Warning: Permanently added '10.128.1.69' (ED25519) to the list of known hosts. 1970/01/01 00:00:57 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:57 parsed 1 programs [ 57.417462][ T6447] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:00:57 executed programs: 0 [ 57.455516][ T5673] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 57.458200][ T5673] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 57.461044][ T5673] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 57.463567][ T5673] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 57.465947][ T5673] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 57.468055][ T5673] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 57.536531][ T6454] chnl_net:caif_netlink_parms(): no params data found [ 57.565544][ T6454] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.567483][ T6454] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.569556][ T6454] bridge_slave_0: entered allmulticast mode [ 57.571650][ T6454] bridge_slave_0: entered promiscuous mode [ 57.575338][ T6454] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.577304][ T6454] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.579266][ T6454] bridge_slave_1: entered allmulticast mode [ 57.581527][ T6454] bridge_slave_1: entered promiscuous mode [ 57.593831][ T6454] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.598320][ T6454] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.610935][ T6454] team0: Port device team_slave_0 added [ 57.614215][ T6454] team0: Port device team_slave_1 added [ 57.625215][ T6454] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 57.626992][ T6454] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.634163][ T6454] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 57.638963][ T6454] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 57.640935][ T6454] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 57.647637][ T6454] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 57.700914][ T6454] hsr_slave_0: entered promiscuous mode [ 57.739753][ T6454] hsr_slave_1: entered promiscuous mode [ 58.482186][ T6454] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 58.513240][ T6454] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 58.551545][ T6454] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 58.599553][ T6454] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 58.687522][ T6454] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.700902][ T6454] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.708304][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.710327][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.720658][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.722549][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.735617][ T6454] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 58.738409][ T6454] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.819462][ T6454] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 58.840971][ T6454] veth0_vlan: entered promiscuous mode [ 58.846351][ T6454] veth1_vlan: entered promiscuous mode [ 58.864535][ T6454] veth0_macvtap: entered promiscuous mode [ 58.871881][ T6454] veth1_macvtap: entered promiscuous mode [ 58.881650][ T6454] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 58.887822][ T6454] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 58.896125][ T6454] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.898480][ T6454] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.901420][ T6454] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.903807][ T6454] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 58.951885][ T228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.954070][ T228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 58.973448][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 58.975487][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 59.289576][ T1646] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 59.539767][ T5673] Bluetooth: hci0: command 0x0409 tx timeout [ 59.704548][ T1646] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 59.706754][ T1646] usb 1-1: config 0 has no interface number 0 [ 59.708360][ T1646] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 59.711662][ T1646] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 59.714564][ T1646] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 59.717192][ T1646] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 59.890069][ T1646] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 59.892488][ T1646] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 59.894616][ T1646] usb 1-1: Product: syz [ 59.895688][ T1646] usb 1-1: Manufacturer: syz [ 59.897267][ T1646] usb 1-1: SerialNumber: syz [ 59.902164][ T1646] usb 1-1: config 0 descriptor?? [ 59.920495][ T6551] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 59.947134][ T1646] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input2 [ 60.370025][ T6464] ------------[ cut here ]------------ [ 60.371578][ T6464] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 60.373556][ T6464] WARNING: CPU: 0 PID: 6464 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 60.376067][ T6464] Modules linked in: [ 60.377101][ T6464] CPU: 0 PID: 6464 Comm: udevd Not tainted 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 60.379423][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 60.382189][ T6464] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.384327][ T6464] pc : usb_submit_urb+0xa00/0x1434 [ 60.385729][ T6464] lr : usb_submit_urb+0xa00/0x1434 [ 60.387084][ T6464] sp : ffff8000971a73b0 [ 60.388179][ T6464] x29: ffff8000971a73f0 x28: ffff0000d6bfd000 x27: 0000000000000001 [ 60.390435][ T6464] x26: ffff80008beeb608 x25: ffff0000c219e758 x24: ffff0000cfe27850 [ 60.392560][ T6464] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 60.394799][ T6464] x20: 0000000000000cc0 x19: ffff0000cfe27800 x18: ffff8000971a6880 [ 60.396906][ T6464] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 60.399094][ T6464] x14: 1fffe0003682663a x13: 0000000000000000 x12: 0000000000000000 [ 60.401269][ T6464] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 13f9114953b84f00 [ 60.403553][ T6464] x8 : 13f9114953b84f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 60.405657][ T6464] x5 : ffff8000971a6c98 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 60.407869][ T6464] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 60.410013][ T6464] Call trace: [ 60.410913][ T6464] usb_submit_urb+0xa00/0x1434 [ 60.412172][ T6464] bcm5974_start_traffic+0xe0/0x154 [ 60.413662][ T6464] bcm5974_open+0x98/0x134 [ 60.414792][ T6464] input_open_device+0x170/0x29c [ 60.416120][ T6464] evdev_open+0x308/0x4b4 [ 60.417271][ T6464] chrdev_open+0x3c8/0x4dc [ 60.418444][ T6464] do_dentry_open+0x778/0x12b4 [ 60.419722][ T6464] vfs_open+0x7c/0x90 [ 60.420781][ T6464] path_openat+0x1f6c/0x2888 [ 60.422035][ T6464] do_filp_open+0x1bc/0x3cc [ 60.423269][ T6464] do_sys_openat2+0x124/0x1b8 [ 60.424542][ T6464] __arm64_sys_openat+0x1f0/0x240 [ 60.425880][ T6464] invoke_syscall+0x98/0x2b8 [ 60.427099][ T6464] el0_svc_common+0x130/0x23c [ 60.428408][ T6464] do_el0_svc+0x48/0x58 [ 60.429512][ T6464] el0_svc+0x54/0x158 [ 60.430574][ T6464] el0t_64_sync_handler+0x84/0xfc [ 60.431947][ T6464] el0t_64_sync+0x190/0x194 [ 60.433088][ T6464] irq event stamp: 6906 [ 60.434184][ T6464] hardirqs last enabled at (6905): [] console_unlock+0x17c/0x3d4 [ 60.436637][ T6464] hardirqs last disabled at (6906): [] el1_dbg+0x24/0x80 [ 60.438897][ T6464] softirqs last enabled at (6690): [] local_bh_enable+0x10/0x34 [ 60.441404][ T6464] softirqs last disabled at (6688): [] local_bh_disable+0x10/0x34 [ 60.443988][ T6464] ---[ end trace 0000000000000000 ]--- [ 60.469341][ C0] ------------[ cut here ]------------ [ 60.470881][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 60.472826][ C0] WARNING: CPU: 0 PID: 6672 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 60.475327][ C0] Modules linked in: [ 60.476392][ C0] CPU: 0 PID: 6672 Comm: dhcpcd-run-hook Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 60.479364][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 60.482006][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.484207][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 60.485564][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 60.486937][ C0] sp : ffff8000800076c0 [ 60.488020][ C0] x29: ffff800080007700 x28: ffff0000d6bfd000 x27: 0000000000000001 [ 60.490124][ C0] x26: ffff80008beeb608 x25: ffff0000c219e758 x24: ffff0000cfe27850 [ 60.492404][ C0] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 60.494532][ C0] x20: 0000000000000820 x19: ffff0000cfe27800 x18: ffff800080006ba0 [ 60.496665][ C0] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 60.498823][ C0] x14: 1fffe0003682663a x13: 0000000000000000 x12: 0000000000000000 [ 60.500944][ C0] x11: 0000000000000102 x10: 0000000000ff0100 x9 : 8c2e932b72a64f00 [ 60.503050][ C0] x8 : 8c2e932b72a64f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 60.505226][ C0] x5 : ffff800080006fb8 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 60.507396][ C0] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 60.509580][ C0] Call trace: [ 60.510462][ C0] usb_submit_urb+0xa00/0x1434 [ 60.511669][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 60.513098][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 60.514551][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 60.515919][ C0] dummy_timer+0x66c/0x26cc [ 60.517126][ C0] call_timer_fn+0x19c/0x8cc [ 60.518487][ C0] __run_timers+0x55c/0x734 [ 60.519676][ C0] run_timer_softirq+0x7c/0x114 [ 60.520936][ C0] __do_softirq+0x2d8/0xce4 [ 60.522074][ C0] ____do_softirq+0x14/0x20 [ 60.523218][ C0] call_on_irq_stack+0x24/0x4c [ 60.524425][ C0] do_softirq_own_stack+0x20/0x2c [ 60.525799][ C0] __irq_exit_rcu+0x1d8/0x434 [ 60.527045][ C0] irq_exit_rcu+0x14/0x84 [ 60.528170][ C0] el1_interrupt+0x38/0x68 [ 60.529322][ C0] el1h_64_irq_handler+0x18/0x24 [ 60.530666][ C0] el1h_64_irq+0x64/0x68 [ 60.531784][ C0] clear_page+0x1c/0x4c [ 60.532850][ C0] get_page_from_freelist+0x3344/0x34d8 [ 60.534337][ C0] __alloc_pages+0x220/0x698 [ 60.535586][ C0] alloc_pages_mpol+0x328/0x5dc [ 60.536825][ C0] alloc_pages+0x168/0x200 [ 60.538002][ C0] __pmd_alloc+0xa4/0x614 [ 60.539120][ C0] copy_page_range+0x35fc/0x3c5c [ 60.540541][ C0] copy_mm+0x12e0/0x1a74 [ 60.541648][ C0] copy_process+0x1980/0x3478 [ 60.542912][ C0] kernel_clone+0x1d8/0x80c [ 60.544130][ C0] __arm64_sys_clone+0x1f8/0x24c [ 60.545468][ C0] invoke_syscall+0x98/0x2b8 [ 60.546695][ C0] el0_svc_common+0x130/0x23c [ 60.547878][ C0] do_el0_svc+0x48/0x58 [ 60.548976][ C0] el0_svc+0x54/0x158 [ 60.550019][ C0] el0t_64_sync_handler+0x84/0xfc [ 60.551334][ C0] el0t_64_sync+0x190/0x194 [ 60.552629][ C0] irq event stamp: 1223 [ 60.553723][ C0] hardirqs last enabled at (1222): [] _raw_spin_unlock_irq+0x30/0x80 [ 60.556361][ C0] hardirqs last disabled at (1223): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 60.558939][ C0] softirqs last enabled at (1102): [] local_bh_enable+0x10/0x34 [ 60.561353][ C0] softirqs last disabled at (1219): [] ____do_softirq+0x14/0x20 [ 60.563787][ C0] ---[ end trace 0000000000000000 ]--- [ 60.565498][ C0] ------------[ cut here ]------------ [ 60.566930][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 60.568877][ C0] WARNING: CPU: 0 PID: 6672 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 60.571468][ C0] Modules linked in: [ 60.572473][ C0] CPU: 0 PID: 6672 Comm: dhcpcd-run-hook Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 60.573684][ T1646] usb 1-1: USB disconnect, device number 2 [ 60.575448][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 60.579690][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 60.581827][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 60.583223][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 60.584595][ C0] sp : ffff8000800076c0 [ 60.585708][ C0] x29: ffff800080007700 x28: ffff0000d6bfd000 x27: 0000000000000001 [ 60.587778][ C0] x26: ffff80008beeb608 x25: ffff0000c219e758 x24: ffff0000cfe27850 [ 60.589866][ C0] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 60.591993][ C0] x20: 0000000000000820 x19: ffff0000cfe27800 x18: ffff0000cc692458 [ 60.594283][ C0] x17: 0000000000000000 x16: ffff80008a770dc0 x15: 0000000000000001 [ 60.596438][ C0] x14: 1ffff00010000df4 x13: 0000000000000000 x12: 0000000000000000 [ 60.598670][ C0] x11: 0000000000000102 x10: 0000000000ff0100 x9 : 8c2e932b72a64f00 [ 60.600865][ C0] x8 : 8c2e932b72a64f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 60.603069][ C0] x5 : ffff800080006fb8 x4 : ffff80008e5c1f40 x3 : ffff800080369730 [ 60.605199][ C0] x2 : 0000000000000001 x1 : 0000000000000100 x0 : 0000000000000000 [ 60.607438][ C0] Call trace: [ 60.608296][ C0] usb_submit_urb+0xa00/0x1434 [ 60.609517][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 60.610908][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 60.612369][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 60.613777][ C0] dummy_timer+0x66c/0x26cc [ 60.614994][ C0] call_timer_fn+0x19c/0x8cc [ 60.616225][ C0] __run_timers+0x55c/0x734 [ 60.617462][ C0] run_timer_softirq+0x7c/0x114 [ 60.618707][ C0] __do_softirq+0x2d8/0xce4 [ 60.619916][ C0] ____do_softirq+0x14/0x20 [ 60.621062][ C0] call_on_irq_stack+0x24/0x4c [ 60.622345][ C0] do_softirq_own_stack+0x20/0x2c [ 60.623674][ C0] __irq_exit_rcu+0x1d8/0x434 [ 60.624924][ C0] irq_exit_rcu+0x14/0x84 [ 60.626132][ C0] el1_interrupt+0x38/0x68 [ 60.627320][ C0] el1h_64_irq_handler+0x18/0x24 [ 60.628573][ C0] el1h_64_irq+0x64/0x68 [ 60.629695][ C0] clear_page+0x1c/0x4c [ 60.630855][ C0] get_page_from_freelist+0x3344/0x34d8 [ 60.632473][ C0] __alloc_pages+0x220/0x698 [ 60.633667][ C0] alloc_pages_mpol+0x328/0x5dc [ 60.634989][ C0] alloc_pages+0x168/0x200 [ 60.636190][ C0] __pmd_alloc+0xa4/0x614 [ 60.637399][ C0] copy_page_range+0x35fc/0x3c5c [ 60.638667][ C0] copy_mm+0x12e0/0x1a74 [ 60.639766][ C0] copy_process+0x1980/0x3478 [ 60.641047][ C0] kernel_clone+0x1d8/0x80c [ 60.642239][ C0] __arm64_sys_clone+0x1f8/0x24c [ 60.643524][ C0] invoke_syscall+0x98/0x2b8 [ 60.644826][ C0] el0_svc_common+0x130/0x23c [ 60.646107][ C0] do_el0_svc+0x48/0x58 [ 60.647175][ C0] el0_svc+0x54/0x158 [ 60.648203][ C0] el0t_64_sync_handler+0x84/0xfc [ 60.649542][ C0] el0t_64_sync+0x190/0x194 [ 60.650687][ C0] irq event stamp: 1233 [ 60.651813][ C0] hardirqs last enabled at (1232): [] _raw_spin_unlock_irq+0x30/0x80 [ 60.654451][ C0] hardirqs last disabled at (1233): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 60.657107][ C0] softirqs last enabled at (1102): [] local_bh_enable+0x10/0x34 [ 60.659648][ C0] softirqs last disabled at (1219): [] ____do_softirq+0x14/0x20 [ 60.662080][ C0] ---[ end trace 0000000000000000 ]--- [ 60.663582][ C0] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 60.672208][ T6464] bcm5974 1-1:0.10: could not read from device [ 61.369473][ T8] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 61.630052][ T5673] Bluetooth: hci0: command 0x041b tx timeout [ 61.729457][ T8] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 61.731657][ T8] usb 1-1: config 0 has no interface number 0 [ 61.733260][ T8] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 61.736190][ T8] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 61.739058][ T8] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 61.742987][ T8] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 61.900710][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 61.905631][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 61.907835][ T8] usb 1-1: Product: syz [ 61.908950][ T8] usb 1-1: Manufacturer: syz [ 61.910407][ T8] usb 1-1: SerialNumber: syz [ 61.914943][ T8] usb 1-1: config 0 descriptor?? [ 61.930671][ T6710] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 61.953851][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input3 [ 62.389592][ T6464] ------------[ cut here ]------------ [ 62.391281][ T6464] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 62.393308][ T6464] WARNING: CPU: 0 PID: 6464 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 62.395787][ T6464] Modules linked in: [ 62.396809][ T6464] CPU: 0 PID: 6464 Comm: udevd Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 62.399602][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 62.402324][ T6464] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.404399][ T6464] pc : usb_submit_urb+0xa00/0x1434 [ 62.405858][ T6464] lr : usb_submit_urb+0xa00/0x1434 [ 62.407256][ T6464] sp : ffff8000971a73b0 [ 62.408337][ T6464] x29: ffff8000971a73f0 x28: ffff0000c7a2f000 x27: 0000000000000001 [ 62.410475][ T6464] x26: ffff80008beeb608 x25: ffff0000cdb04b90 x24: ffff0000d0955350 [ 62.412682][ T6464] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 62.414897][ T6464] x20: 0000000000000cc0 x19: ffff0000d0955300 x18: 1fffe000368265ce [ 62.417117][ T6464] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 62.419227][ T6464] x14: 1fffe0003682663a x13: 0000000000000000 x12: 0000000000000000 [ 62.421412][ T6464] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 13f9114953b84f00 [ 62.423602][ T6464] x8 : 13f9114953b84f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 62.425853][ T6464] x5 : ffff8000971a6c98 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 62.428000][ T6464] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 62.430061][ T6464] Call trace: [ 62.430978][ T6464] usb_submit_urb+0xa00/0x1434 [ 62.432246][ T6464] bcm5974_start_traffic+0xe0/0x154 [ 62.433667][ T6464] bcm5974_open+0x98/0x134 [ 62.434853][ T6464] input_open_device+0x170/0x29c [ 62.436193][ T6464] evdev_open+0x308/0x4b4 [ 62.437437][ T6464] chrdev_open+0x3c8/0x4dc [ 62.438614][ T6464] do_dentry_open+0x778/0x12b4 [ 62.439911][ T6464] vfs_open+0x7c/0x90 [ 62.440962][ T6464] path_openat+0x1f6c/0x2888 [ 62.442196][ T6464] do_filp_open+0x1bc/0x3cc [ 62.443436][ T6464] do_sys_openat2+0x124/0x1b8 [ 62.444709][ T6464] __arm64_sys_openat+0x1f0/0x240 [ 62.446017][ T6464] invoke_syscall+0x98/0x2b8 [ 62.447269][ T6464] el0_svc_common+0x130/0x23c [ 62.448525][ T6464] do_el0_svc+0x48/0x58 [ 62.449650][ T6464] el0_svc+0x54/0x158 [ 62.450669][ T6464] el0t_64_sync_handler+0x84/0xfc [ 62.451981][ T6464] el0t_64_sync+0x190/0x194 [ 62.453150][ T6464] irq event stamp: 13076 [ 62.454281][ T6464] hardirqs last enabled at (13075): [] console_unlock+0x17c/0x3d4 [ 62.456843][ T6464] hardirqs last disabled at (13076): [] el1_dbg+0x24/0x80 [ 62.459208][ T6464] softirqs last enabled at (13060): [] __do_softirq+0xac8/0xce4 [ 62.461785][ T6464] softirqs last disabled at (13007): [] ____do_softirq+0x14/0x20 [ 62.464205][ T6464] ---[ end trace 0000000000000000 ]--- [ 62.479334][ C0] ------------[ cut here ]------------ [ 62.480742][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 62.482767][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 62.485232][ C0] Modules linked in: [ 62.486250][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 62.489115][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 62.491847][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.493977][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 62.495421][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 62.496769][ C0] sp : ffff8000800076c0 [ 62.497861][ C0] x29: ffff800080007700 x28: ffff0000c7a2f000 x27: 0000000000000001 [ 62.500054][ C0] x26: ffff80008beeb608 x25: ffff0000cdb04b90 x24: ffff0000d0955350 [ 62.502199][ C0] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 62.504521][ C0] x20: 0000000000000820 x19: ffff0000d0955300 x18: ffff0000cc692458 [ 62.506834][ C0] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 62.508927][ C0] x14: 1fffe0003682663a x13: 0000000000000000 x12: 0000000000000000 [ 62.510912][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : 1d74ff656c846000 [ 62.512936][ C0] x8 : 1d74ff656c846000 x7 : 0000000000000001 x6 : 0000000000000001 [ 62.514914][ C0] x5 : ffff800080006fb8 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 62.517023][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 62.519147][ C0] Call trace: [ 62.519976][ C0] usb_submit_urb+0xa00/0x1434 [ 62.521176][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 62.522565][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 62.523967][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 62.525264][ C0] dummy_timer+0x66c/0x26cc [ 62.526439][ C0] call_timer_fn+0x19c/0x8cc [ 62.527614][ C0] __run_timers+0x55c/0x734 [ 62.528784][ C0] run_timer_softirq+0x7c/0x114 [ 62.530055][ C0] __do_softirq+0x2d8/0xce4 [ 62.531260][ C0] ____do_softirq+0x14/0x20 [ 62.532447][ C0] call_on_irq_stack+0x24/0x4c [ 62.533629][ C0] do_softirq_own_stack+0x20/0x2c [ 62.534940][ C0] __irq_exit_rcu+0x1d8/0x434 [ 62.536143][ C0] irq_exit_rcu+0x14/0x84 [ 62.537272][ C0] el1_interrupt+0x38/0x68 [ 62.538423][ C0] el1h_64_irq_handler+0x18/0x24 [ 62.539656][ C0] el1h_64_irq+0x64/0x68 [ 62.540751][ C0] arch_local_irq_enable+0x8/0xc [ 62.541974][ C0] do_idle+0x1f0/0x4e8 [ 62.543057][ C0] cpu_startup_entry+0x5c/0x74 [ 62.544253][ C0] rest_init+0x2dc/0x2f4 [ 62.545339][ C0] start_kernel+0x0/0x4e8 [ 62.546473][ C0] start_kernel+0x3e8/0x4e8 [ 62.547581][ C0] __primary_switched+0xb8/0xc0 [ 62.548821][ C0] irq event stamp: 328803 [ 62.549881][ C0] hardirqs last enabled at (328802): [] _raw_spin_unlock_irq+0x30/0x80 [ 62.552428][ C0] hardirqs last disabled at (328803): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 62.555054][ C0] softirqs last enabled at (328642): [] __do_softirq+0xac8/0xce4 [ 62.557450][ C0] softirqs last disabled at (328799): [] ____do_softirq+0x14/0x20 [ 62.559816][ C0] ---[ end trace 0000000000000000 ]--- [ 62.561612][ C0] ------------[ cut here ]------------ [ 62.562979][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 62.564878][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 62.567194][ C0] Modules linked in: [ 62.568193][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 62.570940][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 62.573585][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 62.575611][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 62.576952][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 62.578252][ C0] sp : ffff8000800076c0 [ 62.579304][ C0] x29: ffff800080007700 x28: ffff0000c7a2f000 x27: 0000000000000001 [ 62.581399][ C0] x26: ffff80008beeb608 x25: ffff0000cdb04b90 x24: ffff0000d0955350 [ 62.583447][ C0] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 62.585406][ C0] x20: 0000000000000820 x19: ffff0000d0955300 x18: ffff0000cc692458 [ 62.587375][ C0] x17: 0000000000000000 x16: ffff80008a770dc0 x15: 0000000000000001 [ 62.589483][ C0] x14: 1ffff00010000df4 x13: 0000000000000000 x12: 0000000000000000 [ 62.591236][ T1646] usb 1-1: USB disconnect, device number 3 [ 62.591567][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : 1d74ff656c846000 [ 62.595062][ C0] x8 : 1d74ff656c846000 x7 : 0000000000000001 x6 : 0000000000000001 [ 62.597055][ C0] x5 : ffff800080006fb8 x4 : ffff80008e5c1f40 x3 : ffff800080369730 [ 62.599032][ C0] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 62.601031][ C0] Call trace: [ 62.601862][ C0] usb_submit_urb+0xa00/0x1434 [ 62.603095][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 62.604409][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 62.605773][ C0] usb_hcd_giveback_urb+0x108/0x3f8 [ 62.607037][ C0] dummy_timer+0x66c/0x26cc [ 62.608201][ C0] call_timer_fn+0x19c/0x8cc [ 62.609396][ C0] __run_timers+0x55c/0x734 [ 62.610576][ C0] run_timer_softirq+0x7c/0x114 [ 62.611788][ C0] __do_softirq+0x2d8/0xce4 [ 62.612968][ C0] ____do_softirq+0x14/0x20 [ 62.614097][ C0] call_on_irq_stack+0x24/0x4c [ 62.615315][ C0] do_softirq_own_stack+0x20/0x2c [ 62.616625][ C0] __irq_exit_rcu+0x1d8/0x434 [ 62.617784][ C0] irq_exit_rcu+0x14/0x84 [ 62.618931][ C0] el1_interrupt+0x38/0x68 [ 62.620038][ C0] el1h_64_irq_handler+0x18/0x24 [ 62.621346][ C0] el1h_64_irq+0x64/0x68 [ 62.622450][ C0] arch_local_irq_enable+0x8/0xc [ 62.623701][ C0] do_idle+0x1f0/0x4e8 [ 62.624731][ C0] cpu_startup_entry+0x5c/0x74 [ 62.625917][ C0] rest_init+0x2dc/0x2f4 [ 62.627024][ C0] start_kernel+0x0/0x4e8 [ 62.628112][ C0] start_kernel+0x3e8/0x4e8 [ 62.629274][ C0] __primary_switched+0xb8/0xc0 [ 62.630545][ C0] irq event stamp: 328867 [ 62.631825][ C0] hardirqs last enabled at (328866): [] _raw_spin_unlock_irq+0x30/0x80 [ 62.634402][ C0] hardirqs last disabled at (328867): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 62.637018][ C0] softirqs last enabled at (328642): [] __do_softirq+0xac8/0xce4 [ 62.639388][ C0] softirqs last disabled at (328799): [] ____do_softirq+0x14/0x20 [ 62.641856][ C0] ---[ end trace 0000000000000000 ]--- [ 62.643263][ C0] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 62.645880][ T6464] bcm5974 1-1:0.10: could not read from device 1970/01/01 00:01:03 executed programs: 2 [ 63.369440][ T8] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 63.699450][ T5673] Bluetooth: hci0: command 0x040f tx timeout [ 63.749827][ T8] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 63.751963][ T8] usb 1-1: config 0 has no interface number 0 [ 63.753558][ T8] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 63.756270][ T8] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 63.759127][ T8] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 63.761981][ T8] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 63.919461][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 63.921910][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 63.923939][ T8] usb 1-1: Product: syz [ 63.925016][ T8] usb 1-1: Manufacturer: syz [ 63.926202][ T8] usb 1-1: SerialNumber: syz [ 63.929053][ T8] usb 1-1: config 0 descriptor?? [ 63.949638][ T6812] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 63.971034][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input4 [ 64.399485][ T6464] ------------[ cut here ]------------ [ 64.400896][ T6464] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.402821][ T6464] WARNING: CPU: 1 PID: 6464 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.405403][ T6464] Modules linked in: [ 64.406525][ T6464] CPU: 1 PID: 6464 Comm: udevd Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 64.409281][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 64.412043][ T6464] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.414147][ T6464] pc : usb_submit_urb+0xa00/0x1434 [ 64.415485][ T6464] lr : usb_submit_urb+0xa00/0x1434 [ 64.416868][ T6464] sp : ffff8000971a73b0 [ 64.418004][ T6464] x29: ffff8000971a73f0 x28: ffff0000db9d4000 x27: 0000000000000001 [ 64.420196][ T6464] x26: ffff80008beeb608 x25: ffff0000c8884eb0 x24: ffff0000d4028950 [ 64.422304][ T6464] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 64.424492][ T6464] x20: 0000000000000cc0 x19: ffff0000d4028900 x18: 1fffe0003682a9ce [ 64.426736][ T6464] x17: 0000000000000000 x16: ffff80008031ae8c x15: 0000000000000001 [ 64.428814][ T6464] x14: 1fffe0003682d1b0 x13: 0000000000000000 x12: 0000000000000003 [ 64.430979][ T6464] x11: 0000000000000001 x10: 0000000000000003 x9 : 13f9114953b84f00 [ 64.433113][ T6464] x8 : 13f9114953b84f00 x7 : ffff80008a8fc740 x6 : 0000000000000000 [ 64.435226][ T6464] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000000 [ 64.437343][ T6464] x2 : 0000000000000006 x1 : ffff80008a98df80 x0 : ffff800125d1e000 [ 64.439415][ T6464] Call trace: [ 64.440244][ T6464] usb_submit_urb+0xa00/0x1434 [ 64.441592][ T6464] bcm5974_start_traffic+0xe0/0x154 [ 64.442935][ T6464] bcm5974_open+0x98/0x134 [ 64.444177][ T6464] input_open_device+0x170/0x29c [ 64.445480][ T6464] evdev_open+0x308/0x4b4 [ 64.446663][ T6464] chrdev_open+0x3c8/0x4dc [ 64.447798][ T6464] do_dentry_open+0x778/0x12b4 [ 64.449058][ T6464] vfs_open+0x7c/0x90 [ 64.450087][ T6464] path_openat+0x1f6c/0x2888 [ 64.451339][ T6464] do_filp_open+0x1bc/0x3cc [ 64.452575][ T6464] do_sys_openat2+0x124/0x1b8 [ 64.453830][ T6464] __arm64_sys_openat+0x1f0/0x240 [ 64.455173][ T6464] invoke_syscall+0x98/0x2b8 [ 64.456397][ T6464] el0_svc_common+0x130/0x23c [ 64.457676][ T6464] do_el0_svc+0x48/0x58 [ 64.458721][ T6464] el0_svc+0x54/0x158 [ 64.459744][ T6464] el0t_64_sync_handler+0x84/0xfc [ 64.461075][ T6464] el0t_64_sync+0x190/0x194 [ 64.462273][ T6464] irq event stamp: 19356 [ 64.463430][ T6464] hardirqs last enabled at (19355): [] raw_spin_rq_unlock_irq+0x14/0x24 [ 64.466147][ T6464] hardirqs last disabled at (19356): [] el1_dbg+0x24/0x80 [ 64.468526][ T6464] softirqs last enabled at (16374): [] local_bh_enable+0x10/0x34 [ 64.471042][ T6464] softirqs last disabled at (16372): [] local_bh_disable+0x10/0x34 [ 64.473543][ T6464] ---[ end trace 0000000000000000 ]--- [ 64.489327][ C1] ------------[ cut here ]------------ [ 64.490808][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.492739][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.495132][ C1] Modules linked in: [ 64.496103][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 64.498879][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 64.501529][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.503668][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 64.505082][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 64.506451][ C1] sp : ffff8000800176c0 [ 64.507565][ C1] x29: ffff800080017700 x28: ffff0000db9d4000 x27: 0000000000000001 [ 64.509707][ C1] x26: ffff80008beeb608 x25: ffff0000c8884eb0 x24: ffff0000d4028950 [ 64.511854][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 64.513976][ C1] x20: 0000000000000820 x19: ffff0000d4028900 x18: ffff0000cc692458 [ 64.516187][ C1] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 64.518343][ C1] x14: 1fffe0003682aa3a x13: 0000000000000000 x12: 0000000000000000 [ 64.520680][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 64.522770][ C1] x8 : d8832fc81f7e7700 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.524960][ C1] x5 : ffff800080016fb8 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 64.527087][ C1] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 64.529233][ C1] Call trace: [ 64.530074][ C1] usb_submit_urb+0xa00/0x1434 [ 64.531284][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 64.532676][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 64.534089][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 64.535486][ C1] dummy_timer+0x66c/0x26cc [ 64.536657][ C1] call_timer_fn+0x19c/0x8cc [ 64.537865][ C1] __run_timers+0x55c/0x734 [ 64.539163][ C1] run_timer_softirq+0x7c/0x114 [ 64.540450][ C1] __do_softirq+0x2d8/0xce4 [ 64.541661][ C1] ____do_softirq+0x14/0x20 [ 64.542888][ C1] call_on_irq_stack+0x24/0x4c [ 64.544185][ C1] do_softirq_own_stack+0x20/0x2c [ 64.545557][ C1] __irq_exit_rcu+0x1d8/0x434 [ 64.546780][ C1] irq_exit_rcu+0x14/0x84 [ 64.547905][ C1] el1_interrupt+0x38/0x68 [ 64.549122][ C1] el1h_64_irq_handler+0x18/0x24 [ 64.550512][ C1] el1h_64_irq+0x64/0x68 [ 64.551681][ C1] arch_local_irq_enable+0x8/0xc [ 64.553006][ C1] do_idle+0x1f0/0x4e8 [ 64.554050][ C1] cpu_startup_entry+0x5c/0x74 [ 64.555262][ C1] secondary_start_kernel+0x198/0x1c0 [ 64.556610][ C1] __secondary_switched+0xb8/0xbc [ 64.557926][ C1] irq event stamp: 302939 [ 64.559134][ C1] hardirqs last enabled at (302938): [] _raw_spin_unlock_irq+0x30/0x80 [ 64.561786][ C1] hardirqs last disabled at (302939): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.564429][ C1] softirqs last enabled at (302916): [] __do_softirq+0xac8/0xce4 [ 64.566919][ C1] softirqs last disabled at (302935): [] ____do_softirq+0x14/0x20 [ 64.569443][ C1] ---[ end trace 0000000000000000 ]--- [ 64.572474][ C1] ------------[ cut here ]------------ [ 64.572740][ T2219] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.573890][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.574324][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.575718][ T2219] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.577053][ C1] Modules linked in: [ 64.582020][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 64.584920][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 64.587709][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.589811][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 64.591244][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 64.592662][ C1] sp : ffff8000800176c0 [ 64.593781][ C1] x29: ffff800080017700 x28: ffff0000db9d4000 x27: 0000000000000001 [ 64.595963][ C1] x26: ffff80008beeb608 x25: ffff0000c8884eb0 x24: ffff0000d4028950 [ 64.598141][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 64.600284][ C1] x20: 0000000000000820 x19: ffff0000d4028900 x18: ffff0000cc692458 [ 64.602532][ C1] x17: 0000000000000000 x16: ffff8000802715b0 x15: 0000000000000001 [ 64.604704][ C1] x14: 1ffff00011cd53f4 x13: 0000000000000000 x12: 0000000000000000 [ 64.606854][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 64.609014][ C1] x8 : d8832fc81f7e7700 x7 : ffff80008035a53c x6 : 0000000000000000 [ 64.611206][ C1] x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff8000803342ac [ 64.613430][ C1] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 64.615655][ C1] Call trace: [ 64.616549][ C1] usb_submit_urb+0xa00/0x1434 [ 64.617779][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 64.619177][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 64.620643][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 64.622035][ C1] dummy_timer+0x66c/0x26cc [ 64.623295][ C1] call_timer_fn+0x19c/0x8cc [ 64.624541][ C1] __run_timers+0x55c/0x734 [ 64.625759][ C1] run_timer_softirq+0x7c/0x114 [ 64.627110][ C1] __do_softirq+0x2d8/0xce4 [ 64.628339][ C1] ____do_softirq+0x14/0x20 [ 64.629585][ C1] call_on_irq_stack+0x24/0x4c [ 64.630857][ C1] do_softirq_own_stack+0x20/0x2c [ 64.632193][ C1] __irq_exit_rcu+0x1d8/0x434 [ 64.633437][ C1] irq_exit_rcu+0x14/0x84 [ 64.634613][ C1] el1_interrupt+0x38/0x68 [ 64.635785][ C1] el1h_64_irq_handler+0x18/0x24 [ 64.637194][ C1] el1h_64_irq+0x64/0x68 [ 64.638321][ C1] arch_local_irq_enable+0x8/0xc [ 64.639685][ C1] do_idle+0x1f0/0x4e8 [ 64.640869][ C1] cpu_startup_entry+0x5c/0x74 [ 64.642224][ C1] secondary_start_kernel+0x198/0x1c0 [ 64.643700][ C1] __secondary_switched+0xb8/0xbc [ 64.645110][ C1] irq event stamp: 303277 [ 64.646317][ C1] hardirqs last enabled at (303276): [] _raw_spin_unlock_irq+0x30/0x80 [ 64.648926][ C1] hardirqs last disabled at (303277): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.651629][ C1] softirqs last enabled at (302916): [] __do_softirq+0xac8/0xce4 [ 64.654200][ C1] softirqs last disabled at (302935): [] ____do_softirq+0x14/0x20 [ 64.656696][ C1] ---[ end trace 0000000000000000 ]--- [ 64.658390][ C1] ------------[ cut here ]------------ [ 64.659847][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.661760][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.663568][ T8] usb 1-1: USB disconnect, device number 4 [ 64.664186][ C1] Modules linked in: [ 64.666851][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 64.669607][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 64.672280][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.674351][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 64.675707][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 64.677124][ C1] sp : ffff8000800176c0 [ 64.678199][ C1] x29: ffff800080017700 x28: ffff0000db9d4000 x27: 0000000000000001 [ 64.680347][ C1] x26: ffff80008beeb608 x25: ffff0000c8884eb0 x24: ffff0000d4028950 [ 64.682507][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 64.684672][ C1] x20: 0000000000000820 x19: ffff0000d4028900 x18: ffff0000cc692458 [ 64.686843][ C1] x17: 0000000000000000 x16: ffff80008a770dc0 x15: 0000000000000001 [ 64.688923][ C1] x14: 1ffff00010002df4 x13: 0000000000000000 x12: 0000000000000000 [ 64.691127][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 64.693346][ C1] x8 : d8832fc81f7e7700 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.695437][ C1] x5 : ffff800080016fb8 x4 : ffff80008e5c1f40 x3 : ffff800080369730 [ 64.697466][ C1] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 64.699656][ C1] Call trace: [ 64.700558][ C1] usb_submit_urb+0xa00/0x1434 [ 64.701840][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 64.703267][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 64.704755][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 64.706099][ C1] dummy_timer+0x66c/0x26cc [ 64.707317][ C1] call_timer_fn+0x19c/0x8cc [ 64.708573][ C1] __run_timers+0x55c/0x734 [ 64.709770][ C1] run_timer_softirq+0x7c/0x114 [ 64.710959][ C1] __do_softirq+0x2d8/0xce4 [ 64.712159][ C1] ____do_softirq+0x14/0x20 [ 64.713402][ C1] call_on_irq_stack+0x24/0x4c [ 64.714623][ C1] do_softirq_own_stack+0x20/0x2c [ 64.715899][ C1] __irq_exit_rcu+0x1d8/0x434 [ 64.717105][ C1] irq_exit_rcu+0x14/0x84 [ 64.718252][ C1] el1_interrupt+0x38/0x68 [ 64.719441][ C1] el1h_64_irq_handler+0x18/0x24 [ 64.720762][ C1] el1h_64_irq+0x64/0x68 [ 64.721893][ C1] arch_local_irq_enable+0x8/0xc [ 64.723213][ C1] do_idle+0x1f0/0x4e8 [ 64.724313][ C1] cpu_startup_entry+0x5c/0x74 [ 64.725611][ C1] secondary_start_kernel+0x198/0x1c0 [ 64.727020][ C1] __secondary_switched+0xb8/0xbc [ 64.728391][ C1] irq event stamp: 303285 [ 64.729504][ C1] hardirqs last enabled at (303284): [] _raw_spin_unlock_irq+0x30/0x80 [ 64.732138][ C1] hardirqs last disabled at (303285): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.734878][ C1] softirqs last enabled at (302916): [] __do_softirq+0xac8/0xce4 [ 64.737266][ C1] softirqs last disabled at (302935): [] ____do_softirq+0x14/0x20 [ 64.739694][ C1] ---[ end trace 0000000000000000 ]--- [ 64.741185][ C1] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 64.749460][ T6464] bcm5974 1-1:0.10: could not read from device [ 65.449372][ T8] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 65.779400][ T5673] Bluetooth: hci0: command 0x0419 tx timeout [ 65.820394][ T8] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 65.822596][ T8] usb 1-1: config 0 has no interface number 0 [ 65.824286][ T8] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 65.827019][ T8] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 65.830068][ T8] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 65.832688][ T8] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 65.989409][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 65.991981][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 65.994163][ T8] usb 1-1: Product: syz [ 65.995300][ T8] usb 1-1: Manufacturer: syz [ 65.996515][ T8] usb 1-1: SerialNumber: syz [ 65.999195][ T8] usb 1-1: config 0 descriptor?? [ 66.019662][ T6815] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 66.041406][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input5 [ 66.489436][ T6464] ------------[ cut here ]------------ [ 66.490936][ T6464] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 66.492943][ T6464] WARNING: CPU: 1 PID: 6464 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 66.495497][ T6464] Modules linked in: [ 66.496612][ T6464] CPU: 1 PID: 6464 Comm: udevd Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 66.499409][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 66.502131][ T6464] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 66.504291][ T6464] pc : usb_submit_urb+0xa00/0x1434 [ 66.505668][ T6464] lr : usb_submit_urb+0xa00/0x1434 [ 66.506995][ T6464] sp : ffff8000971a73b0 [ 66.508139][ T6464] x29: ffff8000971a73f0 x28: ffff0000cb753000 x27: 0000000000000001 [ 66.510422][ T6464] x26: ffff80008beeb608 x25: ffff0000c6e80d48 x24: ffff0000d3d35b50 [ 66.512538][ T6464] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 66.514739][ T6464] x20: 0000000000000cc0 x19: ffff0000d3d35b00 x18: 1fffe0003682a9ce [ 66.516942][ T6464] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 66.519047][ T6464] x14: 1fffe0003682aa3a x13: 0000000000000000 x12: 0000000000000000 [ 66.521166][ T6464] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 13f9114953b84f00 [ 66.523402][ T6464] x8 : 13f9114953b84f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.525493][ T6464] x5 : ffff8000971a6c98 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 66.527642][ T6464] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 66.529764][ T6464] Call trace: [ 66.530669][ T6464] usb_submit_urb+0xa00/0x1434 [ 66.531940][ T6464] bcm5974_start_traffic+0xe0/0x154 [ 66.533318][ T6464] bcm5974_open+0x98/0x134 [ 66.534526][ T6464] input_open_device+0x170/0x29c [ 66.535864][ T6464] evdev_open+0x308/0x4b4 [ 66.537057][ T6464] chrdev_open+0x3c8/0x4dc [ 66.538363][ T6464] do_dentry_open+0x778/0x12b4 [ 66.539740][ T6464] vfs_open+0x7c/0x90 [ 66.540776][ T6464] path_openat+0x1f6c/0x2888 [ 66.541982][ T6464] do_filp_open+0x1bc/0x3cc [ 66.543193][ T6464] do_sys_openat2+0x124/0x1b8 [ 66.544445][ T6464] __arm64_sys_openat+0x1f0/0x240 [ 66.545746][ T6464] invoke_syscall+0x98/0x2b8 [ 66.546950][ T6464] el0_svc_common+0x130/0x23c [ 66.548155][ T6464] do_el0_svc+0x48/0x58 [ 66.549253][ T6464] el0_svc+0x54/0x158 [ 66.550324][ T6464] el0t_64_sync_handler+0x84/0xfc [ 66.551692][ T6464] el0t_64_sync+0x190/0x194 [ 66.552885][ T6464] irq event stamp: 25082 [ 66.554045][ T6464] hardirqs last enabled at (25081): [] console_unlock+0x17c/0x3d4 [ 66.556552][ T6464] hardirqs last disabled at (25082): [] el1_dbg+0x24/0x80 [ 66.558955][ T6464] softirqs last enabled at (22404): [] local_bh_enable+0x10/0x34 [ 66.561429][ T6464] softirqs last disabled at (22402): [] local_bh_disable+0x10/0x34 [ 66.563982][ T6464] ---[ end trace 0000000000000000 ]--- [ 66.579327][ C1] ------------[ cut here ]------------ [ 66.580841][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 66.582881][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 66.585401][ C1] Modules linked in: [ 66.586425][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 66.589294][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 66.592024][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 66.594072][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 66.595462][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 66.596802][ C1] sp : ffff8000800176c0 [ 66.597893][ C1] x29: ffff800080017700 x28: ffff0000cb753000 x27: 0000000000000001 [ 66.600041][ C1] x26: ffff80008beeb608 x25: ffff0000c6e80d48 x24: ffff0000d3d35b50 [ 66.602222][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 66.604373][ C1] x20: 0000000000000820 x19: ffff0000d3d35b00 x18: ffff0000cc692458 [ 66.606531][ C1] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 66.608623][ C1] x14: 1fffe0003682aa3a x13: 0000000000000000 x12: 0000000000000000 [ 66.610801][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 66.612979][ C1] x8 : d8832fc81f7e7700 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.615209][ C1] x5 : ffff800080016fb8 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 66.617403][ C1] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 66.619601][ C1] Call trace: [ 66.620498][ C1] usb_submit_urb+0xa00/0x1434 [ 66.621771][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 66.623240][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 66.624708][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 66.626102][ C1] dummy_timer+0x66c/0x26cc [ 66.627266][ C1] call_timer_fn+0x19c/0x8cc [ 66.628516][ C1] __run_timers+0x55c/0x734 [ 66.629721][ C1] run_timer_softirq+0x7c/0x114 [ 66.630990][ C1] __do_softirq+0x2d8/0xce4 [ 66.632213][ C1] ____do_softirq+0x14/0x20 [ 66.633391][ C1] call_on_irq_stack+0x24/0x4c [ 66.634678][ C1] do_softirq_own_stack+0x20/0x2c [ 66.636056][ C1] __irq_exit_rcu+0x1d8/0x434 [ 66.637318][ C1] irq_exit_rcu+0x14/0x84 [ 66.638497][ C1] el1_interrupt+0x38/0x68 [ 66.639708][ C1] el1h_64_irq_handler+0x18/0x24 [ 66.641028][ C1] el1h_64_irq+0x64/0x68 [ 66.642188][ C1] arch_local_irq_enable+0x8/0xc [ 66.643550][ C1] do_idle+0x1f0/0x4e8 [ 66.644645][ C1] cpu_startup_entry+0x5c/0x74 [ 66.645955][ C1] secondary_start_kernel+0x198/0x1c0 [ 66.647453][ C1] __secondary_switched+0xb8/0xbc [ 66.648831][ C1] irq event stamp: 321461 [ 66.649966][ C1] hardirqs last enabled at (321460): [] _raw_spin_unlock_irq+0x30/0x80 [ 66.652734][ C1] hardirqs last disabled at (321461): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 66.655469][ C1] softirqs last enabled at (321444): [] __do_softirq+0xac8/0xce4 [ 66.657970][ C1] softirqs last disabled at (321457): [] ____do_softirq+0x14/0x20 [ 66.660481][ C1] ---[ end trace 0000000000000000 ]--- [ 66.690880][ T6116] usb 1-1: USB disconnect, device number 5 [ 66.709397][ T6464] bcm5974 1-1:0.10: could not read from device [ 67.469467][ T8] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 67.839459][ T8] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 67.841882][ T8] usb 1-1: config 0 has no interface number 0 [ 67.843440][ T8] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 67.846189][ T8] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 67.849169][ T8] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 67.851984][ T8] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 68.009456][ T8] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 68.011918][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 68.013994][ T8] usb 1-1: Product: syz [ 68.015113][ T8] usb 1-1: Manufacturer: syz [ 68.016264][ T8] usb 1-1: SerialNumber: syz [ 68.019626][ T8] usb 1-1: config 0 descriptor?? [ 68.039623][ T6817] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 68.062469][ T8] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input6 [ 68.489460][ T6464] ------------[ cut here ]------------ [ 68.490949][ T6464] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.493012][ T6464] WARNING: CPU: 1 PID: 6464 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 68.495460][ T6464] Modules linked in: [ 68.496473][ T6464] CPU: 1 PID: 6464 Comm: udevd Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 68.499216][ T6464] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 68.501892][ T6464] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.503979][ T6464] pc : usb_submit_urb+0xa00/0x1434 [ 68.505363][ T6464] lr : usb_submit_urb+0xa00/0x1434 [ 68.506776][ T6464] sp : ffff8000971a73b0 [ 68.507867][ T6464] x29: ffff8000971a73f0 x28: ffff0000cd65c000 x27: 0000000000000001 [ 68.510107][ T6464] x26: ffff80008beeb608 x25: ffff0000c21ae848 x24: ffff0000d4018350 [ 68.512340][ T6464] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 68.514466][ T6464] x20: 0000000000000cc0 x19: ffff0000d4018300 x18: 1fffe0003682a9ce [ 68.516587][ T6464] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 68.518758][ T6464] x14: 1fffe0003682aa3a x13: 0000000000000000 x12: 0000000000000000 [ 68.520892][ T6464] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 13f9114953b84f00 [ 68.523122][ T6464] x8 : 13f9114953b84f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.525353][ T6464] x5 : ffff8000971a6c98 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 68.527557][ T6464] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 68.529750][ T6464] Call trace: [ 68.530690][ T6464] usb_submit_urb+0xa00/0x1434 [ 68.532045][ T6464] bcm5974_start_traffic+0xe0/0x154 [ 68.533432][ T6464] bcm5974_open+0x98/0x134 [ 68.534650][ T6464] input_open_device+0x170/0x29c [ 68.536035][ T6464] evdev_open+0x308/0x4b4 [ 68.537255][ T6464] chrdev_open+0x3c8/0x4dc [ 68.538467][ T6464] do_dentry_open+0x778/0x12b4 [ 68.539717][ T6464] vfs_open+0x7c/0x90 [ 68.540814][ T6464] path_openat+0x1f6c/0x2888 [ 68.542097][ T6464] do_filp_open+0x1bc/0x3cc [ 68.543352][ T6464] do_sys_openat2+0x124/0x1b8 [ 68.544638][ T6464] __arm64_sys_openat+0x1f0/0x240 [ 68.545996][ T6464] invoke_syscall+0x98/0x2b8 [ 68.547221][ T6464] el0_svc_common+0x130/0x23c [ 68.548504][ T6464] do_el0_svc+0x48/0x58 [ 68.549649][ T6464] el0_svc+0x54/0x158 [ 68.550806][ T6464] el0t_64_sync_handler+0x84/0xfc [ 68.552156][ T6464] el0t_64_sync+0x190/0x194 [ 68.553395][ T6464] irq event stamp: 31050 [ 68.554519][ T6464] hardirqs last enabled at (31049): [] console_unlock+0x17c/0x3d4 [ 68.557068][ T6464] hardirqs last disabled at (31050): [] el1_dbg+0x24/0x80 [ 68.559511][ T6464] softirqs last enabled at (30202): [] __do_softirq+0xac8/0xce4 [ 68.562114][ T6464] softirqs last disabled at (30187): [] ____do_softirq+0x14/0x20 [ 68.564721][ T6464] ---[ end trace 0000000000000000 ]--- [ 68.579341][ C1] ------------[ cut here ]------------ [ 68.580764][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.582714][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 68.585152][ C1] Modules linked in: [ 68.586198][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 68.588978][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 68.591680][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.593846][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 68.595245][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 68.596621][ C1] sp : ffff8000800176c0 [ 68.597783][ C1] x29: ffff800080017700 x28: ffff0000cd65c000 x27: 0000000000000001 [ 68.599970][ C1] x26: ffff80008beeb608 x25: ffff0000c21ae848 x24: ffff0000d4018350 [ 68.602138][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 68.604232][ C1] x20: 0000000000000820 x19: ffff0000d4018300 x18: ffff0000cc692458 [ 68.606466][ C1] x17: 0000000000000000 x16: ffff80008a825660 x15: 0000000000000001 [ 68.608684][ C1] x14: 1fffe0003682aa3a x13: 0000000000000000 x12: 0000000000000000 [ 68.610863][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 68.613019][ C1] x8 : d8832fc81f7e7700 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.615168][ C1] x5 : ffff800080016fb8 x4 : ffff80008e5c1f40 x3 : ffff8000805af654 [ 68.617246][ C1] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 68.619326][ C1] Call trace: [ 68.620182][ C1] usb_submit_urb+0xa00/0x1434 [ 68.621424][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 68.622787][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 68.624207][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 68.625574][ C1] dummy_timer+0x66c/0x26cc [ 68.626759][ C1] call_timer_fn+0x19c/0x8cc [ 68.627953][ C1] __run_timers+0x55c/0x734 [ 68.629146][ C1] run_timer_softirq+0x7c/0x114 [ 68.630434][ C1] __do_softirq+0x2d8/0xce4 [ 68.631602][ C1] ____do_softirq+0x14/0x20 [ 68.632779][ C1] call_on_irq_stack+0x24/0x4c [ 68.634039][ C1] do_softirq_own_stack+0x20/0x2c [ 68.635399][ C1] __irq_exit_rcu+0x1d8/0x434 [ 68.636650][ C1] irq_exit_rcu+0x14/0x84 [ 68.637786][ C1] el1_interrupt+0x38/0x68 [ 68.638883][ C1] el1h_64_irq_handler+0x18/0x24 [ 68.640195][ C1] el1h_64_irq+0x64/0x68 [ 68.641306][ C1] arch_local_irq_enable+0x8/0xc [ 68.642616][ C1] do_idle+0x1f0/0x4e8 [ 68.643669][ C1] cpu_startup_entry+0x5c/0x74 [ 68.645023][ C1] secondary_start_kernel+0x198/0x1c0 [ 68.646591][ C1] __secondary_switched+0xb8/0xbc [ 68.647920][ C1] irq event stamp: 335925 [ 68.649086][ C1] hardirqs last enabled at (335924): [] _raw_spin_unlock_irq+0x30/0x80 [ 68.651774][ C1] hardirqs last disabled at (335925): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 68.654410][ C1] softirqs last enabled at (335908): [] __do_softirq+0xac8/0xce4 [ 68.656897][ C1] softirqs last disabled at (335921): [] ____do_softirq+0x14/0x20 [ 68.659396][ C1] ---[ end trace 0000000000000000 ]--- [ 68.661030][ C1] ------------[ cut here ]------------ [ 68.662428][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.664344][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 68.666727][ C1] Modules linked in: [ 68.667686][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.7.0-rc3-syzkaller-g2cc14f52aeb7 #0 [ 68.670545][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 68.673236][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.675340][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 68.676722][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 68.678052][ C1] sp : ffff8000800176c0 [ 68.679118][ C1] x29: ffff800080017700 x28: ffff0000cd65c000 x27: 0000000000000001 [ 68.681280][ C1] x26: ffff80008beeb608 x25: ffff0000c21ae848 x24: ffff0000d4018350 [ 68.683437][ C1] x23: ffff80008bef2020 x22: dfff800000000000 x21: 0000000000000002 [ 68.685615][ C1] x20: 0000000000000820 x19: ffff0000d4018300 x18: ffff0000cc692458 [ 68.687708][ C1] x17: 0000000000000000 x16: ffff80008a770dc0 x15: 0000000000000001 [ 68.689812][ C1] x14: 1ffff00010002df4 x13: 0000000000000000 x12: 0000000000000000 [ 68.691890][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : d8832fc81f7e7700 [ 68.691991][ T8] usb 1-1: USB disconnect, device number 6 [ 68.693999][ C1] x8 : d8832fc81f7e7700 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.694021][ C1] x5 : ffff800080016fb8 x4 : ffff80008e5c1f40 x3 : ffff800080369730 [ 68.699897][ C1] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 68.702054][ C1] Call trace: [ 68.702910][ C1] usb_submit_urb+0xa00/0x1434 [ 68.704122][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 68.705515][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 68.706961][ C1] usb_hcd_giveback_urb+0x108/0x3f8 [ 68.708307][ C1] dummy_timer+0x66c/0x26cc [ 68.709527][ C1] call_timer_fn+0x19c/0x8cc [ 68.710723][ C1] __run_timers+0x55c/0x734 [ 68.711918][ C1] run_timer_softirq+0x7c/0x114 [ 68.713191][ C1] __do_softirq+0x2d8/0xce4 [ 68.714407][ C1] ____do_softirq+0x14/0x20 [ 68.715655][ C1] call_on_irq_stack+0x24/0x4c [ 68.716889][ C1] do_softirq_own_stack+0x20/0x2c [ 68.718303][ C1] __irq_exit_rcu+0x1d8/0x434 [ 68.719562][ C1] irq_exit_rcu+0x14/0x84 [ 68.720736][ C1] el1_interrupt+0x38/0x68 [ 68.721943][ C1] el1h_64_irq_handler+0x18/0x24 [ 68.723280][ C1] el1h_64_irq+0x64/0x68 [ 68.724457][ C1] arch_local_irq_enable+0x8/0xc [ 68.725751][ C1] do_idle+0x1f0/0x4e8 [ 68.726812][ C1] cpu_startup_entry+0x5c/0x74 [ 68.728072][ C1] secondary_start_kernel+0x198/0x1c0 [ 68.729511][ C1] __secondary_switched+0xb8/0xbc [ 68.730847][ C1] irq event stamp: 335955 [ 68.731966][ C1] hardirqs last enabled at (335954): [] _raw_spin_unlock_irq+0x30/0x80 [ 68.734610][ C1] hardirqs last disabled at (335955): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 68.737309][ C1] softirqs last enabled at (335908): [] __do_softirq+0xac8/0xce4 [ 68.739774][ C1] softirqs last disabled at (335921): [] ____do_softirq+0x14/0x20 [ 68.742235][ C1] ---[ end trace 0000000000000000 ]--- [ 68.743667][ C1] bcm5974 1-1:0.10: trackpad urb failed: -2 [ 68.745632][ T6464] bcm5974 1-1:0.10: could not read from device 1970/01/01 00:01:09 executed programs: 5 [ 69.469429][ T25] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 69.631879][ T23] cfg80211: failed to load regulatory.db [ 69.839549][ T25] usb 1-1: config 0 has an invalid interface number: 10 but max is 0 [ 69.841691][ T25] usb 1-1: config 0 has no interface number 0 [ 69.843316][ T25] usb 1-1: config 0 interface 10 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 69.846117][ T25] usb 1-1: config 0 interface 10 altsetting 0 endpoint 0x81 has invalid maxpacket 21669, setting to 1024 [ 69.849007][ T25] usb 1-1: config 0 interface 10 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 1024 [ 69.853419][ T25] usb 1-1: config 0 interface 10 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 70.010581][ T25] usb 1-1: New USB device found, idVendor=05ac, idProduct=024e, bcdDevice=d4.d7 [ 70.013092][ T25] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 70.015290][ T25] usb 1-1: Product: syz [ 70.016435][ T25] usb 1-1: Manufacturer: syz [ 70.017610][ T25] usb 1-1: SerialNumber: syz [ 70.027721][ T25] usb 1-1: config 0 descriptor?? [ 70.039615][ T6819] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 70.061318][ T25] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.10/input/input7