Warning: Permanently added '10.128.0.164' (ED25519) to the list of known hosts. 2024/10/27 03:51:04 ignoring optional flag "sandboxArg"="0" 2024/10/27 03:51:04 ignoring optional flag "type"="gce" 2024/10/27 03:51:04 parsed 1 programs [ 52.965011][ T4084] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SSFS 2024/10/27 03:51:04 executed programs: 0 [ 53.036786][ T4091] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.038229][ T4091] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.039766][ T4091] device bridge_slave_0 entered promiscuous mode [ 53.041411][ T4091] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.042874][ T4091] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.044955][ T4091] device bridge_slave_1 entered promiscuous mode [ 53.067579][ T4091] team0: Port device team_slave_0 added [ 53.069050][ T4091] team0: Port device team_slave_1 added [ 53.123689][ T4091] device hsr_slave_0 entered promiscuous mode [ 53.163081][ T4091] device hsr_slave_1 entered promiscuous mode [ 53.946717][ T4091] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 54.003552][ T4091] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 54.023689][ T4091] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 54.073570][ T4091] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 54.184349][ T4091] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.189210][ T4091] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 54.191378][ T4091] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 54.194708][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 54.196256][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.197753][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 54.199424][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.201103][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.202623][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.204863][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 54.206715][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 54.208411][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.209719][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.211301][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 54.213239][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 54.214891][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 54.216602][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 54.218552][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 54.220474][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 54.222203][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 54.224407][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 54.227122][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 54.228775][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 54.230470][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 54.337675][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 54.339499][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 54.342741][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 54.344948][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 54.346812][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 54.348481][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 54.350712][ T4091] device veth0_vlan entered promiscuous mode [ 54.352803][ T4091] device veth1_vlan entered promiscuous mode [ 54.356917][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 54.358670][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 54.360326][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 54.362026][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 54.364907][ T4091] device veth0_macvtap entered promiscuous mode [ 54.366696][ T4091] device veth1_macvtap entered promiscuous mode [ 54.369829][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 54.371413][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 54.373437][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 54.375195][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 54.377039][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 54.378903][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 54.445880][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.447379][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.448882][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 54.456745][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 54.458338][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 54.459687][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 54.773018][ T3727] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 55.133034][ T3727] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 55.134784][ T3727] usb 1-1: config 0 has no interface number 0 [ 55.136024][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 55.138096][ T3727] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 55.140249][ T3727] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 55.142339][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 55.303226][ T3727] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 55.305046][ T3727] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 55.306648][ T3727] usb 1-1: Product: syz [ 55.307467][ T3727] usb 1-1: Manufacturer: syz [ 55.308288][ T3727] usb 1-1: SerialNumber: syz [ 55.309681][ T3727] usb 1-1: config 0 descriptor?? [ 55.323101][ T4408] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 55.343803][ T3727] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input2 [ 55.783317][ T4133] ------------[ cut here ]------------ [ 55.784476][ T4133] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 55.785832][ T4133] WARNING: CPU: 0 PID: 4133 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 55.787834][ T4133] Modules linked in: [ 55.788511][ T4133] CPU: 0 PID: 4133 Comm: udevd Not tainted 6.1.114-syzkaller #0 [ 55.790081][ T4133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 55.792185][ T4133] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 55.793729][ T4133] pc : usb_submit_urb+0x594/0x9b4 [ 55.794723][ T4133] lr : usb_submit_urb+0x594/0x9b4 [ 55.795790][ T4133] sp : ffff80001269b8e0 [ 55.796625][ T4133] x29: ffff80001269b8f0 x28: ffff0000c64d6800 x27: ffff0000cd4d955c [ 55.798283][ T4133] x26: ffff80000ce59db0 x25: ffff0000c64d68a8 x24: ffff0000cfe52080 [ 55.799912][ T4133] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 55.801670][ T4133] x20: 0000000000000cc0 x19: ffff0000cd4d9500 x18: ffff80000bd4d2cc [ 55.803409][ T4133] x17: 0000000000030000 x16: 000000000000014e x15: 0000000000000000 [ 55.805023][ T4133] x14: 0000000000000000 x13: 205d333331345420 x12: ffff80000e68a000 [ 55.806819][ T4133] x11: 0000000000ff0100 x10: 0000000000000000 x9 : c62d36266a4e0500 [ 55.808405][ T4133] x8 : c62d36266a4e0500 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 55.809987][ T4133] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 55.811604][ T4133] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 55.813234][ T4133] Call trace: [ 55.813963][ T4133] usb_submit_urb+0x594/0x9b4 [ 55.814982][ T4133] bcm5974_start_traffic+0xa0/0xfc [ 55.816060][ T4133] bcm5974_open+0x5c/0xb4 [ 55.817019][ T4133] input_open_device+0xe8/0x14c [ 55.817951][ T4133] evdev_open+0x1b4/0x258 [ 55.818814][ T4133] chrdev_open+0x27c/0x2b0 [ 55.819706][ T4133] do_dentry_open+0x36c/0x6f8 [ 55.820644][ T4133] vfs_open+0x38/0x48 [ 55.821547][ T4133] path_openat+0xf04/0x1328 [ 55.822435][ T4133] do_filp_open+0xd0/0x1a8 [ 55.823367][ T4133] do_sys_openat2+0xb8/0x234 [ 55.824417][ T4133] __arm64_sys_openat+0xb0/0xe0 [ 55.825441][ T4133] invoke_syscall+0x64/0x178 [ 55.826516][ T4133] el0_svc_common+0xb8/0x174 [ 55.827475][ T4133] do_el0_svc+0x48/0x174 [ 55.828387][ T4133] el0_svc+0x34/0x110 [ 55.829162][ T4133] el0t_64_sync_handler+0x84/0xf0 [ 55.830155][ T4133] el0t_64_sync+0x18c/0x190 [ 55.831095][ T4133] ---[ end trace 0000000000000000 ]--- [ 55.842998][ C0] ------------[ cut here ]------------ [ 55.844155][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 55.845624][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 55.847448][ C0] Modules linked in: [ 55.848187][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 55.850027][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 55.852088][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 55.853659][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 55.854711][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 55.855746][ C0] sp : ffff800008003b90 [ 55.856758][ C0] x29: ffff800008003ba0 x28: ffff0000c64d6800 x27: ffff0000cd4d955c [ 55.858633][ C0] x26: ffff80000ce59db0 x25: ffff0000c64d68a8 x24: ffff0000cfe52080 [ 55.860314][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 55.861854][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9500 x18: 0000000000000000 [ 55.863517][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 55.865227][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 55.866810][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 55.868519][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 55.870197][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 55.871914][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 55.873749][ C0] Call trace: [ 55.874509][ C0] usb_submit_urb+0x594/0x9b4 [ 55.875465][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 55.876583][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 55.877677][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 55.878813][ C0] dummy_timer+0x2c8/0x102c [ 55.879786][ C0] call_timer_fn+0x7c/0x15c [ 55.880795][ C0] __run_timers+0x60c/0x6f8 [ 55.881704][ C0] run_timer_softirq+0x34/0x5c [ 55.882728][ C0] handle_softirqs+0x104/0x264 [ 55.883681][ C0] __do_softirq+0x14/0x20 [ 55.884480][ C0] ____do_softirq+0x14/0x20 [ 55.885471][ C0] call_on_irq_stack+0x24/0x4c [ 55.886495][ C0] do_softirq_own_stack+0x20/0x2c [ 55.887528][ C0] __irq_exit_rcu+0xb0/0x124 [ 55.888589][ C0] irq_exit_rcu+0x10/0x1c [ 55.889398][ C0] el1_interrupt+0x38/0x68 [ 55.890398][ C0] el1h_64_irq_handler+0x18/0x24 [ 55.891377][ C0] el1h_64_irq+0x64/0x68 [ 55.892220][ C0] arch_local_irq_enable+0xc/0x18 [ 55.893204][ C0] do_idle+0x110/0x2d8 [ 55.894021][ C0] cpu_startup_entry+0x34/0x38 [ 55.895056][ C0] kernel_init+0x0/0x290 [ 55.895955][ C0] start_kernel+0x0/0x4c0 [ 55.896829][ C0] start_kernel+0x30c/0x4c0 [ 55.897922][ C0] __primary_switched+0xb4/0xbc [ 55.898955][ C0] ---[ end trace 0000000000000000 ]--- [ 55.900114][ C0] ------------[ cut here ]------------ [ 55.901170][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 55.902627][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 55.904416][ C0] Modules linked in: [ 55.905197][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 55.907170][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 55.909285][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 55.910876][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 55.911944][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 55.913035][ C0] sp : ffff800008003b90 [ 55.913873][ C0] x29: ffff800008003ba0 x28: ffff0000c64d6800 x27: ffff0000cd4d955c [ 55.915595][ C0] x26: ffff80000ce59db0 x25: ffff0000c64d68a8 x24: ffff0000cfe52080 [ 55.917324][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 55.918864][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9500 x18: ffff80000bd4d2cc [ 55.920523][ C0] x17: 0000000000000000 x16: 000000000000000a x15: 0000000000000000 [ 55.922075][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 55.923650][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 55.925422][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 55.927038][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 55.928706][ C0] x2 : ffff0001fe9ddba8 x1 : 0000000000000101 x0 : 0000000000000000 [ 55.930310][ C0] Call trace: [ 55.930910][ C0] usb_submit_urb+0x594/0x9b4 [ 55.931945][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 55.932972][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 55.934006][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 55.935034][ C0] dummy_timer+0x2c8/0x102c [ 55.935968][ C0] call_timer_fn+0x7c/0x15c [ 55.936875][ C0] __run_timers+0x60c/0x6f8 [ 55.937889][ C0] run_timer_softirq+0x34/0x5c [ 55.938844][ C0] handle_softirqs+0x104/0x264 [ 55.939914][ C0] __do_softirq+0x14/0x20 [ 55.940852][ C0] ____do_softirq+0x14/0x20 [ 55.941790][ C0] call_on_irq_stack+0x24/0x4c [ 55.942686][ C0] do_softirq_own_stack+0x20/0x2c [ 55.943727][ C0] __irq_exit_rcu+0xb0/0x124 [ 55.944653][ C0] irq_exit_rcu+0x10/0x1c [ 55.945493][ C0] el1_interrupt+0x38/0x68 [ 55.946500][ C0] el1h_64_irq_handler+0x18/0x24 [ 55.947470][ C0] el1h_64_irq+0x64/0x68 [ 55.948296][ C0] arch_local_irq_enable+0xc/0x18 [ 55.949288][ C0] do_idle+0x110/0x2d8 [ 55.950120][ C0] cpu_startup_entry+0x34/0x38 [ 55.951100][ C0] kernel_init+0x0/0x290 [ 55.951947][ C0] start_kernel+0x0/0x4c0 [ 55.952858][ C0] start_kernel+0x30c/0x4c0 [ 55.953724][ C0] __primary_switched+0xb4/0xbc [ 55.954650][ C0] ---[ end trace 0000000000000000 ]--- [ 55.973085][ C0] ------------[ cut here ]------------ [ 55.974277][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 55.975702][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 55.977527][ C0] Modules linked in: [ 55.978364][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 55.980218][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 55.982245][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 55.983859][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 55.984865][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 55.985864][ C0] sp : ffff800008003b90 [ 55.986676][ C0] x29: ffff800008003ba0 x28: ffff0000c64d6800 x27: ffff0000cd4d955c [ 55.988409][ C0] x26: ffff80000ce59db0 x25: ffff0000c64d68a8 x24: ffff0000cfe52080 [ 55.990095][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 55.991618][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9500 x18: 00000000011dcf07 [ 55.993361][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 55.994930][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 55.996478][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 55.998062][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 55.999767][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 56.001343][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 56.002920][ C0] Call trace: [ 56.003621][ C0] usb_submit_urb+0x594/0x9b4 [ 56.004569][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 56.005715][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 56.006872][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 56.007924][ C0] dummy_timer+0x2c8/0x102c [ 56.008860][ C0] call_timer_fn+0x7c/0x15c [ 56.009837][ C0] __run_timers+0x60c/0x6f8 [ 56.010811][ C0] run_timer_softirq+0x34/0x5c [ 56.011765][ C0] handle_softirqs+0x104/0x264 [ 56.012689][ C0] __do_softirq+0x14/0x20 [ 56.013575][ C0] ____do_softirq+0x14/0x20 [ 56.014580][ C0] call_on_irq_stack+0x24/0x4c [ 56.015501][ C0] do_softirq_own_stack+0x20/0x2c [ 56.016614][ C0] __irq_exit_rcu+0xb0/0x124 [ 56.017653][ C0] irq_exit_rcu+0x10/0x1c [ 56.018542][ C0] el1_interrupt+0x38/0x68 [ 56.019610][ C0] el1h_64_irq_handler+0x18/0x24 [ 56.020589][ C0] el1h_64_irq+0x64/0x68 [ 56.021358][ C0] arch_local_irq_enable+0xc/0x18 [ 56.022454][ C0] do_idle+0x110/0x2d8 [ 56.023320][ C0] cpu_startup_entry+0x34/0x38 [ 56.024294][ C0] kernel_init+0x0/0x290 [ 56.025197][ C0] start_kernel+0x0/0x4c0 [ 56.026076][ C0] start_kernel+0x30c/0x4c0 [ 56.026914][ C0] __primary_switched+0xb4/0xbc [ 56.027922][ C0] ---[ end trace 0000000000000000 ]--- [ 56.029111][ C0] ------------[ cut here ]------------ [ 56.029582][ T23] usb 1-1: USB disconnect, device number 2 [ 56.030251][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 56.032870][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 56.034757][ C0] Modules linked in: [ 56.035558][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 56.037515][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 56.039605][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 56.041301][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 56.042397][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 56.043423][ C0] sp : ffff800008003b90 [ 56.044387][ C0] x29: ffff800008003ba0 x28: ffff0000c64d6800 x27: ffff0000cd4d955c [ 56.045928][ C0] x26: ffff80000ce59db0 x25: ffff0000c64d68a8 x24: ffff0000cfe52080 [ 56.047468][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 56.049117][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9500 x18: 00000000011dcf07 [ 56.050685][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 56.052264][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 56.053853][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 56.055493][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 56.057074][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 56.058582][ C0] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 56.060241][ C0] Call trace: [ 56.061085][ C0] usb_submit_urb+0x594/0x9b4 [ 56.062041][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 56.063342][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 56.064468][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 56.065610][ C0] dummy_timer+0x2c8/0x102c [ 56.066554][ C0] call_timer_fn+0x7c/0x15c [ 56.067429][ C0] __run_timers+0x60c/0x6f8 [ 56.068488][ C0] run_timer_softirq+0x34/0x5c [ 56.069481][ C0] handle_softirqs+0x104/0x264 [ 56.070548][ C0] __do_softirq+0x14/0x20 [ 56.071457][ C0] ____do_softirq+0x14/0x20 [ 56.072451][ C0] call_on_irq_stack+0x24/0x4c [ 56.073560][ C0] do_softirq_own_stack+0x20/0x2c [ 56.074504][ C0] __irq_exit_rcu+0xb0/0x124 [ 56.075463][ C0] irq_exit_rcu+0x10/0x1c [ 56.076370][ C0] el1_interrupt+0x38/0x68 [ 56.077356][ C0] el1h_64_irq_handler+0x18/0x24 [ 56.078326][ C0] el1h_64_irq+0x64/0x68 [ 56.079234][ C0] arch_local_irq_enable+0xc/0x18 [ 56.080343][ C0] do_idle+0x110/0x2d8 [ 56.081278][ C0] cpu_startup_entry+0x34/0x38 [ 56.082259][ C0] kernel_init+0x0/0x290 [ 56.083158][ C0] start_kernel+0x0/0x4c0 [ 56.084074][ C0] start_kernel+0x30c/0x4c0 [ 56.085067][ C0] __primary_switched+0xb4/0xbc [ 56.086242][ C0] ---[ end trace 0000000000000000 ]--- [ 56.087538][ C0] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 56.089102][ T4133] bcm5974 1-1:0.10: could not read from device [ 56.893000][ T21] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 57.293042][ T21] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 57.294746][ T21] usb 1-1: config 0 has no interface number 0 [ 57.296008][ T21] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 57.297992][ T21] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 57.300003][ T21] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 57.301943][ T21] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 57.473104][ T21] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 57.475073][ T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 57.476761][ T21] usb 1-1: Product: syz [ 57.477577][ T21] usb 1-1: Manufacturer: syz [ 57.478538][ T21] usb 1-1: SerialNumber: syz [ 57.479941][ T21] usb 1-1: config 0 descriptor?? [ 57.493085][ T4509] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 57.513683][ T21] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input3 [ 57.943091][ T4133] ------------[ cut here ]------------ [ 57.944230][ T4133] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 57.945719][ T4133] WARNING: CPU: 1 PID: 4133 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 57.947842][ T4133] Modules linked in: [ 57.948685][ T4133] CPU: 1 PID: 4133 Comm: udevd Tainted: G W 6.1.114-syzkaller #0 [ 57.950655][ T4133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 57.952807][ T4133] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 57.954530][ T4133] pc : usb_submit_urb+0x594/0x9b4 [ 57.955583][ T4133] lr : usb_submit_urb+0x594/0x9b4 [ 57.956569][ T4133] sp : ffff80001269b8e0 [ 57.957394][ T4133] x29: ffff80001269b8f0 x28: ffff0000cfdd6800 x27: ffff0000cd40455c [ 57.959192][ T4133] x26: ffff80000ce59db0 x25: ffff0000cfdd68a8 x24: ffff0000c9fa4400 [ 57.960826][ T4133] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 57.962507][ T4133] x20: 0000000000000cc0 x19: ffff0000cd404500 x18: ffff80000bd4d2cc [ 57.964133][ T4133] x17: 0000000000028000 x16: 0000000000000038 x15: 0000000000000000 [ 57.965674][ T4133] x14: 0000000000000000 x13: 205d333331345420 x12: ffff80000e68a000 [ 57.967320][ T4133] x11: 0000000000ff0100 x10: 0000000000000000 x9 : c62d36266a4e0500 [ 57.969002][ T4133] x8 : c62d36266a4e0500 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 57.970553][ T4133] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 57.972366][ T4133] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 57.974119][ T4133] Call trace: [ 57.974759][ T4133] usb_submit_urb+0x594/0x9b4 [ 57.975753][ T4133] bcm5974_start_traffic+0xa0/0xfc [ 57.976730][ T4133] bcm5974_open+0x5c/0xb4 [ 57.977594][ T4133] input_open_device+0xe8/0x14c [ 57.978549][ T4133] evdev_open+0x1b4/0x258 [ 57.979368][ T4133] chrdev_open+0x27c/0x2b0 [ 57.980159][ T4133] do_dentry_open+0x36c/0x6f8 [ 57.981077][ T4133] vfs_open+0x38/0x48 [ 57.981907][ T4133] path_openat+0xf04/0x1328 [ 57.982699][ T4133] do_filp_open+0xd0/0x1a8 [ 57.983629][ T4133] do_sys_openat2+0xb8/0x234 [ 57.984652][ T4133] __arm64_sys_openat+0xb0/0xe0 [ 57.985665][ T4133] invoke_syscall+0x64/0x178 [ 57.986587][ T4133] el0_svc_common+0xb8/0x174 [ 57.987659][ T4133] do_el0_svc+0x48/0x174 [ 57.988616][ T4133] el0_svc+0x34/0x110 [ 57.989383][ T4133] el0t_64_sync_handler+0x84/0xf0 [ 57.990339][ T4133] el0t_64_sync+0x18c/0x190 [ 57.991297][ T4133] ---[ end trace 0000000000000000 ]--- [ 58.003003][ C1] ------------[ cut here ]------------ [ 58.004095][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 58.005491][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 58.007167][ C1] Modules linked in: [ 58.007968][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.1.114-syzkaller #0 [ 58.009799][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 58.011646][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 58.013122][ C1] pc : usb_submit_urb+0x594/0x9b4 [ 58.014149][ C1] lr : usb_submit_urb+0x594/0x9b4 [ 58.015107][ C1] sp : ffff80000800bb90 [ 58.015957][ C1] x29: ffff80000800bba0 x28: ffff0000cfdd6800 x27: ffff0000cd40455c [ 58.017690][ C1] x26: ffff80000ce59db0 x25: ffff0000cfdd68a8 x24: ffff0000c9fa4400 [ 58.019352][ C1] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 58.020914][ C1] x20: 0000000000000a20 x19: ffff0000cd404500 x18: 0000000000000000 [ 58.022456][ C1] x17: ffff8001f1623000 x16: ffff800008008000 x15: 0000000000000000 [ 58.024030][ C1] x14: 0000000000000000 x13: 205d314320202020 x12: ffff80000e68a000 [ 58.025538][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 328085ed10888e00 [ 58.027073][ C1] x8 : 328085ed10888e00 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 58.028628][ C1] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 58.030302][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 58.031980][ C1] Call trace: [ 58.032654][ C1] usb_submit_urb+0x594/0x9b4 [ 58.033634][ C1] bcm5974_irq_trackpad+0x138/0x524 [ 58.034560][ C1] __usb_hcd_giveback_urb+0x16c/0x244 [ 58.035638][ C1] usb_hcd_giveback_urb+0x78/0x238 [ 58.036658][ C1] dummy_timer+0x2c8/0x102c [ 58.037595][ C1] call_timer_fn+0x7c/0x15c [ 58.038584][ C1] __run_timers+0x60c/0x6f8 [ 58.039554][ C1] run_timer_softirq+0x34/0x5c [ 58.040641][ C1] handle_softirqs+0x104/0x264 [ 58.041664][ C1] __do_softirq+0x14/0x20 [ 58.042596][ C1] ____do_softirq+0x14/0x20 [ 58.043453][ C1] call_on_irq_stack+0x24/0x4c [ 58.044360][ C1] do_softirq_own_stack+0x20/0x2c [ 58.045438][ C1] __irq_exit_rcu+0xb0/0x124 [ 58.046326][ C1] irq_exit_rcu+0x10/0x1c [ 58.047121][ C1] el1_interrupt+0x38/0x68 [ 58.048168][ C1] el1h_64_irq_handler+0x18/0x24 [ 58.049239][ C1] el1h_64_irq+0x64/0x68 [ 58.050269][ C1] arch_local_irq_enable+0xc/0x18 [ 58.051430][ C1] do_idle+0x110/0x2d8 [ 58.052450][ C1] cpu_startup_entry+0x34/0x38 [ 58.053498][ C1] secondary_start_kernel+0x150/0x178 [ 58.054642][ C1] __secondary_switched+0xb0/0xb4 [ 58.055820][ C1] ---[ end trace 0000000000000000 ]--- [ 58.057139][ C1] ------------[ cut here ]------------ [ 58.058245][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 58.059657][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 58.061564][ C1] Modules linked in: [ 58.062296][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.1.114-syzkaller #0 [ 58.064509][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 58.066810][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 58.068516][ C1] pc : usb_submit_urb+0x594/0x9b4 [ 58.069657][ C1] lr : usb_submit_urb+0x594/0x9b4 [ 58.070691][ C1] sp : ffff80000800bb90 [ 58.071666][ C1] x29: ffff80000800bba0 x28: ffff0000cfdd6800 x27: ffff0000cd40455c [ 58.073268][ C1] x26: ffff80000ce59db0 x25: ffff0000cfdd68a8 x24: ffff0000c9fa4400 [ 58.074848][ C1] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 58.076428][ C1] x20: 0000000000000a20 x19: ffff0000cd404500 x18: ffff80000bd4d2cc [ 58.078173][ C1] x17: 0000000000068000 x16: 000000000000001a x15: 0000000000000000 [ 58.079887][ C1] x14: 0000000000000000 x13: 205d314320202020 x12: ffff80000e68a000 [ 58.081610][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 328085ed10888e00 [ 58.083318][ C1] x8 : 328085ed10888e00 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 58.084985][ C1] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 58.086658][ C1] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 58.088424][ C1] Call trace: [ 58.089095][ C1] usb_submit_urb+0x594/0x9b4 [ 58.090062][ C1] bcm5974_irq_trackpad+0x138/0x524 [ 58.091086][ C1] __usb_hcd_giveback_urb+0x16c/0x244 [ 58.092166][ C1] usb_hcd_giveback_urb+0x78/0x238 [ 58.093219][ C1] dummy_timer+0x2c8/0x102c [ 58.094108][ C1] call_timer_fn+0x7c/0x15c [ 58.095002][ C1] __run_timers+0x60c/0x6f8 [ 58.095824][ C1] run_timer_softirq+0x34/0x5c [ 58.096821][ C1] handle_softirqs+0x104/0x264 [ 58.097721][ C1] __do_softirq+0x14/0x20 [ 58.098651][ C1] ____do_softirq+0x14/0x20 [ 58.099568][ C1] call_on_irq_stack+0x24/0x4c [ 58.100471][ C1] do_softirq_own_stack+0x20/0x2c [ 58.101518][ C1] __irq_exit_rcu+0xb0/0x124 [ 58.102563][ C1] irq_exit_rcu+0x10/0x1c [ 58.103425][ C1] el1_interrupt+0x38/0x68 [ 58.104316][ C1] el1h_64_irq_handler+0x18/0x24 [ 58.105417][ C1] el1h_64_irq+0x64/0x68 [ 58.106280][ C1] arch_local_irq_enable+0xc/0x18 [ 58.107400][ C1] do_idle+0x110/0x2d8 [ 58.108190][ C1] cpu_startup_entry+0x34/0x38 [ 58.109190][ C1] secondary_start_kernel+0x150/0x178 [ 58.110281][ C1] __secondary_switched+0xb0/0xb4 [ 58.111313][ C1] ---[ end trace 0000000000000000 ]--- [ 58.112421][ C1] ------------[ cut here ]------------ [ 58.113591][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 58.114940][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 58.116791][ C1] Modules linked in: [ 58.117539][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.1.114-syzkaller #0 [ 58.119418][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 58.121365][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 58.123034][ C1] pc : usb_submit_urb+0x594/0x9b4 [ 58.124036][ C1] lr : usb_submit_urb+0x594/0x9b4 [ 58.125010][ C1] sp : ffff80000800bb90 [ 58.125858][ C1] x29: ffff80000800bba0 x28: ffff0000cfdd6800 x27: ffff0000cd40455c [ 58.127423][ C1] x26: ffff80000ce59db0 x25: ffff0000cfdd68a8 x24: ffff0000c9fa4400 [ 58.129072][ C1] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 58.130665][ C1] x20: 0000000000000a20 x19: ffff0000cd404500 x18: ffff80000bd4d2cc [ 58.132229][ C1] x17: 0000000000068000 x16: 000000000000001a x15: 0000000000000000 [ 58.133730][ C1] x14: 0000000000000000 x13: 205d314320202020 x12: ffff80000e68a000 [ 58.135433][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 328085ed10888e00 [ 58.137046][ C1] x8 : 328085ed10888e00 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 58.138555][ C1] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 58.140160][ C1] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 58.141855][ C1] Call trace: [ 58.142472][ C1] usb_submit_urb+0x594/0x9b4 [ 58.143399][ C1] bcm5974_irq_trackpad+0x138/0x524 [ 58.144454][ C1] __usb_hcd_giveback_urb+0x16c/0x244 [ 58.145521][ C1] usb_hcd_giveback_urb+0x78/0x238 [ 58.146454][ C1] dummy_timer+0x2c8/0x102c [ 58.147376][ C1] call_timer_fn+0x7c/0x15c [ 58.148265][ C1] __run_timers+0x60c/0x6f8 [ 58.149173][ C1] run_timer_softirq+0x34/0x5c [ 58.150155][ C1] handle_softirqs+0x104/0x264 [ 58.151076][ C1] __do_softirq+0x14/0x20 [ 58.151956][ C1] ____do_softirq+0x14/0x20 [ 58.152858][ C1] call_on_irq_stack+0x24/0x4c [ 58.153766][ C1] do_softirq_own_stack+0x20/0x2c [ 58.154707][ C1] __irq_exit_rcu+0xb0/0x124 [ 58.155581][ C1] irq_exit_rcu+0x10/0x1c [ 58.156485][ C1] el1_interrupt+0x38/0x68 [ 58.157316][ C1] el1h_64_irq_handler+0x18/0x24 [ 58.158298][ C1] el1h_64_irq+0x64/0x68 [ 58.159109][ C1] arch_local_irq_enable+0xc/0x18 [ 58.160161][ C1] do_idle+0x110/0x2d8 [ 58.161085][ C1] cpu_startup_entry+0x34/0x38 [ 58.162060][ C1] secondary_start_kernel+0x150/0x178 [ 58.163152][ C1] __secondary_switched+0xb0/0xb4 [ 58.164081][ C1] ---[ end trace 0000000000000000 ]--- [ 58.165824][ T21] usb 1-1: USB disconnect, device number 3 [ 58.183024][ T4133] bcm5974 1-1:0.10: could not read from device 2024/10/27 03:51:10 executed programs: 2 [ 58.983001][ T3727] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 59.343054][ T3727] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 59.344747][ T3727] usb 1-1: config 0 has no interface number 0 [ 59.345913][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 59.348125][ T3727] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 59.350375][ T3727] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 59.352304][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 59.513072][ T3727] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 59.515288][ T3727] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 59.517018][ T3727] usb 1-1: Product: syz [ 59.517876][ T3727] usb 1-1: Manufacturer: syz [ 59.518879][ T3727] usb 1-1: SerialNumber: syz [ 59.521539][ T3727] usb 1-1: config 0 descriptor?? [ 59.533083][ T4511] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 59.554230][ T3727] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input4 [ 59.993033][ T4133] ------------[ cut here ]------------ [ 59.994242][ T4133] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 59.995628][ T4133] WARNING: CPU: 0 PID: 4133 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 59.997589][ T4133] Modules linked in: [ 59.998412][ T4133] CPU: 0 PID: 4133 Comm: udevd Tainted: G W 6.1.114-syzkaller #0 [ 60.000374][ T4133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 60.002411][ T4133] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.004002][ T4133] pc : usb_submit_urb+0x594/0x9b4 [ 60.005043][ T4133] lr : usb_submit_urb+0x594/0x9b4 [ 60.006232][ T4133] sp : ffff80001269b8e0 [ 60.007138][ T4133] x29: ffff80001269b8f0 x28: ffff0000cfd65800 x27: ffff0000cd4d9b5c [ 60.008780][ T4133] x26: ffff80000ce59db0 x25: ffff0000cfd658a8 x24: ffff0000c9fa4000 [ 60.010434][ T4133] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 60.011971][ T4133] x20: 0000000000000cc0 x19: ffff0000cd4d9b00 x18: 0000000000000000 [ 60.013632][ T4133] x17: 0000000000067738 x16: 0000000000000005 x15: 0000000000000000 [ 60.015306][ T4133] x14: 0000000000000000 x13: 205d333331345420 x12: ffff80000e68a000 [ 60.017066][ T4133] x11: 0000000000ff0100 x10: 0000000000000000 x9 : c62d36266a4e0500 [ 60.018888][ T4133] x8 : c62d36266a4e0500 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 60.020635][ T4133] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 60.022334][ T4133] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 60.023984][ T4133] Call trace: [ 60.024583][ T4133] usb_submit_urb+0x594/0x9b4 [ 60.025586][ T4133] bcm5974_start_traffic+0xa0/0xfc [ 60.026705][ T4133] bcm5974_open+0x5c/0xb4 [ 60.027644][ T4133] input_open_device+0xe8/0x14c [ 60.028597][ T4133] evdev_open+0x1b4/0x258 [ 60.029594][ T4133] chrdev_open+0x27c/0x2b0 [ 60.030532][ T4133] do_dentry_open+0x36c/0x6f8 [ 60.031663][ T4133] vfs_open+0x38/0x48 [ 60.032490][ T4133] path_openat+0xf04/0x1328 [ 60.033530][ T4133] do_filp_open+0xd0/0x1a8 [ 60.034411][ T4133] do_sys_openat2+0xb8/0x234 [ 60.035339][ T4133] __arm64_sys_openat+0xb0/0xe0 [ 60.036280][ T4133] invoke_syscall+0x64/0x178 [ 60.037317][ T4133] el0_svc_common+0xb8/0x174 [ 60.038208][ T4133] do_el0_svc+0x48/0x174 [ 60.039138][ T4133] el0_svc+0x34/0x110 [ 60.039954][ T4133] el0t_64_sync_handler+0x84/0xf0 [ 60.040955][ T4133] el0t_64_sync+0x18c/0x190 [ 60.041962][ T4133] ---[ end trace 0000000000000000 ]--- [ 60.063012][ C0] ------------[ cut here ]------------ [ 60.064146][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 60.065504][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 60.067327][ C0] Modules linked in: [ 60.068270][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 60.070350][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 60.072383][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.073968][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 60.074929][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 60.075887][ C0] sp : ffff800008003b90 [ 60.076679][ C0] x29: ffff800008003ba0 x28: ffff0000cfd65800 x27: ffff0000cd4d9b5c [ 60.078680][ C0] x26: ffff80000ce59db0 x25: ffff0000cfd658a8 x24: ffff0000c9fa4000 [ 60.080252][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 60.081873][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9b00 x18: 0000000000000000 [ 60.083546][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 60.085189][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 60.086817][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 60.088323][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 60.089992][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 60.091631][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 60.093346][ C0] Call trace: [ 60.093988][ C0] usb_submit_urb+0x594/0x9b4 [ 60.095023][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 60.096271][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 60.097330][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 60.098407][ C0] dummy_timer+0x2c8/0x102c [ 60.099258][ C0] call_timer_fn+0x7c/0x15c [ 60.100159][ C0] __run_timers+0x60c/0x6f8 [ 60.101040][ C0] run_timer_softirq+0x34/0x5c [ 60.102018][ C0] handle_softirqs+0x104/0x264 [ 60.102960][ C0] __do_softirq+0x14/0x20 [ 60.103814][ C0] ____do_softirq+0x14/0x20 [ 60.104821][ C0] call_on_irq_stack+0x24/0x4c [ 60.105761][ C0] do_softirq_own_stack+0x20/0x2c [ 60.106808][ C0] __irq_exit_rcu+0xb0/0x124 [ 60.107825][ C0] irq_exit_rcu+0x10/0x1c [ 60.108841][ C0] el1_interrupt+0x38/0x68 [ 60.109761][ C0] el1h_64_irq_handler+0x18/0x24 [ 60.110806][ C0] el1h_64_irq+0x64/0x68 [ 60.111717][ C0] arch_local_irq_enable+0xc/0x18 [ 60.112798][ C0] do_idle+0x110/0x2d8 [ 60.113623][ C0] cpu_startup_entry+0x34/0x38 [ 60.114577][ C0] kernel_init+0x0/0x290 [ 60.115438][ C0] start_kernel+0x0/0x4c0 [ 60.116270][ C0] start_kernel+0x30c/0x4c0 [ 60.117264][ C0] __primary_switched+0xb4/0xbc [ 60.118211][ C0] ---[ end trace 0000000000000000 ]--- [ 60.119342][ C0] ------------[ cut here ]------------ [ 60.120409][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 60.121747][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 60.123574][ C0] Modules linked in: [ 60.124372][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 60.126177][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 60.128358][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.129959][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 60.131056][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 60.132159][ C0] sp : ffff800008003b90 [ 60.133027][ C0] x29: ffff800008003ba0 x28: ffff0000cfd65800 x27: ffff0000cd4d9b5c [ 60.134584][ C0] x26: ffff80000ce59db0 x25: ffff0000cfd658a8 x24: ffff0000c9fa4000 [ 60.136271][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 60.137946][ C0] x20: 0000000000000a20 x19: ffff0000cd4d9b00 x18: ffff80000bd4d2cc [ 60.139656][ C0] x17: 0000000000000000 x16: 000000000000000a x15: 0000000000000000 [ 60.141342][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 60.143041][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 60.144871][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 60.146446][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 60.148037][ C0] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 60.149633][ C0] Call trace: [ 60.150307][ C0] usb_submit_urb+0x594/0x9b4 [ 60.151347][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 60.152420][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 60.153535][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 60.154510][ C0] dummy_timer+0x2c8/0x102c [ 60.155391][ C0] call_timer_fn+0x7c/0x15c [ 60.156303][ C0] __run_timers+0x60c/0x6f8 [ 60.157134][ C0] run_timer_softirq+0x34/0x5c [ 60.158169][ C0] handle_softirqs+0x104/0x264 [ 60.159084][ C0] __do_softirq+0x14/0x20 [ 60.160031][ C0] ____do_softirq+0x14/0x20 [ 60.160919][ C0] call_on_irq_stack+0x24/0x4c [ 60.161820][ C0] do_softirq_own_stack+0x20/0x2c [ 60.162799][ C0] __irq_exit_rcu+0xb0/0x124 [ 60.163698][ C0] irq_exit_rcu+0x10/0x1c [ 60.164618][ C0] el1_interrupt+0x38/0x68 [ 60.165603][ C0] el1h_64_irq_handler+0x18/0x24 [ 60.166587][ C0] el1h_64_irq+0x64/0x68 [ 60.167504][ C0] arch_local_irq_enable+0xc/0x18 [ 60.168565][ C0] do_idle+0x110/0x2d8 [ 60.169465][ C0] cpu_startup_entry+0x34/0x38 [ 60.170433][ C0] kernel_init+0x0/0x290 [ 60.171348][ C0] start_kernel+0x0/0x4c0 [ 60.172259][ C0] start_kernel+0x30c/0x4c0 [ 60.173240][ C0] __primary_switched+0xb4/0xbc [ 60.174206][ C0] ---[ end trace 0000000000000000 ]--- [ 60.193322][ T3727] usb 1-1: USB disconnect, device number 4 [ 60.213028][ T4133] bcm5974 1-1:0.10: could not read from device [ 61.002999][ T21] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 61.393017][ T21] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 61.394626][ T21] usb 1-1: config 0 has no interface number 0 [ 61.395898][ T21] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 61.397929][ T21] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 61.400005][ T21] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 61.402160][ T21] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 61.563063][ T21] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 61.565031][ T21] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.566774][ T21] usb 1-1: Product: syz [ 61.567692][ T21] usb 1-1: Manufacturer: syz [ 61.568680][ T21] usb 1-1: SerialNumber: syz [ 61.569897][ T21] usb 1-1: config 0 descriptor?? [ 61.583133][ T4513] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 61.613623][ T21] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input5 [ 62.043072][ T4133] ------------[ cut here ]------------ [ 62.044270][ T4133] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 62.045786][ T4133] WARNING: CPU: 1 PID: 4133 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 62.047667][ T4133] Modules linked in: [ 62.048431][ T4133] CPU: 1 PID: 4133 Comm: udevd Tainted: G W 6.1.114-syzkaller #0 [ 62.050269][ T4133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 62.052323][ T4133] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.054018][ T4133] pc : usb_submit_urb+0x594/0x9b4 [ 62.055114][ T4133] lr : usb_submit_urb+0x594/0x9b4 [ 62.056242][ T4133] sp : ffff80001269b8e0 [ 62.057030][ T4133] x29: ffff80001269b8f0 x28: ffff0000c64d1800 x27: ffff0000c5ffe85c [ 62.058790][ T4133] x26: ffff80000ce59db0 x25: ffff0000c64d18a8 x24: ffff0000c7fe5500 [ 62.060341][ T4133] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 62.062018][ T4133] x20: 0000000000000cc0 x19: ffff0000c5ffe800 x18: ffff80000bd4d2cc [ 62.063669][ T4133] x17: 0000000000000000 x16: 0000000000000011 x15: 0000000000000297 [ 62.065238][ T4133] x14: 000000000024e0b1 x13: 00000000000002a8 x12: ffff80000e68a000 [ 62.066843][ T4133] x11: 0000000000ff0100 x10: 0000000000000000 x9 : c62d36266a4e0500 [ 62.068461][ T4133] x8 : c62d36266a4e0500 x7 : 0000000000000000 x6 : ffff800008133a40 [ 62.070063][ T4133] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 62.071639][ T4133] x2 : 0000000000000000 x1 : ffff80000cbe281c x0 : 0000000000000001 [ 62.073293][ T4133] Call trace: [ 62.073930][ T4133] usb_submit_urb+0x594/0x9b4 [ 62.074875][ T4133] bcm5974_start_traffic+0xa0/0xfc [ 62.075917][ T4133] bcm5974_open+0x5c/0xb4 [ 62.076753][ T4133] input_open_device+0xe8/0x14c [ 62.077667][ T4133] evdev_open+0x1b4/0x258 [ 62.078620][ T4133] chrdev_open+0x27c/0x2b0 [ 62.079459][ T4133] do_dentry_open+0x36c/0x6f8 [ 62.080510][ T4133] vfs_open+0x38/0x48 [ 62.081354][ T4133] path_openat+0xf04/0x1328 [ 62.082176][ T4133] do_filp_open+0xd0/0x1a8 [ 62.083139][ T4133] do_sys_openat2+0xb8/0x234 [ 62.084175][ T4133] __arm64_sys_openat+0xb0/0xe0 [ 62.085159][ T4133] invoke_syscall+0x64/0x178 [ 62.086118][ T4133] el0_svc_common+0xb8/0x174 [ 62.086990][ T4133] do_el0_svc+0x48/0x174 [ 62.087900][ T4133] el0_svc+0x34/0x110 [ 62.088774][ T4133] el0t_64_sync_handler+0x84/0xf0 [ 62.089873][ T4133] el0t_64_sync+0x18c/0x190 [ 62.090819][ T4133] ---[ end trace 0000000000000000 ]--- [ 62.113003][ C1] ------------[ cut here ]------------ [ 62.114156][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 62.115592][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 62.117627][ C1] Modules linked in: [ 62.118389][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.1.114-syzkaller #0 [ 62.120234][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 62.122524][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.124185][ C1] pc : usb_submit_urb+0x594/0x9b4 [ 62.125424][ C1] lr : usb_submit_urb+0x594/0x9b4 [ 62.126465][ C1] sp : ffff80000800bb90 [ 62.127397][ C1] x29: ffff80000800bba0 x28: ffff0000c64d1800 x27: ffff0000c5ffe85c [ 62.129115][ C1] x26: ffff80000ce59db0 x25: ffff0000c64d18a8 x24: ffff0000c7fe5500 [ 62.130750][ C1] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 62.132519][ C1] x20: 0000000000000a20 x19: ffff0000c5ffe800 x18: 0000000000000000 [ 62.134227][ C1] x17: ffff8001f1623000 x16: ffff800008008000 x15: 0000000000000000 [ 62.135863][ C1] x14: 0000000000000000 x13: 205d314320202020 x12: ffff80000e68a000 [ 62.137461][ C1] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 328085ed10888e00 [ 62.139028][ C1] x8 : 328085ed10888e00 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 62.140773][ C1] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 62.142546][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 62.144192][ C1] Call trace: [ 62.144960][ C1] usb_submit_urb+0x594/0x9b4 [ 62.145780][ C1] bcm5974_irq_trackpad+0x138/0x524 [ 62.146789][ C1] __usb_hcd_giveback_urb+0x16c/0x244 [ 62.147828][ C1] usb_hcd_giveback_urb+0x78/0x238 [ 62.148872][ C1] dummy_timer+0x2c8/0x102c [ 62.149795][ C1] call_timer_fn+0x7c/0x15c [ 62.150740][ C1] __run_timers+0x60c/0x6f8 [ 62.151674][ C1] run_timer_softirq+0x34/0x5c [ 62.152623][ C1] handle_softirqs+0x104/0x264 [ 62.153727][ C1] __do_softirq+0x14/0x20 [ 62.154693][ C1] ____do_softirq+0x14/0x20 [ 62.155726][ C1] call_on_irq_stack+0x24/0x4c [ 62.156759][ C1] do_softirq_own_stack+0x20/0x2c [ 62.157880][ C1] __irq_exit_rcu+0xb0/0x124 [ 62.158780][ C1] irq_exit_rcu+0x10/0x1c [ 62.159628][ C1] el1_interrupt+0x38/0x68 [ 62.160447][ C1] el1h_64_irq_handler+0x18/0x24 [ 62.161560][ C1] el1h_64_irq+0x64/0x68 [ 62.162418][ C1] arch_local_irq_enable+0xc/0x18 [ 62.163410][ C1] do_idle+0x110/0x2d8 [ 62.164238][ C1] cpu_startup_entry+0x34/0x38 [ 62.165184][ C1] secondary_start_kernel+0x150/0x178 [ 62.166453][ C1] __secondary_switched+0xb0/0xb4 [ 62.167493][ C1] ---[ end trace 0000000000000000 ]--- [ 62.243416][ T3268] usb 1-1: USB disconnect, device number 5 [ 62.263024][ T4133] bcm5974 1-1:0.10: could not read from device [ 63.053009][ T99] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 63.413066][ T99] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 63.414831][ T99] usb 1-1: config 0 has no interface number 0 [ 63.415918][ T99] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 63.417926][ T99] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 63.420321][ T99] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 63.422349][ T99] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 63.583030][ T99] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 63.584826][ T99] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 63.586462][ T99] usb 1-1: Product: syz [ 63.587378][ T99] usb 1-1: Manufacturer: syz [ 63.588295][ T99] usb 1-1: SerialNumber: syz [ 63.589880][ T99] usb 1-1: config 0 descriptor?? [ 63.603104][ T4515] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 63.623846][ T99] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input6 [ 64.053040][ T4133] ------------[ cut here ]------------ [ 64.054257][ T4133] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.055655][ T4133] WARNING: CPU: 0 PID: 4133 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 64.057730][ T4133] Modules linked in: [ 64.058601][ T4133] CPU: 0 PID: 4133 Comm: udevd Tainted: G W 6.1.114-syzkaller #0 [ 64.060419][ T4133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 64.062369][ T4133] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.064080][ T4133] pc : usb_submit_urb+0x594/0x9b4 [ 64.064999][ T4133] lr : usb_submit_urb+0x594/0x9b4 [ 64.066012][ T4133] sp : ffff80001269b8e0 [ 64.066839][ T4133] x29: ffff80001269b8f0 x28: ffff0000cfdd7000 x27: ffff0000c5ffeb5c [ 64.068519][ T4133] x26: ffff80000ce59db0 x25: ffff0000cfdd70a8 x24: ffff0000cd667200 [ 64.070266][ T4133] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 64.071904][ T4133] x20: 0000000000000cc0 x19: ffff0000c5ffeb00 x18: 000000000e6294cd [ 64.073660][ T4133] x17: 00000000d6a3d5ee x16: 000000000000003e x15: 0000000000000000 [ 64.075320][ T4133] x14: 0000000000000000 x13: 205d333331345420 x12: ffff80000e68a000 [ 64.077033][ T4133] x11: 0000000000ff0100 x10: 0000000000000000 x9 : c62d36266a4e0500 [ 64.078737][ T4133] x8 : c62d36266a4e0500 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 64.080278][ T4133] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 64.081888][ T4133] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 64.083596][ T4133] Call trace: [ 64.084296][ T4133] usb_submit_urb+0x594/0x9b4 [ 64.085137][ T4133] bcm5974_start_traffic+0xa0/0xfc [ 64.086258][ T4133] bcm5974_open+0x5c/0xb4 [ 64.087201][ T4133] input_open_device+0xe8/0x14c [ 64.088292][ T4133] evdev_open+0x1b4/0x258 [ 64.089215][ T4133] chrdev_open+0x27c/0x2b0 [ 64.090225][ T4133] do_dentry_open+0x36c/0x6f8 [ 64.091246][ T4133] vfs_open+0x38/0x48 [ 64.092112][ T4133] path_openat+0xf04/0x1328 [ 64.093057][ T4133] do_filp_open+0xd0/0x1a8 [ 64.093951][ T4133] do_sys_openat2+0xb8/0x234 [ 64.094871][ T4133] __arm64_sys_openat+0xb0/0xe0 [ 64.095991][ T4133] invoke_syscall+0x64/0x178 [ 64.096980][ T4133] el0_svc_common+0xb8/0x174 [ 64.097989][ T4133] do_el0_svc+0x48/0x174 [ 64.098766][ T4133] el0_svc+0x34/0x110 [ 64.099557][ T4133] el0t_64_sync_handler+0x84/0xf0 [ 64.100610][ T4133] el0t_64_sync+0x18c/0x190 [ 64.101536][ T4133] ---[ end trace 0000000000000000 ]--- [ 64.112989][ C0] ------------[ cut here ]------------ [ 64.114239][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.115631][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 64.117499][ C0] Modules linked in: [ 64.118410][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 64.120343][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 64.122293][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.123908][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 64.124977][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 64.126129][ C0] sp : ffff800008003b90 [ 64.127163][ C0] x29: ffff800008003ba0 x28: ffff0000cfdd7000 x27: ffff0000c5ffeb5c [ 64.128819][ C0] x26: ffff80000ce59db0 x25: ffff0000cfdd70a8 x24: ffff0000cd667200 [ 64.130523][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 64.132180][ C0] x20: 0000000000000a20 x19: ffff0000c5ffeb00 x18: 0000000000000000 [ 64.133921][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 64.135708][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 64.137562][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 64.139202][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 64.140973][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 64.142841][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 64.144532][ C0] Call trace: [ 64.145239][ C0] usb_submit_urb+0x594/0x9b4 [ 64.146266][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 64.147371][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 64.148559][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 64.149680][ C0] dummy_timer+0x2c8/0x102c [ 64.150764][ C0] call_timer_fn+0x7c/0x15c [ 64.151810][ C0] __run_timers+0x60c/0x6f8 [ 64.152906][ C0] run_timer_softirq+0x34/0x5c [ 64.153832][ C0] handle_softirqs+0x104/0x264 [ 64.154777][ C0] __do_softirq+0x14/0x20 [ 64.155765][ C0] ____do_softirq+0x14/0x20 [ 64.156737][ C0] call_on_irq_stack+0x24/0x4c [ 64.157881][ C0] do_softirq_own_stack+0x20/0x2c [ 64.158831][ C0] __irq_exit_rcu+0xb0/0x124 [ 64.159870][ C0] irq_exit_rcu+0x10/0x1c [ 64.160669][ C0] el1_interrupt+0x38/0x68 [ 64.161585][ C0] el1h_64_irq_handler+0x18/0x24 [ 64.162839][ C0] el1h_64_irq+0x64/0x68 [ 64.163743][ C0] arch_local_irq_enable+0xc/0x18 [ 64.164949][ C0] do_idle+0x110/0x2d8 [ 64.165790][ C0] cpu_startup_entry+0x34/0x38 [ 64.166874][ C0] kernel_init+0x0/0x290 [ 64.167846][ C0] start_kernel+0x0/0x4c0 [ 64.168745][ C0] start_kernel+0x30c/0x4c0 [ 64.169669][ C0] __primary_switched+0xb4/0xbc [ 64.170784][ C0] ---[ end trace 0000000000000000 ]--- [ 64.173011][ C0] ------------[ cut here ]------------ [ 64.174260][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.175705][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 64.177660][ C0] Modules linked in: [ 64.178564][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 64.180602][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 64.182674][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.184337][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 64.185479][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 64.186680][ C0] sp : ffff800008003b90 [ 64.187564][ C0] x29: ffff800008003ba0 x28: ffff0000cfdd7000 x27: ffff0000c5ffeb5c [ 64.189175][ C0] x26: ffff80000ce59db0 x25: ffff0000cfdd70a8 x24: ffff0000cd667200 [ 64.190731][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 64.192417][ C0] x20: 0000000000000a20 x19: ffff0000c5ffeb00 x18: 0000000000000000 [ 64.194024][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 64.195735][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 64.197361][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 64.198996][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 64.200580][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 64.202210][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 64.203804][ C0] Call trace: [ 64.204459][ C0] usb_submit_urb+0x594/0x9b4 [ 64.205419][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 64.206475][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 64.207517][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 64.208635][ C0] dummy_timer+0x2c8/0x102c [ 64.209485][ C0] call_timer_fn+0x7c/0x15c [ 64.210324][ C0] __run_timers+0x60c/0x6f8 [ 64.211338][ C0] run_timer_softirq+0x34/0x5c [ 64.212346][ C0] handle_softirqs+0x104/0x264 [ 64.213363][ C0] __do_softirq+0x14/0x20 [ 64.214356][ C0] ____do_softirq+0x14/0x20 [ 64.215314][ C0] call_on_irq_stack+0x24/0x4c [ 64.216332][ C0] do_softirq_own_stack+0x20/0x2c [ 64.217406][ C0] __irq_exit_rcu+0xb0/0x124 [ 64.218351][ C0] irq_exit_rcu+0x10/0x1c [ 64.219600][ C0] el1_interrupt+0x38/0x68 [ 64.220485][ C0] el1h_64_irq_handler+0x18/0x24 [ 64.221413][ C0] el1h_64_irq+0x64/0x68 [ 64.222282][ C0] arch_local_irq_enable+0xc/0x18 [ 64.223427][ C0] do_idle+0x110/0x2d8 [ 64.224240][ C0] cpu_startup_entry+0x34/0x38 [ 64.225306][ C0] kernel_init+0x0/0x290 [ 64.226191][ C0] start_kernel+0x0/0x4c0 [ 64.227131][ C0] start_kernel+0x30c/0x4c0 [ 64.228089][ C0] __primary_switched+0xb4/0xbc [ 64.229104][ C0] ---[ end trace 0000000000000000 ]--- [ 64.230230][ C0] ------------[ cut here ]------------ [ 64.231441][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.232846][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:505 usb_submit_urb+0x594/0x9b4 [ 64.234831][ C0] Modules linked in: [ 64.235636][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.1.114-syzkaller #0 [ 64.237559][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 64.239575][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.241309][ C0] pc : usb_submit_urb+0x594/0x9b4 [ 64.242333][ C0] lr : usb_submit_urb+0x594/0x9b4 [ 64.243315][ C0] sp : ffff800008003b90 [ 64.244177][ C0] x29: ffff800008003ba0 x28: ffff0000cfdd7000 x27: ffff0000c5ffeb5c [ 64.245797][ C0] x26: ffff80000ce59db0 x25: ffff0000cfdd70a8 x24: ffff0000cd667200 [ 64.247420][ C0] x23: ffff80000ce84cee x22: 0000000000000400 x21: 0000000000000002 [ 64.248958][ C0] x20: 0000000000000a20 x19: ffff0000c5ffeb00 x18: 0000000000000000 [ 64.250589][ C0] x17: ffff8001f160b000 x16: ffff800008000000 x15: 0000000000000000 [ 64.252256][ C0] x14: 0000000000000000 x13: 205d304320202020 x12: ffff80000e68a000 [ 64.253385][ T99] usb 1-1: USB disconnect, device number 6 [ 64.253788][ C0] x11: 0000000000ff0100 x10: 0000000000000000 x9 : 2b0db881e8ab5000 [ 64.256583][ C0] x8 : 2b0db881e8ab5000 x7 : 0000000000000000 x6 : ffff80000bd0f524 [ 64.258309][ C0] x5 : 0000000000000000 x4 : 0000000000000080 x3 : 0000000000000000 [ 64.259808][ C0] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 64.261509][ C0] Call trace: [ 64.262214][ C0] usb_submit_urb+0x594/0x9b4 [ 64.263066][ C0] bcm5974_irq_trackpad+0x138/0x524 [ 64.264119][ C0] __usb_hcd_giveback_urb+0x16c/0x244 [ 64.265210][ C0] usb_hcd_giveback_urb+0x78/0x238 [ 64.266254][ C0] dummy_timer+0x2c8/0x102c [ 64.267071][ C0] call_timer_fn+0x7c/0x15c [ 64.268078][ C0] __run_timers+0x60c/0x6f8 [ 64.269004][ C0] run_timer_softirq+0x34/0x5c [ 64.269905][ C0] handle_softirqs+0x104/0x264 [ 64.270985][ C0] __do_softirq+0x14/0x20 [ 64.271794][ C0] ____do_softirq+0x14/0x20 [ 64.272696][ C0] call_on_irq_stack+0x24/0x4c [ 64.273564][ C0] do_softirq_own_stack+0x20/0x2c [ 64.274734][ C0] __irq_exit_rcu+0xb0/0x124 [ 64.275666][ C0] irq_exit_rcu+0x10/0x1c [ 64.276482][ C0] el1_interrupt+0x38/0x68 [ 64.277317][ C0] el1h_64_irq_handler+0x18/0x24 [ 64.278501][ C0] el1h_64_irq+0x64/0x68 [ 64.279428][ C0] arch_local_irq_enable+0xc/0x18 [ 64.280476][ C0] do_idle+0x110/0x2d8 [ 64.281298][ C0] cpu_startup_entry+0x34/0x38 [ 64.282303][ C0] kernel_init+0x0/0x290 [ 64.283135][ C0] start_kernel+0x0/0x4c0 [ 64.283987][ C0] start_kernel+0x30c/0x4c0 [ 64.284971][ C0] __primary_switched+0xb4/0xbc [ 64.286003][ C0] ---[ end trace 0000000000000000 ]--- [ 64.287177][ C0] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 64.289443][ T4133] bcm5974 1-1:0.10: could not read from device [ 64.503166][ T26] cfg80211: failed to load regulatory.db 2024/10/27 03:51:16 executed programs: 5 [ 65.063002][ T3727] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 65.463089][ T3727] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 65.464915][ T3727] usb 1-1: config 0 has no interface number 0 [ 65.466127][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 65.468367][ T3727] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 65.470602][ T3727] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 65.472472][ T3727] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 65.633038][ T3727] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 65.634969][ T3727] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 65.636599][ T3727] usb 1-1: Product: syz [ 65.637393][ T3727] usb 1-1: Manufacturer: syz [ 65.638331][ T3727] usb 1-1: SerialNumber: syz [ 65.639901][ T3727] usb 1-1: config 0 descriptor?? [ 65.653121][ T4517] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 65.673847][ T3727] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input7