Warning: Permanently added '10.128.0.240' (ED25519) to the list of known hosts. 1970/01/01 00:01:00 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:01 parsed 1 programs [ 61.161473][ T6592] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:01:01 executed programs: 0 [ 61.198385][ T5976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.201311][ T5976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.203210][ T5976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.205412][ T5976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.207252][ T5976] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.209120][ T5976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.274569][ T6598] chnl_net:caif_netlink_parms(): no params data found [ 61.301420][ T6598] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.303018][ T6598] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.304668][ T6598] bridge_slave_0: entered allmulticast mode [ 61.306438][ T6598] bridge_slave_0: entered promiscuous mode [ 61.308870][ T6598] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.310371][ T6598] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.313007][ T6598] bridge_slave_1: entered allmulticast mode [ 61.314686][ T6598] bridge_slave_1: entered promiscuous mode [ 61.325629][ T6598] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.328835][ T6598] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.342329][ T6598] team0: Port device team_slave_0 added [ 61.344912][ T6598] team0: Port device team_slave_1 added [ 61.354989][ T6598] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.356510][ T6598] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.362465][ T6598] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.365870][ T6598] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.367439][ T6598] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.374043][ T6598] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.443187][ T6598] hsr_slave_0: entered promiscuous mode [ 61.501089][ T6598] hsr_slave_1: entered promiscuous mode [ 62.435592][ T6598] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.438574][ T6598] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.443445][ T6598] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.446736][ T6598] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.486424][ T6598] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.496062][ T6598] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.499835][ T44] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.501395][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.511274][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.512952][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.587779][ T6598] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.608995][ T6598] veth0_vlan: entered promiscuous mode [ 62.614756][ T6598] veth1_vlan: entered promiscuous mode [ 62.628997][ T6598] veth0_macvtap: entered promiscuous mode [ 62.633955][ T6598] veth1_macvtap: entered promiscuous mode [ 62.642160][ T6598] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.647075][ T6598] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.653801][ T6598] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.655636][ T6598] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.657352][ T6598] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.659299][ T6598] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.697835][ T167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.699629][ T167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.710288][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.713149][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.042166][ T8] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 63.221644][ T6417] Bluetooth: hci0: command tx timeout [ 63.231041][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 63.236194][ T8] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 63.240481][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 63.242720][ T8] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 63.244445][ T8] usb 1-1: Product: syz [ 63.245394][ T8] usb 1-1: Manufacturer: syz [ 63.246397][ T8] usb 1-1: SerialNumber: syz [ 63.259920][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input2 [ 63.654055][ T6674] ------------[ cut here ]------------ [ 63.655342][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.657016][ T6674] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 63.659099][ T6674] Modules linked in: [ 63.659900][ T6674] CPU: 0 UID: 0 PID: 6674 Comm: udevd Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 63.662204][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 63.664510][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.666280][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 63.667396][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 63.668539][ T6674] sp : ffff8000a3417390 [ 63.669365][ T6674] x29: ffff8000a34173d0 x28: ffff0000c6bcf000 x27: 0000000000000001 [ 63.671125][ T6674] x26: ffff80008cc226e8 x25: ffff0000c2654e80 x24: ffff0000d0ec5950 [ 63.672865][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 63.674592][ T6674] x20: 0000000000000cc0 x19: ffff0000d0ec5900 x18: 0000000000000008 [ 63.676372][ T6674] x17: 0000000000000000 x16: ffff800083032784 x15: 0000000000000001 [ 63.678119][ T6674] x14: 1fffe000366d325a x13: 0000000000000000 x12: 0000000000000000 [ 63.679884][ T6674] x11: 0000000000000002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 63.681687][ T6674] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.683373][ T6674] x5 : ffff8000a3416ad8 x4 : ffff80008f65b620 x3 : ffff8000806051a0 [ 63.685256][ T6674] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 63.687075][ T6674] Call trace: [ 63.687802][ T6674] usb_submit_urb+0xa00/0x148c [ 63.688844][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 63.689941][ T6674] bcm5974_open+0x98/0x134 [ 63.690877][ T6674] input_open_device+0x170/0x29c [ 63.691931][ T6674] evdev_open+0x308/0x4b4 [ 63.692845][ T6674] chrdev_open+0x3c8/0x4dc [ 63.693726][ T6674] do_dentry_open+0x78c/0x10a4 [ 63.694750][ T6674] vfs_open+0x48/0x2d4 [ 63.695578][ T6674] path_openat+0x2208/0x29f8 [ 63.696559][ T6674] do_filp_open+0x1bc/0x3cc [ 63.697577][ T6674] do_sys_openat2+0x124/0x1b8 [ 63.698587][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 63.699708][ T6674] invoke_syscall+0x98/0x2b8 [ 63.700757][ T6674] el0_svc_common+0x130/0x23c [ 63.701769][ T6674] do_el0_svc+0x48/0x58 [ 63.702752][ T6674] el0_svc+0x54/0x168 [ 63.703578][ T6674] el0t_64_sync_handler+0x84/0xfc [ 63.704709][ T6674] el0t_64_sync+0x190/0x194 [ 63.705643][ T6674] irq event stamp: 4578 [ 63.706591][ T6674] hardirqs last enabled at (4577): [] console_unlock+0x18c/0x3d4 [ 63.708638][ T6674] hardirqs last disabled at (4578): [] el1_dbg+0x24/0x80 [ 63.710417][ T6674] softirqs last enabled at (1606): [] local_bh_enable+0x10/0x34 [ 63.712428][ T6674] softirqs last disabled at (1604): [] local_bh_disable+0x10/0x34 [ 63.714394][ T6674] ---[ end trace 0000000000000000 ]--- [ 63.717456][ C0] ------------[ cut here ]------------ [ 63.718712][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.720501][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 63.722746][ C0] Modules linked in: [ 63.723544][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 63.726018][ C0] Tainted: [W]=WARN [ 63.726887][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 63.729057][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.730704][ C0] pc : usb_submit_urb+0xa00/0x148c [ 63.731749][ C0] lr : usb_submit_urb+0xa00/0x148c [ 63.732896][ C0] sp : ffff800080007740 [ 63.733696][ C0] x29: ffff800080007780 x28: ffff0000c6bcf000 x27: 0000000000000001 [ 63.735461][ C0] x26: ffff80008cc226e8 x25: ffff0000c2654e80 x24: ffff0000d0ec5950 [ 63.737187][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 63.739026][ C0] x20: 0000000000000820 x19: ffff0000d0ec5900 x18: 0000000000000008 [ 63.740666][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 63.742348][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 63.744178][ C0] x11: 0000000000010002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 63.745892][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.747619][ C0] x5 : ffff800080006e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 63.749295][ C0] x2 : 0000000000000000 x1 : 0000000100010000 x0 : 0000000000000000 [ 63.751023][ C0] Call trace: [ 63.751665][ C0] usb_submit_urb+0xa00/0x148c [ 63.752692][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 63.753700][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 63.754802][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 63.756000][ C0] dummy_timer+0x630/0x341c [ 63.756921][ C0] __hrtimer_run_queues+0x494/0xce0 [ 63.758173][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 63.759144][ C0] arch_timer_handler_virt+0x74/0x88 [ 63.760182][ C0] handle_percpu_devid_irq+0x174/0x308 [ 63.761346][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 63.762539][ C0] gic_handle_irq+0x6c/0x190 [ 63.763501][ C0] call_on_irq_stack+0x24/0x4c [ 63.764532][ C0] do_interrupt_handler+0xd4/0x138 [ 63.765617][ C0] el1_interrupt+0x34/0x68 [ 63.766742][ C0] el1h_64_irq_handler+0x18/0x24 [ 63.767777][ C0] el1h_64_irq+0x64/0x68 [ 63.768673][ C0] lock_acquire+0x27c/0x728 [ 63.769716][ C0] __might_fault+0xc4/0x124 [ 63.770742][ C0] evdev_ioctl_handler+0x2244/0x2d98 [ 63.771743][ C0] evdev_ioctl+0x38/0x4c [ 63.772580][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 63.773626][ C0] invoke_syscall+0x98/0x2b8 [ 63.774730][ C0] el0_svc_common+0x130/0x23c [ 63.775698][ C0] do_el0_svc+0x48/0x58 [ 63.776646][ C0] el0_svc+0x54/0x168 [ 63.777608][ C0] el0t_64_sync_handler+0x84/0xfc [ 63.778712][ C0] el0t_64_sync+0x190/0x194 [ 63.779686][ C0] irq event stamp: 4886 [ 63.780611][ C0] hardirqs last enabled at (4885): [] kasan_quarantine_put+0x1a0/0x1c8 [ 63.782733][ C0] hardirqs last disabled at (4886): [] el1_interrupt+0x24/0x68 [ 63.784612][ C0] softirqs last enabled at (4868): [] local_bh_enable+0x10/0x34 [ 63.786686][ C0] softirqs last disabled at (4866): [] local_bh_disable+0x10/0x34 [ 63.788730][ C0] ---[ end trace 0000000000000000 ]--- [ 63.789983][ C0] ------------[ cut here ]------------ [ 63.791082][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.792806][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 63.795018][ C0] Modules linked in: [ 63.795807][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 63.798132][ C0] Tainted: [W]=WARN [ 63.798989][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 63.801145][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.802874][ C0] pc : usb_submit_urb+0xa00/0x148c [ 63.804052][ C0] lr : usb_submit_urb+0xa00/0x148c [ 63.805068][ C0] sp : ffff800080006f80 [ 63.805927][ C0] x29: ffff800080006fc0 x28: ffff0000c6bcf000 x27: 0000000000000001 [ 63.807626][ C0] x26: ffff80008cc226e8 x25: ffff0000c2654e80 x24: ffff0000d0ec5950 [ 63.809408][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 63.811232][ C0] x20: 0000000000000820 x19: ffff0000d0ec5900 x18: 0000000000000008 [ 63.812996][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 63.814816][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 63.816564][ C0] x11: 0000000000010103 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 63.818271][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.820002][ C0] x5 : ffff8000800066d8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 63.821702][ C0] x2 : 0000000000000000 x1 : 0000000000010101 x0 : 0000000000000000 [ 63.823393][ C0] Call trace: [ 63.824076][ C0] usb_submit_urb+0xa00/0x148c [ 63.825016][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 63.826155][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 63.827345][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 63.828503][ C0] dummy_timer+0x630/0x341c [ 63.829445][ C0] __hrtimer_run_queues+0x494/0xce0 [ 63.830619][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 63.831660][ C0] arch_timer_handler_virt+0x74/0x88 [ 63.832779][ C0] handle_percpu_devid_irq+0x174/0x308 [ 63.833949][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 63.835099][ C0] gic_handle_irq+0x6c/0x190 [ 63.836059][ C0] do_interrupt_handler+0xe0/0x138 [ 63.837099][ C0] el1_interrupt+0x34/0x68 [ 63.838056][ C0] el1h_64_irq_handler+0x18/0x24 [ 63.839103][ C0] el1h_64_irq+0x64/0x68 [ 63.840008][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 [ 63.841286][ C0] __mod_timer+0xa98/0xcf4 [ 63.842255][ C0] add_timer+0x6c/0x8c [ 63.843059][ C0] eql_timer+0x1c0/0x1dc [ 63.843915][ C0] call_timer_fn+0x1b4/0x8e8 [ 63.844882][ C0] __run_timer_base+0x56c/0x7b4 [ 63.845944][ C0] run_timer_softirq+0xcc/0x194 [ 63.847006][ C0] handle_softirqs+0x2e4/0xbfc [ 63.848019][ C0] __do_softirq+0x14/0x20 [ 63.848878][ C0] ____do_softirq+0x14/0x20 [ 63.849882][ C0] call_on_irq_stack+0x24/0x4c [ 63.850929][ C0] do_softirq_own_stack+0x20/0x2c [ 63.851979][ C0] __irq_exit_rcu+0x1d8/0x434 [ 63.852882][ C0] irq_exit_rcu+0x14/0x84 [ 63.853729][ C0] el1_interrupt+0x38/0x68 [ 63.854615][ C0] el1h_64_irq_handler+0x18/0x24 [ 63.855623][ C0] el1h_64_irq+0x64/0x68 [ 63.856589][ C0] lock_acquire+0x27c/0x728 [ 63.857586][ C0] __might_fault+0xc4/0x124 [ 63.858545][ C0] evdev_ioctl_handler+0x2244/0x2d98 [ 63.859727][ C0] evdev_ioctl+0x38/0x4c [ 63.860595][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 63.861674][ C0] invoke_syscall+0x98/0x2b8 [ 63.862684][ C0] el0_svc_common+0x130/0x23c [ 63.863637][ C0] do_el0_svc+0x48/0x58 [ 63.864545][ C0] el0_svc+0x54/0x168 [ 63.865344][ C0] el0t_64_sync_handler+0x84/0xfc [ 63.866484][ C0] el0t_64_sync+0x190/0x194 [ 63.867464][ C0] irq event stamp: 4913 [ 63.868402][ C0] hardirqs last enabled at (4912): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 63.870660][ C0] hardirqs last disabled at (4913): [] el1_interrupt+0x24/0x68 [ 63.872624][ C0] softirqs last enabled at (4868): [] local_bh_enable+0x10/0x34 [ 63.874621][ C0] softirqs last disabled at (4887): [] __do_softirq+0x14/0x20 [ 63.876554][ C0] ---[ end trace 0000000000000000 ]--- [ 63.877917][ C0] ------------[ cut here ]------------ [ 63.879142][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.880849][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 63.882795][ C0] Modules linked in: [ 63.883649][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 63.885997][ C0] Tainted: [W]=WARN [ 63.886871][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 63.888974][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.890574][ C0] pc : usb_submit_urb+0xa00/0x148c [ 63.891663][ C0] lr : usb_submit_urb+0xa00/0x148c [ 63.892777][ C0] sp : ffff8000800072a0 [ 63.893712][ C0] x29: ffff8000800072e0 x28: ffff0000c6bcf000 x27: 0000000000000001 [ 63.895365][ C0] x26: ffff80008cc226e8 x25: ffff0000c2654e80 x24: ffff0000d0ec5950 [ 63.897178][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 63.898962][ C0] x20: 0000000000000820 x19: ffff0000d0ec5900 x18: 0000000000000008 [ 63.900620][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 63.902342][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 63.904107][ C0] x11: 0000000000010103 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 63.905789][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.907480][ C0] x5 : ffff8000800069f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 63.909199][ C0] x2 : 0000000000000000 x1 : 0000000000010101 x0 : 0000000000000000 [ 63.910897][ C0] Call trace: [ 63.911568][ C0] usb_submit_urb+0xa00/0x148c [ 63.912597][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 63.913671][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 63.914810][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 63.915941][ C0] dummy_timer+0x630/0x341c [ 63.916846][ C0] __hrtimer_run_queues+0x494/0xce0 [ 63.918000][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 63.919043][ C0] arch_timer_handler_virt+0x74/0x88 [ 63.920153][ C0] handle_percpu_devid_irq+0x174/0x308 [ 63.921294][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 63.922427][ C0] gic_handle_irq+0x6c/0x190 [ 63.923364][ C0] do_interrupt_handler+0xe0/0x138 [ 63.924429][ C0] el1_interrupt+0x34/0x68 [ 63.925442][ C0] el1h_64_irq_handler+0x18/0x24 [ 63.926467][ C0] el1h_64_irq+0x64/0x68 [ 63.927369][ C0] _raw_spin_unlock_irq+0x34/0x80 [ 63.928488][ C0] __run_timer_base+0x194/0x7b4 [ 63.929512][ C0] run_timer_softirq+0xcc/0x194 [ 63.930575][ C0] handle_softirqs+0x2e4/0xbfc [ 63.931678][ C0] __do_softirq+0x14/0x20 [ 63.932583][ C0] ____do_softirq+0x14/0x20 [ 63.933514][ C0] call_on_irq_stack+0x24/0x4c [ 63.934508][ C0] do_softirq_own_stack+0x20/0x2c [ 63.935598][ C0] __irq_exit_rcu+0x1d8/0x434 [ 63.936607][ C0] irq_exit_rcu+0x14/0x84 [ 63.937511][ C0] el1_interrupt+0x38/0x68 [ 63.938478][ C0] el1h_64_irq_handler+0x18/0x24 [ 63.939576][ C0] el1h_64_irq+0x64/0x68 [ 63.940566][ C0] lock_acquire+0x27c/0x728 [ 63.941506][ C0] __might_fault+0xc4/0x124 [ 63.942526][ C0] evdev_ioctl_handler+0x2244/0x2d98 [ 63.943613][ C0] evdev_ioctl+0x38/0x4c [ 63.944545][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 63.945586][ C0] invoke_syscall+0x98/0x2b8 [ 63.946551][ C0] el0_svc_common+0x130/0x23c [ 63.947505][ C0] do_el0_svc+0x48/0x58 [ 63.948424][ C0] el0_svc+0x54/0x168 [ 63.949317][ C0] el0t_64_sync_handler+0x84/0xfc [ 63.950356][ C0] el0t_64_sync+0x190/0x194 [ 63.951171][ C0] irq event stamp: 4941 [ 63.952124][ C0] hardirqs last enabled at (4940): [] _raw_spin_unlock_irq+0x30/0x80 [ 63.954269][ C0] hardirqs last disabled at (4941): [] el1_interrupt+0x24/0x68 [ 63.956339][ C0] softirqs last enabled at (4868): [] local_bh_enable+0x10/0x34 [ 63.958379][ C0] softirqs last disabled at (4887): [] __do_softirq+0x14/0x20 [ 63.960326][ C0] ---[ end trace 0000000000000000 ]--- [ 63.961709][ C0] ------------[ cut here ]------------ [ 63.962865][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.964533][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 63.966731][ C0] Modules linked in: [ 63.967449][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 63.969847][ C0] Tainted: [W]=WARN [ 63.970678][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 63.972797][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.974520][ C0] pc : usb_submit_urb+0xa00/0x148c [ 63.974714][ T6415] usb 1-1: USB disconnect, device number 2 [ 63.975646][ C0] lr : usb_submit_urb+0xa00/0x148c [ 63.977903][ C0] sp : ffff8000800070a0 [ 63.978730][ C0] x29: ffff8000800070e0 x28: ffff0000c6bcf000 x27: 0000000000000001 [ 63.980526][ C0] x26: ffff80008cc226e8 x25: ffff0000c2654e80 x24: ffff0000d0ec5950 [ 63.982281][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 63.984113][ C0] x20: 0000000000000820 x19: ffff0000d0ec5900 x18: 0000000000000008 [ 63.985851][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 63.987703][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 63.989314][ C0] x11: 0000000000010103 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 63.991053][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.992637][ C0] x5 : ffff8000800067f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 63.994505][ C0] x2 : 0000000000000000 x1 : 0000000000010101 x0 : 0000000000000000 [ 63.996214][ C0] Call trace: [ 63.997000][ C0] usb_submit_urb+0xa00/0x148c [ 63.998000][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 63.999098][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 64.000130][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 64.001165][ C0] dummy_timer+0x630/0x341c [ 64.002068][ C0] __hrtimer_run_queues+0x494/0xce0 [ 64.003171][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 64.004298][ C0] arch_timer_handler_virt+0x74/0x88 [ 64.005393][ C0] handle_percpu_devid_irq+0x174/0x308 [ 64.006497][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 64.007657][ C0] gic_handle_irq+0x6c/0x190 [ 64.008621][ C0] do_interrupt_handler+0xe0/0x138 [ 64.009710][ C0] el1_interrupt+0x34/0x68 [ 64.010540][ C0] el1h_64_irq_handler+0x18/0x24 [ 64.011565][ C0] el1h_64_irq+0x64/0x68 [ 64.012515][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 [ 64.013763][ C0] debug_check_no_obj_freed+0x460/0x47c [ 64.015002][ C0] kmem_cache_free+0x140/0x4d0 [ 64.016008][ C0] free_signal_struct+0x100/0x230 [ 64.017129][ C0] __put_task_struct+0x154/0x210 [ 64.018142][ C0] put_task_struct+0x88/0x10c [ 64.019149][ C0] delayed_put_task_struct+0xec/0x2f0 [ 64.020452][ C0] rcu_core+0x888/0x1b3c [ 64.021388][ C0] rcu_core_si+0x10/0x1c [ 64.022331][ C0] handle_softirqs+0x2e4/0xbfc [ 64.023483][ C0] __do_softirq+0x14/0x20 [ 64.024408][ C0] ____do_softirq+0x14/0x20 [ 64.025509][ C0] call_on_irq_stack+0x24/0x4c [ 64.026549][ C0] do_softirq_own_stack+0x20/0x2c [ 64.027690][ C0] __irq_exit_rcu+0x1d8/0x434 [ 64.028748][ C0] irq_exit_rcu+0x14/0x84 [ 64.029697][ C0] el1_interrupt+0x38/0x68 [ 64.030587][ C0] el1h_64_irq_handler+0x18/0x24 [ 64.031592][ C0] el1h_64_irq+0x64/0x68 [ 64.032591][ C0] lock_acquire+0x27c/0x728 [ 64.033578][ C0] __might_fault+0xc4/0x124 [ 64.034600][ C0] evdev_ioctl_handler+0x2244/0x2d98 [ 64.035817][ C0] evdev_ioctl+0x38/0x4c [ 64.036792][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 64.037847][ C0] invoke_syscall+0x98/0x2b8 [ 64.038958][ C0] el0_svc_common+0x130/0x23c [ 64.039909][ C0] do_el0_svc+0x48/0x58 [ 64.040822][ C0] el0_svc+0x54/0x168 [ 64.041577][ C0] el0t_64_sync_handler+0x84/0xfc [ 64.042615][ C0] el0t_64_sync+0x190/0x194 [ 64.043500][ C0] irq event stamp: 4987 [ 64.044355][ C0] hardirqs last enabled at (4986): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 64.046564][ C0] hardirqs last disabled at (4987): [] el1_interrupt+0x24/0x68 [ 64.048507][ C0] softirqs last enabled at (4868): [] local_bh_enable+0x10/0x34 [ 64.050378][ C0] softirqs last disabled at (4887): [] __do_softirq+0x14/0x20 [ 64.052296][ C0] ---[ end trace 0000000000000000 ]--- [ 64.053491][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 64.081062][ T6674] bcm5974 1-1:1.0: could not read from device [ 64.502728][ T2338] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.504185][ T2338] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.871575][ T6415] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 65.050784][ T6415] usb 1-1: Using ep0 maxpacket: 16 [ 65.052962][ T6415] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 65.056411][ T6415] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 65.058211][ T6415] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 65.059919][ T6415] usb 1-1: Product: syz [ 65.060840][ T6415] usb 1-1: Manufacturer: syz [ 65.061796][ T6415] usb 1-1: SerialNumber: syz [ 65.068114][ T6415] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input3 [ 65.310781][ T6417] Bluetooth: hci0: command tx timeout [ 65.466958][ T6674] ------------[ cut here ]------------ [ 65.468415][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.470113][ T6674] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 65.472177][ T6674] Modules linked in: [ 65.473053][ T6674] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 65.475505][ T6674] Tainted: [W]=WARN [ 65.476487][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 65.478848][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.480613][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 65.481825][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 65.482895][ T6674] sp : ffff8000a3417390 [ 65.483802][ T6674] x29: ffff8000a34173d0 x28: ffff0000cda6c000 x27: 0000000000000001 [ 65.485680][ T6674] x26: ffff80008cc226e8 x25: ffff0000c3ca5c60 x24: ffff0000cc321950 [ 65.487533][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 65.489321][ T6674] x20: 0000000000000cc0 x19: ffff0000cc321900 x18: 0000000000000008 [ 65.491088][ T6674] x17: 0000000000000000 x16: ffff800083032784 x15: 0000000000000001 [ 65.492845][ T6674] x14: 1fffe000366d7a5a x13: 0000000000000000 x12: 0000000000000000 [ 65.494742][ T6674] x11: 0000000000000002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 65.496595][ T6674] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.498350][ T6674] x5 : ffff8000a3416ad8 x4 : ffff80008f65b620 x3 : ffff8000806051a0 [ 65.500276][ T6674] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 65.501972][ T6674] Call trace: [ 65.502734][ T6674] usb_submit_urb+0xa00/0x148c [ 65.503739][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 65.505028][ T6674] bcm5974_open+0x98/0x134 [ 65.506086][ T6674] input_open_device+0x170/0x29c [ 65.507314][ T6674] evdev_open+0x308/0x4b4 [ 65.508338][ T6674] chrdev_open+0x3c8/0x4dc [ 65.509367][ T6674] do_dentry_open+0x78c/0x10a4 [ 65.510451][ T6674] vfs_open+0x48/0x2d4 [ 65.511340][ T6674] path_openat+0x2208/0x29f8 [ 65.512355][ T6674] do_filp_open+0x1bc/0x3cc [ 65.513428][ T6674] do_sys_openat2+0x124/0x1b8 [ 65.514425][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 65.515513][ T6674] invoke_syscall+0x98/0x2b8 [ 65.516645][ T6674] el0_svc_common+0x130/0x23c [ 65.517722][ T6674] do_el0_svc+0x48/0x58 [ 65.518552][ T6674] el0_svc+0x54/0x168 [ 65.519415][ T6674] el0t_64_sync_handler+0x84/0xfc [ 65.520540][ T6674] el0t_64_sync+0x190/0x194 [ 65.521476][ T6674] irq event stamp: 12048 [ 65.522455][ T6674] hardirqs last enabled at (12047): [] console_unlock+0x18c/0x3d4 [ 65.524570][ T6674] hardirqs last disabled at (12048): [] el1_dbg+0x24/0x80 [ 65.526296][ T6674] softirqs last enabled at (10264): [] local_bh_enable+0x10/0x34 [ 65.528455][ T6674] softirqs last disabled at (10262): [] local_bh_disable+0x10/0x34 [ 65.530460][ T6674] ---[ end trace 0000000000000000 ]--- [ 65.531940][ C1] ------------[ cut here ]------------ [ 65.533025][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.534651][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 65.536619][ C1] Modules linked in: [ 65.537464][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 65.539874][ C1] Tainted: [W]=WARN [ 65.540632][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 65.542892][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.544497][ C1] pc : usb_submit_urb+0xa00/0x148c [ 65.545670][ C1] lr : usb_submit_urb+0xa00/0x148c [ 65.546682][ C1] sp : ffff800080017740 [ 65.547518][ C1] x29: ffff800080017780 x28: ffff0000cda6c000 x27: 0000000000000001 [ 65.549266][ C1] x26: ffff80008cc226e8 x25: ffff0000c3ca5c60 x24: ffff0000cc321950 [ 65.551019][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 65.552739][ C1] x20: 0000000000000820 x19: ffff0000cc321900 x18: 0000000000000008 [ 65.554401][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 65.556118][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 65.557716][ C1] x11: 0000000000010003 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 65.559390][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.561109][ C1] x5 : ffff800080016e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 65.562756][ C1] x2 : 0000000000000000 x1 : 0000000100010001 x0 : 0000000000000000 [ 65.564488][ C1] Call trace: [ 65.565185][ C1] usb_submit_urb+0xa00/0x148c [ 65.566237][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 65.567323][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 65.568587][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 65.569788][ C1] dummy_timer+0x630/0x341c [ 65.570708][ C1] __hrtimer_run_queues+0x494/0xce0 [ 65.571907][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 65.573012][ C1] arch_timer_handler_virt+0x74/0x88 [ 65.574321][ C1] handle_percpu_devid_irq+0x174/0x308 [ 65.575463][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 65.576684][ C1] gic_handle_irq+0x6c/0x190 [ 65.577664][ C1] call_on_irq_stack+0x24/0x4c [ 65.578666][ C1] do_interrupt_handler+0xd4/0x138 [ 65.579832][ C1] el1_interrupt+0x34/0x68 [ 65.580753][ C1] el1h_64_irq_handler+0x18/0x24 [ 65.581718][ C1] el1h_64_irq+0x64/0x68 [ 65.582693][ C1] lock_release+0x534/0x9e8 [ 65.583649][ C1] _raw_spin_unlock+0x24/0x78 [ 65.584733][ C1] file_close_fd+0x68/0x80 [ 65.585754][ C1] __arm64_sys_close+0x44/0x1e0 [ 65.586782][ C1] invoke_syscall+0x98/0x2b8 [ 65.587723][ C1] el0_svc_common+0x130/0x23c [ 65.588705][ C1] do_el0_svc+0x48/0x58 [ 65.589543][ C1] el0_svc+0x54/0x168 [ 65.590443][ C1] el0t_64_sync_handler+0x84/0xfc [ 65.591532][ C1] el0t_64_sync+0x190/0x194 [ 65.592610][ C1] irq event stamp: 12156 [ 65.593481][ C1] hardirqs last enabled at (12155): [] local_daif_restore+0x1c/0x3c [ 65.595505][ C1] hardirqs last disabled at (12156): [] el1_interrupt+0x24/0x68 [ 65.597553][ C1] softirqs last enabled at (12110): [] local_bh_enable+0x10/0x34 [ 65.599582][ C1] softirqs last disabled at (12108): [] local_bh_disable+0x10/0x34 [ 65.601679][ C1] ---[ end trace 0000000000000000 ]--- [ 65.602996][ C1] ------------[ cut here ]------------ [ 65.604100][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.605876][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 65.607910][ C1] Modules linked in: [ 65.608662][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 65.610962][ C1] Tainted: [W]=WARN [ 65.611750][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 65.613860][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.615434][ C1] pc : usb_submit_urb+0xa00/0x148c [ 65.616501][ C1] lr : usb_submit_urb+0xa00/0x148c [ 65.617533][ C1] sp : ffff800080016fa0 [ 65.618421][ C1] x29: ffff800080016fe0 x28: ffff0000cda6c000 x27: 0000000000000001 [ 65.620104][ C1] x26: ffff80008cc226e8 x25: ffff0000c3ca5c60 x24: ffff0000cc321950 [ 65.621884][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 65.623599][ C1] x20: 0000000000000820 x19: ffff0000cc321900 x18: 0000000000000008 [ 65.625321][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 65.626999][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 65.628699][ C1] x11: 0000000000010105 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 65.630455][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.632212][ C1] x5 : ffff8000800166f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 65.633848][ C1] x2 : 0000000000000000 x1 : 0000000000010103 x0 : 0000000000000000 [ 65.635535][ C1] Call trace: [ 65.636205][ C1] usb_submit_urb+0xa00/0x148c [ 65.637276][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 65.638297][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 65.639432][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 65.640493][ C1] dummy_timer+0x630/0x341c [ 65.641468][ C1] __hrtimer_run_queues+0x494/0xce0 [ 65.642505][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 65.643449][ C1] arch_timer_handler_virt+0x74/0x88 [ 65.644458][ C1] handle_percpu_devid_irq+0x174/0x308 [ 65.645747][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 65.646998][ C1] gic_handle_irq+0x6c/0x190 [ 65.647967][ C1] do_interrupt_handler+0xe0/0x138 [ 65.649226][ C1] el1_interrupt+0x34/0x68 [ 65.650163][ C1] el1h_64_irq_handler+0x18/0x24 [ 65.651207][ C1] el1h_64_irq+0x64/0x68 [ 65.652125][ C1] _raw_spin_unlock_irqrestore+0x44/0x98 [ 65.653300][ C1] __mod_timer+0xa98/0xcf4 [ 65.654363][ C1] mod_timer+0x2c/0x3c [ 65.655247][ C1] mrp_join_timer+0x154/0x194 [ 65.656144][ C1] call_timer_fn+0x1b4/0x8e8 [ 65.657174][ C1] __run_timer_base+0x56c/0x7b4 [ 65.658196][ C1] run_timer_softirq+0xcc/0x194 [ 65.659230][ C1] handle_softirqs+0x2e4/0xbfc [ 65.660214][ C1] __do_softirq+0x14/0x20 [ 65.661040][ C1] ____do_softirq+0x14/0x20 [ 65.662034][ C1] call_on_irq_stack+0x24/0x4c [ 65.663156][ C1] do_softirq_own_stack+0x20/0x2c [ 65.664202][ C1] __irq_exit_rcu+0x1d8/0x434 [ 65.665177][ C1] irq_exit_rcu+0x14/0x84 [ 65.666173][ C1] el1_interrupt+0x38/0x68 [ 65.667087][ C1] el1h_64_irq_handler+0x18/0x24 [ 65.668186][ C1] el1h_64_irq+0x64/0x68 [ 65.669061][ C1] lock_release+0x534/0x9e8 [ 65.670044][ C1] _raw_spin_unlock+0x24/0x78 [ 65.670999][ C1] file_close_fd+0x68/0x80 [ 65.671876][ C1] __arm64_sys_close+0x44/0x1e0 [ 65.672969][ C1] invoke_syscall+0x98/0x2b8 [ 65.674023][ C1] el0_svc_common+0x130/0x23c [ 65.675053][ C1] do_el0_svc+0x48/0x58 [ 65.675869][ C1] el0_svc+0x54/0x168 [ 65.676720][ C1] el0t_64_sync_handler+0x84/0xfc [ 65.677806][ C1] el0t_64_sync+0x190/0x194 [ 65.678792][ C1] irq event stamp: 12185 [ 65.679625][ C1] hardirqs last enabled at (12184): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 65.681822][ C1] hardirqs last disabled at (12185): [] el1_interrupt+0x24/0x68 [ 65.683791][ C1] softirqs last enabled at (12110): [] local_bh_enable+0x10/0x34 [ 65.685792][ C1] softirqs last disabled at (12157): [] __do_softirq+0x14/0x20 [ 65.687860][ C1] ---[ end trace 0000000000000000 ]--- [ 65.689155][ C1] ------------[ cut here ]------------ [ 65.690327][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.692039][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 65.692165][ T6790] usb 1-1: USB disconnect, device number 3 [ 65.694062][ C1] Modules linked in: [ 65.696189][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 65.698574][ C1] Tainted: [W]=WARN [ 65.699304][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 65.701499][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.703271][ C1] pc : usb_submit_urb+0xa00/0x148c [ 65.704283][ C1] lr : usb_submit_urb+0xa00/0x148c [ 65.705354][ C1] sp : ffff800080017740 [ 65.706278][ C1] x29: ffff800080017780 x28: ffff0000cda6c000 x27: 0000000000000001 [ 65.708007][ C1] x26: ffff80008cc226e8 x25: ffff0000c3ca5c60 x24: ffff0000cc321950 [ 65.709829][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 65.711566][ C1] x20: 0000000000000820 x19: ffff0000cc321900 x18: 0000000000000008 [ 65.713125][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 65.714850][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 65.716445][ C1] x11: 0000000000010003 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 65.718118][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.719755][ C1] x5 : ffff800080016e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 65.721482][ C1] x2 : 0000000000000000 x1 : 0000000000010001 x0 : 0000000000000000 [ 65.723136][ C1] Call trace: [ 65.723813][ C1] usb_submit_urb+0xa00/0x148c [ 65.724765][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 65.725892][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 65.726952][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 65.727995][ C1] dummy_timer+0x630/0x341c [ 65.728953][ C1] __hrtimer_run_queues+0x494/0xce0 [ 65.730069][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 65.731069][ C1] arch_timer_handler_virt+0x74/0x88 [ 65.732192][ C1] handle_percpu_devid_irq+0x174/0x308 [ 65.733479][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 65.734645][ C1] gic_handle_irq+0x6c/0x190 [ 65.735598][ C1] call_on_irq_stack+0x24/0x4c [ 65.736661][ C1] do_interrupt_handler+0xd4/0x138 [ 65.737781][ C1] el1_interrupt+0x34/0x68 [ 65.738830][ C1] el1h_64_irq_handler+0x18/0x24 [ 65.739892][ C1] el1h_64_irq+0x64/0x68 [ 65.740851][ C1] lock_release+0x534/0x9e8 [ 65.741844][ C1] _raw_spin_unlock+0x24/0x78 [ 65.742759][ C1] file_close_fd+0x68/0x80 [ 65.743701][ C1] __arm64_sys_close+0x44/0x1e0 [ 65.744730][ C1] invoke_syscall+0x98/0x2b8 [ 65.745599][ C1] el0_svc_common+0x130/0x23c [ 65.746642][ C1] do_el0_svc+0x48/0x58 [ 65.747484][ C1] el0_svc+0x54/0x168 [ 65.748454][ C1] el0t_64_sync_handler+0x84/0xfc [ 65.749489][ C1] el0t_64_sync+0x190/0x194 [ 65.750470][ C1] irq event stamp: 12210 [ 65.751481][ C1] hardirqs last enabled at (12209): [] exit_to_kernel_mode+0xdc/0x10c [ 65.753449][ C1] hardirqs last disabled at (12210): [] el1_interrupt+0x24/0x68 [ 65.755343][ C1] softirqs last enabled at (12208): [] handle_softirqs+0xa3c/0xbfc [ 65.757290][ C1] softirqs last disabled at (12157): [] __do_softirq+0x14/0x20 [ 65.759252][ C1] ---[ end trace 0000000000000000 ]--- [ 65.760423][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 65.801614][ T6674] bcm5974 1-1:1.0: could not read from device 1970/01/01 00:01:06 executed programs: 2 [ 66.561599][ T6415] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 66.741584][ T6415] usb 1-1: Using ep0 maxpacket: 16 [ 66.743932][ T6415] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 66.747439][ T6415] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 66.749512][ T6415] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 66.751271][ T6415] usb 1-1: Product: syz [ 66.752200][ T6415] usb 1-1: Manufacturer: syz [ 66.753083][ T6415] usb 1-1: SerialNumber: syz [ 66.758584][ T6415] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input4 [ 67.158596][ T6674] ------------[ cut here ]------------ [ 67.159758][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.162531][ T6674] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 67.164527][ T6674] Modules linked in: [ 67.165371][ T6674] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 67.167574][ T6674] Tainted: [W]=WARN [ 67.168310][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 67.170369][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.172126][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 67.173289][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 67.174384][ T6674] sp : ffff8000a3417390 [ 67.175248][ T6674] x29: ffff8000a34173d0 x28: ffff0000cba24000 x27: 0000000000000001 [ 67.176851][ T6674] x26: ffff80008cc226e8 x25: ffff0000d3978400 x24: ffff0000d15c9850 [ 67.178550][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 67.180153][ T6674] x20: 0000000000000cc0 x19: ffff0000d15c9800 x18: 1fffe000366d79ee [ 67.181984][ T6674] x17: ffff80008f56d000 x16: ffff800080347214 x15: 0000000000000001 [ 67.183723][ T6674] x14: 1fffe000366da4d0 x13: 0000000000000000 x12: 0000000000000003 [ 67.185478][ T6674] x11: 0000000000000001 x10: 0000000000000003 x9 : c40a6bd185346c00 [ 67.187180][ T6674] x8 : c40a6bd185346c00 x7 : ffff8000802b7e24 x6 : 0000000000000000 [ 67.188845][ T6674] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000000 [ 67.190656][ T6674] x2 : 0000000000000006 x1 : ffff80008b4b2c40 x0 : ffff800124205000 [ 67.192400][ T6674] Call trace: [ 67.193146][ T6674] usb_submit_urb+0xa00/0x148c [ 67.194275][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 67.195421][ T6674] bcm5974_open+0x98/0x134 [ 67.196385][ T6674] input_open_device+0x170/0x29c [ 67.197473][ T6674] evdev_open+0x308/0x4b4 [ 67.198416][ T6674] chrdev_open+0x3c8/0x4dc [ 67.199379][ T6674] do_dentry_open+0x78c/0x10a4 [ 67.200359][ T6674] vfs_open+0x48/0x2d4 [ 67.201334][ T6674] path_openat+0x2208/0x29f8 [ 67.202291][ T6674] do_filp_open+0x1bc/0x3cc [ 67.203319][ T6674] do_sys_openat2+0x124/0x1b8 [ 67.204449][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 67.205476][ T6674] invoke_syscall+0x98/0x2b8 [ 67.206413][ T6674] el0_svc_common+0x130/0x23c [ 67.207467][ T6674] do_el0_svc+0x48/0x58 [ 67.208234][ T6674] el0_svc+0x54/0x168 [ 67.209143][ T6674] el0t_64_sync_handler+0x84/0xfc [ 67.210228][ T6674] el0t_64_sync+0x190/0x194 [ 67.211269][ T6674] irq event stamp: 17760 [ 67.212174][ T6674] hardirqs last enabled at (17759): [] finish_lock_switch+0xbc/0x1e4 [ 67.214312][ T6674] hardirqs last disabled at (17760): [] el1_dbg+0x24/0x80 [ 67.216152][ T6674] softirqs last enabled at (17752): [] handle_softirqs+0xa3c/0xbfc [ 67.218188][ T6674] softirqs last disabled at (17739): [] __do_softirq+0x14/0x20 [ 67.220238][ T6674] ---[ end trace 0000000000000000 ]--- [ 67.221768][ C1] ------------[ cut here ]------------ [ 67.223011][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.224626][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 67.226707][ C1] Modules linked in: [ 67.227547][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 67.229994][ C1] Tainted: [W]=WARN [ 67.230875][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 67.232979][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.234729][ C1] pc : usb_submit_urb+0xa00/0x148c [ 67.235834][ C1] lr : usb_submit_urb+0xa00/0x148c [ 67.236858][ C1] sp : ffff800080017740 [ 67.237755][ C1] x29: ffff800080017780 x28: ffff0000cba24000 x27: 0000000000000001 [ 67.239344][ C1] x26: ffff80008cc226e8 x25: ffff0000d3978400 x24: ffff0000d15c9850 [ 67.241040][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 67.242833][ C1] x20: 0000000000000820 x19: ffff0000d15c9800 x18: 0000000000000008 [ 67.244502][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 67.246301][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 67.248109][ C1] x11: 0000000000010002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 67.249837][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.251612][ C1] x5 : ffff800080016e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 67.253357][ C1] x2 : 0000000000000000 x1 : 0000000100010000 x0 : 0000000000000000 [ 67.255094][ C1] Call trace: [ 67.255817][ C1] usb_submit_urb+0xa00/0x148c [ 67.256880][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 67.257972][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.259102][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 67.260222][ C1] dummy_timer+0x630/0x341c [ 67.261154][ C1] __hrtimer_run_queues+0x494/0xce0 [ 67.262264][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 67.263292][ C1] arch_timer_handler_virt+0x74/0x88 [ 67.264394][ C1] handle_percpu_devid_irq+0x174/0x308 [ 67.265488][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 67.266586][ C1] gic_handle_irq+0x6c/0x190 [ 67.267607][ C1] call_on_irq_stack+0x24/0x4c [ 67.268661][ C1] do_interrupt_handler+0xd4/0x138 [ 67.269787][ C1] el1_interrupt+0x34/0x68 [ 67.270692][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.271775][ C1] el1h_64_irq+0x64/0x68 [ 67.272563][ C1] format_decode+0xe28/0x14e4 [ 67.273590][ C1] vsnprintf+0x130/0x1a8c [ 67.274477][ C1] snprintf+0xec/0x13c [ 67.275355][ C1] tomoyo_print_ulong+0x98/0xcc [ 67.276407][ C1] tomoyo_path_number_perm+0x3e8/0x6a8 [ 67.277519][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 67.278534][ C1] security_file_ioctl+0x80/0xbc [ 67.279517][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 67.280502][ C1] invoke_syscall+0x98/0x2b8 [ 67.281508][ C1] el0_svc_common+0x130/0x23c [ 67.282519][ C1] do_el0_svc+0x48/0x58 [ 67.283419][ C1] el0_svc+0x54/0x168 [ 67.284273][ C1] el0t_64_sync_handler+0x84/0xfc [ 67.285369][ C1] el0t_64_sync+0x190/0x194 [ 67.286508][ C1] irq event stamp: 17850 [ 67.287402][ C1] hardirqs last enabled at (17849): [] kasan_quarantine_put+0x1a0/0x1c8 [ 67.289664][ C1] hardirqs last disabled at (17850): [] el1_interrupt+0x24/0x68 [ 67.291475][ C1] softirqs last enabled at (17812): [] local_bh_enable+0x10/0x34 [ 67.293553][ C1] softirqs last disabled at (17810): [] local_bh_disable+0x10/0x34 [ 67.295556][ C1] ---[ end trace 0000000000000000 ]--- [ 67.296869][ C1] ------------[ cut here ]------------ [ 67.298073][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.299689][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 67.301691][ C1] Modules linked in: [ 67.302532][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 67.304936][ C1] Tainted: [W]=WARN [ 67.305753][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 67.307924][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.309557][ C1] pc : usb_submit_urb+0xa00/0x148c [ 67.310678][ C1] lr : usb_submit_urb+0xa00/0x148c [ 67.311789][ C1] sp : ffff800080016fa0 [ 67.312705][ C1] x29: ffff800080016fe0 x28: ffff0000cba24000 x27: 0000000000000001 [ 67.314377][ C1] x26: ffff80008cc226e8 x25: ffff0000d3978400 x24: ffff0000d15c9850 [ 67.316139][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 67.317804][ C1] x20: 0000000000000820 x19: ffff0000d15c9800 x18: 0000000000000008 [ 67.319548][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 67.321210][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 67.322897][ C1] x11: 0000000000010104 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 67.324707][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.326433][ C1] x5 : ffff8000800166f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 67.328145][ C1] x2 : 0000000000000000 x1 : 0000000000010102 x0 : 0000000000000000 [ 67.329861][ C1] Call trace: [ 67.330499][ C1] usb_submit_urb+0xa00/0x148c [ 67.331515][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 67.332648][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.333724][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 67.334861][ C1] dummy_timer+0x630/0x341c [ 67.335843][ C1] __hrtimer_run_queues+0x494/0xce0 [ 67.336937][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 67.337976][ C1] arch_timer_handler_virt+0x74/0x88 [ 67.339110][ C1] handle_percpu_devid_irq+0x174/0x308 [ 67.340269][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 67.341466][ C1] gic_handle_irq+0x6c/0x190 [ 67.342486][ C1] do_interrupt_handler+0xe0/0x138 [ 67.343591][ C1] el1_interrupt+0x34/0x68 [ 67.344549][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.345647][ C1] el1h_64_irq+0x64/0x68 [ 67.346513][ C1] _raw_spin_unlock_irqrestore+0x44/0x98 [ 67.347624][ C1] __mod_timer+0xa98/0xcf4 [ 67.348535][ C1] mod_timer+0x2c/0x3c [ 67.349434][ C1] mrp_join_timer+0x154/0x194 [ 67.350453][ C1] call_timer_fn+0x1b4/0x8e8 [ 67.351273][ C1] __run_timer_base+0x56c/0x7b4 [ 67.352311][ C1] run_timer_softirq+0xcc/0x194 [ 67.353440][ C1] handle_softirqs+0x2e4/0xbfc [ 67.354390][ C1] __do_softirq+0x14/0x20 [ 67.355304][ C1] ____do_softirq+0x14/0x20 [ 67.356339][ C1] call_on_irq_stack+0x24/0x4c [ 67.357314][ C1] do_softirq_own_stack+0x20/0x2c [ 67.358318][ C1] __irq_exit_rcu+0x1d8/0x434 [ 67.359456][ C1] irq_exit_rcu+0x14/0x84 [ 67.360381][ C1] el1_interrupt+0x38/0x68 [ 67.361402][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.362508][ C1] el1h_64_irq+0x64/0x68 [ 67.363379][ C1] format_decode+0xe28/0x14e4 [ 67.364342][ C1] vsnprintf+0x130/0x1a8c [ 67.365236][ C1] snprintf+0xec/0x13c [ 67.366140][ C1] tomoyo_print_ulong+0x98/0xcc [ 67.367184][ C1] tomoyo_path_number_perm+0x3e8/0x6a8 [ 67.368373][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 67.369352][ C1] security_file_ioctl+0x80/0xbc [ 67.370423][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 67.371438][ C1] invoke_syscall+0x98/0x2b8 [ 67.372435][ C1] el0_svc_common+0x130/0x23c [ 67.373403][ C1] do_el0_svc+0x48/0x58 [ 67.374293][ C1] el0_svc+0x54/0x168 [ 67.375117][ C1] el0t_64_sync_handler+0x84/0xfc [ 67.376207][ C1] el0t_64_sync+0x190/0x194 [ 67.377181][ C1] irq event stamp: 17869 [ 67.378034][ C1] hardirqs last enabled at (17868): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 67.380106][ C1] hardirqs last disabled at (17869): [] el1_interrupt+0x24/0x68 [ 67.382009][ C1] softirqs last enabled at (17812): [] local_bh_enable+0x10/0x34 [ 67.383879][ C1] softirqs last disabled at (17851): [] __do_softirq+0x14/0x20 [ 67.385755][ C1] ---[ end trace 0000000000000000 ]--- [ 67.387020][ C1] ------------[ cut here ]------------ [ 67.388090][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.389631][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 67.391601][ C1] Modules linked in: [ 67.392347][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 67.394543][ T6417] Bluetooth: hci0: command tx timeout [ 67.394622][ C1] Tainted: [W]=WARN [ 67.396781][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 67.397398][ T8] usb 1-1: USB disconnect, device number 4 [ 67.398878][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.398896][ C1] pc : usb_submit_urb+0xa00/0x148c [ 67.402678][ C1] lr : usb_submit_urb+0xa00/0x148c [ 67.403699][ C1] sp : ffff8000800172a0 [ 67.404528][ C1] x29: ffff8000800172e0 x28: ffff0000cba24000 x27: 0000000000000001 [ 67.406142][ C1] x26: ffff80008cc226e8 x25: ffff0000d3978400 x24: ffff0000d15c9850 [ 67.407851][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 67.409548][ C1] x20: 0000000000000820 x19: ffff0000d15c9800 x18: 0000000000000008 [ 67.411080][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 67.412653][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 67.414310][ C1] x11: 0000000000010103 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 67.415902][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.417539][ C1] x5 : ffff8000800169f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 67.419127][ C1] x2 : 0000000000000000 x1 : 0000000000010101 x0 : 0000000000000000 [ 67.420842][ C1] Call trace: [ 67.421476][ C1] usb_submit_urb+0xa00/0x148c [ 67.422471][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 67.423559][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.424674][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 67.425738][ C1] dummy_timer+0x630/0x341c [ 67.426709][ C1] __hrtimer_run_queues+0x494/0xce0 [ 67.427843][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 67.428919][ C1] arch_timer_handler_virt+0x74/0x88 [ 67.430140][ C1] handle_percpu_devid_irq+0x174/0x308 [ 67.431296][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 67.432373][ C1] gic_handle_irq+0x6c/0x190 [ 67.433352][ C1] do_interrupt_handler+0xe0/0x138 [ 67.434570][ C1] el1_interrupt+0x34/0x68 [ 67.435502][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.436497][ C1] el1h_64_irq+0x64/0x68 [ 67.437368][ C1] _raw_spin_unlock_irq+0x34/0x80 [ 67.438393][ C1] __run_timer_base+0x194/0x7b4 [ 67.439402][ C1] run_timer_softirq+0xcc/0x194 [ 67.440468][ C1] handle_softirqs+0x2e4/0xbfc [ 67.441456][ C1] __do_softirq+0x14/0x20 [ 67.442340][ C1] ____do_softirq+0x14/0x20 [ 67.443273][ C1] call_on_irq_stack+0x24/0x4c [ 67.444262][ C1] do_softirq_own_stack+0x20/0x2c [ 67.445250][ C1] __irq_exit_rcu+0x1d8/0x434 [ 67.446194][ C1] irq_exit_rcu+0x14/0x84 [ 67.447138][ C1] el1_interrupt+0x38/0x68 [ 67.448045][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.449056][ C1] el1h_64_irq+0x64/0x68 [ 67.449909][ C1] format_decode+0xe28/0x14e4 [ 67.450817][ C1] vsnprintf+0x130/0x1a8c [ 67.451761][ C1] snprintf+0xec/0x13c [ 67.452592][ C1] tomoyo_print_ulong+0x98/0xcc [ 67.453593][ C1] tomoyo_path_number_perm+0x3e8/0x6a8 [ 67.454716][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 67.455746][ C1] security_file_ioctl+0x80/0xbc [ 67.456795][ C1] __arm64_sys_ioctl+0xa8/0x1c8 [ 67.457814][ C1] invoke_syscall+0x98/0x2b8 [ 67.458750][ C1] el0_svc_common+0x130/0x23c [ 67.459737][ C1] do_el0_svc+0x48/0x58 [ 67.460592][ C1] el0_svc+0x54/0x168 [ 67.461456][ C1] el0t_64_sync_handler+0x84/0xfc [ 67.462531][ C1] el0t_64_sync+0x190/0x194 [ 67.463475][ C1] irq event stamp: 17883 [ 67.464344][ C1] hardirqs last enabled at (17882): [] _raw_spin_unlock_irq+0x30/0x80 [ 67.466365][ C1] hardirqs last disabled at (17883): [] el1_interrupt+0x24/0x68 [ 67.468336][ C1] softirqs last enabled at (17812): [] local_bh_enable+0x10/0x34 [ 67.470246][ C1] softirqs last disabled at (17851): [] __do_softirq+0x14/0x20 [ 67.472197][ C1] ---[ end trace 0000000000000000 ]--- [ 67.473275][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 67.510835][ T6674] bcm5974 1-1:1.0: could not read from device [ 68.310793][ T6431] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 68.490755][ T6431] usb 1-1: Using ep0 maxpacket: 16 [ 68.493666][ T6431] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 68.497349][ T6431] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 68.499280][ T6431] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 68.501472][ T6431] usb 1-1: Product: syz [ 68.502483][ T6431] usb 1-1: Manufacturer: syz [ 68.503519][ T6431] usb 1-1: SerialNumber: syz [ 68.509261][ T6431] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input5 [ 68.910200][ T6674] ------------[ cut here ]------------ [ 68.911634][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.913449][ T6674] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 68.915476][ T6674] Modules linked in: [ 68.916345][ T6674] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 68.918915][ T6674] Tainted: [W]=WARN [ 68.919734][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 68.921919][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.923740][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 68.924941][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 68.926060][ T6674] sp : ffff8000a3417390 [ 68.927004][ T6674] x29: ffff8000a34173d0 x28: ffff0000c4916000 x27: 0000000000000001 [ 68.928649][ T6674] x26: ffff80008cc226e8 x25: ffff0000cbec6ca0 x24: ffff0000c6e34950 [ 68.930365][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 68.932114][ T6674] x20: 0000000000000cc0 x19: ffff0000c6e34900 x18: 0000000000000008 [ 68.933886][ T6674] x17: 0000000000000000 x16: ffff800080347214 x15: 0000000000000001 [ 68.935709][ T6674] x14: 1fffe000366da4d0 x13: 0000000000000000 x12: 0000000000000003 [ 68.937434][ T6674] x11: 0000000000000001 x10: 0000000000000003 x9 : c40a6bd185346c00 [ 68.939218][ T6674] x8 : c40a6bd185346c00 x7 : ffff80008b418920 x6 : 0000000000000000 [ 68.941112][ T6674] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000000 [ 68.942932][ T6674] x2 : 0000000000000006 x1 : ffff80008b4b2c40 x0 : ffff800124205000 [ 68.944839][ T6674] Call trace: [ 68.945529][ T6674] usb_submit_urb+0xa00/0x148c [ 68.946502][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 68.947597][ T6674] bcm5974_open+0x98/0x134 [ 68.948580][ T6674] input_open_device+0x170/0x29c [ 68.949606][ T6674] evdev_open+0x308/0x4b4 [ 68.950698][ T6674] chrdev_open+0x3c8/0x4dc [ 68.951693][ T6674] do_dentry_open+0x78c/0x10a4 [ 68.952701][ T6674] vfs_open+0x48/0x2d4 [ 68.953524][ T6674] path_openat+0x2208/0x29f8 [ 68.954551][ T6674] do_filp_open+0x1bc/0x3cc [ 68.955593][ T6674] do_sys_openat2+0x124/0x1b8 [ 68.956678][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 68.957858][ T6674] invoke_syscall+0x98/0x2b8 [ 68.958944][ T6674] el0_svc_common+0x130/0x23c [ 68.959984][ T6674] do_el0_svc+0x48/0x58 [ 68.960960][ T6674] el0_svc+0x54/0x168 [ 68.961853][ T6674] el0t_64_sync_handler+0x84/0xfc [ 68.962846][ T6674] el0t_64_sync+0x190/0x194 [ 68.963879][ T6674] irq event stamp: 24914 [ 68.964937][ T6674] hardirqs last enabled at (24913): [] raw_spin_rq_unlock_irq+0x14/0x24 [ 68.967138][ T6674] hardirqs last disabled at (24914): [] el1_dbg+0x24/0x80 [ 68.968976][ T6674] softirqs last enabled at (24894): [] handle_softirqs+0xa3c/0xbfc [ 68.971082][ T6674] softirqs last disabled at (24863): [] __do_softirq+0x14/0x20 [ 68.973080][ T6674] ---[ end trace 0000000000000000 ]--- [ 68.974572][ C1] ------------[ cut here ]------------ [ 68.975739][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.977414][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 68.979684][ C1] Modules linked in: [ 68.980617][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 68.983141][ C1] Tainted: [W]=WARN [ 68.983951][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 68.986236][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.987970][ C1] pc : usb_submit_urb+0xa00/0x148c [ 68.989207][ C1] lr : usb_submit_urb+0xa00/0x148c [ 68.990271][ C1] sp : ffff800080017740 [ 68.991122][ C1] x29: ffff800080017780 x28: ffff0000c4916000 x27: 0000000000000001 [ 68.992788][ C1] x26: ffff80008cc226e8 x25: ffff0000cbec6ca0 x24: ffff0000c6e34950 [ 68.994616][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 68.996287][ C1] x20: 0000000000000820 x19: ffff0000c6e34900 x18: 0000000000000008 [ 68.997913][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 68.999542][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 69.001286][ C1] x11: 0000000000010002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 69.003093][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.004857][ C1] x5 : ffff800080016e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 69.006580][ C1] x2 : 0000000000000000 x1 : 0000000100010000 x0 : 0000000000000000 [ 69.008447][ C1] Call trace: [ 69.009179][ C1] usb_submit_urb+0xa00/0x148c [ 69.010223][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 69.011375][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 69.012574][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 69.013846][ C1] dummy_timer+0x630/0x341c [ 69.014750][ C1] __hrtimer_run_queues+0x494/0xce0 [ 69.015932][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 69.017045][ C1] arch_timer_handler_virt+0x74/0x88 [ 69.018181][ C1] handle_percpu_devid_irq+0x174/0x308 [ 69.019505][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 69.020674][ C1] gic_handle_irq+0x6c/0x190 [ 69.021615][ C1] call_on_irq_stack+0x24/0x4c [ 69.022867][ C1] do_interrupt_handler+0xd4/0x138 [ 69.024102][ C1] el1_interrupt+0x34/0x68 [ 69.025106][ C1] el1h_64_irq_handler+0x18/0x24 [ 69.026117][ C1] el1h_64_irq+0x64/0x68 [ 69.026960][ C1] arch_local_irq_restore+0x8/0xc [ 69.028012][ C1] __might_resched+0x48/0x4d0 [ 69.029061][ C1] __might_sleep+0x90/0xe4 [ 69.029923][ C1] __mutex_lock_common+0xcc/0x21a0 [ 69.031002][ C1] mutex_lock_nested+0x2c/0x38 [ 69.032121][ C1] evdev_release+0x78/0x2ec [ 69.033050][ C1] __fput+0x1bc/0x774 [ 69.033895][ C1] __fput_sync+0x60/0x9c [ 69.034795][ C1] __arm64_sys_close+0x150/0x1e0 [ 69.035890][ C1] invoke_syscall+0x98/0x2b8 [ 69.036882][ C1] el0_svc_common+0x130/0x23c [ 69.037857][ C1] do_el0_svc+0x48/0x58 [ 69.038719][ C1] el0_svc+0x54/0x168 [ 69.039565][ C1] el0t_64_sync_handler+0x84/0xfc [ 69.040614][ C1] el0t_64_sync+0x190/0x194 [ 69.041572][ C1] irq event stamp: 24988 [ 69.042469][ C1] hardirqs last enabled at (24987): [] local_daif_restore+0x1c/0x3c [ 69.044448][ C1] hardirqs last disabled at (24988): [] el1_interrupt+0x24/0x68 [ 69.046428][ C1] softirqs last enabled at (24950): [] local_bh_enable+0x10/0x34 [ 69.048536][ C1] softirqs last disabled at (24948): [] local_bh_disable+0x10/0x34 [ 69.050525][ C1] ---[ end trace 0000000000000000 ]--- [ 69.051934][ C1] ------------[ cut here ]------------ [ 69.053119][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 69.054890][ C1] WARNING: CPU: 1 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 69.056945][ C1] Modules linked in: [ 69.057809][ C1] CPU: 1 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 69.060284][ C1] Tainted: [W]=WARN [ 69.061033][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 69.063158][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 69.064717][ C1] pc : usb_submit_urb+0xa00/0x148c [ 69.065806][ C1] lr : usb_submit_urb+0xa00/0x148c [ 69.066960][ C1] sp : ffff8000800172a0 [ 69.067846][ C1] x29: ffff8000800172e0 x28: ffff0000c4916000 x27: 0000000000000001 [ 69.069516][ C1] x26: ffff80008cc226e8 x25: ffff0000cbec6ca0 x24: ffff0000c6e34950 [ 69.071224][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 69.072953][ C1] x20: 0000000000000820 x19: ffff0000c6e34900 x18: 0000000000000008 [ 69.074660][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 69.076295][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 69.078111][ C1] x11: 0000000000010103 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 69.079910][ C1] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.081845][ C1] x5 : ffff8000800169f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 69.083612][ C1] x2 : 0000000000000000 x1 : 0000000000010101 x0 : 0000000000000000 [ 69.085528][ C1] Call trace: [ 69.086322][ C1] usb_submit_urb+0xa00/0x148c [ 69.087297][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 69.088373][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 69.089575][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 69.090814][ C1] dummy_timer+0x630/0x341c [ 69.091741][ C1] __hrtimer_run_queues+0x494/0xce0 [ 69.092921][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 69.094046][ C1] arch_timer_handler_virt+0x74/0x88 [ 69.095213][ C1] handle_percpu_devid_irq+0x174/0x308 [ 69.096464][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 69.097709][ C1] gic_handle_irq+0x6c/0x190 [ 69.098697][ C1] do_interrupt_handler+0xe0/0x138 [ 69.099775][ C1] el1_interrupt+0x34/0x68 [ 69.100724][ C1] el1h_64_irq_handler+0x18/0x24 [ 69.101844][ C1] el1h_64_irq+0x64/0x68 [ 69.102749][ C1] _raw_spin_unlock_irq+0x34/0x80 [ 69.103759][ C1] __run_timer_base+0x194/0x7b4 [ 69.104834][ C1] run_timer_softirq+0xcc/0x194 [ 69.105881][ C1] handle_softirqs+0x2e4/0xbfc [ 69.106930][ C1] __do_softirq+0x14/0x20 [ 69.107919][ C1] ____do_softirq+0x14/0x20 [ 69.108986][ C1] call_on_irq_stack+0x24/0x4c [ 69.109984][ C1] do_softirq_own_stack+0x20/0x2c [ 69.111148][ C1] __irq_exit_rcu+0x1d8/0x434 [ 69.112109][ C1] irq_exit_rcu+0x14/0x84 [ 69.113027][ C1] el1_interrupt+0x38/0x68 [ 69.113953][ C1] el1h_64_irq_handler+0x18/0x24 [ 69.115044][ C1] el1h_64_irq+0x64/0x68 [ 69.115964][ C1] arch_local_irq_restore+0x8/0xc [ 69.117038][ C1] __might_resched+0x48/0x4d0 [ 69.118073][ C1] __might_sleep+0x90/0xe4 [ 69.119060][ C1] __mutex_lock_common+0xcc/0x21a0 [ 69.120192][ C1] mutex_lock_nested+0x2c/0x38 [ 69.121186][ C1] evdev_release+0x78/0x2ec [ 69.122273][ C1] __fput+0x1bc/0x774 [ 69.123139][ C1] __fput_sync+0x60/0x9c [ 69.124175][ C1] __arm64_sys_close+0x150/0x1e0 [ 69.125177][ C1] invoke_syscall+0x98/0x2b8 [ 69.126183][ C1] el0_svc_common+0x130/0x23c [ 69.127191][ C1] do_el0_svc+0x48/0x58 [ 69.128085][ C1] el0_svc+0x54/0x168 [ 69.129015][ C1] el0t_64_sync_handler+0x84/0xfc [ 69.130098][ C1] el0t_64_sync+0x190/0x194 [ 69.131103][ C1] irq event stamp: 25019 [ 69.132031][ C1] hardirqs last enabled at (25018): [] _raw_spin_unlock_irq+0x30/0x80 [ 69.134230][ C1] hardirqs last disabled at (25019): [] el1_interrupt+0x24/0x68 [ 69.136245][ C1] softirqs last enabled at (24950): [] local_bh_enable+0x10/0x34 [ 69.138246][ C1] softirqs last disabled at (24989): [] __do_softirq+0x14/0x20 [ 69.140309][ C1] ---[ end trace 0000000000000000 ]--- [ 69.141615][ C1] ------------[ cut here ]------------ [ 69.142829][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 69.144503][ C1] WARNING: CPU: 1 PID: 6415 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 69.146337][ T8] usb 1-1: USB disconnect, device number 5 [ 69.146568][ C1] Modules linked in: [ 69.148781][ C1] CPU: 1 UID: 0 PID: 6415 Comm: kworker/1:3 Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 69.151239][ C1] Tainted: [W]=WARN [ 69.152044][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 69.154235][ C1] Workqueue: 0x0 (events) [ 69.155170][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 69.156863][ C1] pc : usb_submit_urb+0xa00/0x148c [ 69.158052][ C1] lr : usb_submit_urb+0xa00/0x148c [ 69.159098][ C1] sp : ffff800080017740 [ 69.159894][ C1] x29: ffff800080017780 x28: ffff0000c4916000 x27: 0000000000000001 [ 69.161609][ C1] x26: ffff80008cc226e8 x25: ffff0000cbec6ca0 x24: ffff0000c6e34950 [ 69.163318][ C1] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 69.165042][ C1] x20: 0000000000000820 x19: ffff0000c6e34900 x18: 0000000000000008 [ 69.166696][ C1] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 69.168357][ C1] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 69.170268][ C1] x11: 0000000000010003 x10: 0000000000ff0100 x9 : 5b94e99006846800 [ 69.172035][ C1] x8 : 5b94e99006846800 x7 : 0000000000000001 x6 : 0000000000000001 [ 69.173756][ C1] x5 : ffff800080016e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 69.175417][ C1] x2 : 0000000000000000 x1 : 0000000100010001 x0 : 0000000000000000 [ 69.177194][ C1] Call trace: [ 69.177911][ C1] usb_submit_urb+0xa00/0x148c [ 69.178938][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 69.179994][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 69.181146][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 69.182277][ C1] dummy_timer+0x630/0x341c [ 69.183282][ C1] __hrtimer_run_queues+0x494/0xce0 [ 69.184409][ C1] hrtimer_interrupt+0x2c0/0xb64 [ 69.185593][ C1] arch_timer_handler_virt+0x74/0x88 [ 69.186676][ C1] handle_percpu_devid_irq+0x174/0x308 [ 69.187867][ C1] generic_handle_domain_irq+0x7c/0xc4 [ 69.189143][ C1] gic_handle_irq+0x6c/0x190 [ 69.190224][ C1] call_on_irq_stack+0x24/0x4c [ 69.191226][ C1] do_interrupt_handler+0xd4/0x138 [ 69.192331][ C1] el1_interrupt+0x34/0x68 [ 69.193276][ C1] el1h_64_irq_handler+0x18/0x24 [ 69.194370][ C1] el1h_64_irq+0x64/0x68 [ 69.195214][ C1] finish_lock_switch+0xc0/0x1e4 [ 69.196239][ C1] finish_task_switch+0x120/0x608 [ 69.197376][ C1] __schedule+0x13d8/0x2418 [ 69.198339][ C1] schedule+0xbc/0x238 [ 69.199267][ C1] worker_thread+0xbb0/0xec4 [ 69.200320][ C1] kthread+0x288/0x310 [ 69.201149][ C1] ret_from_fork+0x10/0x20 [ 69.202037][ C1] irq event stamp: 31404 [ 69.202893][ C1] hardirqs last enabled at (31403): [] finish_lock_switch+0xbc/0x1e4 [ 69.205167][ C1] hardirqs last disabled at (31404): [] el1_interrupt+0x24/0x68 [ 69.207179][ C1] softirqs last enabled at (31378): [] local_bh_enable+0x10/0x34 [ 69.209302][ C1] softirqs last disabled at (31376): [] local_bh_disable+0x10/0x34 [ 69.211449][ C1] ---[ end trace 0000000000000000 ]--- [ 69.212651][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 69.250993][ T6674] bcm5974 1-1:1.0: could not read from device [ 69.460781][ T6417] Bluetooth: hci0: command tx timeout [ 69.622120][ T27] cfg80211: failed to load regulatory.db [ 70.050714][ T6424] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 70.231656][ T6424] usb 1-1: Using ep0 maxpacket: 16 [ 70.234008][ T6424] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 70.237621][ T6424] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 70.239498][ T6424] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 70.241453][ T6424] usb 1-1: Product: syz [ 70.242354][ T6424] usb 1-1: Manufacturer: syz [ 70.243393][ T6424] usb 1-1: SerialNumber: syz [ 70.248940][ T6424] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input6 [ 70.649936][ T6674] ------------[ cut here ]------------ [ 70.651454][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.653231][ T6674] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 70.655209][ T6674] Modules linked in: [ 70.656054][ T6674] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 70.658631][ T6674] Tainted: [W]=WARN [ 70.659451][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 70.661477][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.663143][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 70.664255][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 70.665331][ T6674] sp : ffff8000a3417390 [ 70.666258][ T6674] x29: ffff8000a34173d0 x28: ffff0000c581a000 x27: 0000000000000001 [ 70.667951][ T6674] x26: ffff80008cc226e8 x25: ffff0000c1e04e60 x24: ffff0000d1770450 [ 70.669666][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 70.671452][ T6674] x20: 0000000000000cc0 x19: ffff0000d1770400 x18: 0000000000000008 [ 70.673243][ T6674] x17: 0000000000000000 x16: ffff800083032784 x15: 0000000000000001 [ 70.675069][ T6674] x14: 1fffe000366d325a x13: 0000000000000000 x12: 0000000000000000 [ 70.676939][ T6674] x11: 0000000000000002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 70.678769][ T6674] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.680560][ T6674] x5 : ffff8000a3416ad8 x4 : ffff80008f65b620 x3 : ffff8000806051a0 [ 70.682402][ T6674] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 70.684171][ T6674] Call trace: [ 70.684855][ T6674] usb_submit_urb+0xa00/0x148c [ 70.686052][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 70.687186][ T6674] bcm5974_open+0x98/0x134 [ 70.688289][ T6674] input_open_device+0x170/0x29c [ 70.689434][ T6674] evdev_open+0x308/0x4b4 [ 70.690419][ T6674] chrdev_open+0x3c8/0x4dc [ 70.691326][ T6674] do_dentry_open+0x78c/0x10a4 [ 70.692545][ T6674] vfs_open+0x48/0x2d4 [ 70.693751][ T6674] path_openat+0x2208/0x29f8 [ 70.694819][ T6674] do_filp_open+0x1bc/0x3cc [ 70.695841][ T6674] do_sys_openat2+0x124/0x1b8 [ 70.696821][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 70.697898][ T6674] invoke_syscall+0x98/0x2b8 [ 70.698857][ T6674] el0_svc_common+0x130/0x23c [ 70.699791][ T6674] do_el0_svc+0x48/0x58 [ 70.700692][ T6674] el0_svc+0x54/0x168 [ 70.701535][ T6674] el0t_64_sync_handler+0x84/0xfc [ 70.702523][ T6674] el0t_64_sync+0x190/0x194 [ 70.703582][ T6674] irq event stamp: 29412 [ 70.704502][ T6674] hardirqs last enabled at (29411): [] console_unlock+0x18c/0x3d4 [ 70.706615][ T6674] hardirqs last disabled at (29412): [] el1_dbg+0x24/0x80 [ 70.708592][ T6674] softirqs last enabled at (29396): [] handle_softirqs+0xa3c/0xbfc [ 70.710620][ T6674] softirqs last disabled at (29389): [] __do_softirq+0x14/0x20 [ 70.712622][ T6674] ---[ end trace 0000000000000000 ]--- [ 70.714785][ C0] ------------[ cut here ]------------ [ 70.716012][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.717783][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 70.719999][ C0] Modules linked in: [ 70.720853][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 70.723307][ C0] Tainted: [W]=WARN [ 70.724127][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 70.726288][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.728029][ C0] pc : usb_submit_urb+0xa00/0x148c [ 70.729185][ C0] lr : usb_submit_urb+0xa00/0x148c [ 70.730294][ C0] sp : ffff800080007740 [ 70.731267][ C0] x29: ffff800080007780 x28: ffff0000c581a000 x27: 0000000000000001 [ 70.732921][ C0] x26: ffff80008cc226e8 x25: ffff0000c1e04e60 x24: ffff0000d1770450 [ 70.734570][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 70.736390][ C0] x20: 0000000000000820 x19: ffff0000d1770400 x18: 0000000000000008 [ 70.738231][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 70.740129][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 70.741842][ C0] x11: 0000000000010002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 70.743569][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.745239][ C0] x5 : ffff800080006e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 70.747017][ C0] x2 : 0000000000000000 x1 : 0000000100010000 x0 : 0000000000000000 [ 70.748776][ C0] Call trace: [ 70.749539][ C0] usb_submit_urb+0xa00/0x148c [ 70.750500][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 70.751567][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 70.752727][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 70.753887][ C0] dummy_timer+0x630/0x341c [ 70.754874][ C0] __hrtimer_run_queues+0x494/0xce0 [ 70.756069][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 70.757124][ C0] arch_timer_handler_virt+0x74/0x88 [ 70.758263][ C0] handle_percpu_devid_irq+0x174/0x308 [ 70.759466][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 70.760613][ C0] gic_handle_irq+0x6c/0x190 [ 70.761697][ C0] call_on_irq_stack+0x24/0x4c [ 70.762691][ C0] do_interrupt_handler+0xd4/0x138 [ 70.763856][ C0] el1_interrupt+0x34/0x68 [ 70.764824][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.765900][ C0] el1h_64_irq+0x64/0x68 [ 70.766750][ C0] kasan_check_range+0x1c/0x2a8 [ 70.767903][ C0] __kasan_check_read+0x20/0x30 [ 70.768968][ C0] evdev_ioctl_handler+0x25f4/0x2d98 [ 70.770111][ C0] evdev_ioctl+0x38/0x4c [ 70.771207][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 70.772269][ C0] invoke_syscall+0x98/0x2b8 [ 70.773245][ C0] el0_svc_common+0x130/0x23c [ 70.774280][ C0] do_el0_svc+0x48/0x58 [ 70.775213][ C0] el0_svc+0x54/0x168 [ 70.776072][ C0] el0t_64_sync_handler+0x84/0xfc [ 70.777190][ C0] el0t_64_sync+0x190/0x194 [ 70.778227][ C0] irq event stamp: 29558 [ 70.779119][ C0] hardirqs last enabled at (29557): [] kasan_quarantine_put+0x1a0/0x1c8 [ 70.781244][ C0] hardirqs last disabled at (29558): [] el1_interrupt+0x24/0x68 [ 70.783236][ C0] softirqs last enabled at (29524): [] local_bh_enable+0x10/0x34 [ 70.785199][ C0] softirqs last disabled at (29522): [] local_bh_disable+0x10/0x34 [ 70.787275][ C0] ---[ end trace 0000000000000000 ]--- [ 70.788622][ C0] ------------[ cut here ]------------ [ 70.789741][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.791544][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 70.793846][ C0] Modules linked in: [ 70.794665][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 70.797038][ C0] Tainted: [W]=WARN [ 70.797854][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 70.800018][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.801724][ C0] pc : usb_submit_urb+0xa00/0x148c [ 70.802981][ C0] lr : usb_submit_urb+0xa00/0x148c [ 70.804065][ C0] sp : ffff800080006d20 [ 70.804996][ C0] x29: ffff800080006d60 x28: ffff0000c581a000 x27: 0000000000000001 [ 70.806566][ C0] x26: ffff80008cc226e8 x25: ffff0000c1e04e60 x24: ffff0000d1770450 [ 70.808335][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 70.810114][ C0] x20: 0000000000000820 x19: ffff0000d1770400 x18: 0000000000000008 [ 70.811960][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 70.813790][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 70.815634][ C0] x11: 0000000000010102 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 70.817398][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.819311][ C0] x5 : ffff800080006478 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 70.821076][ C0] x2 : 0000000000000000 x1 : 0000000000010100 x0 : 0000000000000000 [ 70.822909][ C0] Call trace: [ 70.823594][ C0] usb_submit_urb+0xa00/0x148c [ 70.824591][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 70.825817][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 70.827109][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 70.828222][ C0] dummy_timer+0x630/0x341c [ 70.829177][ C0] __hrtimer_run_queues+0x494/0xce0 [ 70.830269][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 70.831324][ C0] arch_timer_handler_virt+0x74/0x88 [ 70.832557][ C0] handle_percpu_devid_irq+0x174/0x308 [ 70.833831][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 70.835105][ C0] gic_handle_irq+0x6c/0x190 [ 70.836135][ C0] do_interrupt_handler+0xe0/0x138 [ 70.837189][ C0] el1_interrupt+0x34/0x68 [ 70.838103][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.839216][ C0] el1h_64_irq+0x64/0x68 [ 70.840074][ C0] btmrvl_hscfgcmd_write+0x69bc/0x101b4 [ 70.841328][ C0] rate_control_send_low+0x16c/0x694 [ 70.842412][ C0] rate_control_get_rate+0x1a4/0x4b0 [ 70.843539][ C0] ieee80211_beacon_get_finish+0x384/0x6a0 [ 70.844720][ C0] __ieee80211_beacon_get+0xa44/0x12a4 [ 70.845960][ C0] ieee80211_beacon_get_tim+0xbc/0x29c [ 70.847157][ C0] mac80211_hwsim_beacon_tx+0x338/0x70c [ 70.848418][ C0] __iterate_interfaces+0x204/0x4b8 [ 70.849621][ C0] ieee80211_iterate_active_interfaces_atomic+0xd4/0x180 [ 70.851248][ C0] mac80211_hwsim_beacon+0xcc/0x1c8 [ 70.851826][ T6415] usb 1-1: USB disconnect, device number 6 [ 70.852407][ C0] __hrtimer_run_queues+0x494/0xce0 [ 70.854638][ C0] hrtimer_run_softirq+0x158/0x21c [ 70.855795][ C0] handle_softirqs+0x2e4/0xbfc [ 70.857113][ C0] __do_softirq+0x14/0x20 [ 70.858055][ C0] ____do_softirq+0x14/0x20 [ 70.859013][ C0] call_on_irq_stack+0x24/0x4c [ 70.859983][ C0] do_softirq_own_stack+0x20/0x2c [ 70.860940][ C0] __irq_exit_rcu+0x1d8/0x434 [ 70.862036][ C0] irq_exit_rcu+0x14/0x84 [ 70.862866][ C0] el1_interrupt+0x38/0x68 [ 70.863706][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.864737][ C0] el1h_64_irq+0x64/0x68 [ 70.865629][ C0] kasan_check_range+0x1c/0x2a8 [ 70.866793][ C0] __kasan_check_read+0x20/0x30 [ 70.867776][ C0] evdev_ioctl_handler+0x25f4/0x2d98 [ 70.868992][ C0] evdev_ioctl+0x38/0x4c [ 70.869863][ C0] __arm64_sys_ioctl+0x14c/0x1c8 [ 70.870866][ C0] invoke_syscall+0x98/0x2b8 [ 70.871975][ C0] el0_svc_common+0x130/0x23c [ 70.873116][ C0] do_el0_svc+0x48/0x58 [ 70.873954][ C0] el0_svc+0x54/0x168 [ 70.874824][ C0] el0t_64_sync_handler+0x84/0xfc [ 70.875936][ C0] el0t_64_sync+0x190/0x194 [ 70.876963][ C0] irq event stamp: 29579 [ 70.877880][ C0] hardirqs last enabled at (29578): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 70.880284][ C0] hardirqs last disabled at (29579): [] el1_interrupt+0x24/0x68 [ 70.882367][ C0] softirqs last enabled at (29524): [] local_bh_enable+0x10/0x34 [ 70.884344][ C0] softirqs last disabled at (29559): [] __do_softirq+0x14/0x20 [ 70.886319][ C0] ---[ end trace 0000000000000000 ]--- [ 70.887470][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 70.921665][ T6674] bcm5974 1-1:1.0: could not read from device 1970/01/01 00:01:11 executed programs: 5 [ 71.680784][ T6424] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 71.870786][ T6424] usb 1-1: Using ep0 maxpacket: 16 [ 71.873870][ T6424] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 71.877407][ T6424] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 71.879277][ T6424] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 71.881496][ T6424] usb 1-1: Product: syz [ 71.882484][ T6424] usb 1-1: Manufacturer: syz [ 71.883421][ T6424] usb 1-1: SerialNumber: syz [ 71.888869][ T6424] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input7 [ 72.289238][ T6674] ------------[ cut here ]------------ [ 72.290735][ T6674] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.292444][ T6674] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 72.294357][ T6674] Modules linked in: [ 72.295277][ T6674] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 72.297707][ T6674] Tainted: [W]=WARN [ 72.298555][ T6674] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 72.300684][ T6674] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.302398][ T6674] pc : usb_submit_urb+0xa00/0x148c [ 72.303481][ T6674] lr : usb_submit_urb+0xa00/0x148c [ 72.304674][ T6674] sp : ffff8000a3417390 [ 72.305569][ T6674] x29: ffff8000a34173d0 x28: ffff0000c2fc1000 x27: 0000000000000001 [ 72.307319][ T6674] x26: ffff80008cc226e8 x25: ffff0000c1e04180 x24: ffff0000c85e5250 [ 72.309091][ T6674] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 72.310778][ T6674] x20: 0000000000000cc0 x19: ffff0000c85e5200 x18: 0000000000000008 [ 72.312462][ T6674] x17: 0000000000000000 x16: ffff800083032784 x15: 0000000000000001 [ 72.314393][ T6674] x14: 1fffe000366d325a x13: 0000000000000000 x12: 0000000000000000 [ 72.316099][ T6674] x11: 0000000000000002 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 72.317812][ T6674] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.319529][ T6674] x5 : ffff8000a3416ad8 x4 : ffff80008f65b620 x3 : ffff8000806051a0 [ 72.321330][ T6674] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 72.323195][ T6674] Call trace: [ 72.323888][ T6674] usb_submit_urb+0xa00/0x148c [ 72.324899][ T6674] bcm5974_start_traffic+0xe0/0x154 [ 72.326060][ T6674] bcm5974_open+0x98/0x134 [ 72.327154][ T6674] input_open_device+0x170/0x29c [ 72.328275][ T6674] evdev_open+0x308/0x4b4 [ 72.329271][ T6674] chrdev_open+0x3c8/0x4dc [ 72.330255][ T6674] do_dentry_open+0x78c/0x10a4 [ 72.331349][ T6674] vfs_open+0x48/0x2d4 [ 72.332307][ T6674] path_openat+0x2208/0x29f8 [ 72.333277][ T6674] do_filp_open+0x1bc/0x3cc [ 72.334263][ T6674] do_sys_openat2+0x124/0x1b8 [ 72.335274][ T6674] __arm64_sys_openat+0x1f0/0x240 [ 72.336436][ T6674] invoke_syscall+0x98/0x2b8 [ 72.337454][ T6674] el0_svc_common+0x130/0x23c [ 72.338596][ T6674] do_el0_svc+0x48/0x58 [ 72.339622][ T6674] el0_svc+0x54/0x168 [ 72.340458][ T6674] el0t_64_sync_handler+0x84/0xfc [ 72.341514][ T6674] el0t_64_sync+0x190/0x194 [ 72.342446][ T6674] irq event stamp: 34362 [ 72.343469][ T6674] hardirqs last enabled at (34361): [] console_unlock+0x18c/0x3d4 [ 72.345444][ T6674] hardirqs last disabled at (34362): [] el1_dbg+0x24/0x80 [ 72.347467][ T6674] softirqs last enabled at (34346): [] handle_softirqs+0xa3c/0xbfc [ 72.349485][ T6674] softirqs last disabled at (34329): [] __do_softirq+0x14/0x20 [ 72.351513][ T6674] ---[ end trace 0000000000000000 ]--- [ 72.353186][ C0] ------------[ cut here ]------------ [ 72.354424][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.356219][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 72.358315][ C0] Modules linked in: [ 72.359165][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 72.361553][ C0] Tainted: [W]=WARN [ 72.362454][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 72.364657][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.366367][ C0] pc : usb_submit_urb+0xa00/0x148c [ 72.367555][ C0] lr : usb_submit_urb+0xa00/0x148c [ 72.368598][ C0] sp : ffff800080007740 [ 72.369504][ C0] x29: ffff800080007780 x28: ffff0000c2fc1000 x27: 0000000000000001 [ 72.371134][ C0] x26: ffff80008cc226e8 x25: ffff0000c1e04180 x24: ffff0000c85e5250 [ 72.373031][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 72.374882][ C0] x20: 0000000000000820 x19: ffff0000c85e5200 x18: 0000000000000008 [ 72.376589][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 72.378370][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 72.380077][ C0] x11: 0000000000010004 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 72.381734][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.383570][ C0] x5 : ffff800080006e98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 72.385247][ C0] x2 : 0000000000000000 x1 : 0000000100010002 x0 : 0000000000000000 [ 72.386908][ C0] Call trace: [ 72.387586][ C0] usb_submit_urb+0xa00/0x148c [ 72.388523][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 72.389633][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 72.390841][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 72.391902][ C0] dummy_timer+0x630/0x341c [ 72.392952][ C0] __hrtimer_run_queues+0x494/0xce0 [ 72.394142][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 72.395230][ C0] arch_timer_handler_virt+0x74/0x88 [ 72.396321][ C0] handle_percpu_devid_irq+0x174/0x308 [ 72.397479][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 72.398687][ C0] gic_handle_irq+0x6c/0x190 [ 72.399803][ C0] call_on_irq_stack+0x24/0x4c [ 72.400778][ C0] do_interrupt_handler+0xd4/0x138 [ 72.401853][ C0] el1_interrupt+0x34/0x68 [ 72.402842][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.403878][ C0] el1h_64_irq+0x64/0x68 [ 72.404783][ C0] __sanitizer_cov_trace_pc+0x50/0x84 [ 72.406056][ C0] check_preemption_disabled+0x30/0xe4 [ 72.407205][ C0] debug_smp_processor_id+0x20/0x2c [ 72.408342][ C0] rcu_is_watching+0x5c/0x18c [ 72.409370][ C0] lock_acquire+0xf8/0x728 [ 72.410289][ C0] _raw_spin_lock+0x48/0x60 [ 72.411185][ C0] file_close_fd+0x50/0x80 [ 72.412142][ C0] __arm64_sys_close+0x44/0x1e0 [ 72.413083][ C0] invoke_syscall+0x98/0x2b8 [ 72.414158][ C0] el0_svc_common+0x130/0x23c [ 72.415273][ C0] do_el0_svc+0x48/0x58 [ 72.416178][ C0] el0_svc+0x54/0x168 [ 72.416990][ C0] el0t_64_sync_handler+0x84/0xfc [ 72.418055][ C0] el0t_64_sync+0x190/0x194 [ 72.419103][ C0] irq event stamp: 34564 [ 72.420115][ C0] hardirqs last enabled at (34563): [] local_daif_restore+0x1c/0x3c [ 72.422227][ C0] hardirqs last disabled at (34564): [] el1_interrupt+0x24/0x68 [ 72.424322][ C0] softirqs last enabled at (34520): [] local_bh_enable+0x10/0x34 [ 72.426487][ C0] softirqs last disabled at (34518): [] local_bh_disable+0x10/0x34 [ 72.428687][ C0] ---[ end trace 0000000000000000 ]--- [ 72.430073][ C0] ------------[ cut here ]------------ [ 72.431269][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.433011][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 72.435261][ C0] Modules linked in: [ 72.436273][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 72.439034][ C0] Tainted: [W]=WARN [ 72.439818][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 72.442055][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.443837][ C0] pc : usb_submit_urb+0xa00/0x148c [ 72.445002][ C0] lr : usb_submit_urb+0xa00/0x148c [ 72.446186][ C0] sp : ffff800080007340 [ 72.447168][ C0] x29: ffff800080007380 x28: ffff0000c2fc1000 x27: 0000000000000001 [ 72.449069][ C0] x26: ffff80008cc226e8 x25: ffff0000c1e04180 x24: ffff0000c85e5250 [ 72.450832][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 72.452648][ C0] x20: 0000000000000820 x19: ffff0000c85e5200 x18: 0000000000000008 [ 72.454426][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 72.456287][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 72.458110][ C0] x11: 0000000000010104 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 72.459981][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.461886][ C0] x5 : ffff800080006a98 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 72.463731][ C0] x2 : 0000000000000000 x1 : 0000000000010102 x0 : 0000000000000000 [ 72.465587][ C0] Call trace: [ 72.466351][ C0] usb_submit_urb+0xa00/0x148c [ 72.467417][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 72.468590][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 72.469849][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 72.471047][ C0] dummy_timer+0x630/0x341c [ 72.472006][ C0] __hrtimer_run_queues+0x494/0xce0 [ 72.473021][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 72.474093][ C0] arch_timer_handler_virt+0x74/0x88 [ 72.475271][ C0] handle_percpu_devid_irq+0x174/0x308 [ 72.476481][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 72.477556][ C0] gic_handle_irq+0x6c/0x190 [ 72.478503][ C0] do_interrupt_handler+0xe0/0x138 [ 72.479657][ C0] el1_interrupt+0x34/0x68 [ 72.480596][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.481689][ C0] el1h_64_irq+0x64/0x68 [ 72.482532][ C0] sched_balance_update_blocked_averages+0xf5c/0x1040 [ 72.483966][ C0] sched_balance_softirq+0x110/0x17c [ 72.485125][ C0] handle_softirqs+0x2e4/0xbfc [ 72.486202][ C0] __do_softirq+0x14/0x20 [ 72.487133][ C0] ____do_softirq+0x14/0x20 [ 72.488114][ C0] call_on_irq_stack+0x24/0x4c [ 72.489117][ C0] do_softirq_own_stack+0x20/0x2c [ 72.490202][ C0] __irq_exit_rcu+0x1d8/0x434 [ 72.491255][ C0] irq_exit_rcu+0x14/0x84 [ 72.492181][ C0] el1_interrupt+0x38/0x68 [ 72.493186][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.494416][ C0] el1h_64_irq+0x64/0x68 [ 72.495358][ C0] __sanitizer_cov_trace_pc+0x50/0x84 [ 72.496547][ C0] check_preemption_disabled+0x30/0xe4 [ 72.497789][ C0] debug_smp_processor_id+0x20/0x2c [ 72.498885][ C0] rcu_is_watching+0x5c/0x18c [ 72.499802][ C0] lock_acquire+0xf8/0x728 [ 72.500688][ C0] _raw_spin_lock+0x48/0x60 [ 72.501611][ C0] file_close_fd+0x50/0x80 [ 72.502579][ C0] __arm64_sys_close+0x44/0x1e0 [ 72.503650][ C0] invoke_syscall+0x98/0x2b8 [ 72.504504][ C0] el0_svc_common+0x130/0x23c [ 72.505495][ C0] do_el0_svc+0x48/0x58 [ 72.506358][ C0] el0_svc+0x54/0x168 [ 72.507262][ C0] el0t_64_sync_handler+0x84/0xfc [ 72.508305][ C0] el0t_64_sync+0x190/0x194 [ 72.509284][ C0] irq event stamp: 34585 [ 72.510137][ C0] hardirqs last enabled at (34584): [] sched_balance_update_blocked_averages+0xf50/0x1040 [ 72.512615][ C0] hardirqs last disabled at (34585): [] el1_interrupt+0x24/0x68 [ 72.514680][ C0] softirqs last enabled at (34520): [] local_bh_enable+0x10/0x34 [ 72.516738][ C0] softirqs last disabled at (34565): [] __do_softirq+0x14/0x20 [ 72.518788][ C0] ---[ end trace 0000000000000000 ]--- [ 72.520224][ C0] ------------[ cut here ]------------ [ 72.521388][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.523163][ C0] WARNING: CPU: 0 PID: 6674 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x148c [ 72.523826][ T6431] usb 1-1: USB disconnect, device number 7 [ 72.525250][ C0] Modules linked in: [ 72.525266][ C0] CPU: 0 UID: 0 PID: 6674 Comm: udevd Tainted: G W 6.11.0-rc7-syzkaller-g5f5673607153 #0 [ 72.529794][ C0] Tainted: [W]=WARN [ 72.530675][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 72.532779][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.534518][ C0] pc : usb_submit_urb+0xa00/0x148c [ 72.535655][ C0] lr : usb_submit_urb+0xa00/0x148c [ 72.536765][ C0] sp : ffff800080006ea0 [ 72.537654][ C0] x29: ffff800080006ee0 x28: ffff0000c2fc1000 x27: 0000000000000001 [ 72.539469][ C0] x26: ffff80008cc226e8 x25: ffff0000c1e04180 x24: ffff0000c85e5250 [ 72.541125][ C0] x23: ffff80008cc292a0 x22: dfff800000000000 x21: 0000000000000002 [ 72.542768][ C0] x20: 0000000000000820 x19: ffff0000c85e5200 x18: 0000000000000008 [ 72.544536][ C0] x17: 0000000000000000 x16: ffff80008b274630 x15: ffff700011ebd1e8 [ 72.546211][ C0] x14: 1ffff00011ebd1e8 x13: 0000000000000004 x12: ffffffffffffffff [ 72.547961][ C0] x11: 0000000000010104 x10: 0000000000ff0100 x9 : c40a6bd185346c00 [ 72.549720][ C0] x8 : c40a6bd185346c00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.551436][ C0] x5 : ffff8000800065f8 x4 : ffff80008f65b620 x3 : ffff800080383398 [ 72.553274][ C0] x2 : 0000000000000000 x1 : 0000000000010102 x0 : 0000000000000000 [ 72.555118][ C0] Call trace: [ 72.555716][ C0] usb_submit_urb+0xa00/0x148c [ 72.556687][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 72.557801][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 72.558941][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 72.560192][ C0] dummy_timer+0x630/0x341c [ 72.561236][ C0] __hrtimer_run_queues+0x494/0xce0 [ 72.562427][ C0] hrtimer_interrupt+0x2c0/0xb64 [ 72.563591][ C0] arch_timer_handler_virt+0x74/0x88 [ 72.564666][ C0] handle_percpu_devid_irq+0x174/0x308 [ 72.565764][ C0] generic_handle_domain_irq+0x7c/0xc4 [ 72.566972][ C0] gic_handle_irq+0x6c/0x190 [ 72.567904][ C0] do_interrupt_handler+0xe0/0x138 [ 72.568998][ C0] el1_interrupt+0x34/0x68 [ 72.569938][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.570945][ C0] el1h_64_irq+0x64/0x68 [ 72.572028][ C0] kasan_quarantine_put+0xb8/0x1c8 [ 72.573110][ C0] __kasan_slab_free+0x5c/0x70 [ 72.574165][ C0] kmem_cache_free+0x170/0x4d0 [ 72.575279][ C0] skb_free_head+0xc8/0x1bc [ 72.576355][ C0] skb_release_data+0x484/0x618 [ 72.577419][ C0] consume_skb+0xb8/0x194 [ 72.578338][ C0] mac80211_hwsim_tx_frame+0x1cc/0x1f8 [ 72.579467][ C0] __mac80211_hwsim_beacon_tx+0x3c4/0x5f0 [ 72.580696][ C0] mac80211_hwsim_beacon_tx+0x35c/0x70c [ 72.581775][ C0] __iterate_interfaces+0x204/0x4b8 [ 72.582977][ C0] ieee80211_iterate_active_interfaces_atomic+0xd4/0x180 [ 72.584427][ C0] mac80211_hwsim_beacon+0xcc/0x1c8 [ 72.585627][ C0] __hrtimer_run_queues+0x494/0xce0 [ 72.586709][ C0] hrtimer_run_softirq+0x158/0x21c [ 72.587768][ C0] handle_softirqs+0x2e4/0xbfc [ 72.588762][ C0] __do_softirq+0x14/0x20 [ 72.589680][ C0] ____do_softirq+0x14/0x20 [ 72.590646][ C0] call_on_irq_stack+0x24/0x4c [ 72.591630][ C0] do_softirq_own_stack+0x20/0x2c [ 72.592681][ C0] __irq_exit_rcu+0x1d8/0x434 [ 72.593700][ C0] irq_exit_rcu+0x14/0x84 [ 72.594514][ C0] el1_interrupt+0x38/0x68 [ 72.595450][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.596406][ C0] el1h_64_irq+0x64/0x68 [ 72.597283][ C0] __sanitizer_cov_trace_pc+0x50/0x84 [ 72.598386][ C0] check_preemption_disabled+0x30/0xe4 [ 72.599544][ C0] debug_smp_processor_id+0x20/0x2c [ 72.600618][ C0] rcu_is_watching+0x5c/0x18c [ 72.601584][ C0] lock_acquire+0xf8/0x728 [ 72.602654][ C0] _raw_spin_lock+0x48/0x60 [ 72.603596][ C0] file_close_fd+0x50/0x80 [ 72.604543][ C0] __arm64_sys_close+0x44/0x1e0 [ 72.605643][ C0] invoke_syscall+0x98/0x2b8 [ 72.606597][ C0] el0_svc_common+0x130/0x23c [ 72.607595][ C0] do_el0_svc+0x48/0x58 [ 72.608491][ C0] el0_svc+0x54/0x168 [ 72.609350][ C0] el0t_64_sync_handler+0x84/0xfc [ 72.610458][ C0] el0t_64_sync+0x190/0x194 [ 72.611358][ C0] irq event stamp: 34619 [ 72.612249][ C0] hardirqs last enabled at (34618): [] kasan_quarantine_put+0x1a0/0x1c8 [ 72.614343][ C0] hardirqs last disabled at (34619): [] el1_interrupt+0x24/0x68 [ 72.616279][ C0] softirqs last enabled at (34520): [] local_bh_enable+0x10/0x34 [ 72.618375][ C0] softirqs last disabled at (34565): [] __do_softirq+0x14/0x20 [ 72.620227][ C0] ---[ end trace 0000000000000000 ]--- [ 72.621413][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 72.660828][ T6674] bcm5974 1-1:1.0: could not read from device [ 73.450773][ T8] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 73.631617][ T8] usb 1-1: Using ep0 maxpacket: 16 [ 73.634076][ T8] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 73.637537][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 73.639570][ T8] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 73.641426][ T8] usb 1-1: Product: syz [ 73.642371][ T8] usb 1-1: Manufacturer: syz [ 73.643373][ T8] usb 1-1: SerialNumber: syz [ 73.648188][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input8