63459): [<ffff80000832c1b4>] __up_console_sem+0xb4/0x100 kernel/printk/printk.c:257
hardirqs last disabled at (63460): [<ffff800011b49ab0>] el1_dbg+0x24/0x80 arch/arm64/kernel/entry-common.c:396
softirqs last  enabled at (62422): [<ffff8000081b6920>] softirq_handle_end kernel/softirq.c:401 [inline]
softirqs last  enabled at (62422): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc kernel/softirq.c:586
softirqs last disabled at (62413): [<ffff8000081b6fb8>] __do_softirq kernel/softirq.c:592 [inline]
softirqs last disabled at (62413): [<ffff8000081b6fb8>] do_softirq_own_stack include/asm-generic/softirq_stack.h:10 [inline]
softirqs last disabled at (62413): [<ffff8000081b6fb8>] invoke_softirq kernel/softirq.c:439 [inline]
softirqs last disabled at (62413): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8 kernel/softirq.c:641
---[ end trace 847d1fa17fd48724 ]---
 (null): radio-mr800 - initialization failed
radio-mr800: probe of 1-1:6.97 failed with error -71
usbhid 1-1:6.97: couldn't find an input interrupt endpoint
usb 1-1: USB disconnect, device number 8
usb 1-1: new high-speed USB device number 9 using dummy_hcd
usb 1-1: unable to get BOS descriptor or descriptor too short
usb 1-1: config 6 has an invalid interface number: 97 but max is 1
usb 1-1: config 6 has an invalid interface number: 114 but max is 1
usb 1-1: config 6 has no interface number 0
usb 1-1: config 6 has no interface number 1
usb 1-1: config 6 interface 97 altsetting 1 endpoint 0x6 has an invalid bInterval 17, changing to 8

Crashes (2):
Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Assets (help?) Manager Title
2025/02/28 08:29 linux-5.15.y c16c81c81336 6a8fcbc4 .config console log report syz / log C [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 WARNING in amradio_set_mute/usb_submit_urb
2023/05/14 10:17 linux-5.15.y b0ece631f84a 2b9ba477 .config console log report syz C [disk image] [vmlinux] [kernel image] ci2-linux-5-15-kasan-arm64 WARNING in amradio_set_mute/usb_submit_urb
* Struck through repros no longer work on HEAD.