WARNING in amradio_send_cmd/usb_submit

WARNING in amradio_send_cmd/usb_submit_urb
Status: upstream: reported C repro on 2019/07/22 12:38
Reported-by: syzbot+485b10e300244dc0046c@syzkaller.appspotmail.com
First crash: 698d, last: 11d

Cause bisection: failed (bisect log)

Sample crash report:

usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=a0.ff
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 2951 at drivers/usb/core/urb.c:493 usb_submit_urb+0xd27/0x1540 drivers/usb/core/urb.c:493
Modules linked in:
CPU: 1 PID: 2951 Comm: kworker/1:2 Not tainted 5.13.0-rc3-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0xd27/0x1540 drivers/usb/core/urb.c:493
Code: 84 d4 02 00 00 e8 69 36 29 fc 4c 89 ef e8 b1 4d 0e ff 41 89 d8 44 89 e1 4c 89 f2 48 89 c6 48 c7 c7 20 95 06 8a e8 8c 59 89 03 <0f> 0b e9 81 f8 ff ff e8 3d 36 29 fc 48 81 c5 40 06 00 00 e9 ad f7
RSP: 0018:ffffc900020f6f00 EFLAGS: 00010282
RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
RDX: ffff88801f160000 RSI: ffffffff815ce355 RDI: fffff5200041edd2
RBP: ffff88801d9d38f0 R08: 0000000000000000 R09: 0000000000000000
R10: ffffffff815c81be R11: 0000000000000000 R12: 0000000000000001
R13: ffff8880280f70a8 R14: ffff8880193cae60 R15: ffff888021d6e200
FS:  0000000000000000(0000) GS:ffff8880b9d00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007ff2d5c6c000 CR3: 000000002d0a8000 CR4: 0000000000350ee0
Call Trace:
 usb_start_wait_urb+0x101/0x4c0 drivers/usb/core/message.c:58
 usb_bulk_msg+0x226/0x550 drivers/usb/core/message.c:387
 amradio_send_cmd+0x2d6/0x8b0 drivers/media/radio/radio-mr800.c:150

Crashes (35):
Manager	Time	Kernel	Commit	Syzkaller	Config	Log	Report	Syz repro	C repro	VM info	Title
ci-upstream-kasan-gce-root	2021/05/29 13:07	upstream	5ff2756a	858ea628	.config	log	report	syz	C		WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb	2020/05/28 21:17	https://github.com/google/kasan.git usb-fuzzer	d19c64b3	c7192a2f	.config	log	report	syz	C
ci2-upstream-usb	2020/05/13 22:35	https://github.com/google/kasan.git usb-fuzzer	059e7e0f	a885920d	.config	log	report	syz	C
ci2-upstream-usb	2020/02/09 13:45	https://github.com/google/kasan.git usb-fuzzer	e5cd56e9	6ece2ea5	.config	log	report	syz	C
ci2-upstream-usb	2019/11/15 22:36	https://github.com/google/kasan.git usb-fuzzer	3183c037	79248ee8	.config	log	report	syz	C
ci2-upstream-usb	2019/09/02 22:40	https://github.com/google/kasan.git usb-fuzzer	eea39f24	14544a56	.config	log	report	syz	C
ci2-upstream-usb	2019/08/10 02:05	https://github.com/google/kasan.git usb-fuzzer	e96407b4	acb51638	.config	log	report	syz	C
ci2-upstream-usb	2019/07/19 21:26	https://github.com/google/kasan.git usb-fuzzer	6a3599ce	1656845f	.config	log	report	syz	C
ci-upstream-kasan-gce-smack-root	2021/06/06 00:59	upstream	e5220dd1	500c2339	.config	log	report			info	WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb	2021/02/06 17:49	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	8cf9045b	0655e081	.config	log	report			info	WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb	2021/01/01 16:33	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	cb4d9b52	79264ae3	.config	log	report			info
ci2-upstream-usb	2020/12/24 12:07	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	3644e2d2	c2c1d1dd	.config	log	report			info
ci2-upstream-usb	2020/12/06 04:00	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	e3541d5d	50503117	.config	log	report			info
ci2-upstream-usb	2020/12/05 00:59	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	e3541d5d	20366b87	.config	log	report			info
ci2-upstream-usb	2020/11/26 09:41	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	7656ca71	2f1cec62	.config	log	report			info
ci2-upstream-usb	2020/10/18 09:21	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	726eb70e	fea47c01	.config	log	report			info
ci2-upstream-usb	2020/10/07 10:20	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	a4f88430	1880b4a9	.config	log	report			info
ci2-upstream-usb	2020/07/29 08:55	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	fa56dd91	19a8de55	.config	log	report
ci2-upstream-usb	2020/07/23 22:55	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	9a360a7c	70c104a1	.config	log	report
ci2-upstream-usb	2020/07/23 19:50	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	9a360a7c	70c104a1	.config	log	report
ci2-upstream-usb	2020/07/19 04:00	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	313da01a	9c812472	.config	log	report
ci2-upstream-usb	2020/06/19 19:41	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	f8f02d5c	123cf502	.config	log	report
ci2-upstream-usb	2020/06/14 20:45	https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing	b791d1bd	2a22c77a	.config	log	report
ci2-upstream-usb	2020/05/28 05:10	https://github.com/google/kasan.git usb-fuzzer	d19c64b3	9072c126	.config	log	report
ci2-upstream-usb	2020/05/23 18:52	https://github.com/google/kasan.git usb-fuzzer	806d8acc	4afdfa20	.config	log	report
ci2-upstream-usb	2020/05/23 15:27	https://github.com/google/kasan.git usb-fuzzer	806d8acc	4afdfa20	.config	log	report
ci2-upstream-usb	2020/05/19 08:18	https://github.com/google/kasan.git usb-fuzzer	806d8acc	684d3606	.config	log	report
ci2-upstream-usb	2020/03/18 02:20	https://github.com/google/kasan.git usb-fuzzer	d6ff8147	97bc55ce	.config	log	report
ci2-upstream-usb	2020/02/21 10:58	https://github.com/google/kasan.git usb-fuzzer	7f0cd6c7	bd2a74a3	.config	log	report
ci2-upstream-usb	2019/11/12 20:47	https://github.com/google/kasan.git usb-fuzzer	3183c037	048f2d49	.config	log	report
ci2-upstream-usb	2019/10/03 16:42	https://github.com/google/kasan.git usb-fuzzer	58d5f26a	fc17ba49	.config	log	report
ci2-upstream-usb	2019/09/01 22:19	https://github.com/google/kasan.git usb-fuzzer	eea39f24	bad3cce2	.config	log	report
ci2-upstream-usb	2019/08/24 08:37	https://github.com/google/kasan.git usb-fuzzer	eea39f24	78ded196	.config	log	report
ci2-upstream-usb	2019/07/20 16:04	https://github.com/google/kasan.git usb-fuzzer	6a3599ce	1656845f	.config	log	report
ci2-upstream-usb	2019/07/19 20:57	https://github.com/google/kasan.git usb-fuzzer	6a3599ce	1656845f	.config	log	report