syzbot

 sign-in | mailing list | source | docs
🐞 Open [963] 🐞 Fixed [3805] 🐞 Invalid [8174] 📈 Kernel Health 📈 Bug Lifetimes 📈 Fuzzing 📈 Crashes

WARNING in amradio_send_cmd/usb_submit_urb
Status: upstream: reported C repro on 2019/07/22 12:38
Reported-by: syzbot+485b10e300244dc0046c@syzkaller.appspotmail.com
First crash: 1041d, last: 45d

Cause bisection: failed (bisect log)

Fix bisection: the fix commit could be any of (bisect log):
  5ff2756afde0 Merge tag 'nfs-for-5.13-2' of git://git.linux-nfs.org/projects/trondmy/linux-nfs
  79160a603bdb Merge tag 'usb-5.14-rc1' of git://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb
Sample crash report:
usb 5-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=17.a9
usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
------------[ cut here ]------------
usb 5-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 169 at drivers/usb/core/urb.c:502 usb_submit_urb+0xed2/0x18a0 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 169 Comm: kworker/1:2 Not tainted 5.17.0-rc6-syzkaller-00184-g38f80f42147f #0
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0xed2/0x18a0 drivers/usb/core/urb.c:502
Code: 7c 24 18 e8 30 5a 0e fc 48 8b 7c 24 18 e8 e6 00 08 ff 41 89 d8 44 89 e1 4c 89 ea 48 89 c6 48 c7 c7 20 d7 4a 8a e8 0b 2f 9e 03 <0f> 0b e9 58 f8 ff ff e8 02 5a 0e fc 48 81 c5 48 06 00 00 e9 84 f7
RSP: 0018:ffffc900026f6ea0 EFLAGS: 00010282
RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
RDX: ffff888017dc8100 RSI: ffffffff815f12d8 RDI: fffff520004dedc6
RBP: ffff888014f6a0f0 R08: 0000000000000000 R09: 0000000000000001
R10: ffffffff815eb96e R11: 0000000000000000 R12: 0000000000000001
R13: ffff888021c74f80 R14: 0000000000000002 R15: ffff888013aae900
FS:  0000000000000000(0000) GS:ffff88802cb00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f2f9b14a6a8 CR3: 000000001fd39000 CR4: 0000000000150ee0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 usb_start_wait_urb+0x101/0x4c0 drivers/usb/core/message.c:58
 usb_bulk_msg+0x226/0x550 drivers/usb/core/message.c:387
 amradio_send_cmd+0x2d6/0x8b0 drivers/media/radio/radio-mr800.c:150
 amradio_set_mute drivers/media/radio/radio-mr800.c:182 [inline]
 usb_amradio_init drivers/media/radio/radio-mr800.c:411 [inline]
 usb_amradio_probe+0x498/0x770 drivers/media/radio/radio-mr800.c:554
 usb_probe_interface+0x315/0x7f0 drivers/usb/core/driver.c:396
 call_driver_probe drivers/base/dd.c:517 [inline]
 really_probe+0x245/0xcc0 drivers/base/dd.c:596
 __driver_probe_device+0x338/0x4d0 drivers/base/dd.c:755
 driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:785
 __device_attach_driver+0x20b/0x2f0 drivers/base/dd.c:902
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:427
 __device_attach+0x228/0x4a0 drivers/base/dd.c:973
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:487
 device_add+0xb83/0x1e20 drivers/base/core.c:3405
 usb_set_configuration+0x101e/0x1900 drivers/usb/core/message.c:2170
 usb_generic_driver_probe+0xba/0x100 drivers/usb/core/generic.c:238
 usb_probe_device+0xd9/0x2c0 drivers/usb/core/driver.c:293
 call_driver_probe drivers/base/dd.c:517 [inline]
 really_probe+0x245/0xcc0 drivers/base/dd.c:596
 __driver_probe_device+0x338/0x4d0 drivers/base/dd.c:755
 driver_probe_device+0x4c/0x1a0 drivers/base/dd.c:785
 __device_attach_driver+0x20b/0x2f0 drivers/base/dd.c:902
 bus_for_each_drv+0x15f/0x1e0 drivers/base/bus.c:427
 __device_attach+0x228/0x4a0 drivers/base/dd.c:973
 bus_probe_device+0x1e4/0x290 drivers/base/bus.c:487
 device_add+0xb83/0x1e20 drivers/base/core.c:3405
 usb_new_device.cold+0x63f/0x108e drivers/usb/core/hub.c:2566
 hub_port_connect drivers/usb/core/hub.c:5358 [inline]
 hub_port_connect_change drivers/usb/core/hub.c:5502 [inline]
 port_event drivers/usb/core/hub.c:5660 [inline]
 hub_event+0x2585/0x44d0 drivers/usb/core/hub.c:5742
 process_one_work+0x9ac/0x1650 kernel/workqueue.c:2307
 worker_thread+0x657/0x1110 kernel/workqueue.c:2454
 kthread+0x2e9/0x3a0 kernel/kthread.c:377
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:295
 </TASK>

Crashes (42):
Manager Time Kernel Commit Syzkaller Config Log Report Syz repro C repro VM info Title
ci-qemu-upstream 2022/03/04 16:27 upstream 38f80f42147f 45a13a73 .config log report syz C WARNING in amradio_send_cmd/usb_submit_urb
ci-upstream-kasan-gce-root 2021/05/29 13:07 upstream 5ff2756afde0 858ea628 .config log report syz C WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2020/05/28 21:17 https://github.com/google/kasan.git usb-fuzzer d19c64b3d097 c7192a2f .config log report syz C
ci2-upstream-usb 2020/05/13 22:35 https://github.com/google/kasan.git usb-fuzzer 059e7e0ff26c a885920d .config log report syz C
ci2-upstream-usb 2020/02/09 13:45 https://github.com/google/kasan.git usb-fuzzer e5cd56e94edd 6ece2ea5 .config log report syz C
ci2-upstream-usb 2019/11/15 22:36 https://github.com/google/kasan.git usb-fuzzer 3183c03757f8 79248ee8 .config log report syz C
ci2-upstream-usb 2019/09/02 22:40 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 14544a56 .config log report syz C
ci2-upstream-usb 2019/08/10 02:05 https://github.com/google/kasan.git usb-fuzzer e96407b49762 acb51638 .config log report syz C
ci2-upstream-usb 2019/07/19 21:26 https://github.com/google/kasan.git usb-fuzzer 6a3599ceaa39 1656845f .config log report syz C
ci-upstream-kasan-gce-smack-root 2021/06/06 00:59 upstream e5220dd16778 500c2339 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2022/04/10 09:23 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 312310928417 e22c3da3 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2022/01/16 00:04 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 455e73a07f6e 723cfaf0 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/11/08 19:47 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 048ff8629e11 d29682f1 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/10/21 08:18 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing b851f7c7b8fd f111d03b .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/08/24 15:46 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing bfa109d761a4 b599f2fc .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/07/27 04:54 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing d842bc6c0579 fd511809 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/02/06 17:49 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 8cf9045b9138 0655e081 .config log report info WARNING in amradio_send_cmd/usb_submit_urb
ci2-upstream-usb 2021/01/01 16:33 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing cb4d9b52ec06 79264ae3 .config log report info
ci2-upstream-usb 2020/12/24 12:07 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 3644e2d2dda7 c2c1d1dd .config log report info
ci2-upstream-usb 2020/12/06 04:00 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing e3541d5de544 50503117 .config log report info
ci2-upstream-usb 2020/12/05 00:59 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing e3541d5de544 20366b87 .config log report info
ci2-upstream-usb 2020/11/26 09:41 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 7656ca71b0ba 2f1cec62 .config log report info
ci2-upstream-usb 2020/10/18 09:21 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 726eb70e0d34 fea47c01 .config log report info
ci2-upstream-usb 2020/10/07 10:20 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing a4f88430af89 1880b4a9 .config log report info
ci2-upstream-usb 2020/07/29 08:55 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing fa56dd9152ef 19a8de55 .config log report
ci2-upstream-usb 2020/07/23 22:55 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9a360a7cae11 70c104a1 .config log report
ci2-upstream-usb 2020/07/23 19:50 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 9a360a7cae11 70c104a1 .config log report
ci2-upstream-usb 2020/07/19 04:00 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing 313da01ad524 9c812472 .config log report
ci2-upstream-usb 2020/06/19 19:41 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing f8f02d5c671f 123cf502 .config log report
ci2-upstream-usb 2020/06/14 20:45 https://git.kernel.org/pub/scm/linux/kernel/git/gregkh/usb.git usb-testing b791d1bdf921 2a22c77a .config log report
ci2-upstream-usb 2020/05/28 05:10 https://github.com/google/kasan.git usb-fuzzer d19c64b3d097 9072c126 .config log report
ci2-upstream-usb 2020/05/23 18:52 https://github.com/google/kasan.git usb-fuzzer 806d8acc2890 4afdfa20 .config log report
ci2-upstream-usb 2020/05/23 15:27 https://github.com/google/kasan.git usb-fuzzer 806d8acc2890 4afdfa20 .config log report
ci2-upstream-usb 2020/05/19 08:18 https://github.com/google/kasan.git usb-fuzzer 806d8acc2890 684d3606 .config log report
ci2-upstream-usb 2020/03/18 02:20 https://github.com/google/kasan.git usb-fuzzer d6ff8147a51c 97bc55ce .config log report
ci2-upstream-usb 2020/02/21 10:58 https://github.com/google/kasan.git usb-fuzzer 7f0cd6c7c423 bd2a74a3 .config log report
ci2-upstream-usb 2019/11/12 20:47 https://github.com/google/kasan.git usb-fuzzer 3183c03757f8 048f2d49 .config log report
ci2-upstream-usb 2019/10/03 16:42 https://github.com/google/kasan.git usb-fuzzer 58d5f26a5584 fc17ba49 .config log report
ci2-upstream-usb 2019/09/01 22:19 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 bad3cce2 .config log report
ci2-upstream-usb 2019/08/24 08:37 https://github.com/google/kasan.git usb-fuzzer eea39f24f4a5 78ded196 .config log report
ci2-upstream-usb 2019/07/20 16:04 https://github.com/google/kasan.git usb-fuzzer 6a3599ceaa39 1656845f .config log report
ci2-upstream-usb 2019/07/19 20:57 https://github.com/google/kasan.git usb-fuzzer 6a3599ceaa39 1656845f .config log report