Warning: Permanently added '10.128.0.146' (ED25519) to the list of known hosts. 1970/01/01 00:01:01 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:01 ignoring optional flag "type"="gce" 1970/01/01 00:01:01 parsed 1 programs [ 61.471331][ T6737] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:01:01 executed programs: 0 [ 61.504195][ T6097] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.506494][ T6097] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.509813][ T6097] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.512049][ T6097] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.512676][ T6097] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.601241][ T6744] chnl_net:caif_netlink_parms(): no params data found [ 61.638831][ T6744] bridge0: port 1(bridge_slave_0) entered blocking state [ 61.638948][ T6744] bridge0: port 1(bridge_slave_0) entered disabled state [ 61.639053][ T6744] bridge_slave_0: entered allmulticast mode [ 61.639897][ T6744] bridge_slave_0: entered promiscuous mode [ 61.641633][ T6744] bridge0: port 2(bridge_slave_1) entered blocking state [ 61.641712][ T6744] bridge0: port 2(bridge_slave_1) entered disabled state [ 61.641806][ T6744] bridge_slave_1: entered allmulticast mode [ 61.642622][ T6744] bridge_slave_1: entered promiscuous mode [ 61.661989][ T6744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 61.663887][ T6744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 61.678685][ T6744] team0: Port device team_slave_0 added [ 61.680317][ T6744] team0: Port device team_slave_1 added [ 61.694653][ T6744] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 61.694707][ T6744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.694739][ T6744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 61.695750][ T6744] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 61.695774][ T6744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 61.695803][ T6744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 61.728388][ T6744] hsr_slave_0: entered promiscuous mode [ 61.728905][ T6744] hsr_slave_1: entered promiscuous mode [ 62.619879][ T6744] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.627911][ T6744] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.631503][ T6744] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.635293][ T6744] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.653147][ T6744] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.653224][ T6744] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.653333][ T6744] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.653411][ T6744] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.667869][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.670328][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.696611][ T6744] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.702228][ T6744] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.708424][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.708522][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.712611][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.712697][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.830942][ T6744] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 62.852036][ T6744] veth0_vlan: entered promiscuous mode [ 62.857249][ T6744] veth1_vlan: entered promiscuous mode [ 62.877256][ T6744] veth0_macvtap: entered promiscuous mode [ 62.879423][ T6744] veth1_macvtap: entered promiscuous mode [ 62.891255][ T6744] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 62.897833][ T6744] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 62.900448][ T6744] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.900903][ T6744] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.900934][ T6744] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.900962][ T6744] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 62.946776][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.946839][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 62.966365][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 62.966428][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.294065][ T6554] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 63.443857][ T6554] usb 1-1: Using ep0 maxpacket: 16 [ 63.448251][ T6554] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 63.456157][ T6554] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 63.458858][ T6554] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 63.461660][ T6554] usb 1-1: Product: syz [ 63.463125][ T6554] usb 1-1: Manufacturer: syz [ 63.465119][ T6554] usb 1-1: SerialNumber: syz [ 63.484236][ T6554] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input2 [ 63.537712][ T52] Bluetooth: hci0: command tx timeout [ 63.873816][ T6766] ------------[ cut here ]------------ [ 63.873903][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.877970][ T6766] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 63.880561][ T6766] Modules linked in: [ 63.881696][ T6766] CPU: 1 UID: 0 PID: 6766 Comm: udevd Not tainted 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 63.884557][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 63.887311][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.889402][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 63.890804][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 63.892223][ T6766] sp : ffff8000a37a7430 [ 63.893350][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 63.895535][ T6766] x26: ffff0000c6d3d5c0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 63.897811][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 63.900030][ T6766] x20: 0000000000000cc0 x19: ffff0000cea6c300 x18: 1fffe000337d6476 [ 63.902235][ T6766] x17: ffff80008f67e000 x16: ffff80008af01c68 x15: 0000000000000001 [ 63.904460][ T6766] x14: 1fffe000337d8ef0 x13: 0000000000000000 x12: 0000000000000000 [ 63.906700][ T6766] x11: ffff800093175c08 x10: 0000000000000003 x9 : 38a80397295ed400 [ 63.908890][ T6766] x8 : 38a80397295ed400 x7 : ffff80008048771c x6 : 0000000000000000 [ 63.911212][ T6766] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 63.913426][ T6766] x2 : 0000000000000006 x1 : ffff80008b548ee0 x0 : 0000000000000001 [ 63.915586][ T6766] Call trace: [ 63.916504][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 63.917891][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 63.919312][ T6766] bcm5974_open+0x94/0x130 [ 63.920490][ T6766] input_open_device+0x178/0x2e4 [ 63.921781][ T6766] evdev_open+0x3c4/0x468 [ 63.922973][ T6766] chrdev_open+0x1b0/0x4b0 [ 63.924164][ T6766] do_dentry_open+0xb7c/0x1544 [ 63.925536][ T6766] vfs_open+0x44/0x2d4 [ 63.926645][ T6766] path_openat+0x2424/0x2c40 [ 63.927864][ T6766] do_filp_open+0x18c/0x36c [ 63.929099][ T6766] do_sys_openat2+0x11c/0x1b4 [ 63.930416][ T6766] __arm64_sys_openat+0x120/0x158 [ 63.931804][ T6766] invoke_syscall+0x98/0x2b8 [ 63.933073][ T6766] el0_svc_common+0x130/0x23c [ 63.934340][ T6766] do_el0_svc+0x48/0x58 [ 63.935486][ T6766] el0_svc+0x58/0x180 [ 63.936644][ T6766] el0t_64_sync_handler+0x84/0x12c [ 63.938042][ T6766] el0t_64_sync+0x198/0x19c [ 63.939318][ T6766] irq event stamp: 5672 [ 63.940494][ T6766] hardirqs last enabled at (5671): [] finish_lock_switch+0xb0/0x1c0 [ 63.943241][ T6766] hardirqs last disabled at (5672): [] el1_brk64+0x1c/0x48 [ 63.945725][ T6766] softirqs last enabled at (5574): [] handle_softirqs+0xaf8/0xc88 [ 63.948480][ T6766] softirqs last disabled at (5565): [] __do_softirq+0x14/0x20 [ 63.950990][ T6766] ---[ end trace 0000000000000000 ]--- [ 63.958083][ C1] ------------[ cut here ]------------ [ 63.958117][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 63.958653][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 63.964409][ C1] Modules linked in: [ 63.965535][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 63.968895][ C1] Tainted: [W]=WARN [ 63.969945][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 63.972656][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 63.974725][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 63.976190][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 63.977622][ C1] sp : ffff8000800177e0 [ 63.978762][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 63.980959][ C1] x26: ffff0000c6d3d5c0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 63.983238][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 63.985498][ C1] x20: 0000000000000820 x19: ffff0000cea6c300 x18: 00000000ffffffff [ 63.987771][ C1] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 63.989961][ C1] x14: 1fffe000337d64e2 x13: 0000000000000000 x12: 0000000000000000 [ 63.992310][ C1] x11: ffff6000337d64e3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 63.994538][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 63.996756][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 63.999036][ C1] x2 : 0000000000000001 x1 : 0000000100000100 x0 : 0000000000000000 [ 64.001244][ C1] Call trace: [ 64.002118][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 64.003525][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 64.004910][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 64.006398][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 64.007771][ C1] dummy_timer+0x648/0x33c8 [ 64.009005][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 64.010412][ C1] hrtimer_run_softirq+0x160/0x400 [ 64.011776][ C1] handle_softirqs+0x328/0xc88 [ 64.013089][ C1] __do_softirq+0x14/0x20 [ 64.014262][ C1] ____do_softirq+0x14/0x20 [ 64.015552][ C1] call_on_irq_stack+0x30/0x48 [ 64.016886][ C1] do_softirq_own_stack+0x20/0x2c [ 64.018321][ C1] __irq_exit_rcu+0x1b0/0x478 [ 64.019618][ C1] irq_exit_rcu+0x14/0x84 [ 64.020777][ C1] el1_interrupt+0x38/0x54 [ 64.022063][ C1] el1h_64_irq_handler+0x18/0x24 [ 64.023446][ C1] el1h_64_irq+0x6c/0x70 [ 64.024651][ C1] lock_acquire+0x178/0x2e0 (P) [ 64.026031][ C1] __might_fault+0xc4/0x124 [ 64.027252][ C1] _inline_copy_to_user+0x38/0x164 [ 64.028709][ C1] evdev_ioctl_handler+0x1bd0/0x2214 [ 64.030199][ C1] evdev_ioctl+0x38/0x4c [ 64.031380][ C1] __arm64_sys_ioctl+0x14c/0x1c4 [ 64.032742][ C1] invoke_syscall+0x98/0x2b8 [ 64.034027][ C1] el0_svc_common+0x130/0x23c [ 64.035373][ C1] do_el0_svc+0x48/0x58 [ 64.036521][ C1] el0_svc+0x58/0x180 [ 64.037609][ C1] el0t_64_sync_handler+0x84/0x12c [ 64.039004][ C1] el0t_64_sync+0x198/0x19c [ 64.040259][ C1] irq event stamp: 5931 [ 64.041449][ C1] hardirqs last enabled at (5930): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 64.044264][ C1] hardirqs last disabled at (5931): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.046967][ C1] softirqs last enabled at (5908): [] local_bh_enable+0x10/0x34 [ 64.049603][ C1] softirqs last disabled at (5927): [] __do_softirq+0x14/0x20 [ 64.052145][ C1] ---[ end trace 0000000000000000 ]--- [ 64.054068][ C1] ------------[ cut here ]------------ [ 64.054091][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.054627][ C1] WARNING: CPU: 1 PID: 23 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 64.060209][ C1] Modules linked in: [ 64.061250][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 64.064574][ C1] Tainted: [W]=WARN [ 64.065619][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 64.068035][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 64.069841][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 64.071125][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 64.072591][ C1] sp : ffff800097b57500 [ 64.073750][ C1] x29: ffff800097b57540 x28: 0000000000000000 x27: ffff80008c9436c8 [ 64.075905][ C1] x26: ffff0000c6d3d5c0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 64.077736][ T9] usb 1-1: USB disconnect, device number 2 [ 64.079677][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 64.081967][ C1] x20: 0000000000000820 x19: ffff0000cea6c300 x18: 00000000ffffffff [ 64.084197][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 64.086367][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 64.088544][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 5bd5b40157488000 [ 64.090746][ C1] x8 : 5bd5b40157488000 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.092989][ C1] x5 : ffff800097b56e58 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 64.095197][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 64.097472][ C1] Call trace: [ 64.098403][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 64.099799][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 64.101241][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 64.102735][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 64.104198][ C1] dummy_timer+0x648/0x33c8 [ 64.105491][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 64.106940][ C1] hrtimer_run_softirq+0x160/0x400 [ 64.108382][ C1] handle_softirqs+0x328/0xc88 [ 64.109783][ C1] run_ksoftirqd+0x70/0xc0 [ 64.111027][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 64.112381][ C1] kthread+0x5fc/0x75c [ 64.113511][ C1] ret_from_fork+0x10/0x20 [ 64.114751][ C1] irq event stamp: 811477 [ 64.115901][ C1] hardirqs last enabled at (811476): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 64.118691][ C1] hardirqs last disabled at (811477): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.121467][ C1] softirqs last enabled at (811386): [] handle_softirqs+0xaf8/0xc88 [ 64.124047][ C1] softirqs last disabled at (811393): [] run_ksoftirqd+0x70/0xc0 [ 64.126533][ C1] ---[ end trace 0000000000000000 ]--- [ 64.127987][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 64.149544][ T9] bcm5974 1-1:1.0: could not read from device [ 64.497856][ T2408] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.497984][ T2408] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.833666][ T9] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 64.983708][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 64.986966][ T9] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 64.989692][ T9] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 64.989727][ T9] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 64.989751][ T9] usb 1-1: Product: syz [ 64.989771][ T9] usb 1-1: Manufacturer: syz [ 64.989791][ T9] usb 1-1: SerialNumber: syz [ 65.002742][ T9] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input3 [ 65.402575][ T6766 ** replaying previous printk message ** [ 65.402575][ T6766] ------------[ cut here ]------------ [ 65.402654][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.403221][ T6766] WARNING: CPU: 0 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 65.410076][ T6766] Modules linked in: [ 65.411145][ T6766] CPU: 0 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 65.414478][ T6766] Tainted: [W]=WARN [ 65.415546][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.418240][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.420408][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 65.421848][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 65.423261][ T6766] sp : ffff8000a37a7430 [ 65.424440][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 65.426676][ T6766] x26: ffff0000ce5f2a00 x25: ffff80008c9436c0 x24: 0000000000000000 [ 65.428832][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 65.431077][ T6766] x20: 0000000000000cc0 x19: ffff0000ca021500 x18: 1fffe000337d1c76 [ 65.433219][ T6766] x17: ffff80008f67e000 x16: ffff80008af01c68 x15: 0000000000000001 [ 65.435502][ T6766] x14: 1fffe000337d46f0 x13: 0000000000000000 x12: 0000000000000000 [ 65.437758][ T6766] x11: ffff800093175c08 x10: 0000000000000003 x9 : 38a80397295ed400 [ 65.439897][ T6766] x8 : 38a80397295ed400 x7 : ffff80008048771c x6 : 0000000000000000 [ 65.442073][ T6766] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 65.444235][ T6766] x2 : 0000000000000006 x1 : ffff80008b548ee0 x0 : 0000000000000001 [ 65.446506][ T6766] Call trace: [ 65.447410][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 65.448836][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 65.450313][ T6766] bcm5974_open+0x94/0x130 [ 65.451593][ T6766] input_open_device+0x178/0x2e4 [ 65.452935][ T6766] evdev_open+0x3c4/0x468 [ 65.454159][ T6766] chrdev_open+0x1b0/0x4b0 [ 65.455432][ T6766] do_dentry_open+0xb7c/0x1544 [ 65.456734][ T6766] vfs_open+0x44/0x2d4 [ 65.457881][ T6766] path_openat+0x2424/0x2c40 [ 65.459367][ T6766] do_filp_open+0x18c/0x36c [ 65.460638][ T6766] do_sys_openat2+0x11c/0x1b4 [ 65.461913][ T6766] __arm64_sys_openat+0x120/0x158 [ 65.463367][ T6766] invoke_syscall+0x98/0x2b8 [ 65.464644][ T6766] el0_svc_common+0x130/0x23c [ 65.465931][ T6766] do_el0_svc+0x48/0x58 [ 65.467055][ T6766] el0_svc+0x58/0x180 [ 65.468142][ T6766] el0t_64_sync_handler+0x84/0x12c [ 65.469514][ T6766] el0t_64_sync+0x198/0x19c [ 65.470766][ T6766] irq event stamp: 12258 [ 65.471891][ T6766] hardirqs last enabled at (12257): [] finish_lock_switch+0xb0/0x1c0 [ 65.474586][ T6766] hardirqs last disabled at (12258): [] el1_brk64+0x1c/0x48 [ 65.477113][ T6766] softirqs last enabled at (12168): [] handle_softirqs+0xaf8/0xc88 [ 65.479773][ T6766] softirqs last disabled at (12159): [] __do_softirq+0x14/0x20 [ 65.482375][ T6766] ---[ end trace 0000000000000000 ]--- [ 65.487393][ C0] ------------[ cut here ]------------ [ 65.487425][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.487952][ C0] WARNING: CPU: 0 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 65.493826][ C0] Modules linked in: [ 65.494864][ C0] CPU: 0 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 65.498205][ C0] Tainted: [W]=WARN [ 65.499305][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.502043][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.504183][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 65.505587][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 65.507007][ C0] sp : ffff8000800077e0 [ 65.508187][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 65.510448][ C0] x26: ffff0000ce5f2a00 x25: ffff80008c9436c0 x24: 0000000000000000 [ 65.512613][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 65.514822][ C0] x20: 0000000000000820 x19: ffff0000ca021500 x18: 00000000ffffffff [ 65.517023][ C0] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 65.519188][ C0] x14: 1fffe000337d1ce2 x13: 0000000000000000 x12: 0000000000000000 [ 65.521338][ C0] x11: ffff6000337d1ce3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 65.523627][ C0] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.525770][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 65.527868][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 65.530171][ C0] Call trace: [ 65.531056][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 65.532531][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 65.534087][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 65.535664][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 65.537165][ C0] dummy_timer+0x648/0x33c8 [ 65.538384][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 65.539899][ C0] hrtimer_run_softirq+0x160/0x400 [ 65.541325][ C0] handle_softirqs+0x328/0xc88 [ 65.542636][ C0] __do_softirq+0x14/0x20 [ 65.543923][ C0] ____do_softirq+0x14/0x20 [ 65.545235][ C0] call_on_irq_stack+0x30/0x48 [ 65.546561][ C0] do_softirq_own_stack+0x20/0x2c [ 65.547982][ C0] __irq_exit_rcu+0x1b0/0x478 [ 65.549285][ C0] irq_exit_rcu+0x14/0x84 [ 65.550495][ C0] el1_interrupt+0x38/0x54 [ 65.551682][ C0] el1h_64_irq_handler+0x18/0x24 [ 65.553061][ C0] el1h_64_irq+0x6c/0x70 [ 65.554231][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 65.555925][ C0] dummy_urb_enqueue+0x2b0/0x6d4 [ 65.557292][ C0] usb_hcd_submit_urb+0x2f0/0x1834 [ 65.558745][ C0] usb_submit_urb+0xd90/0x1470 [ 65.560148][ C0] bcm5974_start_traffic+0xe0/0x154 [ 65.561585][ C0] bcm5974_open+0x94/0x130 [ 65.562803][ C0] input_open_device+0x178/0x2e4 [ 65.564103][ C0] evdev_open+0x3c4/0x468 [ 65.565346][ C0] chrdev_open+0x1b0/0x4b0 [ 65.566656][ C0] do_dentry_open+0xb7c/0x1544 [ 65.567971][ C0] vfs_open+0x44/0x2d4 [ 65.569155][ C0] path_openat+0x2424/0x2c40 [ 65.570443][ C0] do_filp_open+0x18c/0x36c [ 65.571706][ C0] do_sys_openat2+0x11c/0x1b4 [ 65.573007][ C0] __arm64_sys_openat+0x120/0x158 [ 65.574446][ C0] invoke_syscall+0x98/0x2b8 [ 65.575733][ C0] el0_svc_common+0x130/0x23c [ 65.576983][ C0] do_el0_svc+0x48/0x58 [ 65.578118][ C0] el0_svc+0x58/0x180 [ 65.579220][ C0] el0t_64_sync_handler+0x84/0x12c [ 65.580650][ C0] el0t_64_sync+0x198/0x19c [ 65.581901][ C0] irq event stamp: 12297 [ 65.583134][ C0] hardirqs last enabled at (12296): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 65.586039][ C0] hardirqs last disabled at (12297): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 65.588877][ C0] softirqs last enabled at (12278): [] handle_softirqs+0xaf8/0xc88 [ 65.591611][ C0] softirqs last disabled at (12293): [] __do_softirq+0x14/0x20 [ 65.594164][ C0] ---[ end trace 0000000000000000 ]--- [ 65.595875][ C0] ------------[ cut here ]------------ [ 65.595895][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.596458][ C0] WARNING: CPU: 0 PID: 6744 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 65.602212][ C0] Modules linked in: [ 65.603278][ C0] CPU: 0 UID: 0 PID: 6744 Comm: syz-executor.0 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 65.606906][ C0] Tainted: [W]=WARN [ 65.607972][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.610836][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.612977][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 65.614410][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 65.615820][ C0] sp : ffff8000800077e0 [ 65.616970][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 65.619150][ C0] x26: ffff0000ce5f2a00 x25: ffff80008c9436c0 x24: 0000000000000000 [ 65.621340][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 65.623479][ C0] x20: 0000000000000820 x19: ffff0000ca021500 x18: 00000000ffffffff [ 65.625641][ C0] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 65.627851][ C0] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 65.630032][ C0] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 636306a922df7f00 [ 65.632341][ C0] x8 : 636306a922df7f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.634590][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 65.636828][ C0] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 65.639034][ C0] Call trace: [ 65.639953][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 65.641388][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 65.642896][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 65.644394][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 65.645837][ C0] dummy_timer+0x648/0x33c8 [ 65.647111][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 65.648458][ C0] hrtimer_run_softirq+0x160/0x400 [ 65.649922][ C0] handle_softirqs+0x328/0xc88 [ 65.651319][ C0] __do_softirq+0x14/0x20 [ 65.652514][ C0] ____do_softirq+0x14/0x20 [ 65.653727][ C0] call_on_irq_stack+0x30/0x48 [ 65.655081][ C0] do_softirq_own_stack+0x20/0x2c [ 65.656480][ C0] __irq_exit_rcu+0x1b0/0x478 [ 65.657784][ C0] irq_exit_rcu+0x14/0x84 [ 65.658982][ C0] el1_interrupt+0x38/0x54 [ 65.660215][ C0] el1h_64_irq_handler+0x18/0x24 [ 65.661588][ C0] el1h_64_irq+0x6c/0x70 [ 65.662804][ C0] __rseq_handle_notify_resume+0x4e8/0x173c (P) [ 65.664584][ C0] do_notify_resume+0x144/0x1f4 [ 65.665931][ C0] el0_svc+0xb8/0x180 [ 65.667052][ C0] el0t_64_sync_handler+0x84/0x12c [ 65.668394][ C0] el0t_64_sync+0x198/0x19c [ 65.669632][ C0] irq event stamp: 214749 [ 65.670884][ C0] hardirqs last enabled at (214748): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 65.673881][ C0] hardirqs last disabled at (214749): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 65.676605][ C0] softirqs last enabled at (214682): [] local_bh_enable+0x10/0x34 [ 65.679250][ C0] softirqs last disabled at (214735): [] __do_softirq+0x14/0x20 [ 65.681765][ C0] ---[ end trace 0000000000000000 ]--- [ 65.683498][ C0] ------------[ cut here ]------------ [ 65.683522][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 65.684059][ C0] WARNING: CPU: 0 PID: 6744 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 ** replaying previous printk message ** [ 65.685006][ T6554] usb 1-1: USB disconnect, device number 3 [ 65.692438][ C0] Modules linked in: [ 65.692451][ T52] Bluetooth: hci0: command tx timeout [ 65.694962][ C0] CPU: 0 UID: 0 PID: 6744 Comm: syz-executor.0 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 65.698524][ C0] Tainted: [W]=WARN [ 65.699593][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 65.702453][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 65.704730][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 65.706182][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 65.707607][ C0] sp : ffff8000800077e0 [ 65.708746][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 65.710917][ C0] x26: ffff0000ce5f2a00 x25: ffff80008c9436c0 x24: 0000000000000000 [ 65.713141][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 65.715366][ C0] x20: 0000000000000820 x19: ffff0000ca021500 x18: 00000000ffffffff [ 65.717536][ C0] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 65.719769][ C0] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 65.721989][ C0] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 636306a922df7f00 [ 65.724304][ C0] x8 : 636306a922df7f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 65.726517][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 65.728759][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 65.731009][ C0] Call trace: [ 65.731913][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 65.733369][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 65.734777][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 65.736309][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 65.737721][ C0] dummy_timer+0x648/0x33c8 [ 65.739021][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 65.740449][ C0] hrtimer_run_softirq+0x160/0x400 [ 65.741868][ C0] handle_softirqs+0x328/0xc88 [ 65.743171][ C0] __do_softirq+0x14/0x20 [ 65.744369][ C0] ____do_softirq+0x14/0x20 [ 65.745605][ C0] call_on_irq_stack+0x30/0x48 [ 65.746993][ C0] do_softirq_own_stack+0x20/0x2c [ 65.748412][ C0] do_softirq+0x90/0xf8 [ 65.749580][ C0] __local_bh_enable_ip+0x240/0x35c [ 65.751160][ C0] local_bh_enable+0x28/0x34 [ 65.752469][ C0] fpsimd_restore_current_state+0x1d4/0x708 [ 65.754062][ C0] do_notify_resume+0x14c/0x1f4 [ 65.755377][ C0] el0_svc+0xb8/0x180 [ 65.756521][ C0] el0t_64_sync_handler+0x84/0x12c [ 65.757939][ C0] el0t_64_sync+0x198/0x19c [ 65.759227][ C0] irq event stamp: 214791 [ 65.760424][ C0] hardirqs last enabled at (214790): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 65.763419][ C0] hardirqs last disabled at (214791): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 65.766302][ C0] softirqs last enabled at (214770): [] local_bh_enable+0x10/0x34 [ 65.768861][ C0] softirqs last disabled at (214771): [] __do_softirq+0x14/0x20 [ 65.771432][ C0] ---[ end trace 0000000000000000 ]--- [ 65.773119][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 65.803944][ T6766] bcm5974 1-1:1.0: could not read from device [ 66.433697][ T2331] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 66.583658][ T2331] usb 1-1: Using ep0 maxpacket: 16 [ 66.587536][ T2331] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 66.589233][ T2331] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 66.589268][ T2331] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 66.589292][ T2331] usb 1-1: Product: syz [ 66.589312][ T2331] usb 1-1: Manufacturer: syz [ 66.589332][ T2331] usb 1-1: SerialNumber: syz [ 66.597469][ T2331] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input4 [ 66.996701][ T6766] ------- ** replaying previous printk message ** [ 66.996701][ T6766] ------------[ cut here ]------------ [ 66.996765][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 66.997538][ T6766] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 67.004050][ T6766] Modules linked in: [ 67.005167][ T6766] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 67.008533][ T6766] Tainted: [W]=WARN [ 67.009585][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 67.012261][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.014369][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 67.015809][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 67.017231][ T6766] sp : ffff8000a37a7430 [ 67.018349][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 67.020567][ T6766] x26: ffff0000d3e02120 x25: ffff80008c9436c0 x24: 0000000000000000 [ 67.022830][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 67.024977][ T6766] x20: 0000000000000cc0 x19: ffff0000ccd10600 x18: 1fffe000337d6476 [ 67.027205][ T6766] x17: ffff80008f67e000 x16: ffff80008af01c68 x15: 0000000000000001 [ 67.029356][ T6766] x14: 1fffe000337d8ef0 x13: 0000000000000000 x12: 0000000000000000 [ 67.031509][ T6766] x11: ffff800093175c08 x10: 0000000000000003 x9 : 38a80397295ed400 [ 67.033663][ T6766] x8 : 38a80397295ed400 x7 : ffff80008048771c x6 : 0000000000000000 [ 67.035753][ T6766] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 67.037821][ T6766] x2 : 0000000000000006 x1 : ffff80008b548ee0 x0 : 0000000000000001 [ 67.039984][ T6766] Call trace: [ 67.040840][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 67.042224][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 67.043668][ T6766] bcm5974_open+0x94/0x130 [ 67.044901][ T6766] input_open_device+0x178/0x2e4 [ 67.046401][ T6766] evdev_open+0x3c4/0x468 [ 67.047611][ T6766] chrdev_open+0x1b0/0x4b0 [ 67.048873][ T6766] do_dentry_open+0xb7c/0x1544 [ 67.050218][ T6766] vfs_open+0x44/0x2d4 [ 67.051353][ T6766] path_openat+0x2424/0x2c40 [ 67.052646][ T6766] do_filp_open+0x18c/0x36c [ 67.053909][ T6766] do_sys_openat2+0x11c/0x1b4 [ 67.055117][ T6766] __arm64_sys_openat+0x120/0x158 [ 67.056512][ T6766] invoke_syscall+0x98/0x2b8 [ 67.057761][ T6766] el0_svc_common+0x130/0x23c [ 67.059027][ T6766] do_el0_svc+0x48/0x58 [ 67.060140][ T6766] el0_svc+0x58/0x180 [ 67.061220][ T6766] el0t_64_sync_handler+0x84/0x12c [ 67.062648][ T6766] el0t_64_sync+0x198/0x19c [ 67.063894][ T6766] irq event stamp: 18592 [ 67.065134][ T6766] hardirqs last enabled at (18591): [] finish_lock_switch+0xb0/0x1c0 [ 67.067847][ T6766] hardirqs last disabled at (18592): [] el1_brk64+0x1c/0x48 [ 67.070265][ T6766] softirqs last enabled at (16558): [] handle_softirqs+0xaf8/0xc88 [ 67.072845][ T6766] softirqs last disabled at (16541): [] __do_softirq+0x14/0x20 [ 67.075416][ T6766] ---[ end trace 0000000000000000 ]--- [ 67.078391][ C1] ------------[ cut here ]------------ [ 67.078414][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.078947][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 67.084727][ C1] Modules linked in: [ 67.085790][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 67.089275][ C1] Tainted: [W]=WARN [ 67.090333][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 67.093198][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.095301][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 67.096671][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 67.098001][ C1] sp : ffff8000800177e0 [ 67.099144][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 67.101381][ C1] x26: ffff0000d3e02120 x25: ffff80008c9436c0 x24: 0000000000000000 [ 67.103564][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 67.105693][ C1] x20: 0000000000000820 x19: ffff0000ccd10600 x18: 0000000000000000 [ 67.107959][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 67.110203][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 67.112413][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 67.114644][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.116772][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 67.119012][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 67.121230][ C1] Call trace: [ 67.122182][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 67.123653][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 67.125182][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.126734][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 67.128175][ C1] dummy_timer+0x648/0x33c8 [ 67.129401][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 67.130800][ C1] hrtimer_run_softirq+0x160/0x400 [ 67.132173][ C1] handle_softirqs+0x328/0xc88 [ 67.133458][ C1] __do_softirq+0x14/0x20 [ 67.134626][ C1] ____do_softirq+0x14/0x20 [ 67.135822][ C1] call_on_irq_stack+0x30/0x48 [ 67.137063][ C1] do_softirq_own_stack+0x20/0x2c [ 67.138398][ C1] __irq_exit_rcu+0x1b0/0x478 [ 67.139739][ C1] irq_exit_rcu+0x14/0x84 [ 67.140909][ C1] el1_interrupt+0x38/0x54 [ 67.142167][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.143554][ C1] el1h_64_irq+0x6c/0x70 [ 67.144740][ C1] lock_acquire+0x178/0x2e0 (P) [ 67.146050][ C1] rcu_lock_acquire+0x3c/0x48 [ 67.147305][ C1] pfn_valid+0x94/0x200 [ 67.148421][ C1] check_slab_allocation+0xac/0x184 [ 67.149803][ C1] __kasan_slab_pre_free+0x34/0x44 [ 67.151231][ C1] kfree+0x144/0x474 [ 67.152272][ C1] tomoyo_path_number_perm+0x38c/0x47c [ 67.153766][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 67.155033][ C1] security_file_ioctl+0xe8/0x2f0 [ 67.156374][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 67.157665][ C1] invoke_syscall+0x98/0x2b8 [ 67.158911][ C1] el0_svc_common+0x130/0x23c [ 67.160180][ C1] do_el0_svc+0x48/0x58 [ 67.161299][ C1] el0_svc+0x58/0x180 [ 67.162411][ C1] el0t_64_sync_handler+0x84/0x12c [ 67.163839][ C1] el0t_64_sync+0x198/0x19c [ 67.165062][ C1] irq event stamp: 18715 [ 67.166284][ C1] hardirqs last enabled at (18714): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 67.169145][ C1] hardirqs last disabled at (18715): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 67.171845][ C1] softirqs last enabled at (18678): [] local_bh_enable+0x10/0x34 [ 67.174562][ C1] softirqs last disabled at (18711): [] __do_softirq+0x14/0x20 [ 67.177139][ C1] ---[ end trace 0000000000000000 ]--- [ 67.179069][ C1] ------------[ cut here ]------------ [ 67.179118][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.179643][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 67.185689][ C1] Modules linked in: [ 67.186796][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 67.190123][ C1] Tainted: [W]=WARN [ 67.191176][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 67.193985][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.196269][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 67.197718][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 67.199207][ C1] sp : ffff8000800177e0 [ 67.200314][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 67.202549][ C1] x26: ffff0000d3e02120 x25: ffff80008c9436c0 x24: 0000000000000000 [ 67.204863][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 67.207084][ C1] x20: 0000000000000820 x19: ffff0000ccd10600 x18: 00000000ffffffff [ 67.209364][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 67.211646][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 67.213962][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 67.216230][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.218489][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 67.220816][ C1] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 67.223085][ C1] Call trace: [ 67.224026][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 67.225498][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 67.226955][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.228577][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 67.230063][ C1] dummy_timer+0x648/0x33c8 [ 67.231318][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 67.232786][ C1] hrtimer_run_softirq+0x160/0x400 [ 67.234151][ C1] handle_softirqs+0x328/0xc88 [ 67.235501][ C1] __do_softirq+0x14/0x20 [ 67.236788][ C1] ____do_softirq+0x14/0x20 [ 67.238083][ C1] call_on_irq_stack+0x30/0x48 [ 67.239426][ C1] do_softirq_own_stack+0x20/0x2c [ 67.240829][ C1] __irq_exit_rcu+0x1b0/0x478 [ 67.242195][ C1] irq_exit_rcu+0x14/0x84 [ 67.243493][ C1] el1_interrupt+0x38/0x54 [ 67.244730][ C1] el1h_64_irq_handler+0x18/0x24 [ 67.246131][ C1] el1h_64_irq+0x6c/0x70 [ 67.247352][ C1] lock_acquire+0x178/0x2e0 (P) [ 67.248695][ C1] rcu_lock_acquire+0x3c/0x48 [ 67.250032][ C1] pfn_valid+0x94/0x200 [ 67.251188][ C1] check_slab_allocation+0xac/0x184 [ 67.252666][ C1] __kasan_slab_pre_free+0x34/0x44 [ 67.254143][ C1] kfree+0x144/0x474 [ 67.255218][ C1] tomoyo_path_number_perm+0x38c/0x47c [ 67.256756][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 67.258134][ C1] security_file_ioctl+0xe8/0x2f0 [ 67.259583][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 67.260931][ C1] invoke_syscall+0x98/0x2b8 [ 67.262220][ C1] el0_svc_common+0x130/0x23c [ 67.263511][ C1] do_el0_svc+0x48/0x58 [ 67.264689][ C1] el0_svc+0x58/0x180 [ 67.265832][ C1] el0t_64_sync_handler+0x84/0x12c [ 67.267300][ C1] el0t_64_sync+0x198/0x19c [ 67.268550][ C1] irq event stamp: 18799 [ 67.269703][ C1] hardirqs last enabled at (18798): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 67.272702][ C1] hardirqs last disabled at (18799): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 67.275621][ C1] softirqs last enabled at (18728): [] handle_softirqs+0xaf8/0xc88 [ 67.278288][ C1] softirqs last disabled at (18731): [] __do_softirq+0x14/0x20 [ 67.280894][ C1] ---[ end trace 0000000000000000 ]--- [ 67.282998][ C1] ------------[ cut here ]------------ [ 67.283036][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 67.283580][ C1] WARNING: CPU: 1 PID: 23 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 67.289465][ C1] Modules linked in: [ 67.289530][ T2331] usb 1-1: USB disconnect, device number 4 [ 67.292169][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 67.295735][ C1] Tainted: [W]=WARN [ 67.296845][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 67.299713][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 67.301943][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 67.303453][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 67.304889][ C1] sp : ffff800097b57500 [ 67.306074][ C1] x29: ffff800097b57540 x28: 0000000000000000 x27: ffff80008c9436c8 [ 67.308299][ C1] x26: ffff0000d3e02120 x25: ffff80008c9436c0 x24: 0000000000000000 [ 67.310678][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 67.312877][ C1] x20: 0000000000000820 x19: ffff0000ccd10600 x18: 0000000000000000 [ 67.315176][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 67.317615][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 67.319958][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 5bd5b40157488000 [ 67.322360][ C1] x8 : 5bd5b40157488000 x7 : 0000000000000001 x6 : 0000000000000001 [ 67.324680][ C1] x5 : ffff800097b56e58 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 67.326899][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 67.329123][ C1] Call trace: [ 67.330038][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 67.331453][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 67.332900][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 67.334384][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 67.335835][ C1] dummy_timer+0x648/0x33c8 [ 67.337110][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 67.338578][ C1] hrtimer_run_softirq+0x160/0x400 [ 67.340027][ C1] handle_softirqs+0x328/0xc88 [ 67.341373][ C1] run_ksoftirqd+0x70/0xc0 [ 67.342641][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 67.343997][ C1] kthread+0x5fc/0x75c [ 67.345227][ C1] ret_from_fork+0x10/0x20 [ 67.346619][ C1] irq event stamp: 911979 [ 67.347822][ C1] hardirqs last enabled at (911978): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 67.350832][ C1] hardirqs last disabled at (911979): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 67.353749][ C1] softirqs last enabled at (911790): [] handle_softirqs+0xaf8/0xc88 [ 67.356465][ C1] softirqs last disabled at (911795): [] run_ksoftirqd+0x70/0xc0 [ 67.359053][ C1] ---[ end trace 0000000000000000 ]--- [ 67.360622][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 67.385065][ T2331] bcm5974 1-1:1.0: could not read from device [ 67.694272][ T52] Bluetooth: hci0: command tx timeout 1970/01/01 00:01:07 executed programs: 3 [ 68.043712][ T6539] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 68.203735][ T6539] usb 1-1: Using ep0 maxpacket: 16 [ 68.206121][ T6539] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 68.208110][ T6539] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 68.208146][ T6539] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 68.208170][ T6539] usb 1-1: Product: syz [ 68.208190][ T6539] usb 1-1: Manufacturer: syz [ 68.208217][ T6539] usb 1-1: SerialNumber: syz [ 68.218108][ T6539] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input5 [ 68.619571][ T6 ** replaying previous printk message ** [ 68.619571][ T6766] ------------[ cut here ]------------ [ 68.619620][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.620128][ T6766] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 68.626997][ T6766] Modules linked in: [ 68.628106][ T6766] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 68.631445][ T6766] Tainted: [W]=WARN [ 68.632457][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 68.635260][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.637434][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 68.638913][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 68.640321][ T6766] sp : ffff8000a37a7430 [ 68.641480][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 68.643664][ T6766] x26: ffff0000cda12400 x25: ffff80008c9436c0 x24: 0000000000000000 [ 68.645795][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 68.647959][ T6766] x20: 0000000000000cc0 x19: ffff0000cf14d600 x18: 1fffe000337d6476 [ 68.650113][ T6766] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 68.652271][ T6766] x14: 1fffe000337d64e2 x13: 0000000000000000 x12: 0000000000000000 [ 68.654466][ T6766] x11: ffff6000337d64e3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 68.656639][ T6766] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.658823][ T6766] x5 : ffff8000a37a6d78 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 68.660969][ T6766] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 68.663087][ T6766] Call trace: [ 68.663913][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 68.665333][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 68.666776][ T6766] bcm5974_open+0x94/0x130 [ 68.668008][ T6766] input_open_device+0x178/0x2e4 [ 68.669366][ T6766] evdev_open+0x3c4/0x468 [ 68.670530][ T6766] chrdev_open+0x1b0/0x4b0 [ 68.671775][ T6766] do_dentry_open+0xb7c/0x1544 [ 68.673090][ T6766] vfs_open+0x44/0x2d4 [ 68.674270][ T6766] path_openat+0x2424/0x2c40 [ 68.675592][ T6766] do_filp_open+0x18c/0x36c [ 68.676891][ T6766] do_sys_openat2+0x11c/0x1b4 [ 68.678156][ T6766] __arm64_sys_openat+0x120/0x158 [ 68.679516][ T6766] invoke_syscall+0x98/0x2b8 [ 68.680784][ T6766] el0_svc_common+0x130/0x23c [ 68.682066][ T6766] do_el0_svc+0x48/0x58 [ 68.683165][ T6766] el0_svc+0x58/0x180 [ 68.684238][ T6766] el0t_64_sync_handler+0x84/0x12c [ 68.685620][ T6766] el0t_64_sync+0x198/0x19c [ 68.686839][ T6766] irq event stamp: 24336 [ 68.687996][ T6766] hardirqs last enabled at (24335): [] __console_unlock+0x70/0xc4 [ 68.690669][ T6766] hardirqs last disabled at (24336): [] el1_brk64+0x1c/0x48 [ 68.693183][ T6766] softirqs last enabled at (21056): [] handle_softirqs+0xaf8/0xc88 [ 68.695825][ T6766] softirqs last disabled at (20967): [] __do_softirq+0x14/0x20 [ 68.698374][ T6766] ---[ end trace 0000000000000000 ]--- [ 68.702192][ C1] ------------[ cut here ]------------ [ 68.702224][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.702748][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 68.708770][ C1] Modules linked in: [ 68.709881][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 68.713282][ C1] Tainted: [W]=WARN [ 68.714370][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 68.717255][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.719460][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 68.720714][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 68.721994][ C1] sp : ffff8000800177e0 [ 68.723058][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 68.725204][ C1] x26: ffff0000cda12400 x25: ffff80008c9436c0 x24: 0000000000000000 [ 68.727432][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 68.729620][ C1] x20: 0000000000000820 x19: ffff0000cf14d600 x18: 0000000000000000 [ 68.731886][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 68.734158][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 68.736473][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 68.738713][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.740964][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 68.743210][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 68.745453][ C1] Call trace: [ 68.746331][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 68.747729][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 68.749223][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 68.750675][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 68.752179][ C1] dummy_timer+0x648/0x33c8 [ 68.753474][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 68.754981][ C1] hrtimer_run_softirq+0x160/0x400 [ 68.756451][ C1] handle_softirqs+0x328/0xc88 [ 68.757778][ C1] __do_softirq+0x14/0x20 [ 68.758943][ C1] ____do_softirq+0x14/0x20 [ 68.760152][ C1] call_on_irq_stack+0x30/0x48 [ 68.761456][ C1] do_softirq_own_stack+0x20/0x2c [ 68.762815][ C1] __irq_exit_rcu+0x1b0/0x478 [ 68.764149][ C1] irq_exit_rcu+0x14/0x84 [ 68.765343][ C1] el1_interrupt+0x38/0x54 [ 68.766589][ C1] el1h_64_irq_handler+0x18/0x24 [ 68.767912][ C1] el1h_64_irq+0x6c/0x70 [ 68.769129][ C1] kasan_check_range+0x10/0x2a4 (P) [ 68.770617][ C1] __asan_memcpy+0x3c/0x84 [ 68.771874][ C1] tomoyo_supervisor+0x130/0x1224 [ 68.773293][ C1] tomoyo_path_number_perm+0x34c/0x47c [ 68.774799][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 68.776140][ C1] security_file_ioctl+0xe8/0x2f0 [ 68.777515][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 68.778888][ C1] invoke_syscall+0x98/0x2b8 [ 68.780147][ C1] el0_svc_common+0x130/0x23c [ 68.781507][ C1] do_el0_svc+0x48/0x58 [ 68.782817][ C1] el0_svc+0x58/0x180 [ 68.783993][ C1] el0t_64_sync_handler+0x84/0x12c [ 68.785520][ C1] el0t_64_sync+0x198/0x19c [ 68.786832][ C1] irq event stamp: 24637 [ 68.787973][ C1] hardirqs last enabled at (24636): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 68.790924][ C1] hardirqs last disabled at (24637): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 68.793718][ C1] softirqs last enabled at (24598): [] local_bh_enable+0x10/0x34 [ 68.796370][ C1] softirqs last disabled at (24633): [] __do_softirq+0x14/0x20 [ 68.798946][ C1] ---[ end trace 0000000000000000 ]--- [ 68.800917][ C1] ------------[ cut here ]------------ [ 68.800938][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.801474][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 68.807111][ C1] Modules linked in: [ 68.808228][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 68.811530][ C1] Tainted: [W]=WARN [ 68.812575][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 68.815400][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 68.817552][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 68.818936][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 68.820366][ C1] sp : ffff8000800177e0 [ 68.821327][ T2331] usb 1-1: USB disconnect, device number 5 [ 68.823134][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 68.825226][ C1] x26: ffff0000cda12400 x25: ffff80008c9436c0 x24: 0000000000000000 [ 68.827482][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 68.829702][ C1] x20: 0000000000000820 x19: ffff0000cf14d600 x18: 0000000000000000 [ 68.832007][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 68.834277][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 68.836476][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 68.838742][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.841011][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 68.843276][ C1] x2 : 0000000000000000 x1 : 0000000000000101 x0 : 0000000000000000 [ 68.845452][ C1] Call trace: [ 68.846417][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 68.847824][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 68.849235][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 68.850703][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 68.852129][ C1] dummy_timer+0x648/0x33c8 [ 68.853312][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 68.854770][ C1] hrtimer_run_softirq+0x160/0x400 [ 68.856128][ C1] handle_softirqs+0x328/0xc88 [ 68.857438][ C1] __do_softirq+0x14/0x20 [ 68.858602][ C1] ____do_softirq+0x14/0x20 [ 68.859895][ C1] call_on_irq_stack+0x30/0x48 [ 68.861213][ C1] do_softirq_own_stack+0x20/0x2c [ 68.862567][ C1] __irq_exit_rcu+0x1b0/0x478 [ 68.863840][ C1] irq_exit_rcu+0x14/0x84 [ 68.864991][ C1] el1_interrupt+0x38/0x54 [ 68.866159][ C1] el1h_64_irq_handler+0x18/0x24 [ 68.867518][ C1] el1h_64_irq+0x6c/0x70 [ 68.868693][ C1] preempt_schedule_irq+0x78/0x188 (P) [ 68.870230][ C1] arm64_preempt_schedule_irq+0x44/0x58 [ 68.871745][ C1] el1_interrupt+0x3c/0x54 [ 68.872955][ C1] el1h_64_irq_handler+0x18/0x24 [ 68.874307][ C1] el1h_64_irq+0x6c/0x70 [ 68.875510][ C1] kasan_check_range+0x10/0x2a4 (P) [ 68.876945][ C1] __asan_memcpy+0x3c/0x84 [ 68.878158][ C1] tomoyo_supervisor+0x130/0x1224 [ 68.879611][ C1] tomoyo_path_number_perm+0x34c/0x47c [ 68.881047][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 68.882335][ C1] security_file_ioctl+0xe8/0x2f0 [ 68.883765][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 68.885109][ C1] invoke_syscall+0x98/0x2b8 [ 68.886358][ C1] el0_svc_common+0x130/0x23c [ 68.887624][ C1] do_el0_svc+0x48/0x58 [ 68.888729][ C1] el0_svc+0x58/0x180 [ 68.889835][ C1] el0t_64_sync_handler+0x84/0x12c [ 68.891262][ C1] el0t_64_sync+0x198/0x19c [ 68.892471][ C1] irq event stamp: 24781 [ 68.893632][ C1] hardirqs last enabled at (24780): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 68.896483][ C1] hardirqs last disabled at (24781): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 68.899254][ C1] softirqs last enabled at (24650): [] handle_softirqs+0xaf8/0xc88 [ 68.901849][ C1] softirqs last disabled at (24653): [] __do_softirq+0x14/0x20 [ 68.904374][ C1] ---[ end trace 0000000000000000 ]--- [ 68.905831][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 68.936472][ T2331] bcm5974 1-1:1.0: could not read from device [ 69.573668][ T2331] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 69.615250][ T1819] cfg80211: failed to load regulatory.db [ 69.733663][ T2331] usb 1-1: Using ep0 maxpacket: 16 [ 69.743658][ T2331] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 69.748614][ T2331] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 69.748666][ T2331] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 69.748691][ T2331] usb 1-1: Product: syz [ 69.748711][ T2331] usb 1-1: Manufacturer: syz [ 69.748731][ T2331] usb 1-1: SerialNumber: syz [ 69.756170][ T2331] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input6 [ 69.782206][ T52] Bluetooth: hci0: command tx timeout [ 70.157761][ T6766] ---- ** replaying previous printk message ** [ 70.157761][ T6766] ------------[ cut here ]------------ [ 70.157817][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.158587][ T6766] WARNING: CPU: 0 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 70.165181][ T6766] Modules linked in: [ 70.166243][ T6766] CPU: 0 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 70.169531][ T6766] Tainted: [W]=WARN [ 70.170556][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 70.173273][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.175431][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 70.176936][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 70.178319][ T6766] sp : ffff8000a37a7430 [ 70.179439][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 70.181769][ T6766] x26: ffff0000d3b03fe0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 70.184050][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 70.186332][ T6766] x20: 0000000000000cc0 x19: ffff0000cbaa7000 x18: 1fffe000337d1c76 [ 70.188514][ T6766] x17: ffff80008f67e000 x16: ffff80008af01c68 x15: 0000000000000001 [ 70.190726][ T6766] x14: 1fffe0001b00c330 x13: 0000000000000000 x12: 0000000000000000 [ 70.193089][ T6766] x11: ffff60001b00c331 x10: 0000000000000003 x9 : 38a80397295ed400 [ 70.195465][ T6766] x8 : 38a80397295ed400 x7 : ffff80008048771c x6 : 0000000000000000 [ 70.197706][ T6766] x5 : 0000000000000001 x4 : 0000000000000001 x3 : ffff800080479d14 [ 70.199927][ T6766] x2 : 0000000000000001 x1 : ffff80008b548ee0 x0 : 0000000000000001 [ 70.202200][ T6766] Call trace: [ 70.203091][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 70.204522][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 70.206065][ T6766] bcm5974_open+0x94/0x130 [ 70.207314][ T6766] input_open_device+0x178/0x2e4 [ 70.208692][ T6766] evdev_open+0x3c4/0x468 [ 70.209910][ T6766] chrdev_open+0x1b0/0x4b0 [ 70.211143][ T6766] do_dentry_open+0xb7c/0x1544 [ 70.212436][ T6766] vfs_open+0x44/0x2d4 [ 70.213504][ T6766] path_openat+0x2424/0x2c40 [ 70.214766][ T6766] do_filp_open+0x18c/0x36c [ 70.215976][ T6766] do_sys_openat2+0x11c/0x1b4 [ 70.217250][ T6766] __arm64_sys_openat+0x120/0x158 [ 70.218691][ T6766] invoke_syscall+0x98/0x2b8 [ 70.219977][ T6766] el0_svc_common+0x130/0x23c [ 70.221251][ T6766] do_el0_svc+0x48/0x58 [ 70.222471][ T6766] el0_svc+0x58/0x180 [ 70.223550][ T6766] el0t_64_sync_handler+0x84/0x12c [ 70.224928][ T6766] el0t_64_sync+0x198/0x19c [ 70.226197][ T6766] irq event stamp: 29712 [ 70.227354][ T6766] hardirqs last enabled at (29711): [] finish_lock_switch+0xb0/0x1c0 [ 70.229994][ T6766] hardirqs last disabled at (29712): [] el1_brk64+0x1c/0x48 [ 70.232394][ T6766] softirqs last enabled at (28758): [] local_bh_enable+0x10/0x34 [ 70.234910][ T6766] softirqs last disabled at (28756): [] local_bh_disable+0x10/0x34 [ 70.237463][ T6766] ---[ end trace 0000000000000000 ]--- [ 70.241636][ C0] ------------[ cut here ]------------ [ 70.241660][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.242203][ C0] WARNING: CPU: 0 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 70.247869][ C0] Modules linked in: [ 70.248975][ C0] CPU: 0 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 70.252268][ C0] Tainted: [W]=WARN [ 70.253272][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 70.255920][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.258029][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 70.259445][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 70.260873][ C0] sp : ffff8000800077e0 [ 70.261978][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 70.264121][ C0] x26: ffff0000d3b03fe0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 70.266304][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 70.268639][ C0] x20: 0000000000000820 x19: ffff0000cbaa7000 x18: 0000000000000000 [ 70.270859][ C0] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 70.273133][ C0] x14: 1fffe000337d1ce2 x13: 0000000000000000 x12: 0000000000000000 [ 70.275353][ C0] x11: ffff6000337d1ce3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 70.277518][ C0] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.279783][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 70.281999][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 70.284240][ C0] Call trace: [ 70.285125][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 70.286458][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 70.287913][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 70.289383][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 70.290836][ C0] dummy_timer+0x648/0x33c8 [ 70.292122][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 70.293542][ C0] hrtimer_run_softirq+0x160/0x400 [ 70.295022][ C0] handle_softirqs+0x328/0xc88 [ 70.296326][ C0] __do_softirq+0x14/0x20 [ 70.297536][ C0] ____do_softirq+0x14/0x20 [ 70.298759][ C0] call_on_irq_stack+0x30/0x48 [ 70.300102][ C0] do_softirq_own_stack+0x20/0x2c [ 70.301491][ C0] __irq_exit_rcu+0x1b0/0x478 [ 70.302789][ C0] irq_exit_rcu+0x14/0x84 [ 70.304000][ C0] el1_interrupt+0x38/0x54 [ 70.305227][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.306653][ C0] el1h_64_irq+0x6c/0x70 [ 70.307819][ C0] _raw_spin_unlock_irqrestore+0x44/0x98 (P) [ 70.309443][ C0] stack_depot_save_flags+0x674/0x77c [ 70.310874][ C0] kasan_save_track+0x54/0x78 [ 70.312226][ C0] kasan_save_free_info+0x58/0x70 [ 70.313586][ C0] __kasan_slab_free+0x68/0x88 [ 70.314926][ C0] kfree+0x17c/0x474 [ 70.316026][ C0] __free_slab+0xbc/0x1e8 [ 70.317249][ C0] free_slab+0x24/0x120 [ 70.318441][ C0] __put_partials+0x19c/0x244 [ 70.319775][ C0] put_cpu_partial+0x164/0x1c0 [ 70.321076][ C0] __slab_free+0x1b0/0x280 [ 70.322300][ C0] ___cache_free+0x150/0x170 [ 70.323532][ C0] qlink_free+0x48/0x94 [ 70.324714][ C0] qlist_free_all+0x44/0xb8 [ 70.325912][ C0] kasan_quarantine_reduce+0x118/0x124 [ 70.327475][ C0] __kasan_slab_alloc+0x2c/0x88 [ 70.328784][ C0] __kmalloc_noprof+0x2ac/0x4c8 [ 70.330140][ C0] tomoyo_realpath_from_path+0xc4/0x4d4 [ 70.331610][ C0] tomoyo_path_number_perm+0x1a0/0x47c [ 70.333214][ C0] tomoyo_file_ioctl+0x2c/0x3c [ 70.334546][ C0] security_file_ioctl+0xe8/0x2f0 [ 70.335907][ C0] __arm64_sys_ioctl+0xa8/0x1c4 [ 70.337233][ C0] invoke_syscall+0x98/0x2b8 [ 70.338578][ C0] el0_svc_common+0x130/0x23c [ 70.339924][ C0] do_el0_svc+0x48/0x58 [ 70.341037][ C0] el0_svc+0x58/0x180 [ 70.342180][ C0] el0t_64_sync_handler+0x84/0x12c [ 70.343608][ C0] el0t_64_sync+0x198/0x19c [ 70.344842][ C0] irq event stamp: 29787 [ 70.345978][ C0] hardirqs last enabled at (29786): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 70.348941][ C0] hardirqs last disabled at (29787): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 70.351748][ C0] softirqs last enabled at (29744): [] local_bh_enable+0x10/0x34 [ 70.354354][ C0] softirqs last disabled at (29783): [] __do_softirq+0x14/0x20 [ 70.356833][ C0] ---[ end trace 0000000000000000 ]--- [ 70.358722][ C0] ------------[ cut here ]------------ [ 70.358743][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.359288][ C0] WARNING: CPU: 0 PID: 6744 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 70.365028][ C0] Modules linked in: [ 70.366145][ C0] CPU: 0 UID: 0 PID: 6744 Comm: syz-executor.0 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 70.369754][ C0] Tainted: [W]=WARN [ 70.370787][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 70.373583][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.375696][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 70.377079][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 70.378440][ C0] sp : ffff8000800077e0 [ 70.379602][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 70.381745][ C0] x26: ffff0000d3b03fe0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 70.383982][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 70.386270][ C0] x20: 0000000000000820 x19: ffff0000cbaa7000 x18: 0000000000000000 [ 70.388488][ C0] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 70.390709][ C0] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 70.392896][ C0] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 636306a922df7f00 [ 70.395129][ C0] x8 : 636306a922df7f00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.397301][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 70.399533][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 70.401737][ C0] Call trace: [ 70.402627][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 70.404064][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 70.405485][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 70.406925][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 70.408348][ C0] dummy_timer+0x648/0x33c8 [ 70.409634][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 70.411045][ C0] hrtimer_run_softirq+0x160/0x400 [ 70.412482][ C0] handle_softirqs+0x328/0xc88 [ 70.413769][ C0] __do_softirq+0x14/0x20 [ 70.414907][ C0] ____do_softirq+0x14/0x20 [ 70.416174][ C0] call_on_irq_stack+0x30/0x48 [ 70.417473][ C0] do_softirq_own_stack+0x20/0x2c [ 70.418793][ C0] do_softirq+0x90/0xf8 [ 70.419914][ C0] __local_bh_enable_ip+0x240/0x35c [ 70.421381][ C0] local_bh_enable+0x28/0x34 [ 70.422650][ C0] fpsimd_restore_current_state+0x1d4/0x708 [ 70.424274][ C0] do_notify_resume+0x14c/0x1f4 [ 70.425690][ C0] el0_svc+0xb8/0x180 [ 70.426820][ C0] el0t_64_sync_handler+0x84/0x12c [ 70.428245][ C0] el0t_64_sync+0x198/0x19c [ 70.429461][ C0] irq event stamp: 309035 [ 70.430583][ C0] hardirqs last enabled at (309034): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 70.433442][ C0] hardirqs last disabled at (309035): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 70.436211][ C0] softirqs last enabled at (309012): [] local_bh_enable+0x10/0x34 [ 70.438844][ C0] softirqs last disabled at (309013): [] __do_softirq+0x14/0x20 [ 70.441389][ C0] ---[ end trace 0000000000000000 ]--- [ 70.443062][ C0] ------------[ cut here ]------------ [ 70.443084][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.443620][ C0] WARNING: CPU: 0 PID: 351 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 70.447290][ T1819] usb 1-1: USB disconnect, device number 6 [ 70.451113][ C0] Modules linked in: [ 70.452208][ C0] CPU: 0 UID: 0 PID: 351 Comm: kworker/u8:9 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 70.455598][ C0] Tainted: [W]=WARN [ 70.456639][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 70.459306][ C0] Workqueue: events_unbound cfg80211_wiphy_work [ 70.461073][ C0] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 70.463122][ C0] pc : usb_submit_urb+0xa24/0x1470 [ 70.464593][ C0] lr : usb_submit_urb+0xa24/0x1470 [ 70.466036][ C0] sp : ffff8000800077e0 [ 70.467159][ C0] x29: ffff800080007820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 70.469315][ C0] x26: ffff0000d3b03fe0 x25: ffff80008c9436c0 x24: 0000000000000000 [ 70.471536][ C0] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 70.473739][ C0] x20: 0000000000000820 x19: ffff0000cbaa7000 x18: 0000000000000000 [ 70.475939][ C0] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 70.478122][ C0] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 70.480279][ C0] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 5f9e757ba152eb00 [ 70.482461][ C0] x8 : 5f9e757ba152eb00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.484634][ C0] x5 : ffff800080007138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 70.486858][ C0] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 70.489149][ C0] Call trace: [ 70.490039][ C0] usb_submit_urb+0xa24/0x1470 (P) [ 70.491493][ C0] bcm5974_irq_trackpad+0x210/0xeb4 [ 70.492982][ C0] __usb_hcd_giveback_urb+0x308/0x570 [ 70.494510][ C0] usb_hcd_giveback_urb+0x100/0x364 [ 70.495989][ C0] dummy_timer+0x648/0x33c8 [ 70.497196][ C0] __hrtimer_run_queues+0x41c/0xb78 [ 70.498631][ C0] hrtimer_run_softirq+0x160/0x400 [ 70.500092][ C0] handle_softirqs+0x328/0xc88 [ 70.501424][ C0] __do_softirq+0x14/0x20 [ 70.502621][ C0] ____do_softirq+0x14/0x20 [ 70.503876][ C0] call_on_irq_stack+0x30/0x48 [ 70.505183][ C0] do_softirq_own_stack+0x20/0x2c [ 70.506578][ C0] __irq_exit_rcu+0x1b0/0x478 [ 70.507856][ C0] irq_exit_rcu+0x14/0x84 [ 70.509029][ C0] el1_interrupt+0x38/0x54 [ 70.510269][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.511639][ C0] el1h_64_irq+0x6c/0x70 [ 70.512837][ C0] _raw_spin_unlock_irq+0x34/0x80 (P) [ 70.514326][ C0] process_one_work+0x5cc/0x155c [ 70.515711][ C0] worker_thread+0x958/0xed8 [ 70.517002][ C0] kthread+0x5fc/0x75c [ 70.518096][ C0] ret_from_fork+0x10/0x20 [ 70.519414][ C0] irq event stamp: 480597 [ 70.520648][ C0] hardirqs last enabled at (480596): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 70.523460][ C0] hardirqs last disabled at (480597): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 70.526258][ C0] softirqs last enabled at (480572): [] batadv_nc_purge_paths+0x2f4/0x37c [ 70.529091][ C0] softirqs last disabled at (480583): [] __do_softirq+0x14/0x20 [ 70.531622][ C0] ---[ end trace 0000000000000000 ]--- [ 70.533199][ C0] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 70.564171][ T6766] bcm5974 1-1:1.0: could not read from device [ 70.567479][ T6766] udevd[6766]: setting mode of /dev/input/event2 to 020660 failed: No such file or directory [ 70.567621][ T6766] udevd[6766]: setting owner of /dev/input/event2 to uid=0, gid=103 failed: No such file or directory [ 71.193777][ T1819] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 71.343701][ T1819] usb 1-1: Using ep0 maxpacket: 16 [ 71.346552][ T1819] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 71.348331][ T1819] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 71.348364][ T1819] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 71.348387][ T1819] usb 1-1: Product: syz [ 71.348407][ T1819] usb 1-1: Manufacturer: syz [ 71.348427][ T1819] usb 1-1: SerialNumber: syz [ 71.355930][ T1819] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input7 [ 71.755059][ T6766 ** replaying previous printk message ** [ 71.755059][ T6766] ------------[ cut here ]------------ [ 71.755113][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 71.755615][ T6766] WARNING: CPU: 0 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 71.762629][ T6766] Modules linked in: [ 71.763810][ T6766] CPU: 0 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 71.767171][ T6766] Tainted: [W]=WARN [ 71.768255][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 71.770983][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 71.773112][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 71.774475][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 71.775828][ T6766] sp : ffff8000a37a7430 [ 71.776911][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 71.779090][ T6766] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 71.781361][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 71.783628][ T6766] x20: 0000000000000cc0 x19: ffff0000d0c57400 x18: 1fffe000337d1c76 [ 71.785887][ T6766] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 71.788071][ T6766] x14: 1fffe000337d1ce2 x13: 0000000000000000 x12: 0000000000000000 [ 71.790345][ T6766] x11: ffff6000337d1ce3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 71.792698][ T6766] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.794874][ T6766] x5 : ffff8000a37a6d78 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 71.797079][ T6766] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 71.799295][ T6766] Call trace: [ 71.800206][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 71.801627][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 71.803162][ T6766] bcm5974_open+0x94/0x130 [ 71.804335][ T6766] input_open_device+0x178/0x2e4 [ 71.805616][ T6766] evdev_open+0x3c4/0x468 [ 71.806734][ T6766] chrdev_open+0x1b0/0x4b0 [ 71.807885][ T6766] do_dentry_open+0xb7c/0x1544 [ 71.809200][ T6766] vfs_open+0x44/0x2d4 [ 71.810300][ T6766] path_openat+0x2424/0x2c40 [ 71.811502][ T6766] do_filp_open+0x18c/0x36c [ 71.812711][ T6766] do_sys_openat2+0x11c/0x1b4 [ 71.813969][ T6766] __arm64_sys_openat+0x120/0x158 [ 71.815287][ T6766] invoke_syscall+0x98/0x2b8 [ 71.816495][ T6766] el0_svc_common+0x130/0x23c [ 71.817711][ T6766] do_el0_svc+0x48/0x58 [ 71.818783][ T6766] el0_svc+0x58/0x180 [ 71.819885][ T6766] el0t_64_sync_handler+0x84/0x12c [ 71.821277][ T6766] el0t_64_sync+0x198/0x19c [ 71.822460][ T6766] irq event stamp: 35832 [ 71.823593][ T6766] hardirqs last enabled at (35831): [] __console_unlock+0x70/0xc4 [ 71.826167][ T6766] hardirqs last disabled at (35832): [] el1_brk64+0x1c/0x48 [ 71.828609][ T6766] softirqs last enabled at (34394): [] handle_softirqs+0xaf8/0xc88 [ 71.831241][ T6766] softirqs last disabled at (34275): [] __do_softirq+0x14/0x20 [ 71.833760][ T6766] ---[ end trace 0000000000000000 ]--- [ 71.836485][ C1] ------------[ cut here ]------------ [ 71.836511][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 71.837045][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 71.842702][ C1] Modules linked in: [ 71.843748][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 71.847127][ C1] Tainted: [W]=WARN [ 71.848178][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 71.850972][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 71.853107][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 71.854582][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 71.855990][ C1] sp : ffff8000800177e0 [ 71.857178][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 71.859409][ C1] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 71.861731][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 71.864178][ C1] x20: 0000000000000820 x19: ffff0000d0c57400 x18: 0000000000000000 [ 71.866516][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 71.868772][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 71.871049][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 71.873279][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.875514][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 71.877729][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 71.879925][ C1] Call trace: [ 71.880876][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 71.882382][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 71.884008][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 71.885517][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 71.886961][ C1] dummy_timer+0x648/0x33c8 [ 71.888244][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 71.889777][ C1] hrtimer_run_softirq+0x160/0x400 [ 71.891242][ C1] handle_softirqs+0x328/0xc88 [ 71.892524][ C1] __do_softirq+0x14/0x20 [ 71.893758][ C1] ____do_softirq+0x14/0x20 [ 71.895002][ C1] call_on_irq_stack+0x30/0x48 [ 71.896351][ C1] do_softirq_own_stack+0x20/0x2c [ 71.897787][ C1] __irq_exit_rcu+0x1b0/0x478 [ 71.899094][ C1] irq_exit_rcu+0x14/0x84 [ 71.900400][ C1] el1_interrupt+0x38/0x54 [ 71.901673][ C1] el1h_64_irq_handler+0x18/0x24 [ 71.903001][ C1] el1h_64_irq+0x6c/0x70 [ 71.904188][ C1] kasan_quarantine_put+0xbc/0x1c8 (P) [ 71.905695][ C1] __kasan_slab_free+0x74/0x88 [ 71.907051][ C1] kfree+0x17c/0x474 [ 71.908189][ C1] tomoyo_path_number_perm+0x38c/0x47c [ 71.909686][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 71.910967][ C1] security_file_ioctl+0xe8/0x2f0 [ 71.912310][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 71.913618][ C1] invoke_syscall+0x98/0x2b8 [ 71.914841][ C1] el0_svc_common+0x130/0x23c [ 71.916073][ C1] do_el0_svc+0x48/0x58 [ 71.917170][ C1] el0_svc+0x58/0x180 [ 71.918214][ C1] el0t_64_sync_handler+0x84/0x12c [ 71.919580][ C1] el0t_64_sync+0x198/0x19c [ 71.920867][ C1] irq event stamp: 35917 [ 71.921967][ C1] hardirqs last enabled at (35916): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 71.924726][ C1] hardirqs last disabled at (35917): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 71.927495][ C1] softirqs last enabled at (35874): [] local_bh_enable+0x10/0x34 [ 71.930092][ C1] softirqs last disabled at (35913): [] __do_softirq+0x14/0x20 [ 71.932634][ C1] ---[ end trace 0000000000000000 ]--- [ 71.934572][ C1] ** replaying previous printk message ** [ 71.934572][ C1] ------------[ cut here ]------------ [ 71.934595][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 71.935131][ C1] WARNING: CPU: 1 PID: 23 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 71.941852][ C1] Modules linked in: [ 71.942973][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 71.946405][ C1] Tainted: [W]=WARN [ 71.947407][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 71.950275][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 71.952462][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 71.953908][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 71.955308][ C1] sp : ffff800097b57500 [ 71.956454][ C1] x29: ffff800097b57540 x28: 0000000000000000 x27: ffff80008c9436c8 [ 71.958662][ C1] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 71.960852][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 71.963133][ C1] x20: 0000000000000820 x19: ffff0000d0c57400 x18: 1fffe000337d6476 [ 71.965358][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 71.967578][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 71.969735][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 5bd5b40157488000 [ 71.971974][ C1] x8 : 5bd5b40157488000 x7 : 0000000000000001 x6 : 0000000000000001 [ 71.974143][ C1] x5 : ffff800097b56e58 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 71.976404][ C1] x2 : 0000000000000000 x1 : 0000000000000100 x0 : 0000000000000000 [ 71.978631][ C1] Call trace: [ 71.979512][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 71.980924][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 71.982408][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 71.983873][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 71.985328][ C1] dummy_timer+0x648/0x33c8 [ 71.986573][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 71.987956][ C1] hrtimer_run_softirq+0x160/0x400 [ 71.989507][ C1] handle_softirqs+0x328/0xc88 [ 71.990869][ C1] run_ksoftirqd+0x70/0xc0 [ 71.992083][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 71.993465][ C1] kthread+0x5fc/0x75c [ 71.994554][ C1] ret_from_fork+0x10/0x20 [ 71.995788][ C1] irq event stamp: 921141 [ 71.996977][ C1] hardirqs last enabled at (921140): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 71.999850][ C1] hardirqs last disabled at (921141): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 72.002567][ C1] softirqs last enabled at (921042): [] handle_softirqs+0xaf8/0xc88 [ 72.005262][ C1] softirqs last disabled at (921047): [] run_ksoftirqd+0x70/0xc0 [ 72.007864][ C1] ---[ end trace 0000000000000000 ]--- [ 72.010041][ C1] ------------[ cut here ]------------ [ 72.010063][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.010597][ C1] WARNING: CPU: 1 PID: 7013 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 72.016459][ C1] Modules linked in: [ 72.017546][ C1] CPU: 1 UID: 0 PID: 7013 Comm: syz-executor.0 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 72.021123][ C1] Tainted: [W]=WARN [ 72.022165][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 72.025040][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.027252][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 72.028696][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 72.030073][ C1] sp : ffff8000800177e0 [ 72.031273][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 72.033452][ C1] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 72.035621][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 72.037887][ C1] x20: 0000000000000820 x19: ffff0000d0c57400 x18: 1fffe000337d6476 [ 72.040118][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 72.042322][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 72.044505][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : f595718897aad300 [ 72.046750][ C1] x8 : f595718897aad300 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.048957][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 72.051084][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 72.053280][ C1] Call trace: [ 72.054196][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 72.055667][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 72.057155][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 72.058671][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 72.060058][ C1] dummy_timer+0x648/0x33c8 [ 72.061305][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 72.062805][ C1] hrtimer_run_softirq+0x160/0x400 [ 72.064217][ C1] handle_softirqs+0x328/0xc88 [ 72.065480][ C1] __do_softirq+0x14/0x20 [ 72.066673][ C1] ____do_softirq+0x14/0x20 [ 72.067896][ C1] call_on_irq_stack+0x30/0x48 [ 72.069219][ C1] do_softirq_own_stack+0x20/0x2c [ 72.070619][ C1] do_softirq+0x90/0xf8 [ 72.071737][ C1] __local_bh_enable_ip+0x240/0x35c [ 72.073193][ C1] local_bh_enable+0x28/0x34 [ 72.074438][ C1] fpsimd_restore_current_state+0x1d4/0x708 [ 72.076028][ C1] do_notify_resume+0x14c/0x1f4 [ 72.077502][ C1] el0_svc+0xb8/0x180 [ 72.078597][ C1] el0t_64_sync_handler+0x84/0x12c [ 72.079965][ C1] el0t_64_sync+0x198/0x19c [ 72.081237][ C1] irq event stamp: 3031 [ 72.082345][ C1] hardirqs last enabled at (3030): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 72.085181][ C1] hardirqs last disabled at (3031): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 72.087929][ C1] softirqs last enabled at (2894): [] local_bh_enable+0x10/0x34 [ 72.090669][ C1] softirqs last disabled at (2895): [] __do_softirq+0x14/0x20 [ 72.093189][ C1] ---[ end trace 0000000000000000 ]--- [ 72.095372][ C1] ------------[ cut here ]------------ [ 72.095398][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.095921][ C1] WARNING: CPU: 1 PID: 7012 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 72.101500][ C1] Modules linked in: [ 72.102569][ C1] CPU: 1 UID: 0 PID: 7012 Comm: syz-executor.0 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 72.106186][ C1] Tainted: [W]=WARN [ 72.107244][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 72.110111][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.112344][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 72.113706][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 72.115185][ C1] sp : ffff8000800177e0 [ 72.116359][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 72.118623][ C1] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 72.120854][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 72.123111][ C1] x20: 0000000000000820 x19: ffff0000d0c57400 x18: 00000000806cbf1e [ 72.125395][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 72.127643][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 72.129924][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 420511ca920dee00 [ 72.132258][ C1] x8 : 420511ca920dee00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.134494][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 72.136709][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 72.138937][ C1] Call trace: [ 72.139854][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 72.141338][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 72.142799][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 72.144349][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 72.145735][ C1] dummy_timer+0x648/0x33c8 [ 72.146984][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 72.148416][ C1] hrtimer_run_softirq+0x160/0x400 [ 72.149838][ C1] handle_softirqs+0x328/0xc88 [ 72.151272][ C1] __do_softirq+0x14/0x20 [ 72.152438][ C1] ____do_softirq+0x14/0x20 [ 72.153669][ C1] call_on_irq_stack+0x30/0x48 [ 72.155000][ C1] do_softirq_own_stack+0x20/0x2c [ 72.156458][ C1] do_softirq+0x90/0xf8 [ 72.157586][ C1] __local_bh_enable_ip+0x240/0x35c [ 72.159137][ C1] local_bh_enable+0x28/0x34 [ 72.160461][ C1] fpsimd_restore_current_state+0x1d4/0x708 [ 72.162119][ C1] do_notify_resume+0x14c/0x1f4 [ 72.163495][ C1] el0_svc+0xb8/0x180 [ 72.164637][ C1] el0t_64_sync_handler+0x84/0x12c [ 72.166059][ C1] el0t_64_sync+0x198/0x19c [ 72.167349][ C1] irq event stamp: 1027 [ 72.168488][ C1] hardirqs last enabled at (1026): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 72.171432][ C1] hardirqs last disabled at (1027): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 72.174130][ C1] softirqs last enabled at (914): [] local_bh_enable+0x10/0x34 [ 72.176770][ C1] softirqs last disabled at (915): [] __do_softirq+0x14/0x20 [ 72.179247][ C1] ---[ end trace 0000000000000000 ]--- [ 72.181364][ C1] ------------[ cut here ]------------ [ 72.181391][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.181923][ C1] WARNING: CPU: 1 PID: 6734 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 72.187676][ C1] Modules linked in: [ 72.188796][ C1] CPU: 1 UID: 0 PID: 6734 Comm: syz-execprog Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 72.192260][ C1] Tainted: [W]=WARN [ 72.193312][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 72.196107][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 72.198387][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 72.199870][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 72.201336][ C1] sp : ffff8000800177e0 [ 72.202293][ T2331] usb 1-1: USB disconnect, device number 7 [ 72.204103][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 72.206409][ C1] x26: ffff0000c227ea80 x25: ffff80008c9436c0 x24: 0000000000000000 [ 72.208623][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 72.210832][ C1] x20: 0000000000000820 x19: ffff0000d0c57400 x18: 1fffe000337d6476 [ 72.212994][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 72.215263][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 72.217457][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 25a945a42c10c000 [ 72.219627][ C1] x8 : 25a945a42c10c000 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.221809][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 72.224111][ C1] x2 : 0000000000000000 x1 : 0000000100000101 x0 : 0000000000000000 [ 72.226361][ C1] Call trace: [ 72.227286][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 72.228737][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 72.230203][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 72.231745][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 72.233190][ C1] dummy_timer+0x648/0x33c8 [ 72.234404][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 72.235864][ C1] hrtimer_run_softirq+0x160/0x400 [ 72.237238][ C1] handle_softirqs+0x328/0xc88 [ 72.238574][ C1] __do_softirq+0x14/0x20 [ 72.239757][ C1] ____do_softirq+0x14/0x20 [ 72.241030][ C1] call_on_irq_stack+0x30/0x48 [ 72.242329][ C1] do_softirq_own_stack+0x20/0x2c [ 72.243705][ C1] do_softirq+0x90/0xf8 [ 72.244856][ C1] __local_bh_enable_ip+0x240/0x35c [ 72.246304][ C1] local_bh_enable+0x28/0x34 [ 72.247544][ C1] fpsimd_restore_current_state+0x1d4/0x708 [ 72.249200][ C1] do_notify_resume+0x14c/0x1f4 [ 72.250573][ C1] el0_svc+0xb8/0x180 [ 72.251613][ C1] el0t_64_sync_handler+0x84/0x12c [ 72.253007][ C1] el0t_64_sync+0x198/0x19c [ 72.254318][ C1] irq event stamp: 26753 [ 72.255472][ C1] hardirqs last enabled at (26752): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 72.258387][ C1] hardirqs last disabled at (26753): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 72.261123][ C1] softirqs last enabled at (26680): [] local_bh_enable+0x10/0x34 [ 72.263736][ C1] softirqs last disabled at (26681): [] __do_softirq+0x14/0x20 [ 72.266224][ C1] ---[ end trace 0000000000000000 ]--- [ 72.267754][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 72.268692][ T6766] bcm5974 1-1:1.0: could not read from device [ 72.974710][ T2331] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 73.143861][ T2331] usb 1-1: Using ep0 maxpacket: 16 [ 73.150826][ T2331] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 73.153770][ T2331] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 73.153809][ T2331] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 73.153833][ T2331] usb 1-1: Product: syz [ 73.153853][ T2331] usb 1-1: Manufacturer: syz [ 73.153873][ T2331] usb 1-1: SerialNumber: syz [ 73.161112][ T2331] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input8 [ 73.558214][ T6766] ** replaying previous printk message ** [ 73.558214][ T6766] ------------[ cut here ]------------ [ 73.558267][ T6766] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 73.558766][ T6766] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 73.565802][ T6766] Modules linked in: [ 73.566846][ T6766] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 73.570142][ T6766] Tainted: [W]=WARN [ 73.571176][ T6766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 73.573868][ T6766] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 73.576064][ T6766] pc : usb_submit_urb+0xa24/0x1470 [ 73.577567][ T6766] lr : usb_submit_urb+0xa24/0x1470 [ 73.578914][ T6766] sp : ffff8000a37a7430 [ 73.580039][ T6766] x29: ffff8000a37a7470 x28: 0000000000000000 x27: ffff80008c9436c8 [ 73.582344][ T6766] x26: ffff0000cef03300 x25: ffff80008c9436c0 x24: 0000000000000000 [ 73.584576][ T6766] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 73.586795][ T6766] x20: 0000000000000cc0 x19: ffff0000d1139a00 x18: 1fffe000337d6476 [ 73.588976][ T6766] x17: 0000000000000000 x16: ffff80008af01c68 x15: 0000000000000001 [ 73.591181][ T6766] x14: 1fffe000337d64e2 x13: 0000000000000000 x12: 0000000000000000 [ 73.593425][ T6766] x11: ffff6000337d64e3 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 73.595608][ T6766] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.597839][ T6766] x5 : ffff8000a37a6d78 x4 : ffff80008f776bc0 x3 : ffff8000807bba4c [ 73.600063][ T6766] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 73.602265][ T6766] Call trace: [ 73.603149][ T6766] usb_submit_urb+0xa24/0x1470 (P) [ 73.604578][ T6766] bcm5974_start_traffic+0xe0/0x154 [ 73.606120][ T6766] bcm5974_open+0x94/0x130 [ 73.607362][ T6766] input_open_device+0x178/0x2e4 [ 73.608717][ T6766] evdev_open+0x3c4/0x468 [ 73.609948][ T6766] chrdev_open+0x1b0/0x4b0 [ 73.611257][ T6766] do_dentry_open+0xb7c/0x1544 [ 73.612619][ T6766] vfs_open+0x44/0x2d4 [ 73.613737][ T6766] path_openat+0x2424/0x2c40 [ 73.615038][ T6766] do_filp_open+0x18c/0x36c [ 73.616316][ T6766] do_sys_openat2+0x11c/0x1b4 [ 73.617600][ T6766] __arm64_sys_openat+0x120/0x158 [ 73.618906][ T6766] invoke_syscall+0x98/0x2b8 [ 73.620181][ T6766] el0_svc_common+0x130/0x23c [ 73.621470][ T6766] do_el0_svc+0x48/0x58 [ 73.622658][ T6766] el0_svc+0x58/0x180 [ 73.623715][ T6766] el0t_64_sync_handler+0x84/0x12c [ 73.625061][ T6766] el0t_64_sync+0x198/0x19c [ 73.626303][ T6766] irq event stamp: 43726 [ 73.627455][ T6766] hardirqs last enabled at (43725): [] __console_unlock+0x70/0xc4 [ 73.630014][ T6766] hardirqs last disabled at (43726): [] el1_brk64+0x1c/0x48 [ 73.632521][ T6766] softirqs last enabled at (43098): [] handle_softirqs+0xaf8/0xc88 [ 73.635101][ T6766] softirqs last disabled at (42967): [] __do_softirq+0x14/0x20 [ 73.637592][ T6766] ---[ end trace 0000000000000000 ]--- [ 73.640123][ C1] ------------[ cut here ]------------ [ 73.640146][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 73.640677][ C1] WARNING: CPU: 1 PID: 6766 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 73.646423][ C1] Modules linked in: [ 73.647541][ C1] CPU: 1 UID: 0 PID: 6766 Comm: udevd Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 73.650942][ C1] Tainted: [W]=WARN [ 73.652051][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 73.654869][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 73.657076][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 73.658538][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 73.659954][ C1] sp : ffff8000800177e0 [ 73.661079][ C1] x29: ffff800080017820 x28: 0000000000000000 x27: ffff80008c9436c8 [ 73.663474][ C1] x26: ffff0000cef03300 x25: ffff80008c9436c0 x24: 0000000000000000 [ 73.665669][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 73.667835][ C1] x20: 0000000000000820 x19: ffff0000d1139a00 x18: 0000000000000000 [ 73.670142][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 73.672336][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 73.674609][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 38a80397295ed400 [ 73.676864][ C1] x8 : 38a80397295ed400 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.679089][ C1] x5 : ffff800080017138 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 73.681273][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 73.683499][ C1] Call trace: [ 73.684377][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 73.685806][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 73.687267][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 73.688803][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 73.690247][ C1] dummy_timer+0x648/0x33c8 [ 73.691489][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 73.692910][ C1] hrtimer_run_softirq+0x160/0x400 [ 73.694288][ C1] handle_softirqs+0x328/0xc88 [ 73.695607][ C1] __do_softirq+0x14/0x20 [ 73.696818][ C1] ____do_softirq+0x14/0x20 [ 73.698077][ C1] call_on_irq_stack+0x30/0x48 [ 73.699414][ C1] do_softirq_own_stack+0x20/0x2c [ 73.700799][ C1] __irq_exit_rcu+0x1b0/0x478 [ 73.702083][ C1] irq_exit_rcu+0x14/0x84 [ 73.703302][ C1] el1_interrupt+0x38/0x54 [ 73.704525][ C1] el1h_64_irq_handler+0x18/0x24 [ 73.705905][ C1] el1h_64_irq+0x6c/0x70 [ 73.707085][ C1] seqcount_lockdep_reader_access+0xd8/0xf8 (P) [ 73.708817][ C1] prepend_path+0x214/0x88c [ 73.710079][ C1] d_absolute_path+0xa0/0x148 [ 73.711448][ C1] tomoyo_realpath_from_path+0x258/0x4d4 [ 73.713035][ C1] tomoyo_path_number_perm+0x1a0/0x47c [ 73.714575][ C1] tomoyo_file_ioctl+0x2c/0x3c [ 73.715851][ C1] security_file_ioctl+0xe8/0x2f0 [ 73.717359][ C1] __arm64_sys_ioctl+0xa8/0x1c4 [ 73.718741][ C1] invoke_syscall+0x98/0x2b8 [ 73.720062][ C1] el0_svc_common+0x130/0x23c [ 73.721301][ C1] do_el0_svc+0x48/0x58 [ 73.722435][ C1] el0_svc+0x58/0x180 [ 73.723482][ C1] el0t_64_sync_handler+0x84/0x12c [ 73.724855][ C1] el0t_64_sync+0x198/0x19c [ 73.726150][ C1] irq event stamp: 43885 [ 73.727363][ C1] hardirqs last enabled at (43884): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 73.730182][ C1] hardirqs last disabled at (43885): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 73.732967][ C1] softirqs last enabled at (43850): [] local_bh_enable+0x10/0x34 [ 73.735618][ C1] softirqs last disabled at (43881): [] __do_softirq+0x14/0x20 [ 73.738138][ C1] ---[ end trace 0000000000000000 ]--- [ 73.739875][ C1] ------------[ cut here ]------------ [ 73.739894][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 73.740437][ C1] WARNING: CPU: 1 PID: 23 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa24/0x1470 [ 73.746079][ C1] Modules linked in: [ 73.747112][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Tainted: G W 6.16.0-rc7-syzkaller-g82af5ea7c611 #0 PREEMPT [ 73.750566][ C1] Tainted: [W]=WARN [ 73.751590][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 73.754269][ C1] pstate: 604000c5 (nZCv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 73.756357][ C1] pc : usb_submit_urb+0xa24/0x1470 [ 73.757750][ C1] lr : usb_submit_urb+0xa24/0x1470 [ 73.758972][ T2331] usb 1-1: USB disconnect, device number 8 [ 73.760605][ C1] sp : ffff800097b57500 [ 73.761763][ C1] x29: ffff800097b57540 x28: 0000000000000000 x27: ffff80008c9436c8 [ 73.764000][ C1] x26: ffff0000cef03300 x25: ffff80008c9436c0 x24: 0000000000000000 [ 73.766350][ C1] x23: ffff80008c94a440 x22: dfff800000000000 x21: 0000000000000002 [ 73.768483][ C1] x20: 0000000000000820 x19: ffff0000d1139a00 x18: 0000000000000000 [ 73.770621][ C1] x17: 0000000000000000 x16: ffff80008ae69508 x15: ffff700011ee0158 [ 73.772837][ C1] x14: 1ffff00011ee0158 x13: 0000000000000004 x12: ffffffffffffffff [ 73.775075][ C1] x11: ffff700011ee0158 x10: 0000000000ff0100 x9 : 5bd5b40157488000 [ 73.777319][ C1] x8 : 5bd5b40157488000 x7 : 0000000000000001 x6 : 0000000000000001 [ 73.779576][ C1] x5 : ffff800097b56e58 x4 : ffff80008f776bc0 x3 : ffff80008054bdfc [ 73.781838][ C1] x2 : 0000000000000000 x1 : 0000000100000100 x0 : 0000000000000000 [ 73.784089][ C1] Call trace: [ 73.785024][ C1] usb_submit_urb+0xa24/0x1470 (P) [ 73.786538][ C1] bcm5974_irq_trackpad+0x210/0xeb4 [ 73.787958][ C1] __usb_hcd_giveback_urb+0x308/0x570 [ 73.789447][ C1] usb_hcd_giveback_urb+0x100/0x364 [ 73.790860][ C1] dummy_timer+0x648/0x33c8 [ 73.792121][ C1] __hrtimer_run_queues+0x41c/0xb78 [ 73.793704][ C1] hrtimer_run_softirq+0x160/0x400 [ 73.795118][ C1] handle_softirqs+0x328/0xc88 [ 73.796399][ C1] run_ksoftirqd+0x70/0xc0 [ 73.797613][ C1] smpboot_thread_fn+0x4d8/0x9cc [ 73.798996][ C1] kthread+0x5fc/0x75c [ 73.800092][ C1] ret_from_fork+0x10/0x20 [ 73.801317][ C1] irq event stamp: 926235 [ 73.802512][ C1] hardirqs last enabled at (926234): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 73.805414][ C1] hardirqs last disabled at (926235): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 73.808282][ C1] softirqs last enabled at (926174): [] handle_softirqs+0xaf8/0xc88 [ 73.810925][ C1] softirqs last disabled at (926179): [] run_ksoftirqd+0x70/0xc0 [ 73.813514][ C1] ---[ end trace 0000000000000000 ]--- [ 73.815091][ C1] bcm5974 1-1:1.0: trackpad urb failed: -2 [ 73.833756][ T6766] bcm5974 1-1:1.0: could not read from device