Warning: Permanently added '10.128.1.138' (ED25519) to the list of known hosts. executing program [ 37.119461][ T164] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 37.299431][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 37.303296][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 37.307358][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 37.309549][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 37.311373][ T164] usb 1-1: Product: syz [ 37.312291][ T164] usb 1-1: Manufacturer: syz [ 37.313355][ T164] usb 1-1: SerialNumber: syz [ 37.322912][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input2 [ 37.720820][ T4293] ------------[ cut here ]------------ [ 37.722231][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 37.723930][ T4293] WARNING: CPU: 0 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 37.726015][ T4293] Modules linked in: [ 37.726839][ T4293] CPU: 0 PID: 4293 Comm: udevd Not tainted 6.1.128-syzkaller #0 [ 37.728545][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.730744][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.732468][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 37.733665][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 37.734824][ T4293] sp : ffff8000210f7390 [ 37.735907][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 37.737788][ T4293] x26: ffff0000cb97ec00 x25: ffff0000ddc1f000 x24: 0000000000000286 [ 37.739871][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 37.741974][ T4293] x20: 0000000000000cc0 x19: ffff0000c087f000 x18: ffff8000210f6780 [ 37.743988][ T4293] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 [ 37.746055][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 37.748141][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 37.750095][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 37.752156][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008586abc [ 37.754289][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 37.756362][ T4293] Call trace: [ 37.757131][ T4293] usb_submit_urb+0xa44/0x1588 [ 37.758363][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 37.759652][ T4293] bcm5974_open+0x98/0x134 [ 37.760844][ T4293] input_open_device+0x170/0x29c [ 37.762075][ T4293] evdev_open+0x308/0x4b4 [ 37.763135][ T4293] chrdev_open+0x3e8/0x4fc [ 37.764205][ T4293] do_dentry_open+0x734/0xfa0 [ 37.765387][ T4293] vfs_open+0x7c/0x90 [ 37.766438][ T4293] path_openat+0x1e14/0x2548 [ 37.767547][ T4293] do_filp_open+0x1bc/0x3cc [ 37.768642][ T4293] do_sys_openat2+0x128/0x3e0 [ 37.769752][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 37.770941][ T4293] invoke_syscall+0x98/0x2bc [ 37.771992][ T4293] el0_svc_common+0x138/0x258 [ 37.773025][ T4293] do_el0_svc+0x58/0x13c [ 37.773941][ T4293] el0_svc+0x58/0x168 [ 37.774856][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 37.776046][ T4293] el0t_64_sync+0x18c/0x190 [ 37.777036][ T4293] irq event stamp: 5244 [ 37.778002][ T4293] hardirqs last enabled at (5243): [] __up_console_sem+0xb4/0x100 [ 37.780288][ T4293] hardirqs last disabled at (5244): [] el1_dbg+0x24/0x80 [ 37.782244][ T4293] softirqs last enabled at (5142): [] handle_softirqs+0xb84/0xd58 [ 37.784488][ T4293] softirqs last disabled at (5133): [] __do_softirq+0x14/0x20 [ 37.786657][ T4293] ---[ end trace 0000000000000000 ]--- [ 37.789209][ C0] ------------[ cut here ]------------ [ 37.790541][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 37.792528][ C0] WARNING: CPU: 0 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 37.794993][ C0] Modules linked in: [ 37.796001][ C0] CPU: 0 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 37.798249][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.800814][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.802770][ C0] pc : usb_submit_urb+0xa44/0x1588 [ 37.804044][ C0] lr : usb_submit_urb+0xa44/0x1588 [ 37.805505][ C0] sp : ffff8000080077a0 [ 37.806531][ C0] x29: ffff8000080077e0 x28: 0000000000000001 x27: ffff800013788c28 [ 37.808580][ C0] x26: ffff0000cb97ec00 x25: ffff0000ddc1f000 x24: 0000000000000286 [ 37.810555][ C0] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 37.812439][ C0] x20: 0000000000000a20 x19: ffff0000c087f000 x18: ffff0000d1990448 [ 37.814415][ C0] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 [ 37.816200][ C0] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 37.818040][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 37.819818][ C0] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 37.821666][ C0] x5 : ffff800008007098 x4 : ffff800015b731c0 x3 : ffff80000ab33fec [ 37.823400][ C0] x2 : ffff0001b3cdfcd0 x1 : 0000000100000100 x0 : 0000000000000000 [ 37.825208][ C0] Call trace: [ 37.825935][ C0] usb_submit_urb+0xa44/0x1588 [ 37.827112][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 37.828261][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 37.829463][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 37.830641][ C0] dummy_timer+0x6a4/0x2770 [ 37.831594][ C0] __hrtimer_run_queues+0x4b0/0xdc0 [ 37.832768][ C0] hrtimer_run_softirq+0x158/0x21c [ 37.833948][ C0] handle_softirqs+0x318/0xd58 [ 37.834979][ C0] __do_softirq+0x14/0x20 [ 37.835977][ C0] ____do_softirq+0x14/0x20 [ 37.836978][ C0] call_on_irq_stack+0x24/0x4c [ 37.838072][ C0] do_softirq_own_stack+0x20/0x2c [ 37.839154][ C0] __irq_exit_rcu+0x264/0x4d4 [ 37.840181][ C0] irq_exit_rcu+0x14/0x84 [ 37.841138][ C0] el1_interrupt+0x38/0x68 [ 37.842191][ C0] el1h_64_irq_handler+0x18/0x24 [ 37.843323][ C0] el1h_64_irq+0x64/0x68 [ 37.844283][ C0] lock_acquire+0x2ac/0x7cc [ 37.845326][ C0] __might_fault+0xc4/0x124 [ 37.846359][ C0] evdev_ioctl_handler+0x22a0/0x2d60 [ 37.847519][ C0] evdev_ioctl+0x38/0x4c [ 37.848538][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 37.849688][ C0] invoke_syscall+0x98/0x2bc [ 37.850772][ C0] el0_svc_common+0x138/0x258 [ 37.851963][ C0] do_el0_svc+0x58/0x13c [ 37.853058][ C0] el0_svc+0x58/0x168 [ 37.854038][ C0] el0t_64_sync_handler+0x84/0xf0 [ 37.855306][ C0] el0t_64_sync+0x18c/0x190 [ 37.856344][ C0] irq event stamp: 5301 [ 37.857304][ C0] hardirqs last enabled at (5300): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 37.859677][ C0] hardirqs last disabled at (5301): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 37.862112][ C0] softirqs last enabled at (5278): [] local_bh_enable+0x10/0x34 [ 37.864525][ C0] softirqs last disabled at (5297): [] __do_softirq+0x14/0x20 [ 37.866894][ C0] ---[ end trace 0000000000000000 ]--- [ 37.868478][ C0] ------------[ cut here ]------------ [ 37.869885][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 37.871778][ C0] WARNING: CPU: 0 PID: 15 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 37.874233][ C0] Modules linked in: [ 37.875190][ C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.1.128-syzkaller #0 [ 37.877570][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.879924][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.881836][ C0] pc : usb_submit_urb+0xa44/0x1588 [ 37.883177][ C0] lr : usb_submit_urb+0xa44/0x1588 [ 37.884537][ C0] sp : ffff80001d247560 [ 37.885539][ C0] x29: ffff80001d2475a0 x28: 0000000000000001 x27: ffff800013788c28 [ 37.887463][ C0] x26: ffff0000cb97ec00 x25: ffff0000ddc1f000 x24: 0000000000000286 [ 37.889476][ C0] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 37.891541][ C0] x20: 0000000000000a20 x19: ffff0000c087f000 x18: ffff0000d1990448 [ 37.893696][ C0] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 37.895764][ C0] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 37.897838][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : e6a9d27987a7cb00 [ 37.899862][ C0] x8 : e6a9d27987a7cb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 37.901904][ C0] x5 : ffff80001d246e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 37.904056][ C0] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 37.906079][ C0] Call trace: [ 37.906811][ C0] usb_submit_urb+0xa44/0x1588 [ 37.907898][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 37.909306][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 37.910651][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 37.911945][ C0] dummy_timer+0x6a4/0x2770 [ 37.912990][ C0] __hrtimer_run_queues+0x4b0/0xdc0 [ 37.914142][ C0] hrtimer_run_softirq+0x158/0x21c [ 37.915331][ C0] handle_softirqs+0x318/0xd58 [ 37.916494][ C0] run_ksoftirqd+0x6c/0x29c [ 37.917619][ C0] smpboot_thread_fn+0x4b0/0x96c [ 37.918774][ C0] kthread+0x250/0x2d8 [ 37.919720][ C0] ret_from_fork+0x10/0x20 [ 37.920730][ C0] irq event stamp: 270815 [ 37.921724][ C0] hardirqs last enabled at (270814): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 37.924125][ C0] hardirqs last disabled at (270815): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 37.926513][ C0] softirqs last enabled at (270796): [] handle_softirqs+0xb84/0xd58 [ 37.928712][ C0] softirqs last disabled at (270803): [] run_ksoftirqd+0x6c/0x29c [ 37.930873][ C0] ---[ end trace 0000000000000000 ]--- [ 37.932388][ C0] ------------[ cut here ]------------ [ 37.933596][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 37.935271][ T3765] usb 1-1: USB disconnect, device number 2 [ 37.935364][ C0] WARNING: CPU: 0 PID: 15 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 37.938587][ C0] Modules linked in: [ 37.939458][ C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Tainted: G W 6.1.128-syzkaller #0 [ 37.941542][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 37.943837][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 37.945603][ C0] pc : usb_submit_urb+0xa44/0x1588 [ 37.946744][ C0] lr : usb_submit_urb+0xa44/0x1588 [ 37.947907][ C0] sp : ffff80001d247560 [ 37.948801][ C0] x29: ffff80001d2475a0 x28: 0000000000000001 x27: ffff800013788c28 [ 37.950617][ C0] x26: ffff0000cb97ec00 x25: ffff0000ddc1f000 x24: 0000000000000286 [ 37.952493][ C0] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 37.954323][ C0] x20: 0000000000000a20 x19: ffff0000c087f000 x18: ffff80001d2472c0 [ 37.956114][ C0] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 37.957910][ C0] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 37.959744][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : e6a9d27987a7cb00 [ 37.961617][ C0] x8 : e6a9d27987a7cb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 37.963453][ C0] x5 : ffff80001d246e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 37.965297][ C0] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 37.967102][ C0] Call trace: [ 37.967863][ C0] usb_submit_urb+0xa44/0x1588 [ 37.968935][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 37.970140][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 37.971471][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 37.972656][ C0] dummy_timer+0x6a4/0x2770 [ 37.973724][ C0] __hrtimer_run_queues+0x4b0/0xdc0 [ 37.974948][ C0] hrtimer_run_softirq+0x158/0x21c [ 37.976168][ C0] handle_softirqs+0x318/0xd58 [ 37.977374][ C0] run_ksoftirqd+0x6c/0x29c [ 37.978481][ C0] smpboot_thread_fn+0x4b0/0x96c [ 37.979691][ C0] kthread+0x250/0x2d8 [ 37.980691][ C0] ret_from_fork+0x10/0x20 [ 37.981858][ C0] irq event stamp: 270837 [ 37.982952][ C0] hardirqs last enabled at (270836): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 37.985723][ C0] hardirqs last disabled at (270837): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 37.988376][ C0] softirqs last enabled at (270826): [] handle_softirqs+0xb84/0xd58 [ 37.990914][ C0] softirqs last disabled at (270831): [] run_ksoftirqd+0x6c/0x29c [ 37.993278][ C0] ---[ end trace 0000000000000000 ]--- [ 37.994706][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 38.003057][ T4293] bcm5974 1-1:1.0: could not read from device executing program [ 38.419453][ T3765] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 38.599439][ T3765] usb 1-1: Using ep0 maxpacket: 16 [ 38.602261][ T3765] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 38.606356][ T3765] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 38.608557][ T3765] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 38.610843][ T3765] usb 1-1: Product: syz [ 38.611838][ T3765] usb 1-1: Manufacturer: syz [ 38.612924][ T3765] usb 1-1: SerialNumber: syz [ 38.618269][ T3765] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input3 [ 39.017695][ T4293] ------------[ cut here ]------------ [ 39.019116][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 39.021280][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 39.023629][ T4293] Modules linked in: [ 39.024633][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 39.026878][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 39.029347][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.031500][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 39.032896][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 39.034151][ T4293] sp : ffff8000210f7390 [ 39.035187][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 39.037355][ T4293] x26: ffff0000c9709c00 x25: ffff0000c44dd000 x24: 0000000000000286 [ 39.039516][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 39.041552][ T4293] x20: 0000000000000cc0 x19: ffff0000c3145200 x18: 1fffe000367a0176 [ 39.043822][ T4293] x17: ffff800015a8d000 x16: ffff80000830159c x15: ffff0001b3d00bbc [ 39.045926][ T4293] x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000003 [ 39.048134][ T4293] x11: 0000000000ff0100 x10: 0000000000000003 x9 : 1981f7a51ff4e600 [ 39.050303][ T4293] x8 : 1981f7a51ff4e600 x7 : ffff800008277b18 x6 : 0000000000000000 [ 39.052411][ T4293] x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 [ 39.054504][ T4293] x2 : 0000000000000006 x1 : ffff80001248c5a0 x0 : ffff80019e31d000 [ 39.056684][ T4293] Call trace: [ 39.057498][ T4293] usb_submit_urb+0xa44/0x1588 [ 39.058796][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 39.060146][ T4293] bcm5974_open+0x98/0x134 [ 39.061244][ T4293] input_open_device+0x170/0x29c [ 39.062551][ T4293] evdev_open+0x308/0x4b4 [ 39.063741][ T4293] chrdev_open+0x3e8/0x4fc [ 39.064893][ T4293] do_dentry_open+0x734/0xfa0 [ 39.066158][ T4293] vfs_open+0x7c/0x90 [ 39.067199][ T4293] path_openat+0x1e14/0x2548 [ 39.068333][ T4293] do_filp_open+0x1bc/0x3cc [ 39.069435][ T4293] do_sys_openat2+0x128/0x3e0 [ 39.070694][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 39.071933][ T4293] invoke_syscall+0x98/0x2bc [ 39.073237][ T4293] el0_svc_common+0x138/0x258 [ 39.074478][ T4293] do_el0_svc+0x58/0x13c [ 39.075642][ T4293] el0_svc+0x58/0x168 [ 39.076617][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 39.077934][ T4293] el0t_64_sync+0x18c/0x190 [ 39.079072][ T4293] irq event stamp: 14394 [ 39.080263][ T4293] hardirqs last enabled at (14393): [] finish_lock_switch+0xbc/0x1e8 [ 39.082810][ T4293] hardirqs last disabled at (14394): [] el1_dbg+0x24/0x80 [ 39.085107][ T4293] softirqs last enabled at (14386): [] handle_softirqs+0xb84/0xd58 [ 39.087535][ T4293] softirqs last disabled at (14369): [] __do_softirq+0x14/0x20 [ 39.090041][ T4293] ---[ end trace 0000000000000000 ]--- [ 39.091804][ C1] ------------[ cut here ]------------ [ 39.093177][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 39.095211][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 39.097660][ C1] Modules linked in: [ 39.098691][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 39.101106][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 39.103804][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.105857][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 39.107124][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 39.108416][ C1] sp : ffff8000080177a0 [ 39.109431][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 39.111360][ C1] x26: ffff0000c9709c00 x25: ffff0000c44dd000 x24: 0000000000000286 [ 39.113446][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 39.115378][ C1] x20: 0000000000000a20 x19: ffff0000c3145200 x18: ffff0000d1990448 [ 39.117392][ C1] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 [ 39.119538][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 39.121570][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 39.123630][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 39.125670][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff80000ab33fec [ 39.127635][ C1] x2 : ffff0001b3d00cd0 x1 : 0000000100000100 x0 : 0000000000000000 [ 39.129661][ C1] Call trace: [ 39.130441][ C1] usb_submit_urb+0xa44/0x1588 [ 39.131627][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 39.132982][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 39.134343][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 39.135637][ C1] dummy_timer+0x6a4/0x2770 [ 39.136729][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 39.137984][ C1] hrtimer_run_softirq+0x158/0x21c [ 39.139315][ C1] handle_softirqs+0x318/0xd58 [ 39.140511][ C1] __do_softirq+0x14/0x20 [ 39.141592][ C1] ____do_softirq+0x14/0x20 [ 39.142687][ C1] call_on_irq_stack+0x24/0x4c [ 39.143886][ C1] do_softirq_own_stack+0x20/0x2c [ 39.145063][ C1] __irq_exit_rcu+0x264/0x4d4 [ 39.146306][ C1] irq_exit_rcu+0x14/0x84 [ 39.147389][ C1] el1_interrupt+0x38/0x68 [ 39.148503][ C1] el1h_64_irq_handler+0x18/0x24 [ 39.149752][ C1] el1h_64_irq+0x64/0x68 [ 39.150807][ C1] kasan_quarantine_put+0xec/0x204 [ 39.152093][ C1] ____kasan_slab_free+0x150/0x1c0 [ 39.153354][ C1] __kasan_slab_free+0x18/0x28 [ 39.154513][ C1] __kmem_cache_free+0x2c0/0x4b4 [ 39.155698][ C1] kfree+0xcc/0x1b8 [ 39.156636][ C1] tomoyo_realpath_from_path+0x484/0x4cc [ 39.158063][ C1] tomoyo_path_number_perm+0x1dc/0x688 [ 39.159450][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 39.160700][ C1] security_file_ioctl+0x80/0xbc [ 39.161979][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 39.163142][ C1] invoke_syscall+0x98/0x2bc [ 39.164307][ C1] el0_svc_common+0x138/0x258 [ 39.165503][ C1] do_el0_svc+0x58/0x13c [ 39.166523][ C1] el0_svc+0x58/0x168 [ 39.167463][ C1] el0t_64_sync_handler+0x84/0xf0 [ 39.168627][ C1] el0t_64_sync+0x18c/0x190 [ 39.169770][ C1] irq event stamp: 14471 [ 39.170776][ C1] hardirqs last enabled at (14470): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 39.173497][ C1] hardirqs last disabled at (14471): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 39.176010][ C1] softirqs last enabled at (14436): [] local_bh_enable+0x10/0x34 [ 39.178401][ C1] softirqs last disabled at (14467): [] __do_softirq+0x14/0x20 [ 39.180670][ C1] ---[ end trace 0000000000000000 ]--- [ 39.182310][ C1] ------------[ cut here ]------------ [ 39.183725][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 39.185590][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 39.187937][ C1] Modules linked in: [ 39.188929][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 39.191232][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 39.193650][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.195570][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 39.196783][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 39.198139][ C1] sp : ffff80001d2b7560 [ 39.199161][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 39.201175][ C1] x26: ffff0000c9709c00 x25: ffff0000c44dd000 x24: 0000000000000286 [ 39.203196][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 39.205351][ C1] x20: 0000000000000a20 x19: ffff0000c3145200 x18: ffff0000d1990448 [ 39.207422][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 39.209474][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 39.211575][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 39.213630][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 39.215676][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 39.217751][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 39.219866][ C1] Call trace: [ 39.220684][ C1] usb_submit_urb+0xa44/0x1588 [ 39.221938][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 39.223247][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 39.224548][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 39.225883][ C1] dummy_timer+0x6a4/0x2770 [ 39.226972][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 39.228364][ C1] hrtimer_run_softirq+0x158/0x21c [ 39.229588][ C1] handle_softirqs+0x318/0xd58 [ 39.230782][ C1] run_ksoftirqd+0x6c/0x29c [ 39.231919][ C1] smpboot_thread_fn+0x4b0/0x96c [ 39.233204][ C1] kthread+0x250/0x2d8 [ 39.234203][ C1] ret_from_fork+0x10/0x20 [ 39.235368][ C1] irq event stamp: 297929 [ 39.236514][ C1] hardirqs last enabled at (297928): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 39.239069][ C1] hardirqs last disabled at (297929): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 39.241412][ C1] softirqs last enabled at (297906): [] handle_softirqs+0xb84/0xd58 [ 39.243720][ C1] softirqs last disabled at (297911): [] run_ksoftirqd+0x6c/0x29c [ 39.246116][ C1] ---[ end trace 0000000000000000 ]--- [ 39.247866][ C1] ------------[ cut here ]------------ [ 39.249337][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 39.249971][ T164] usb 1-1: USB disconnect, device number 3 [ 39.251206][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 39.254595][ C1] Modules linked in: [ 39.255535][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 39.257804][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 39.260174][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.261990][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 39.263118][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 39.264319][ C1] sp : ffff80001d2b7560 [ 39.265245][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 39.267203][ C1] x26: ffff0000c9709c00 x25: ffff0000c44dd000 x24: 0000000000000286 [ 39.269114][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 39.270911][ C1] x20: 0000000000000a20 x19: ffff0000c3145200 x18: ffff0000d1990448 [ 39.272800][ C1] x17: 0000000000000000 x16: ffff800012331514 x15: 0000000000000000 [ 39.274680][ C1] x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000001 [ 39.276547][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 39.278353][ C1] x8 : cbd9b3b72d8f3900 x7 : ffff8000083445bc x6 : 0000000000000000 [ 39.280237][ C1] x5 : 0000000000000080 x4 : 0000000000000001 x3 : ffff80000831a144 [ 39.282122][ C1] x2 : 0000000000000001 x1 : 0000000000000100 x0 : 0000000000000000 [ 39.284059][ C1] Call trace: [ 39.284810][ C1] usb_submit_urb+0xa44/0x1588 [ 39.285928][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 39.287085][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 39.288285][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 39.289548][ C1] dummy_timer+0x6a4/0x2770 [ 39.290619][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 39.291814][ C1] hrtimer_run_softirq+0x158/0x21c [ 39.292954][ C1] handle_softirqs+0x318/0xd58 [ 39.293998][ C1] run_ksoftirqd+0x6c/0x29c [ 39.294996][ C1] smpboot_thread_fn+0x4b0/0x96c [ 39.296116][ C1] kthread+0x250/0x2d8 [ 39.297117][ C1] ret_from_fork+0x10/0x20 [ 39.298216][ C1] irq event stamp: 297963 [ 39.299196][ C1] hardirqs last enabled at (297962): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 39.301667][ C1] hardirqs last disabled at (297963): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 39.304037][ C1] softirqs last enabled at (297944): [] handle_softirqs+0xb84/0xd58 [ 39.306406][ C1] softirqs last disabled at (297949): [] run_ksoftirqd+0x6c/0x29c [ 39.308611][ C1] ---[ end trace 0000000000000000 ]--- [ 39.309910][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 executing program [ 39.320117][ T4293] bcm5974 1-1:1.0: could not read from device [ 39.759464][ T164] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 39.939439][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 39.942112][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 39.946085][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 39.948156][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 39.950132][ T164] usb 1-1: Product: syz [ 39.951087][ T164] usb 1-1: Manufacturer: syz [ 39.952055][ T164] usb 1-1: SerialNumber: syz [ 39.958349][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input4 [ 40.357220][ T4293] ------------[ cut here ]------------ [ 40.358621][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 40.360604][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 40.362959][ T4293] Modules linked in: [ 40.363869][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 40.365828][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 40.368024][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.369872][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 40.371109][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 40.372224][ T4293] sp : ffff8000210f7390 [ 40.373244][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 40.374978][ T4293] x26: ffff0000c459c200 x25: ffff0000da3c9000 x24: 0000000000000286 [ 40.376902][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 40.378688][ T4293] x20: 0000000000000cc0 x19: ffff0000c314ba00 x18: 1fffe000367a0176 [ 40.380562][ T4293] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 40.382473][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 40.384391][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 40.386341][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 40.388135][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 40.390005][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 40.391745][ T4293] Call trace: [ 40.392506][ T4293] usb_submit_urb+0xa44/0x1588 [ 40.393574][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 40.394665][ T4293] bcm5974_open+0x98/0x134 [ 40.395678][ T4293] input_open_device+0x170/0x29c [ 40.396725][ T4293] evdev_open+0x308/0x4b4 [ 40.397647][ T4293] chrdev_open+0x3e8/0x4fc [ 40.398657][ T4293] do_dentry_open+0x734/0xfa0 [ 40.399640][ T4293] vfs_open+0x7c/0x90 [ 40.400613][ T4293] path_openat+0x1e14/0x2548 [ 40.401602][ T4293] do_filp_open+0x1bc/0x3cc [ 40.402600][ T4293] do_sys_openat2+0x128/0x3e0 [ 40.403620][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 40.404666][ T4293] invoke_syscall+0x98/0x2bc [ 40.405670][ T4293] el0_svc_common+0x138/0x258 [ 40.406698][ T4293] do_el0_svc+0x58/0x13c [ 40.407626][ T4293] el0_svc+0x58/0x168 [ 40.408510][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 40.409548][ T4293] el0t_64_sync+0x18c/0x190 [ 40.410580][ T4293] irq event stamp: 23398 [ 40.411462][ T4293] hardirqs last enabled at (23397): [] __up_console_sem+0xb4/0x100 [ 40.413582][ T4293] hardirqs last disabled at (23398): [] el1_dbg+0x24/0x80 [ 40.415535][ T4293] softirqs last enabled at (23392): [] handle_softirqs+0xb84/0xd58 [ 40.417589][ T4293] softirqs last disabled at (23375): [] __do_softirq+0x14/0x20 [ 40.419602][ T4293] ---[ end trace 0000000000000000 ]--- [ 40.421063][ C1] ------------[ cut here ]------------ [ 40.422228][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 40.423869][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 40.425937][ C1] Modules linked in: [ 40.426739][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 40.428618][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 40.430862][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.432770][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 40.434057][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 40.435229][ C1] sp : ffff8000080177a0 [ 40.436288][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 40.438366][ C1] x26: ffff0000c459c200 x25: ffff0000da3c9000 x24: 0000000000000286 [ 40.440353][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 40.442500][ C1] x20: 0000000000000a20 x19: ffff0000c314ba00 x18: ffff0000d1990448 [ 40.444520][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 40.446596][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 40.448608][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 40.450514][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 40.452415][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 40.454409][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 40.456486][ C1] Call trace: [ 40.457281][ C1] usb_submit_urb+0xa44/0x1588 [ 40.458460][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 40.459680][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 40.460935][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 40.462098][ C1] dummy_timer+0x6a4/0x2770 [ 40.463251][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 40.464441][ C1] hrtimer_run_softirq+0x158/0x21c [ 40.465602][ C1] handle_softirqs+0x318/0xd58 [ 40.466803][ C1] __do_softirq+0x14/0x20 [ 40.467815][ C1] ____do_softirq+0x14/0x20 [ 40.468852][ C1] call_on_irq_stack+0x24/0x4c [ 40.469998][ C1] do_softirq_own_stack+0x20/0x2c [ 40.471150][ C1] __irq_exit_rcu+0x264/0x4d4 [ 40.472263][ C1] irq_exit_rcu+0x14/0x84 [ 40.473330][ C1] el1_interrupt+0x38/0x68 [ 40.474408][ C1] el1h_64_irq_handler+0x18/0x24 [ 40.475615][ C1] el1h_64_irq+0x64/0x68 [ 40.476595][ C1] read_seqbegin_or_lock+0x160/0x250 [ 40.477841][ C1] prepend_path+0x2b4/0xb48 [ 40.478951][ C1] d_absolute_path+0x13c/0x27c [ 40.480032][ C1] tomoyo_realpath_from_path+0x24c/0x4cc [ 40.481447][ C1] tomoyo_path_number_perm+0x1dc/0x688 [ 40.482763][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 40.483885][ C1] security_file_ioctl+0x80/0xbc [ 40.485076][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 40.486245][ C1] invoke_syscall+0x98/0x2bc [ 40.487432][ C1] el0_svc_common+0x138/0x258 [ 40.488617][ C1] do_el0_svc+0x58/0x13c [ 40.489611][ C1] el0_svc+0x58/0x168 [ 40.490528][ C1] el0t_64_sync_handler+0x84/0xf0 [ 40.491665][ C1] el0t_64_sync+0x18c/0x190 [ 40.492685][ C1] irq event stamp: 23477 [ 40.493656][ C1] hardirqs last enabled at (23476): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 40.496306][ C1] hardirqs last disabled at (23477): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 40.498851][ C1] softirqs last enabled at (23434): [] local_bh_enable+0x10/0x34 [ 40.501148][ C1] softirqs last disabled at (23473): [] __do_softirq+0x14/0x20 [ 40.503306][ C1] ---[ end trace 0000000000000000 ]--- [ 40.504847][ C1] ------------[ cut here ]------------ [ 40.506070][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 40.507849][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 40.510006][ C1] Modules linked in: [ 40.510909][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 40.513098][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 40.515275][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.517134][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 40.518352][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 40.519555][ C1] sp : ffff80001d2b7560 [ 40.520534][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 40.522421][ C1] x26: ffff0000c459c200 x25: ffff0000da3c9000 x24: 0000000000000286 [ 40.524322][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 40.526222][ C1] x20: 0000000000000a20 x19: ffff0000c314ba00 x18: ffff0000d1990448 [ 40.528221][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 40.530253][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 40.532027][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 40.533766][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 40.535597][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 40.537575][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 40.539594][ C1] Call trace: [ 40.540398][ C1] usb_submit_urb+0xa44/0x1588 [ 40.541615][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 40.542921][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 40.544267][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 40.545612][ C1] dummy_timer+0x6a4/0x2770 [ 40.546885][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 40.548240][ C1] hrtimer_run_softirq+0x158/0x21c [ 40.549633][ C1] handle_softirqs+0x318/0xd58 [ 40.550848][ C1] run_ksoftirqd+0x6c/0x29c [ 40.552015][ C1] smpboot_thread_fn+0x4b0/0x96c [ 40.553300][ C1] kthread+0x250/0x2d8 [ 40.554283][ C1] ret_from_fork+0x10/0x20 [ 40.555377][ C1] irq event stamp: 299837 [ 40.556402][ C1] hardirqs last enabled at (299836): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 40.559068][ C1] hardirqs last disabled at (299837): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 40.561591][ C1] softirqs last enabled at (299802): [] handle_softirqs+0xb84/0xd58 [ 40.563858][ C1] softirqs last disabled at (299807): [] run_ksoftirqd+0x6c/0x29c [ 40.566016][ C1] ---[ end trace 0000000000000000 ]--- [ 40.567939][ C1] ------------[ cut here ]------------ [ 40.568823][ T164] usb 1-1: USB disconnect, device number 4 [ 40.569173][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 40.572241][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 40.574415][ C1] Modules linked in: [ 40.575347][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 40.577549][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 40.579875][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 40.581645][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 40.582797][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 40.583991][ C1] sp : ffff80001d2b7560 [ 40.584955][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 40.586821][ C1] x26: ffff0000c459c200 x25: ffff0000da3c9000 x24: 0000000000000286 [ 40.588656][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 40.590469][ C1] x20: 0000000000000a20 x19: ffff0000c314ba00 x18: ffff0000d1990448 [ 40.592267][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 40.594054][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 40.595771][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 40.597595][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 40.599313][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 40.601075][ C1] x2 : 0000000000000001 x1 : 0000000000000100 x0 : 0000000000000000 [ 40.602842][ C1] Call trace: [ 40.603596][ C1] usb_submit_urb+0xa44/0x1588 [ 40.604617][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 40.605740][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 40.606948][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 40.608075][ C1] dummy_timer+0x6a4/0x2770 [ 40.609059][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 40.610254][ C1] hrtimer_run_softirq+0x158/0x21c [ 40.611365][ C1] handle_softirqs+0x318/0xd58 [ 40.612401][ C1] run_ksoftirqd+0x6c/0x29c [ 40.613396][ C1] smpboot_thread_fn+0x4b0/0x96c [ 40.614459][ C1] kthread+0x250/0x2d8 [ 40.615410][ C1] ret_from_fork+0x10/0x20 [ 40.616428][ C1] irq event stamp: 299865 [ 40.617375][ C1] hardirqs last enabled at (299864): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 40.619670][ C1] hardirqs last disabled at (299865): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 40.621935][ C1] softirqs last enabled at (299846): [] handle_softirqs+0xb84/0xd58 [ 40.624073][ C1] softirqs last disabled at (299851): [] run_ksoftirqd+0x6c/0x29c [ 40.626201][ C1] ---[ end trace 0000000000000000 ]--- executing program [ 40.627384][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 40.639502][ T4293] bcm5974 1-1:1.0: could not read from device [ 41.059488][ T164] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 41.239434][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 41.242750][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 41.246729][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 41.248772][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 41.250719][ T164] usb 1-1: Product: syz [ 41.251661][ T164] usb 1-1: Manufacturer: syz [ 41.252720][ T164] usb 1-1: SerialNumber: syz [ 41.258038][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input5 [ 41.657039][ T4293] ------------[ cut here ]------------ [ 41.658488][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 41.660469][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 41.662822][ T4293] Modules linked in: [ 41.663807][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 41.666087][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 41.668514][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.670539][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 41.671730][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 41.673017][ T4293] sp : ffff8000210f7390 [ 41.674072][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 41.676152][ T4293] x26: ffff0000c8961d00 x25: ffff0000d7cc3000 x24: 0000000000000286 [ 41.678139][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 41.680204][ T4293] x20: 0000000000000cc0 x19: ffff0000c3147e00 x18: 1fffe000367a0176 [ 41.682224][ T4293] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 41.684339][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 41.686273][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 41.688274][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 41.690326][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 41.692399][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 41.694360][ T4293] Call trace: [ 41.695131][ T4293] usb_submit_urb+0xa44/0x1588 [ 41.696312][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 41.697632][ T4293] bcm5974_open+0x98/0x134 [ 41.698888][ T4293] input_open_device+0x170/0x29c [ 41.700135][ T4293] evdev_open+0x308/0x4b4 [ 41.701263][ T4293] chrdev_open+0x3e8/0x4fc [ 41.702411][ T4293] do_dentry_open+0x734/0xfa0 [ 41.703566][ T4293] vfs_open+0x7c/0x90 [ 41.704577][ T4293] path_openat+0x1e14/0x2548 [ 41.705705][ T4293] do_filp_open+0x1bc/0x3cc [ 41.706859][ T4293] do_sys_openat2+0x128/0x3e0 [ 41.708102][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 41.709388][ T4293] invoke_syscall+0x98/0x2bc [ 41.710525][ T4293] el0_svc_common+0x138/0x258 [ 41.711762][ T4293] do_el0_svc+0x58/0x13c [ 41.712899][ T4293] el0_svc+0x58/0x168 [ 41.713908][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 41.715207][ T4293] el0t_64_sync+0x18c/0x190 [ 41.716320][ T4293] irq event stamp: 30734 [ 41.717366][ T4293] hardirqs last enabled at (30733): [] __up_console_sem+0xb4/0x100 [ 41.719867][ T4293] hardirqs last disabled at (30734): [] el1_dbg+0x24/0x80 [ 41.722195][ T4293] softirqs last enabled at (30728): [] handle_softirqs+0xb84/0xd58 [ 41.724622][ T4293] softirqs last disabled at (30723): [] __do_softirq+0x14/0x20 [ 41.726948][ T4293] ---[ end trace 0000000000000000 ]--- [ 41.728618][ C1] ------------[ cut here ]------------ [ 41.729972][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 41.731944][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 41.734274][ C1] Modules linked in: [ 41.735181][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 41.737276][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 41.739631][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.741599][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 41.742856][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 41.744119][ C1] sp : ffff8000080177a0 [ 41.745253][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 41.747239][ C1] x26: ffff0000c8961d00 x25: ffff0000d7cc3000 x24: 0000000000000286 [ 41.749299][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 41.751328][ C1] x20: 0000000000000a20 x19: ffff0000c3147e00 x18: ffff0000d1990448 [ 41.753439][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 41.755534][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 41.757539][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 41.759577][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 41.761573][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 41.763600][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 41.765659][ C1] Call trace: [ 41.766496][ C1] usb_submit_urb+0xa44/0x1588 [ 41.767742][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 41.769068][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 41.770414][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 41.771707][ C1] dummy_timer+0x6a4/0x2770 [ 41.772907][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 41.774275][ C1] hrtimer_run_softirq+0x158/0x21c [ 41.775597][ C1] handle_softirqs+0x318/0xd58 [ 41.776849][ C1] __do_softirq+0x14/0x20 [ 41.778003][ C1] ____do_softirq+0x14/0x20 [ 41.779229][ C1] call_on_irq_stack+0x24/0x4c [ 41.780423][ C1] do_softirq_own_stack+0x20/0x2c [ 41.781747][ C1] __irq_exit_rcu+0x264/0x4d4 [ 41.782983][ C1] irq_exit_rcu+0x14/0x84 [ 41.784095][ C1] el1_interrupt+0x38/0x68 [ 41.785250][ C1] el1h_64_irq_handler+0x18/0x24 [ 41.786441][ C1] el1h_64_irq+0x64/0x68 [ 41.787518][ C1] kasan_quarantine_put+0xec/0x204 [ 41.788823][ C1] ____kasan_slab_free+0x150/0x1c0 [ 41.790106][ C1] __kasan_slab_free+0x18/0x28 [ 41.791328][ C1] __kmem_cache_free+0x2c0/0x4b4 [ 41.792639][ C1] kfree+0xcc/0x1b8 [ 41.793588][ C1] tomoyo_path_number_perm+0x508/0x688 [ 41.795050][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 41.796319][ C1] security_file_ioctl+0x80/0xbc [ 41.797610][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 41.798818][ C1] invoke_syscall+0x98/0x2bc [ 41.799981][ C1] el0_svc_common+0x138/0x258 [ 41.801193][ C1] do_el0_svc+0x58/0x13c [ 41.802267][ C1] el0_svc+0x58/0x168 [ 41.803369][ C1] el0t_64_sync_handler+0x84/0xf0 [ 41.804733][ C1] el0t_64_sync+0x18c/0x190 [ 41.805920][ C1] irq event stamp: 30805 [ 41.806950][ C1] hardirqs last enabled at (30804): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 41.809729][ C1] hardirqs last disabled at (30805): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 41.812405][ C1] softirqs last enabled at (30766): [] local_bh_enable+0x10/0x34 [ 41.814859][ C1] softirqs last disabled at (30801): [] __do_softirq+0x14/0x20 [ 41.817275][ C1] ---[ end trace 0000000000000000 ]--- [ 41.818910][ C1] ------------[ cut here ]------------ [ 41.820239][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 41.822169][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 41.824613][ C1] Modules linked in: [ 41.825606][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 41.828071][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 41.830732][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.832768][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 41.834068][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 41.835348][ C1] sp : ffff80001d2b7560 [ 41.836394][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 41.838334][ C1] x26: ffff0000c8961d00 x25: ffff0000d7cc3000 x24: 0000000000000286 [ 41.840408][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 41.842595][ C1] x20: 0000000000000a20 x19: ffff0000c3147e00 x18: ffff0000d1990448 [ 41.844798][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 41.846685][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 41.848650][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 41.850590][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 41.852461][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 41.854622][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 41.856642][ C1] Call trace: [ 41.857384][ C1] usb_submit_urb+0xa44/0x1588 [ 41.858505][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 41.859767][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 41.861152][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 41.862414][ C1] dummy_timer+0x6a4/0x2770 [ 41.863591][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 41.864736][ C1] hrtimer_run_softirq+0x158/0x21c [ 41.866026][ C1] handle_softirqs+0x318/0xd58 [ 41.867192][ C1] run_ksoftirqd+0x6c/0x29c [ 41.868314][ C1] smpboot_thread_fn+0x4b0/0x96c [ 41.869559][ C1] kthread+0x250/0x2d8 [ 41.870564][ C1] ret_from_fork+0x10/0x20 [ 41.871644][ C1] irq event stamp: 301409 [ 41.872679][ C1] hardirqs last enabled at (301408): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 41.875231][ C1] hardirqs last disabled at (301409): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 41.877669][ C1] softirqs last enabled at (301382): [] handle_softirqs+0xb84/0xd58 [ 41.879900][ C1] softirqs last disabled at (301387): [] run_ksoftirqd+0x6c/0x29c [ 41.882027][ C1] ---[ end trace 0000000000000000 ]--- [ 41.883508][ C1] ------------[ cut here ]------------ [ 41.884705][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 41.886436][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 41.887777][ T164] usb 1-1: USB disconnect, device number 5 [ 41.888481][ C1] Modules linked in: [ 41.890596][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 41.892708][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 41.895022][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 41.896780][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 41.897890][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 41.899122][ C1] sp : ffff80001d2b7560 [ 41.900133][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 41.902127][ C1] x26: ffff0000c8961d00 x25: ffff0000d7cc3000 x24: 0000000000000286 [ 41.904123][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 41.906012][ C1] x20: 0000000000000a20 x19: ffff0000c3147e00 x18: ffff0000d1990448 [ 41.907960][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 41.909861][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 41.911801][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 41.913769][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 41.915731][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 41.917738][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 41.919708][ C1] Call trace: [ 41.920451][ C1] usb_submit_urb+0xa44/0x1588 [ 41.921560][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 41.922830][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 41.924058][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 41.925182][ C1] dummy_timer+0x6a4/0x2770 [ 41.926179][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 41.927434][ C1] hrtimer_run_softirq+0x158/0x21c [ 41.928679][ C1] handle_softirqs+0x318/0xd58 [ 41.929900][ C1] run_ksoftirqd+0x6c/0x29c [ 41.931020][ C1] smpboot_thread_fn+0x4b0/0x96c [ 41.932291][ C1] kthread+0x250/0x2d8 [ 41.933312][ C1] ret_from_fork+0x10/0x20 [ 41.934410][ C1] irq event stamp: 301437 [ 41.935446][ C1] hardirqs last enabled at (301436): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 41.938065][ C1] hardirqs last disabled at (301437): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 41.940616][ C1] softirqs last enabled at (301420): [] handle_softirqs+0xb84/0xd58 [ 41.943120][ C1] softirqs last disabled at (301425): [] run_ksoftirqd+0x6c/0x29c [ 41.945528][ C1] ---[ end trace 0000000000000000 ]--- [ 41.946943][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 executing program [ 41.959460][ T4293] bcm5974 1-1:1.0: could not read from device [ 42.369470][ T164] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 42.549420][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 42.552108][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 42.556238][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 42.558463][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 42.560604][ T164] usb 1-1: Product: syz [ 42.561633][ T164] usb 1-1: Manufacturer: syz [ 42.562738][ T164] usb 1-1: SerialNumber: syz [ 42.567805][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input6 [ 42.967136][ T4293] ------------[ cut here ]------------ [ 42.968571][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 42.970547][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 42.972912][ T4293] Modules linked in: [ 42.973849][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 42.976186][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 42.978741][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 42.980742][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 42.982072][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 42.983333][ T4293] sp : ffff8000210f7390 [ 42.984398][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 42.986393][ T4293] x26: ffff0000cbf03e00 x25: ffff0000cf8f5000 x24: 0000000000000286 [ 42.988459][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 42.990498][ T4293] x20: 0000000000000cc0 x19: ffff0000c315fc00 x18: 1fffe000367a0176 [ 42.992556][ T4293] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 42.994647][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 42.996647][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 42.998767][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 43.000815][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 43.002825][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 43.004916][ T4293] Call trace: [ 43.005743][ T4293] usb_submit_urb+0xa44/0x1588 [ 43.006883][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 43.008104][ T4293] bcm5974_open+0x98/0x134 [ 43.009083][ T4293] input_open_device+0x170/0x29c [ 43.010183][ T4293] evdev_open+0x308/0x4b4 [ 43.011206][ T4293] chrdev_open+0x3e8/0x4fc [ 43.012313][ T4293] do_dentry_open+0x734/0xfa0 [ 43.013552][ T4293] vfs_open+0x7c/0x90 [ 43.014597][ T4293] path_openat+0x1e14/0x2548 [ 43.015856][ T4293] do_filp_open+0x1bc/0x3cc [ 43.017021][ T4293] do_sys_openat2+0x128/0x3e0 [ 43.018187][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 43.019471][ T4293] invoke_syscall+0x98/0x2bc [ 43.020675][ T4293] el0_svc_common+0x138/0x258 [ 43.021968][ T4293] do_el0_svc+0x58/0x13c [ 43.023080][ T4293] el0_svc+0x58/0x168 [ 43.024060][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 43.025346][ T4293] el0t_64_sync+0x18c/0x190 [ 43.026444][ T4293] irq event stamp: 39046 [ 43.027555][ T4293] hardirqs last enabled at (39045): [] __up_console_sem+0xb4/0x100 [ 43.029943][ T4293] hardirqs last disabled at (39046): [] el1_dbg+0x24/0x80 [ 43.032151][ T4293] softirqs last enabled at (39040): [] handle_softirqs+0xb84/0xd58 [ 43.034689][ T4293] softirqs last disabled at (39029): [] __do_softirq+0x14/0x20 [ 43.037114][ T4293] ---[ end trace 0000000000000000 ]--- [ 43.038686][ C1] ------------[ cut here ]------------ [ 43.040139][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 43.042084][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 43.044430][ C1] Modules linked in: [ 43.045437][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 43.047802][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 43.050267][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 43.052261][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 43.053633][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 43.054958][ C1] sp : ffff8000080177a0 [ 43.056010][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 43.058016][ C1] x26: ffff0000cbf03e00 x25: ffff0000cf8f5000 x24: 0000000000000286 [ 43.059981][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 43.061948][ C1] x20: 0000000000000a20 x19: ffff0000c315fc00 x18: ffff0000d1990448 [ 43.063960][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 43.066013][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 43.068098][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 43.070115][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 43.072093][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 43.074073][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 43.075995][ C1] Call trace: [ 43.076708][ C1] usb_submit_urb+0xa44/0x1588 [ 43.077856][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 43.079132][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 43.080341][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 43.081483][ C1] dummy_timer+0x6a4/0x2770 [ 43.082522][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 43.083679][ C1] hrtimer_run_softirq+0x158/0x21c [ 43.084969][ C1] handle_softirqs+0x318/0xd58 [ 43.086025][ C1] __do_softirq+0x14/0x20 [ 43.087168][ C1] ____do_softirq+0x14/0x20 [ 43.088194][ C1] call_on_irq_stack+0x24/0x4c [ 43.089303][ C1] do_softirq_own_stack+0x20/0x2c [ 43.090397][ C1] __irq_exit_rcu+0x264/0x4d4 [ 43.091467][ C1] irq_exit_rcu+0x14/0x84 [ 43.092413][ C1] el1_interrupt+0x38/0x68 [ 43.093399][ C1] el1h_64_irq_handler+0x18/0x24 [ 43.094508][ C1] el1h_64_irq+0x64/0x68 [ 43.095473][ C1] format_decode+0x374/0x14e4 [ 43.096615][ C1] vsnprintf+0x130/0x1a8c [ 43.097624][ C1] snprintf+0xec/0x13c [ 43.098608][ C1] tomoyo_print_ulong+0x98/0xcc [ 43.099747][ C1] tomoyo_path_number_perm+0x3d8/0x688 [ 43.100998][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 43.102067][ C1] security_file_ioctl+0x80/0xbc [ 43.103179][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 43.104293][ C1] invoke_syscall+0x98/0x2bc [ 43.105360][ C1] el0_svc_common+0x138/0x258 [ 43.106486][ C1] do_el0_svc+0x58/0x13c [ 43.107484][ C1] el0_svc+0x58/0x168 [ 43.108475][ C1] el0t_64_sync_handler+0x84/0xf0 [ 43.109668][ C1] el0t_64_sync+0x18c/0x190 [ 43.110740][ C1] irq event stamp: 39121 [ 43.111717][ C1] hardirqs last enabled at (39120): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 43.114081][ C1] hardirqs last disabled at (39121): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 43.116429][ C1] softirqs last enabled at (39080): [] local_bh_enable+0x10/0x34 [ 43.118612][ C1] softirqs last disabled at (39117): [] __do_softirq+0x14/0x20 [ 43.120752][ C1] ---[ end trace 0000000000000000 ]--- [ 43.122241][ C1] ------------[ cut here ]------------ [ 43.123511][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 43.125284][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 43.127519][ C1] Modules linked in: [ 43.128457][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 43.130609][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 43.132941][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 43.134824][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 43.136078][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 43.137408][ C1] sp : ffff80001d2b7560 [ 43.138459][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 43.140516][ C1] x26: ffff0000cbf03e00 x25: ffff0000cf8f5000 x24: 0000000000000286 [ 43.142427][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 43.144230][ C1] x20: 0000000000000a20 x19: ffff0000c315fc00 x18: ffff0000d1990448 [ 43.146119][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 43.147846][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 43.149593][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 43.151406][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 43.153159][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 43.154884][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 43.156596][ C1] Call trace: [ 43.157344][ C1] usb_submit_urb+0xa44/0x1588 [ 43.158361][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 43.159472][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 43.160666][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 43.161879][ C1] dummy_timer+0x6a4/0x2770 [ 43.162918][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 43.164046][ C1] hrtimer_run_softirq+0x158/0x21c [ 43.165143][ C1] handle_softirqs+0x318/0xd58 [ 43.166163][ C1] run_ksoftirqd+0x6c/0x29c [ 43.167191][ C1] smpboot_thread_fn+0x4b0/0x96c [ 43.168320][ C1] kthread+0x250/0x2d8 [ 43.169205][ C1] ret_from_fork+0x10/0x20 [ 43.170150][ C1] irq event stamp: 303093 [ 43.171085][ C1] hardirqs last enabled at (303092): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 43.173361][ C1] hardirqs last disabled at (303093): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 43.175525][ C1] softirqs last enabled at (303064): [] handle_softirqs+0xb84/0xd58 [ 43.177647][ C1] softirqs last disabled at (303069): [] run_ksoftirqd+0x6c/0x29c [ 43.179788][ C1] ---[ end trace 0000000000000000 ]--- [ 43.181364][ C1] ------------[ cut here ]------------ [ 43.182629][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 43.184514][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 43.184973][ T164] usb 1-1: USB disconnect, device number 6 [ 43.186661][ C1] Modules linked in: [ 43.188817][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 43.190940][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 43.193133][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 43.194851][ C1] pc : usb_submit_urb+0xa44/0x1588 executing program [ 43.195978][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 43.197080][ C1] sp : ffff80001d2b7560 [ 43.198009][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 43.199737][ C1] x26: ffff0000cbf03e00 x25: ffff0000cf8f5000 x24: 0000000000000286 [ 43.201503][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 43.203247][ C1] x20: 0000000000000a20 x19: ffff0000c315fc00 x18: ffff0000d1990448 [ 43.205055][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 43.206814][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 43.208641][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 43.210396][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 43.212157][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 43.213999][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 43.215840][ C1] Call trace: [ 43.216549][ C1] usb_submit_urb+0xa44/0x1588 [ 43.217665][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 43.218827][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 43.220107][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 43.221323][ C1] dummy_timer+0x6a4/0x2770 [ 43.222497][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 43.223941][ C1] hrtimer_run_softirq+0x158/0x21c [ 43.225272][ C1] handle_softirqs+0x318/0xd58 [ 43.226520][ C1] run_ksoftirqd+0x6c/0x29c [ 43.227649][ C1] smpboot_thread_fn+0x4b0/0x96c [ 43.228919][ C1] kthread+0x250/0x2d8 [ 43.229961][ C1] ret_from_fork+0x10/0x20 [ 43.231092][ C1] irq event stamp: 303119 [ 43.232161][ C1] hardirqs last enabled at (303118): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 43.235129][ C1] hardirqs last disabled at (303119): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 43.237913][ C1] softirqs last enabled at (303102): [] handle_softirqs+0xb84/0xd58 [ 43.240372][ C1] softirqs last disabled at (303107): [] run_ksoftirqd+0x6c/0x29c [ 43.242682][ C1] ---[ end trace 0000000000000000 ]--- [ 43.243941][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 43.259538][ T4293] bcm5974 1-1:1.0: could not read from device [ 43.669427][ T164] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 43.849428][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 43.852056][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 43.856130][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 43.858157][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 43.860137][ T164] usb 1-1: Product: syz [ 43.861106][ T164] usb 1-1: Manufacturer: syz [ 43.862235][ T164] usb 1-1: SerialNumber: syz [ 43.868265][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input7 [ 44.267038][ T4293] ------------[ cut here ]------------ [ 44.268402][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 44.270383][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 44.272568][ T4293] Modules linked in: [ 44.273435][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 44.275511][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 44.277839][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 44.279563][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 44.280862][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 44.282037][ T4293] sp : ffff8000210f7390 [ 44.282945][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 44.284888][ T4293] x26: ffff0000ca27aa00 x25: ffff0000db617000 x24: 0000000000000286 [ 44.286656][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 44.288596][ T4293] x20: 0000000000000cc0 x19: ffff0000c3167400 x18: 1fffe000367a0176 [ 44.290387][ T4293] x17: ffff800015a8d000 x16: ffff80000830159c x15: ffff0001b3d00bbc [ 44.292339][ T4293] x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000003 [ 44.294223][ T4293] x11: 0000000000ff0100 x10: 0000000000000003 x9 : 1981f7a51ff4e600 [ 44.296231][ T4293] x8 : 1981f7a51ff4e600 x7 : ffff800008277b18 x6 : 0000000000000000 [ 44.298041][ T4293] x5 : 0000000000000080 x4 : 0000000000000001 x3 : 0000000000000000 [ 44.299970][ T4293] x2 : 0000000000000006 x1 : ffff80001248c5a0 x0 : ffff80019e31d000 [ 44.301736][ T4293] Call trace: [ 44.302521][ T4293] usb_submit_urb+0xa44/0x1588 [ 44.303711][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 44.304882][ T4293] bcm5974_open+0x98/0x134 [ 44.305961][ T4293] input_open_device+0x170/0x29c [ 44.307168][ T4293] evdev_open+0x308/0x4b4 [ 44.308169][ T4293] chrdev_open+0x3e8/0x4fc [ 44.309258][ T4293] do_dentry_open+0x734/0xfa0 [ 44.310425][ T4293] vfs_open+0x7c/0x90 [ 44.311461][ T4293] path_openat+0x1e14/0x2548 [ 44.312582][ T4293] do_filp_open+0x1bc/0x3cc [ 44.313692][ T4293] do_sys_openat2+0x128/0x3e0 [ 44.314893][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 44.316195][ T4293] invoke_syscall+0x98/0x2bc [ 44.317281][ T4293] el0_svc_common+0x138/0x258 [ 44.318475][ T4293] do_el0_svc+0x58/0x13c [ 44.319569][ T4293] el0_svc+0x58/0x168 [ 44.320583][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 44.321914][ T4293] el0t_64_sync+0x18c/0x190 [ 44.323006][ T4293] irq event stamp: 47712 [ 44.324073][ T4293] hardirqs last enabled at (47711): [] finish_lock_switch+0xbc/0x1e8 [ 44.326488][ T4293] hardirqs last disabled at (47712): [] el1_dbg+0x24/0x80 [ 44.328604][ T4293] softirqs last enabled at (47704): [] handle_softirqs+0xb84/0xd58 [ 44.330987][ T4293] softirqs last disabled at (47699): [] __do_softirq+0x14/0x20 [ 44.333206][ T4293] ---[ end trace 0000000000000000 ]--- [ 44.334973][ C1] ------------[ cut here ]------------ [ 44.336354][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 44.338288][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 44.340680][ C1] Modules linked in: [ 44.341737][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 44.343920][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 44.346278][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 44.348077][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 44.349271][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 44.350437][ C1] sp : ffff8000080177a0 [ 44.351364][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 44.353159][ C1] x26: ffff0000ca27aa00 x25: ffff0000db617000 x24: 0000000000000286 [ 44.354949][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 44.356682][ C1] x20: 0000000000000a20 x19: ffff0000c3167400 x18: ffff0000d1990448 [ 44.358539][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 44.360363][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 44.362124][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 44.363848][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 44.365643][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 44.367421][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 44.369197][ C1] Call trace: [ 44.369905][ C1] usb_submit_urb+0xa44/0x1588 [ 44.370951][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 44.372137][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 44.373326][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 44.374526][ C1] dummy_timer+0x6a4/0x2770 [ 44.375568][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 44.376739][ C1] hrtimer_run_softirq+0x158/0x21c [ 44.377884][ C1] handle_softirqs+0x318/0xd58 [ 44.378962][ C1] __do_softirq+0x14/0x20 [ 44.379960][ C1] ____do_softirq+0x14/0x20 [ 44.380965][ C1] call_on_irq_stack+0x24/0x4c [ 44.382069][ C1] do_softirq_own_stack+0x20/0x2c [ 44.383192][ C1] __irq_exit_rcu+0x264/0x4d4 [ 44.384233][ C1] irq_exit_rcu+0x14/0x84 [ 44.385199][ C1] el1_interrupt+0x38/0x68 [ 44.386165][ C1] el1h_64_irq_handler+0x18/0x24 [ 44.387280][ C1] el1h_64_irq+0x64/0x68 [ 44.388216][ C1] update_xdomain+0x6348/0xb0c0 [ 44.389280][ C1] mutex_unlock+0x24/0x30 [ 44.390263][ C1] evdev_ioctl_handler+0x1a8/0x2d60 [ 44.391415][ C1] evdev_ioctl+0x38/0x4c [ 44.392339][ C1] __arm64_sys_ioctl+0x14c/0x1c8 [ 44.393415][ C1] invoke_syscall+0x98/0x2bc [ 44.394437][ C1] el0_svc_common+0x138/0x258 [ 44.395487][ C1] do_el0_svc+0x58/0x13c [ 44.396471][ C1] el0_svc+0x58/0x168 [ 44.397421][ C1] el0t_64_sync_handler+0x84/0xf0 [ 44.398564][ C1] el0t_64_sync+0x18c/0x190 [ 44.399594][ C1] irq event stamp: 47781 [ 44.400558][ C1] hardirqs last enabled at (47780): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 44.402953][ C1] hardirqs last disabled at (47781): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.405215][ C1] softirqs last enabled at (47752): [] local_bh_enable+0x10/0x34 [ 44.407399][ C1] softirqs last disabled at (47777): [] __do_softirq+0x14/0x20 [ 44.409407][ C1] ---[ end trace 0000000000000000 ]--- [ 44.410918][ C1] ------------[ cut here ]------------ [ 44.412139][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 44.413872][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 44.416007][ C1] Modules linked in: [ 44.416893][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 44.419015][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 44.421402][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 44.423193][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 44.424391][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 44.425623][ C1] sp : ffff80001d2b7560 [ 44.426723][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 44.428782][ C1] x26: ffff0000ca27aa00 x25: ffff0000db617000 x24: 0000000000000286 [ 44.430866][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 44.432965][ C1] x20: 0000000000000a20 x19: ffff0000c3167400 x18: ffff0000d1990448 [ 44.434876][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 44.437052][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 44.439088][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 44.441258][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 44.443377][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 44.445468][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 44.447608][ C1] Call trace: [ 44.448488][ C1] usb_submit_urb+0xa44/0x1588 [ 44.449736][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 44.451081][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 44.452473][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 44.453855][ C1] dummy_timer+0x6a4/0x2770 [ 44.455089][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 44.456420][ C1] hrtimer_run_softirq+0x158/0x21c [ 44.457740][ C1] handle_softirqs+0x318/0xd58 [ 44.458982][ C1] run_ksoftirqd+0x6c/0x29c [ 44.460134][ C1] smpboot_thread_fn+0x4b0/0x96c [ 44.461408][ C1] kthread+0x250/0x2d8 [ 44.462412][ C1] ret_from_fork+0x10/0x20 [ 44.463486][ C1] irq event stamp: 304289 [ 44.464593][ C1] hardirqs last enabled at (304288): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 44.467357][ C1] hardirqs last disabled at (304289): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.469980][ C1] softirqs last enabled at (304272): [] handle_softirqs+0xb84/0xd58 [ 44.472249][ C1] softirqs last disabled at (304277): [] run_ksoftirqd+0x6c/0x29c [ 44.474492][ C1] ---[ end trace 0000000000000000 ]--- [ 44.476458][ C1] ------------[ cut here ]------------ [ 44.477595][ T164] usb 1-1: USB disconnect, device number 7 [ 44.477776][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 44.480843][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 44.483023][ C1] Modules linked in: [ 44.483928][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 44.486026][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 44.488306][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 44.490037][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 44.491152][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 44.492295][ C1] sp : ffff80001d2b7560 [ 44.493227][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 44.495069][ C1] x26: ffff0000ca27aa00 x25: ffff0000db617000 x24: 0000000000000286 [ 44.496865][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 44.498744][ C1] x20: 0000000000000a20 x19: ffff0000c3167400 x18: ffff0000d1990448 [ 44.500667][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 44.502498][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 44.504449][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 44.506370][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 44.508205][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 44.510110][ C1] x2 : 0000000000000001 x1 : 0000000000000100 x0 : 0000000000000000 [ 44.511932][ C1] Call trace: [ 44.512674][ C1] usb_submit_urb+0xa44/0x1588 [ 44.513899][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 44.515128][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 44.516336][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 44.517457][ C1] dummy_timer+0x6a4/0x2770 [ 44.518448][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 44.519635][ C1] hrtimer_run_softirq+0x158/0x21c [ 44.520684][ C1] handle_softirqs+0x318/0xd58 [ 44.521782][ C1] run_ksoftirqd+0x6c/0x29c [ 44.522733][ C1] smpboot_thread_fn+0x4b0/0x96c [ 44.523768][ C1] kthread+0x250/0x2d8 [ 44.524707][ C1] ret_from_fork+0x10/0x20 [ 44.525652][ C1] irq event stamp: 304329 [ 44.526607][ C1] hardirqs last enabled at (304328): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 44.529085][ C1] hardirqs last disabled at (304329): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 44.531309][ C1] softirqs last enabled at (304304): [] handle_softirqs+0xb84/0xd58 [ 44.533452][ C1] softirqs last disabled at (304309): [] run_ksoftirqd+0x6c/0x29c [ 44.535394][ C1] ---[ end trace 0000000000000000 ]--- [ 44.536557][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 executing program [ 44.550498][ T164] bcm5974 1-1:1.0: could not read from device [ 44.919430][ T164] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 45.099425][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 45.102287][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 45.106513][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 45.108984][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 45.111256][ T164] usb 1-1: Product: syz [ 45.112315][ T164] usb 1-1: Manufacturer: syz [ 45.113498][ T164] usb 1-1: SerialNumber: syz [ 45.118964][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input8 [ 45.518321][ T4293] ------------[ cut here ]------------ [ 45.519822][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 45.521747][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 45.524116][ T4293] Modules linked in: [ 45.525079][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 45.527365][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 45.529872][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 45.531865][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 45.533259][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 45.534641][ T4293] sp : ffff8000210f7390 [ 45.535605][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 45.537724][ T4293] x26: ffff0000cbcd7100 x25: ffff0000dc1b2000 x24: 0000000000000286 [ 45.539866][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 45.541957][ T4293] x20: 0000000000000cc0 x19: ffff0000c316de00 x18: 1fffe000367a0176 [ 45.544072][ T4293] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 [ 45.546208][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 45.548268][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 45.550317][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 45.552258][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008586abc [ 45.554282][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 45.556269][ T4293] Call trace: [ 45.557159][ T4293] usb_submit_urb+0xa44/0x1588 [ 45.558370][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 45.559734][ T4293] bcm5974_open+0x98/0x134 [ 45.560845][ T4293] input_open_device+0x170/0x29c [ 45.562090][ T4293] evdev_open+0x308/0x4b4 [ 45.563104][ T4293] chrdev_open+0x3e8/0x4fc [ 45.564139][ T4293] do_dentry_open+0x734/0xfa0 [ 45.565411][ T4293] vfs_open+0x7c/0x90 [ 45.566408][ T4293] path_openat+0x1e14/0x2548 [ 45.567530][ T4293] do_filp_open+0x1bc/0x3cc [ 45.568677][ T4293] do_sys_openat2+0x128/0x3e0 [ 45.569793][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 45.571004][ T4293] invoke_syscall+0x98/0x2bc [ 45.572064][ T4293] el0_svc_common+0x138/0x258 [ 45.573249][ T4293] do_el0_svc+0x58/0x13c [ 45.574312][ T4293] el0_svc+0x58/0x168 [ 45.575355][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 45.576544][ T4293] el0t_64_sync+0x18c/0x190 [ 45.577649][ T4293] irq event stamp: 56006 [ 45.578702][ T4293] hardirqs last enabled at (56005): [] __up_console_sem+0xb4/0x100 [ 45.580997][ T4293] hardirqs last disabled at (56006): [] el1_dbg+0x24/0x80 [ 45.583162][ T4293] softirqs last enabled at (55990): [] handle_softirqs+0xb84/0xd58 [ 45.585613][ T4293] softirqs last disabled at (55973): [] __do_softirq+0x14/0x20 [ 45.587865][ T4293] ---[ end trace 0000000000000000 ]--- [ 45.589767][ C1] ------------[ cut here ]------------ [ 45.591007][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 45.592696][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 45.594862][ C1] Modules linked in: [ 45.595742][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 45.597639][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 45.599954][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 45.601752][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 45.603011][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 45.604255][ C1] sp : ffff8000080177a0 [ 45.605322][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 45.607446][ C1] x26: ffff0000cbcd7100 x25: ffff0000dc1b2000 x24: 0000000000000286 [ 45.609478][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 45.611375][ C1] x20: 0000000000000a20 x19: ffff0000c316de00 x18: ffff0000d1990448 [ 45.613428][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 45.615481][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 45.617420][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 45.619254][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 45.621111][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 45.623268][ C1] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 45.625251][ C1] Call trace: [ 45.626064][ C1] usb_submit_urb+0xa44/0x1588 [ 45.627271][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 45.628611][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 45.630005][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 45.631283][ C1] dummy_timer+0x6a4/0x2770 [ 45.632565][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 45.633838][ C1] hrtimer_run_softirq+0x158/0x21c [ 45.635170][ C1] handle_softirqs+0x318/0xd58 [ 45.636351][ C1] __do_softirq+0x14/0x20 [ 45.637443][ C1] ____do_softirq+0x14/0x20 [ 45.638602][ C1] call_on_irq_stack+0x24/0x4c [ 45.639781][ C1] do_softirq_own_stack+0x20/0x2c [ 45.641076][ C1] __irq_exit_rcu+0x264/0x4d4 [ 45.642249][ C1] irq_exit_rcu+0x14/0x84 [ 45.643364][ C1] el1_interrupt+0x38/0x68 [ 45.644553][ C1] el1h_64_irq_handler+0x18/0x24 [ 45.645823][ C1] el1h_64_irq+0x64/0x68 [ 45.646924][ C1] _raw_spin_unlock_irqrestore+0x58/0xac [ 45.648326][ C1] debug_check_no_obj_freed+0x45c/0x478 [ 45.649710][ C1] __kmem_cache_free+0x258/0x4b4 [ 45.650987][ C1] kfree+0xcc/0x1b8 [ 45.651975][ C1] tomoyo_path_number_perm+0x508/0x688 [ 45.653265][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 45.654416][ C1] security_file_ioctl+0x80/0xbc [ 45.655544][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 45.656708][ C1] invoke_syscall+0x98/0x2bc [ 45.657865][ C1] el0_svc_common+0x138/0x258 [ 45.659073][ C1] do_el0_svc+0x58/0x13c [ 45.660127][ C1] el0_svc+0x58/0x168 [ 45.661169][ C1] el0t_64_sync_handler+0x84/0xf0 [ 45.662416][ C1] el0t_64_sync+0x18c/0x190 [ 45.663514][ C1] irq event stamp: 56093 [ 45.664584][ C1] hardirqs last enabled at (56092): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 45.667020][ C1] hardirqs last disabled at (56093): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 45.669478][ C1] softirqs last enabled at (56050): [] local_bh_enable+0x10/0x34 [ 45.671705][ C1] softirqs last disabled at (56089): [] __do_softirq+0x14/0x20 [ 45.673916][ C1] ---[ end trace 0000000000000000 ]--- [ 45.675484][ C1] ------------[ cut here ]------------ [ 45.676767][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 45.678493][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 45.680684][ C1] Modules linked in: [ 45.681695][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 45.684087][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 45.686650][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 45.688622][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 45.689950][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 45.691270][ C1] sp : ffff80001d2b7560 [ 45.692301][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 45.694409][ C1] x26: ffff0000cbcd7100 x25: ffff0000dc1b2000 x24: 0000000000000286 [ 45.696333][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 45.698409][ C1] x20: 0000000000000a20 x19: ffff0000c316de00 x18: ffff0000d1990448 [ 45.700345][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 45.702252][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 45.704209][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 45.706083][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 45.708063][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 45.710204][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 45.712181][ C1] Call trace: [ 45.712977][ C1] usb_submit_urb+0xa44/0x1588 [ 45.714192][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 45.715536][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 45.716858][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 45.718055][ C1] dummy_timer+0x6a4/0x2770 [ 45.719144][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 45.719963][ T164] usb 1-1: USB disconnect, device number 8 [ 45.720427][ C1] hrtimer_run_softirq+0x158/0x21c [ 45.723152][ C1] handle_softirqs+0x318/0xd58 [ 45.724362][ C1] run_ksoftirqd+0x6c/0x29c [ 45.725554][ C1] smpboot_thread_fn+0x4b0/0x96c [ 45.726806][ C1] kthread+0x250/0x2d8 [ 45.727831][ C1] ret_from_fork+0x10/0x20 [ 45.728930][ C1] irq event stamp: 305591 [ 45.730052][ C1] hardirqs last enabled at (305590): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 45.732719][ C1] hardirqs last disabled at (305591): [] _raw_spin_lock_irqsave+0xa4/0xb4 executing program [ 45.735119][ C1] softirqs last enabled at (305564): [] handle_softirqs+0xb84/0xd58 [ 45.737441][ C1] softirqs last disabled at (305569): [] run_ksoftirqd+0x6c/0x29c [ 45.739695][ C1] ---[ end trace 0000000000000000 ]--- [ 45.741067][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 45.759610][ T4293] bcm5974 1-1:1.0: could not read from device [ 46.169426][ T164] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 46.349371][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 46.352163][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 46.356523][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 46.358772][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 46.361087][ T164] usb 1-1: Product: syz [ 46.362185][ T164] usb 1-1: Manufacturer: syz [ 46.363379][ T164] usb 1-1: SerialNumber: syz [ 46.370830][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input9 [ 46.768539][ T4293] ------------[ cut here ]------------ [ 46.770184][ T4293] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 46.772145][ T4293] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 46.774407][ T4293] Modules linked in: [ 46.775377][ T4293] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 46.777650][ T4293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 46.780037][ T4293] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.781777][ T4293] pc : usb_submit_urb+0xa44/0x1588 [ 46.782931][ T4293] lr : usb_submit_urb+0xa44/0x1588 [ 46.783976][ T4293] sp : ffff8000210f7390 [ 46.784832][ T4293] x29: ffff8000210f73d0 x28: 0000000000000001 x27: ffff800013788c28 [ 46.786504][ T4293] x26: ffff0000cd448400 x25: ffff0000c30d2000 x24: 0000000000000286 [ 46.788091][ T4293] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 46.789781][ T4293] x20: 0000000000000cc0 x19: ffff0000c357b000 x18: 1fffe000367a0176 [ 46.791423][ T4293] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 [ 46.793115][ T4293] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 46.794767][ T4293] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 46.796427][ T4293] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 46.798087][ T4293] x5 : ffff8000210f6c78 x4 : ffff800015b731c0 x3 : ffff800008586abc [ 46.799706][ T4293] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 46.801345][ T4293] Call trace: [ 46.802028][ T4293] usb_submit_urb+0xa44/0x1588 [ 46.802949][ T4293] bcm5974_start_traffic+0xe0/0x154 [ 46.803964][ T4293] bcm5974_open+0x98/0x134 [ 46.804865][ T4293] input_open_device+0x170/0x29c [ 46.805880][ T4293] evdev_open+0x308/0x4b4 [ 46.806761][ T4293] chrdev_open+0x3e8/0x4fc [ 46.807738][ T4293] do_dentry_open+0x734/0xfa0 [ 46.808687][ T4293] vfs_open+0x7c/0x90 [ 46.809494][ T4293] path_openat+0x1e14/0x2548 [ 46.810447][ T4293] do_filp_open+0x1bc/0x3cc [ 46.811374][ T4293] do_sys_openat2+0x128/0x3e0 [ 46.812297][ T4293] __arm64_sys_openat+0x1f0/0x240 [ 46.813310][ T4293] invoke_syscall+0x98/0x2bc [ 46.814247][ T4293] el0_svc_common+0x138/0x258 [ 46.815235][ T4293] do_el0_svc+0x58/0x13c [ 46.816203][ T4293] el0_svc+0x58/0x168 [ 46.817060][ T4293] el0t_64_sync_handler+0x84/0xf0 [ 46.818162][ T4293] el0t_64_sync+0x18c/0x190 [ 46.819176][ T4293] irq event stamp: 64680 [ 46.820081][ T4293] hardirqs last enabled at (64679): [] __up_console_sem+0xb4/0x100 [ 46.822147][ T4293] hardirqs last disabled at (64680): [] el1_dbg+0x24/0x80 [ 46.823993][ T4293] softirqs last enabled at (64664): [] handle_softirqs+0xb84/0xd58 [ 46.826055][ T4293] softirqs last disabled at (64659): [] __do_softirq+0x14/0x20 [ 46.827960][ T4293] ---[ end trace 0000000000000000 ]--- [ 46.829374][ C1] ------------[ cut here ]------------ [ 46.830554][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 46.832239][ C1] WARNING: CPU: 1 PID: 4293 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 46.834246][ C1] Modules linked in: [ 46.835107][ C1] CPU: 1 PID: 4293 Comm: udevd Tainted: G W 6.1.128-syzkaller #0 [ 46.836988][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 46.839121][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.840780][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 46.841861][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 46.842954][ C1] sp : ffff8000080177a0 [ 46.843858][ C1] x29: ffff8000080177e0 x28: 0000000000000001 x27: ffff800013788c28 [ 46.845546][ C1] x26: ffff0000cd448400 x25: ffff0000c30d2000 x24: 0000000000000286 [ 46.847291][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 46.848978][ C1] x20: 0000000000000a20 x19: ffff0000c357b000 x18: ffff0000d1990448 [ 46.850667][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 46.852379][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 46.854080][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 1981f7a51ff4e600 [ 46.855731][ C1] x8 : 1981f7a51ff4e600 x7 : 0000000000000001 x6 : 0000000000000001 [ 46.857444][ C1] x5 : ffff800008017098 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 46.859089][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 46.860687][ C1] Call trace: [ 46.861358][ C1] usb_submit_urb+0xa44/0x1588 [ 46.862317][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 46.863384][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 46.864496][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 46.865635][ C1] dummy_timer+0x6a4/0x2770 [ 46.866611][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 46.867721][ C1] hrtimer_run_softirq+0x158/0x21c [ 46.868817][ C1] handle_softirqs+0x318/0xd58 [ 46.869854][ C1] __do_softirq+0x14/0x20 [ 46.870765][ C1] ____do_softirq+0x14/0x20 [ 46.871771][ C1] call_on_irq_stack+0x24/0x4c [ 46.872842][ C1] do_softirq_own_stack+0x20/0x2c [ 46.873949][ C1] __irq_exit_rcu+0x264/0x4d4 [ 46.874961][ C1] irq_exit_rcu+0x14/0x84 [ 46.875925][ C1] el1_interrupt+0x38/0x68 [ 46.876859][ C1] el1h_64_irq_handler+0x18/0x24 [ 46.877937][ C1] el1h_64_irq+0x64/0x68 [ 46.878829][ C1] string+0x170/0x264 [ 46.879668][ C1] vsnprintf+0xe9c/0x1a8c [ 46.880596][ C1] tomoyo_supervisor+0x11c/0x1070 [ 46.881705][ C1] tomoyo_path_number_perm+0x498/0x688 [ 46.882974][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 46.883992][ C1] security_file_ioctl+0x80/0xbc [ 46.885030][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 46.886102][ C1] invoke_syscall+0x98/0x2bc [ 46.887160][ C1] el0_svc_common+0x138/0x258 [ 46.888226][ C1] do_el0_svc+0x58/0x13c [ 46.889139][ C1] el0_svc+0x58/0x168 [ 46.890051][ C1] el0t_64_sync_handler+0x84/0xf0 [ 46.891112][ C1] el0t_64_sync+0x18c/0x190 [ 46.892120][ C1] irq event stamp: 64739 [ 46.893053][ C1] hardirqs last enabled at (64738): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 46.895286][ C1] hardirqs last disabled at (64739): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 46.897448][ C1] softirqs last enabled at (64724): [] handle_softirqs+0xb84/0xd58 [ 46.899517][ C1] softirqs last disabled at (64735): [] __do_softirq+0x14/0x20 [ 46.901538][ C1] ---[ end trace 0000000000000000 ]--- [ 46.902929][ C1] ------------[ cut here ]------------ [ 46.904086][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 46.905865][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 46.907884][ C1] Modules linked in: [ 46.908716][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 46.910813][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 46.913114][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.914860][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 46.915998][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 46.917131][ C1] sp : ffff80001d2b7560 [ 46.918030][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 46.919816][ C1] x26: ffff0000cd448400 x25: ffff0000c30d2000 x24: 0000000000000286 [ 46.921578][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 46.923410][ C1] x20: 0000000000000a20 x19: ffff0000c357b000 x18: ffff0000d1990448 [ 46.925173][ C1] x17: 0000000000000000 x16: ffff80001227ecc0 x15: 0000000000000000 [ 46.926922][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 46.928712][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 46.930457][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 46.932211][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff800008349ec8 [ 46.933980][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 46.935740][ C1] Call trace: [ 46.936436][ C1] usb_submit_urb+0xa44/0x1588 [ 46.937460][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 46.938580][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 46.939743][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 46.940892][ C1] dummy_timer+0x6a4/0x2770 [ 46.941870][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 46.943024][ C1] hrtimer_run_softirq+0x158/0x21c [ 46.944154][ C1] handle_softirqs+0x318/0xd58 [ 46.945197][ C1] run_ksoftirqd+0x6c/0x29c [ 46.946186][ C1] smpboot_thread_fn+0x4b0/0x96c [ 46.947293][ C1] kthread+0x250/0x2d8 [ 46.948174][ C1] ret_from_fork+0x10/0x20 [ 46.949199][ C1] irq event stamp: 306927 [ 46.950158][ C1] hardirqs last enabled at (306926): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 46.952459][ C1] hardirqs last disabled at (306927): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 46.954698][ C1] softirqs last enabled at (306906): [] handle_softirqs+0xb84/0xd58 [ 46.956815][ C1] softirqs last disabled at (306911): [] run_ksoftirqd+0x6c/0x29c [ 46.958847][ C1] ---[ end trace 0000000000000000 ]--- [ 46.961910][ C1] ------------[ cut here ]------------ [ 46.963095][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 46.964771][ C1] WARNING: CPU: 1 PID: 21 at drivers/usb/core/urb.c:505 usb_submit_urb+0xa44/0x1588 [ 46.966717][ C1] Modules linked in: [ 46.967533][ C1] CPU: 1 PID: 21 Comm: ksoftirqd/1 Tainted: G W 6.1.128-syzkaller #0 [ 46.969502][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 46.971584][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 46.973007][ T164] usb 1-1: USB disconnect, device number 9 [ 46.973127][ C1] pc : usb_submit_urb+0xa44/0x1588 [ 46.975478][ C1] lr : usb_submit_urb+0xa44/0x1588 [ 46.976567][ C1] sp : ffff80001d2b7560 [ 46.977466][ C1] x29: ffff80001d2b75a0 x28: 0000000000000001 x27: ffff800013788c28 [ 46.979189][ C1] x26: ffff0000cd448400 x25: ffff0000c30d2000 x24: 0000000000000286 [ 46.981056][ C1] x23: ffff80001378f540 x22: dfff800000000000 x21: 0000000000000002 [ 46.982773][ C1] x20: 0000000000000a20 x19: ffff0000c357b000 x18: ffff0000d1990448 [ 46.984595][ C1] x17: 0000000000000000 x16: ffff8000123313e4 x15: 0000000000000000 executing program [ 46.986521][ C1] x14: 00000000ffffffff x13: 0000000000000001 x12: 0000000000000001 [ 46.988520][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : cbd9b3b72d8f3900 [ 46.990468][ C1] x8 : cbd9b3b72d8f3900 x7 : 0000000000000001 x6 : 0000000000000001 [ 46.992403][ C1] x5 : ffff80001d2b6e58 x4 : ffff800015b731c0 x3 : ffff80000ab33fec [ 46.994474][ C1] x2 : ffff0001b3d00cd0 x1 : 0000000000000100 x0 : 0000000000000000 [ 46.996388][ C1] Call trace: [ 46.997176][ C1] usb_submit_urb+0xa44/0x1588 [ 46.998246][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 46.999467][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 47.000704][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 47.001979][ C1] dummy_timer+0x6a4/0x2770 [ 47.003081][ C1] __hrtimer_run_queues+0x4b0/0xdc0 [ 47.004224][ C1] hrtimer_run_softirq+0x158/0x21c [ 47.005297][ C1] handle_softirqs+0x318/0xd58 [ 47.006320][ C1] run_ksoftirqd+0x6c/0x29c [ 47.007323][ C1] smpboot_thread_fn+0x4b0/0x96c [ 47.008399][ C1] kthread+0x250/0x2d8 [ 47.009261][ C1] ret_from_fork+0x10/0x20 [ 47.010238][ C1] irq event stamp: 306961 [ 47.011161][ C1] hardirqs last enabled at (306960): [] _raw_spin_unlock_irqrestore+0x48/0xac [ 47.013633][ C1] hardirqs last disabled at (306961): [] _raw_spin_lock_irqsave+0xa4/0xb4 [ 47.015806][ C1] softirqs last enabled at (306936): [] handle_softirqs+0xb84/0xd58 [ 47.018113][ C1] softirqs last disabled at (306941): [] run_ksoftirqd+0x6c/0x29c [ 47.020122][ C1] ---[ end trace 0000000000000000 ]--- [ 47.021443][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 47.039510][ T4293] bcm5974 1-1:1.0: could not read from device [ 47.469490][ T164] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 47.649421][ T164] usb 1-1: Using ep0 maxpacket: 16 [ 47.652081][ T164] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 47.656042][ T164] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 47.658008][ T164] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 47.659880][ T164] usb 1-1: Product: syz [ 47.660770][ T164] usb 1-1: Manufacturer: syz [ 47.661738][ T164] usb 1-1: SerialNumber: syz [ 47.666698][ T164] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input10