Warning: Permanently added '10.128.0.99' (ED25519) to the list of known hosts. 1970/01/01 00:01:01 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:01 parsed 1 programs [ 61.868539][ T6591] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS 1970/01/01 00:01:01 executed programs: 0 [ 61.905469][ T5818] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 61.907664][ T5818] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 61.909981][ T5818] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 61.912941][ T5818] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 61.915074][ T5818] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 61.917127][ T5818] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 61.981494][ T6599] chnl_net:caif_netlink_parms(): no params data found [ 62.007021][ T6599] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.008857][ T6599] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.010599][ T6599] bridge_slave_0: entered allmulticast mode [ 62.012658][ T6599] bridge_slave_0: entered promiscuous mode [ 62.015323][ T6599] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.017092][ T6599] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.018777][ T6599] bridge_slave_1: entered allmulticast mode [ 62.020770][ T6599] bridge_slave_1: entered promiscuous mode [ 62.031539][ T6599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 62.036354][ T6599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 62.048259][ T6599] team0: Port device team_slave_0 added [ 62.050920][ T6599] team0: Port device team_slave_1 added [ 62.061968][ T6599] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 62.063689][ T6599] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.069583][ T6599] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 62.073663][ T6599] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 62.075315][ T6599] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 62.081295][ T6599] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 62.143472][ T6599] hsr_slave_0: entered promiscuous mode [ 62.182006][ T6599] hsr_slave_1: entered promiscuous mode [ 62.833646][ T6599] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 62.837624][ T6599] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 62.840834][ T6599] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 62.843910][ T6599] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 62.855906][ T6599] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.857713][ T6599] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.859782][ T6599] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.861490][ T6599] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.886542][ T6599] 8021q: adding VLAN 0 to HW filter on device bond0 [ 62.893107][ T1723] bridge0: port 1(bridge_slave_0) entered disabled state [ 62.895832][ T1723] bridge0: port 2(bridge_slave_1) entered disabled state [ 62.904091][ T6599] 8021q: adding VLAN 0 to HW filter on device team0 [ 62.911484][ T1723] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.913289][ T1723] bridge0: port 1(bridge_slave_0) entered forwarding state [ 62.915568][ T1723] bridge0: port 2(bridge_slave_1) entered blocking state [ 62.917593][ T1723] bridge0: port 2(bridge_slave_1) entered forwarding state [ 62.935835][ T6599] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 62.938344][ T6599] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 63.004613][ T6599] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 63.024073][ T6599] veth0_vlan: entered promiscuous mode [ 63.028724][ T6599] veth1_vlan: entered promiscuous mode [ 63.049127][ T6599] veth0_macvtap: entered promiscuous mode [ 63.052639][ T6599] veth1_macvtap: entered promiscuous mode [ 63.058660][ T6599] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 63.062675][ T6599] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 63.068689][ T6599] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.070713][ T6599] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.073961][ T6599] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.076253][ T6599] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 63.114638][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.116514][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.134462][ T1723] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 63.136643][ T1723] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 63.463468][ T6660] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 63.742931][ T6660] usb 1-1: Using ep0 maxpacket: 16 [ 63.881924][ T6660] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 64.013056][ T5818] Bluetooth: hci0: command tx timeout [ 64.061852][ T6660] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 64.065191][ T6660] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 64.067237][ T6660] usb 1-1: Product: syz [ 64.068117][ T6660] usb 1-1: Manufacturer: syz [ 64.069217][ T6660] usb 1-1: SerialNumber: syz [ 64.135508][ T6660] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input2 [ 64.493983][ T2285] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.495679][ T2285] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.581898][ T6620] ------------[ cut here ]------------ [ 64.583331][ T6620] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.585218][ T6620] WARNING: CPU: 1 PID: 6620 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.587478][ T6620] Modules linked in: [ 64.588314][ T6620] CPU: 1 PID: 6620 Comm: udevd Not tainted 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 64.590727][ T6620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 64.593142][ T6620] pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 64.595053][ T6620] pc : usb_submit_urb+0xa00/0x1434 [ 64.596205][ T6620] lr : usb_submit_urb+0xa00/0x1434 [ 64.597344][ T6620] sp : ffff80009fe973b0 [ 64.598352][ T6620] x29: ffff80009fe973f0 x28: ffff0000c7090000 x27: 0000000000000001 [ 64.600326][ T6620] x26: ffff80008c691fc8 x25: ffff0000ca0e8420 x24: ffff0000cfb50350 [ 64.602260][ T6620] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 64.604144][ T6620] x20: 0000000000000cc0 x19: ffff0000cfb50300 x18: 0000000000000008 [ 64.606108][ T6620] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 64.607969][ T6620] x14: 1fffe000367bde02 x13: 0000000000000000 x12: 0000000000000000 [ 64.609824][ T6620] x11: 0000000000000002 x10: 0000000000ff0100 x9 : edcd26f6e628df00 [ 64.611723][ T6620] x8 : edcd26f6e628df00 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.613746][ T6620] x5 : ffff80009fe96b18 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 64.615642][ T6620] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 64.617514][ T6620] Call trace: [ 64.618284][ T6620] usb_submit_urb+0xa00/0x1434 [ 64.619371][ T6620] bcm5974_start_traffic+0xe0/0x154 [ 64.620637][ T6620] bcm5974_open+0x98/0x134 [ 64.621717][ T6620] input_open_device+0x170/0x29c [ 64.622972][ T6620] evdev_open+0x308/0x4b4 [ 64.624037][ T6620] chrdev_open+0x3c8/0x4dc [ 64.625068][ T6620] do_dentry_open+0x778/0x12b4 [ 64.626229][ T6620] vfs_open+0x7c/0x90 [ 64.627090][ T6620] path_openat+0x1f6c/0x2830 [ 64.628316][ T6620] do_filp_open+0x1bc/0x3cc [ 64.629308][ T6620] do_sys_openat2+0x124/0x1b8 [ 64.630405][ T6620] __arm64_sys_openat+0x1f0/0x240 [ 64.631657][ T6620] invoke_syscall+0x98/0x2b8 [ 64.632818][ T6620] el0_svc_common+0x130/0x23c [ 64.633987][ T6620] do_el0_svc+0x48/0x58 [ 64.635046][ T6620] el0_svc+0x54/0x168 [ 64.636083][ T6620] el0t_64_sync_handler+0x84/0xfc [ 64.637396][ T6620] el0t_64_sync+0x190/0x194 [ 64.638583][ T6620] irq event stamp: 6068 [ 64.639632][ T6620] hardirqs last enabled at (6067): [] console_unlock+0x17c/0x3d4 [ 64.641908][ T6620] hardirqs last disabled at (6068): [] el1_dbg+0x24/0x80 [ 64.643958][ T6620] softirqs last enabled at (5478): [] local_bh_enable+0x10/0x34 [ 64.646170][ T6620] softirqs last disabled at (5476): [] local_bh_disable+0x10/0x34 [ 64.648363][ T6620] ---[ end trace 0000000000000000 ]--- [ 64.681747][ C1] ------------[ cut here ]------------ [ 64.683447][ C1] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 64.685338][ C1] WARNING: CPU: 1 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 64.687693][ C1] Modules linked in: [ 64.688698][ C1] CPU: 1 PID: 0 Comm: swapper/1 Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 64.691362][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 64.693869][ C1] pstate: 604010c5 (nZCv daIF +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 64.695680][ C1] pc : usb_submit_urb+0xa00/0x1434 [ 64.696951][ C1] lr : usb_submit_urb+0xa00/0x1434 [ 64.698243][ C1] sp : ffff8000800176e0 [ 64.699269][ C1] x29: ffff800080017720 x28: ffff0000c7090000 x27: 0000000000000001 [ 64.701293][ C1] x26: ffff80008c691fc8 x25: ffff0000ca0e8420 x24: ffff0000cfb50350 [ 64.703277][ C1] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 64.705170][ C1] x20: 0000000000000820 x19: ffff0000cfb50300 x18: 0000000000000008 [ 64.707191][ C1] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 64.709069][ C1] x14: 1fffe000367bde02 x13: 0000000000000000 x12: 0000000000000000 [ 64.710859][ C1] x11: 0000000000000103 x10: 0000000000ff0100 x9 : 9f8858258ffe2000 [ 64.712747][ C1] x8 : 9f8858258ffe2000 x7 : 0000000000000001 x6 : 0000000000000001 [ 64.714817][ C1] x5 : ffff800080016e58 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 64.716673][ C1] x2 : 0000000000000001 x1 : 0000000000000101 x0 : 0000000000000000 [ 64.718570][ C1] Call trace: [ 64.719361][ C1] usb_submit_urb+0xa00/0x1434 [ 64.720388][ C1] bcm5974_irq_trackpad+0x20c/0xdd0 [ 64.721606][ C1] __usb_hcd_giveback_urb+0x2e0/0x504 [ 64.722845][ C1] usb_hcd_giveback_urb+0x108/0x3ac [ 64.724050][ C1] dummy_timer+0x630/0x348c [ 64.725151][ C1] call_timer_fn+0x1b4/0x93c [ 64.726274][ C1] __run_timer_base+0x56c/0x7b4 [ 64.727377][ C1] run_timer_softirq+0xcc/0x194 [ 64.728690][ C1] __do_softirq+0x2e4/0xd2c [ 64.729761][ C1] ____do_softirq+0x14/0x20 [ 64.730853][ C1] call_on_irq_stack+0x24/0x4c [ 64.732014][ C1] do_softirq_own_stack+0x20/0x2c [ 64.733318][ C1] __irq_exit_rcu+0x1d8/0x434 [ 64.734471][ C1] irq_exit_rcu+0x14/0x84 [ 64.735491][ C1] el1_interrupt+0x38/0x68 [ 64.736532][ C1] el1h_64_irq_handler+0x18/0x24 [ 64.737673][ C1] el1h_64_irq+0x64/0x68 [ 64.738664][ C1] arch_local_irq_enable+0x8/0xc [ 64.739845][ C1] do_idle+0x1f0/0x4e4 [ 64.740922][ C1] cpu_startup_entry+0x5c/0x74 [ 64.742080][ C1] secondary_start_kernel+0x1bc/0x1e4 [ 64.743302][ C1] __secondary_switched+0xb8/0xbc [ 64.744445][ C1] irq event stamp: 250169 [ 64.745522][ C1] hardirqs last enabled at (250168): [] _raw_spin_unlock_irq+0x30/0x80 [ 64.747933][ C1] hardirqs last disabled at (250169): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 64.750477][ C1] softirqs last enabled at (250088): [] __do_softirq+0xb10/0xd2c [ 64.752831][ C1] softirqs last disabled at (250165): [] ____do_softirq+0x14/0x20 [ 64.754993][ C1] ---[ end trace 0000000000000000 ]--- [ 64.856128][ T6259] usb 1-1: USB disconnect, device number 2 [ 64.864051][ T6620] bcm5974 1-1:1.0: could not read from device [ 65.662133][ T6660] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 65.911816][ T6660] usb 1-1: Using ep0 maxpacket: 16 [ 66.042269][ T6660] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 66.081846][ T5818] Bluetooth: hci0: command tx timeout [ 66.222789][ T6660] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 66.225019][ T6660] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 66.227020][ T6660] usb 1-1: Product: syz [ 66.227969][ T6660] usb 1-1: Manufacturer: syz [ 66.228991][ T6660] usb 1-1: SerialNumber: syz [ 66.273744][ T6660] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input3 [ 66.711855][ T6620] ------------[ cut here ]------------ [ 66.713226][ T6620] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 66.715078][ T6620] WARNING: CPU: 0 PID: 6620 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 66.717240][ T6620] Modules linked in: [ 66.718167][ T6620] CPU: 0 PID: 6620 Comm: udevd Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 66.720891][ T6620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 66.723372][ T6620] pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 66.725273][ T6620] pc : usb_submit_urb+0xa00/0x1434 [ 66.726577][ T6620] lr : usb_submit_urb+0xa00/0x1434 [ 66.727817][ T6620] sp : ffff80009fe973b0 [ 66.728783][ T6620] x29: ffff80009fe973f0 x28: ffff0000d6fba000 x27: 0000000000000001 [ 66.730683][ T6620] x26: ffff80008c691fc8 x25: ffff0000cdf56a00 x24: ffff0000d0e76950 [ 66.732601][ T6620] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 66.734513][ T6620] x20: 0000000000000cc0 x19: ffff0000d0e76900 x18: 0000000000000008 [ 66.736455][ T6620] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 66.738331][ T6620] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 66.740328][ T6620] x11: 0000000000000002 x10: 0000000000ff0100 x9 : edcd26f6e628df00 [ 66.742347][ T6620] x8 : edcd26f6e628df00 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.744180][ T6620] x5 : ffff80009fe96b18 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 66.746106][ T6620] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 66.748085][ T6620] Call trace: [ 66.748906][ T6620] usb_submit_urb+0xa00/0x1434 [ 66.750043][ T6620] bcm5974_start_traffic+0xe0/0x154 [ 66.751233][ T6620] bcm5974_open+0x98/0x134 [ 66.752384][ T6620] input_open_device+0x170/0x29c [ 66.753637][ T6620] evdev_open+0x308/0x4b4 [ 66.754590][ T6620] chrdev_open+0x3c8/0x4dc [ 66.755700][ T6620] do_dentry_open+0x778/0x12b4 [ 66.756932][ T6620] vfs_open+0x7c/0x90 [ 66.757875][ T6620] path_openat+0x1f6c/0x2830 [ 66.758954][ T6620] do_filp_open+0x1bc/0x3cc [ 66.760054][ T6620] do_sys_openat2+0x124/0x1b8 [ 66.761198][ T6620] __arm64_sys_openat+0x1f0/0x240 [ 66.762360][ T6620] invoke_syscall+0x98/0x2b8 [ 66.763446][ T6620] el0_svc_common+0x130/0x23c [ 66.764658][ T6620] do_el0_svc+0x48/0x58 [ 66.765640][ T6620] el0_svc+0x54/0x168 [ 66.766594][ T6620] el0t_64_sync_handler+0x84/0xfc [ 66.767897][ T6620] el0t_64_sync+0x190/0x194 [ 66.769013][ T6620] irq event stamp: 14004 [ 66.769980][ T6620] hardirqs last enabled at (14003): [] console_unlock+0x17c/0x3d4 [ 66.772311][ T6620] hardirqs last disabled at (14004): [] el1_dbg+0x24/0x80 [ 66.774385][ T6620] softirqs last enabled at (11140): [] __do_softirq+0xb10/0xd2c [ 66.776618][ T6620] softirqs last disabled at (11103): [] ____do_softirq+0x14/0x20 [ 66.778992][ T6620] ---[ end trace 0000000000000000 ]--- [ 66.791782][ C0] ------------[ cut here ]------------ [ 66.793118][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 66.794963][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 66.797112][ C0] Modules linked in: [ 66.798073][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 66.800685][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 66.803071][ C0] pstate: 604010c5 (nZCv daIF +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 66.804896][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 66.806109][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 66.807347][ C0] sp : ffff8000800076e0 [ 66.808343][ C0] x29: ffff800080007720 x28: ffff0000d6fba000 x27: 0000000000000001 [ 66.810264][ C0] x26: ffff80008c691fc8 x25: ffff0000cdf56a00 x24: ffff0000d0e76950 [ 66.812254][ C0] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 66.814144][ C0] x20: 0000000000000820 x19: ffff0000d0e76900 x18: 0000000000000008 [ 66.816178][ C0] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 66.818122][ C0] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 66.820127][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : c991cecb17f5e400 [ 66.822006][ C0] x8 : c991cecb17f5e400 x7 : 0000000000000001 x6 : 0000000000000001 [ 66.823960][ C0] x5 : ffff800080006e58 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 66.825915][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 66.827717][ C0] Call trace: [ 66.828479][ C0] usb_submit_urb+0xa00/0x1434 [ 66.829686][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 66.830926][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 66.832310][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 66.833599][ C0] dummy_timer+0x630/0x348c [ 66.834754][ C0] call_timer_fn+0x1b4/0x93c [ 66.835855][ C0] __run_timer_base+0x56c/0x7b4 [ 66.836953][ C0] run_timer_softirq+0xcc/0x194 [ 66.838099][ C0] __do_softirq+0x2e4/0xd2c [ 66.839262][ C0] ____do_softirq+0x14/0x20 [ 66.840357][ C0] call_on_irq_stack+0x24/0x4c [ 66.841555][ C0] do_softirq_own_stack+0x20/0x2c [ 66.842732][ C0] __irq_exit_rcu+0x1d8/0x434 [ 66.843791][ C0] irq_exit_rcu+0x14/0x84 [ 66.844815][ C0] el1_interrupt+0x38/0x68 [ 66.845925][ C0] el1h_64_irq_handler+0x18/0x24 [ 66.847175][ C0] el1h_64_irq+0x64/0x68 [ 66.848157][ C0] arch_local_irq_enable+0x8/0xc [ 66.849292][ C0] do_idle+0x1f0/0x4e4 [ 66.850307][ C0] cpu_startup_entry+0x5c/0x74 [ 66.851545][ C0] rest_init+0x2dc/0x2f4 [ 66.852585][ C0] start_kernel+0x3f0/0x4f0 [ 66.853717][ C0] __primary_switched+0x84/0x8c [ 66.854864][ C0] irq event stamp: 319881 [ 66.855911][ C0] hardirqs last enabled at (319880): [] _raw_spin_unlock_irq+0x30/0x80 [ 66.858315][ C0] hardirqs last disabled at (319881): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 66.860654][ C0] softirqs last enabled at (319846): [] __do_softirq+0xb10/0xd2c [ 66.862837][ C0] softirqs last disabled at (319877): [] ____do_softirq+0x14/0x20 [ 66.865159][ C0] ---[ end trace 0000000000000000 ]--- [ 66.915009][ T1723] usb 1-1: USB disconnect, device number 3 [ 66.931925][ T6620] bcm5974 1-1:1.0: could not read from device 1970/01/01 00:01:07 executed programs: 2 [ 67.691782][ T2193] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 67.931783][ T2193] usb 1-1: Using ep0 maxpacket: 16 [ 68.052683][ T2193] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 68.162303][ T5818] Bluetooth: hci0: command tx timeout [ 68.211829][ T2193] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 68.213986][ T2193] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 68.215974][ T2193] usb 1-1: Product: syz [ 68.216879][ T2193] usb 1-1: Manufacturer: syz [ 68.217999][ T2193] usb 1-1: SerialNumber: syz [ 68.263375][ T2193] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input4 [ 68.701918][ T6955] ------------[ cut here ]------------ [ 68.703405][ T6955] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.705189][ T6955] WARNING: CPU: 0 PID: 6955 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 68.707344][ T6955] Modules linked in: [ 68.708269][ T6955] CPU: 0 PID: 6955 Comm: udevd Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 68.710767][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 68.713151][ T6955] pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 68.714849][ T6955] pc : usb_submit_urb+0xa00/0x1434 [ 68.716069][ T6955] lr : usb_submit_urb+0xa00/0x1434 [ 68.717385][ T6955] sp : ffff80009f8f73b0 [ 68.718404][ T6955] x29: ffff80009f8f73f0 x28: ffff0000d0784000 x27: 0000000000000001 [ 68.720401][ T6955] x26: ffff80008c691fc8 x25: ffff0000c264d440 x24: ffff0000d2245750 [ 68.722306][ T6955] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 68.724296][ T6955] x20: 0000000000000cc0 x19: ffff0000d2245700 x18: 0000000000000008 [ 68.726292][ T6955] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 68.728226][ T6955] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 68.730198][ T6955] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 6aaf5e38747edd00 [ 68.732150][ T6955] x8 : 6aaf5e38747edd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.734096][ T6955] x5 : ffff80009f8f6b18 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 68.736039][ T6955] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 68.738146][ T6955] Call trace: [ 68.738950][ T6955] usb_submit_urb+0xa00/0x1434 [ 68.740129][ T6955] bcm5974_start_traffic+0xe0/0x154 [ 68.741362][ T6955] bcm5974_open+0x98/0x134 [ 68.742441][ T6955] input_open_device+0x170/0x29c [ 68.743669][ T6955] evdev_open+0x308/0x4b4 [ 68.744745][ T6955] chrdev_open+0x3c8/0x4dc [ 68.745810][ T6955] do_dentry_open+0x778/0x12b4 [ 68.746999][ T6955] vfs_open+0x7c/0x90 [ 68.747986][ T6955] path_openat+0x1f6c/0x2830 [ 68.749106][ T6955] do_filp_open+0x1bc/0x3cc [ 68.750228][ T6955] do_sys_openat2+0x124/0x1b8 [ 68.751336][ T6955] __arm64_sys_openat+0x1f0/0x240 [ 68.752576][ T6955] invoke_syscall+0x98/0x2b8 [ 68.753765][ T6955] el0_svc_common+0x130/0x23c [ 68.754868][ T6955] do_el0_svc+0x48/0x58 [ 68.755922][ T6955] el0_svc+0x54/0x168 [ 68.756902][ T6955] el0t_64_sync_handler+0x84/0xfc [ 68.758066][ T6955] el0t_64_sync+0x190/0x194 [ 68.759155][ T6955] irq event stamp: 5604 [ 68.760170][ T6955] hardirqs last enabled at (5603): [] console_unlock+0x17c/0x3d4 [ 68.762466][ T6955] hardirqs last disabled at (5604): [] el1_dbg+0x24/0x80 [ 68.764497][ T6955] softirqs last enabled at (2330): [] local_bh_enable+0x10/0x34 [ 68.766655][ T6955] softirqs last disabled at (2328): [] local_bh_disable+0x10/0x34 [ 68.768802][ T6955] ---[ end trace 0000000000000000 ]--- [ 68.781747][ C0] ------------[ cut here ]------------ [ 68.783183][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 68.785011][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 68.787225][ C0] Modules linked in: [ 68.788143][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 68.790752][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 68.793068][ C0] pstate: 604010c5 (nZCv daIF +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 68.794942][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 68.796296][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 68.797580][ C0] sp : ffff8000800076e0 [ 68.798576][ C0] x29: ffff800080007720 x28: ffff0000d0784000 x27: 0000000000000001 [ 68.800491][ C0] x26: ffff80008c691fc8 x25: ffff0000c264d440 x24: ffff0000d2245750 [ 68.802432][ C0] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 68.804399][ C0] x20: 0000000000000820 x19: ffff0000d2245700 x18: 0000000000000008 [ 68.806381][ C0] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 68.808310][ C0] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 68.810296][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : c991cecb17f5e400 [ 68.812221][ C0] x8 : c991cecb17f5e400 x7 : 0000000000000001 x6 : 0000000000000001 [ 68.814218][ C0] x5 : ffff800080006e58 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 68.816086][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 68.818001][ C0] Call trace: [ 68.818745][ C0] usb_submit_urb+0xa00/0x1434 [ 68.819986][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 68.821223][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 68.822577][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 68.823820][ C0] dummy_timer+0x630/0x348c [ 68.824883][ C0] call_timer_fn+0x1b4/0x93c [ 68.825961][ C0] __run_timer_base+0x56c/0x7b4 [ 68.827173][ C0] run_timer_softirq+0xcc/0x194 [ 68.828353][ C0] __do_softirq+0x2e4/0xd2c [ 68.829484][ C0] ____do_softirq+0x14/0x20 [ 68.830484][ C0] call_on_irq_stack+0x24/0x4c [ 68.831646][ C0] do_softirq_own_stack+0x20/0x2c [ 68.832914][ C0] __irq_exit_rcu+0x1d8/0x434 [ 68.834051][ C0] irq_exit_rcu+0x14/0x84 [ 68.835071][ C0] el1_interrupt+0x38/0x68 [ 68.836073][ C0] el1h_64_irq_handler+0x18/0x24 [ 68.837212][ C0] el1h_64_irq+0x64/0x68 [ 68.838201][ C0] arch_local_irq_enable+0x8/0xc [ 68.839378][ C0] do_idle+0x1f0/0x4e4 [ 68.840492][ C0] cpu_startup_entry+0x5c/0x74 [ 68.841643][ C0] rest_init+0x2dc/0x2f4 [ 68.842723][ C0] start_kernel+0x3f0/0x4f0 [ 68.843877][ C0] __primary_switched+0x84/0x8c [ 68.845081][ C0] irq event stamp: 335761 [ 68.846033][ C0] hardirqs last enabled at (335760): [] _raw_spin_unlock_irq+0x30/0x80 [ 68.848442][ C0] hardirqs last disabled at (335761): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 68.850874][ C0] softirqs last enabled at (335720): [] __do_softirq+0xb10/0xd2c [ 68.853185][ C0] softirqs last disabled at (335757): [] ____do_softirq+0x14/0x20 [ 68.855494][ C0] ---[ end trace 0000000000000000 ]--- [ 68.903876][ T1723] usb 1-1: USB disconnect, device number 4 [ 68.911976][ T6955] bcm5974 1-1:1.0: could not read from device [ 69.623407][ T7] cfg80211: failed to load regulatory.db [ 69.691761][ T2193] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 69.941774][ T2193] usb 1-1: Using ep0 maxpacket: 16 [ 70.061893][ T2193] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 70.221840][ T2193] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 70.223961][ T2193] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 70.225995][ T2193] usb 1-1: Product: syz [ 70.226998][ T2193] usb 1-1: Manufacturer: syz [ 70.228040][ T2193] usb 1-1: SerialNumber: syz [ 70.241806][ T5818] Bluetooth: hci0: command tx timeout [ 70.263389][ T2193] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input5 [ 70.702207][ T6955] ------------[ cut here ]------------ [ 70.703725][ T6955] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.705620][ T6955] WARNING: CPU: 0 PID: 6955 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 70.707947][ T6955] Modules linked in: [ 70.708916][ T6955] CPU: 0 PID: 6955 Comm: udevd Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 70.711377][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 70.713667][ T6955] pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 70.715542][ T6955] pc : usb_submit_urb+0xa00/0x1434 [ 70.716817][ T6955] lr : usb_submit_urb+0xa00/0x1434 [ 70.718160][ T6955] sp : ffff80009f8f73b0 [ 70.719214][ T6955] x29: ffff80009f8f73f0 x28: ffff0000d8732000 x27: 0000000000000001 [ 70.721098][ T6955] x26: ffff80008c691fc8 x25: ffff0000c9b47400 x24: ffff0000c1d6a850 [ 70.723067][ T6955] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 70.725062][ T6955] x20: 0000000000000cc0 x19: ffff0000c1d6a800 x18: 0000000000000008 [ 70.727077][ T6955] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 70.728997][ T6955] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 70.730952][ T6955] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 6aaf5e38747edd00 [ 70.733012][ T6955] x8 : 6aaf5e38747edd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.735032][ T6955] x5 : ffff80009f8f6b18 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 70.736953][ T6955] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 70.738710][ T6955] Call trace: [ 70.739510][ T6955] usb_submit_urb+0xa00/0x1434 [ 70.740679][ T6955] bcm5974_start_traffic+0xe0/0x154 [ 70.742000][ T6955] bcm5974_open+0x98/0x134 [ 70.743028][ T6955] input_open_device+0x170/0x29c [ 70.744189][ T6955] evdev_open+0x308/0x4b4 [ 70.745166][ T6955] chrdev_open+0x3c8/0x4dc [ 70.746198][ T6955] do_dentry_open+0x778/0x12b4 [ 70.747366][ T6955] vfs_open+0x7c/0x90 [ 70.748380][ T6955] path_openat+0x1f6c/0x2830 [ 70.749504][ T6955] do_filp_open+0x1bc/0x3cc [ 70.750571][ T6955] do_sys_openat2+0x124/0x1b8 [ 70.751673][ T6955] __arm64_sys_openat+0x1f0/0x240 [ 70.752905][ T6955] invoke_syscall+0x98/0x2b8 [ 70.754055][ T6955] el0_svc_common+0x130/0x23c [ 70.755244][ T6955] do_el0_svc+0x48/0x58 [ 70.756205][ T6955] el0_svc+0x54/0x168 [ 70.757177][ T6955] el0t_64_sync_handler+0x84/0xfc [ 70.758435][ T6955] el0t_64_sync+0x190/0x194 [ 70.759545][ T6955] irq event stamp: 10996 [ 70.760711][ T6955] hardirqs last enabled at (10995): [] console_unlock+0x17c/0x3d4 [ 70.763011][ T6955] hardirqs last disabled at (10996): [] el1_dbg+0x24/0x80 [ 70.765163][ T6955] softirqs last enabled at (9038): [] __do_softirq+0xb10/0xd2c [ 70.767438][ T6955] softirqs last disabled at (9029): [] ____do_softirq+0x14/0x20 [ 70.769595][ T6955] ---[ end trace 0000000000000000 ]--- [ 70.781777][ C0] ------------[ cut here ]------------ [ 70.783125][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 70.785066][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 70.787314][ C0] Modules linked in: [ 70.788249][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 70.790783][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 70.793163][ C0] pstate: 604010c5 (nZCv daIF +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 70.795007][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 70.796247][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 70.797520][ C0] sp : ffff8000800076e0 [ 70.798557][ C0] x29: ffff800080007720 x28: ffff0000d8732000 x27: 0000000000000001 [ 70.800517][ C0] x26: ffff80008c691fc8 x25: ffff0000c9b47400 x24: ffff0000c1d6a850 [ 70.802517][ C0] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 70.804383][ C0] x20: 0000000000000820 x19: ffff0000c1d6a800 x18: 0000000000000008 [ 70.806354][ C0] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 70.808335][ C0] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 70.810334][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : c991cecb17f5e400 [ 70.812200][ C0] x8 : c991cecb17f5e400 x7 : 0000000000000001 x6 : 0000000000000001 [ 70.814153][ C0] x5 : ffff800080006e58 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 70.815997][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 70.817911][ C0] Call trace: [ 70.818733][ C0] usb_submit_urb+0xa00/0x1434 [ 70.819861][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 70.821210][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 70.822503][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 70.823769][ C0] dummy_timer+0x630/0x348c [ 70.824929][ C0] call_timer_fn+0x1b4/0x93c [ 70.826053][ C0] __run_timer_base+0x56c/0x7b4 [ 70.827210][ C0] run_timer_softirq+0xcc/0x194 [ 70.828384][ C0] __do_softirq+0x2e4/0xd2c [ 70.829459][ C0] ____do_softirq+0x14/0x20 [ 70.830540][ C0] call_on_irq_stack+0x24/0x4c [ 70.831641][ C0] do_softirq_own_stack+0x20/0x2c [ 70.832838][ C0] __irq_exit_rcu+0x1d8/0x434 [ 70.833921][ C0] irq_exit_rcu+0x14/0x84 [ 70.834932][ C0] el1_interrupt+0x38/0x68 [ 70.836037][ C0] el1h_64_irq_handler+0x18/0x24 [ 70.837224][ C0] el1h_64_irq+0x64/0x68 [ 70.838246][ C0] arch_local_irq_enable+0x8/0xc [ 70.839444][ C0] do_idle+0x1f0/0x4e4 [ 70.840385][ C0] cpu_startup_entry+0x5c/0x74 [ 70.841497][ C0] rest_init+0x2dc/0x2f4 [ 70.842567][ C0] start_kernel+0x3f0/0x4f0 [ 70.843686][ C0] __primary_switched+0x84/0x8c [ 70.844832][ C0] irq event stamp: 355829 [ 70.845799][ C0] hardirqs last enabled at (355828): [] _raw_spin_unlock_irq+0x30/0x80 [ 70.848109][ C0] hardirqs last disabled at (355829): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 70.850560][ C0] softirqs last enabled at (355676): [] __do_softirq+0xb10/0xd2c [ 70.852799][ C0] softirqs last disabled at (355825): [] ____do_softirq+0x14/0x20 [ 70.855082][ C0] ---[ end trace 0000000000000000 ]--- [ 70.903950][ T7] usb 1-1: USB disconnect, device number 5 [ 70.911864][ T6955] bcm5974 1-1:1.0: could not read from device [ 71.682716][ T7] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 71.931785][ T7] usb 1-1: Using ep0 maxpacket: 16 [ 72.071820][ T7] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 72.271879][ T7] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 72.274340][ T7] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 72.276359][ T7] usb 1-1: Product: syz [ 72.277279][ T7] usb 1-1: Manufacturer: syz [ 72.278366][ T7] usb 1-1: SerialNumber: syz [ 72.333349][ T7] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input6 [ 72.771905][ T6955] ------------[ cut here ]------------ [ 72.773466][ T6955] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.775149][ T6955] WARNING: CPU: 0 PID: 6955 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 72.777562][ T6955] Modules linked in: [ 72.778547][ T6955] CPU: 0 PID: 6955 Comm: udevd Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 72.781276][ T6955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.783832][ T6955] pstate: 60401005 (nZCv daif +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 72.785814][ T6955] pc : usb_submit_urb+0xa00/0x1434 [ 72.787085][ T6955] lr : usb_submit_urb+0xa00/0x1434 [ 72.788321][ T6955] sp : ffff80009f8f73b0 [ 72.789421][ T6955] x29: ffff80009f8f73f0 x28: ffff0000e3c5b000 x27: 0000000000000001 [ 72.791392][ T6955] x26: ffff80008c691fc8 x25: ffff0000c2a721c0 x24: ffff0000d0ac7350 [ 72.793433][ T6955] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 72.795444][ T6955] x20: 0000000000000cc0 x19: ffff0000d0ac7300 x18: 0000000000000008 [ 72.797395][ T6955] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 72.799295][ T6955] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 72.801339][ T6955] x11: 0000000000000002 x10: 0000000000ff0100 x9 : 6aaf5e38747edd00 [ 72.803302][ T6955] x8 : 6aaf5e38747edd00 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.805230][ T6955] x5 : ffff80009f8f6b18 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 72.807136][ T6955] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 72.809159][ T6955] Call trace: [ 72.809964][ T6955] usb_submit_urb+0xa00/0x1434 [ 72.811149][ T6955] bcm5974_start_traffic+0xe0/0x154 [ 72.812419][ T6955] bcm5974_open+0x98/0x134 [ 72.813491][ T6955] input_open_device+0x170/0x29c [ 72.814689][ T6955] evdev_open+0x308/0x4b4 [ 72.815760][ T6955] chrdev_open+0x3c8/0x4dc [ 72.816817][ T6955] do_dentry_open+0x778/0x12b4 [ 72.818024][ T6955] vfs_open+0x7c/0x90 [ 72.818976][ T6955] path_openat+0x1f6c/0x2830 [ 72.820067][ T6955] do_filp_open+0x1bc/0x3cc [ 72.821168][ T6955] do_sys_openat2+0x124/0x1b8 [ 72.822330][ T6955] __arm64_sys_openat+0x1f0/0x240 [ 72.823537][ T6955] invoke_syscall+0x98/0x2b8 [ 72.824653][ T6955] el0_svc_common+0x130/0x23c [ 72.825791][ T6955] do_el0_svc+0x48/0x58 [ 72.826829][ T6955] el0_svc+0x54/0x168 [ 72.827770][ T6955] el0t_64_sync_handler+0x84/0xfc [ 72.829013][ T6955] el0t_64_sync+0x190/0x194 [ 72.830094][ T6955] irq event stamp: 16518 [ 72.831129][ T6955] hardirqs last enabled at (16517): [] console_unlock+0x17c/0x3d4 [ 72.833595][ T6955] hardirqs last disabled at (16518): [] el1_dbg+0x24/0x80 [ 72.835688][ T6955] softirqs last enabled at (16312): [] local_bh_enable+0x10/0x34 [ 72.837886][ T6955] softirqs last disabled at (16310): [] local_bh_disable+0x10/0x34 [ 72.840339][ T6955] ---[ end trace 0000000000000000 ]--- [ 72.861772][ C0] ------------[ cut here ]------------ [ 72.863159][ C0] usb 1-1: BOGUS urb xfer, pipe 1 != type 3 [ 72.864961][ C0] WARNING: CPU: 0 PID: 0 at drivers/usb/core/urb.c:504 usb_submit_urb+0xa00/0x1434 [ 72.867091][ C0] Modules linked in: [ 72.868032][ C0] CPU: 0 PID: 0 Comm: swapper/0 Tainted: G W 6.9.0-rc4-syzkaller-00050-g6a71d2909427 #0 [ 72.870634][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.873091][ C0] pstate: 604010c5 (nZCv daIF +PAN -UAO -TCO -DIT +SSBS BTYPE=--) [ 72.875066][ C0] pc : usb_submit_urb+0xa00/0x1434 [ 72.876223][ C0] lr : usb_submit_urb+0xa00/0x1434 [ 72.877454][ C0] sp : ffff8000800076e0 [ 72.878467][ C0] x29: ffff800080007720 x28: ffff0000e3c5b000 x27: 0000000000000001 [ 72.880389][ C0] x26: ffff80008c691fc8 x25: ffff0000c2a721c0 x24: ffff0000d0ac7350 [ 72.882391][ C0] x23: ffff80008c698ae0 x22: dfff800000000000 x21: 0000000000000002 [ 72.884347][ C0] x20: 0000000000000820 x19: ffff0000d0ac7300 x18: 0000000000000008 [ 72.886226][ C0] x17: 0000000000000000 x16: ffff80008ae725bc x15: 0000000000000001 [ 72.888189][ C0] x14: 1fffe000367b9602 x13: 0000000000000000 x12: 0000000000000000 [ 72.890115][ C0] x11: 0000000000000103 x10: 0000000000ff0100 x9 : c991cecb17f5e400 [ 72.892085][ C0] x8 : c991cecb17f5e400 x7 : 0000000000000001 x6 : 0000000000000001 [ 72.894085][ C0] x5 : ffff800080006e58 x4 : ffff80008ef650a0 x3 : ffff8000805e616c [ 72.896048][ C0] x2 : 0000000000000001 x1 : 0000000100000101 x0 : 0000000000000000 [ 72.897961][ C0] Call trace: [ 72.898758][ C0] usb_submit_urb+0xa00/0x1434 [ 72.900007][ C0] bcm5974_irq_trackpad+0x20c/0xdd0 [ 72.901288][ C0] __usb_hcd_giveback_urb+0x2e0/0x504 [ 72.902666][ C0] usb_hcd_giveback_urb+0x108/0x3ac [ 72.903989][ C0] dummy_timer+0x630/0x348c [ 72.905059][ C0] call_timer_fn+0x1b4/0x93c [ 72.906283][ C0] __run_timer_base+0x56c/0x7b4 [ 72.907492][ C0] run_timer_softirq+0xcc/0x194 [ 72.908778][ C0] __do_softirq+0x2e4/0xd2c [ 72.909894][ C0] ____do_softirq+0x14/0x20 [ 72.910943][ C0] call_on_irq_stack+0x24/0x4c [ 72.912115][ C0] do_softirq_own_stack+0x20/0x2c [ 72.913350][ C0] __irq_exit_rcu+0x1d8/0x434 [ 72.914538][ C0] irq_exit_rcu+0x14/0x84 [ 72.915635][ C0] el1_interrupt+0x38/0x68 [ 72.916654][ C0] el1h_64_irq_handler+0x18/0x24 [ 72.917815][ C0] el1h_64_irq+0x64/0x68 [ 72.918831][ C0] arch_local_irq_enable+0x8/0xc [ 72.919988][ C0] do_idle+0x1f0/0x4e4 [ 72.920897][ C0] cpu_startup_entry+0x5c/0x74 [ 72.922066][ C0] rest_init+0x2dc/0x2f4 [ 72.923067][ C0] start_kernel+0x3f0/0x4f0 [ 72.924169][ C0] __primary_switched+0x84/0x8c [ 72.925393][ C0] irq event stamp: 372551 [ 72.926467][ C0] hardirqs last enabled at (372550): [] _raw_spin_unlock_irq+0x30/0x80 [ 72.929149][ C0] hardirqs last disabled at (372551): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 72.931300][ C0] softirqs last enabled at (372534): [] __do_softirq+0xb10/0xd2c [ 72.932981][ C0] softirqs last disabled at (372547): [] ____do_softirq+0x14/0x20 [ 72.934656][ C0] ---[ end trace 0000000000000000 ]--- [ 72.974165][ T2193] usb 1-1: USB disconnect, device number 6 [ 73.001882][ T6955] bcm5974 1-1:1.0: could not read from device 1970/01/01 00:01:13 executed programs: 5 [ 73.751814][ T2193] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 73.991776][ T2193] usb 1-1: Using ep0 maxpacket: 16 [ 74.111913][ T2193] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 646 [ 74.271844][ T2193] usb 1-1: New USB device found, idVendor=05ac, idProduct=024c, bcdDevice=71.b1 [ 74.274087][ T2193] usb 1-1: New USB device strings: Mfr=156, Product=201, SerialNumber=3 [ 74.276006][ T2193] usb 1-1: Product: syz [ 74.277007][ T2193] usb 1-1: Manufacturer: syz [ 74.278132][ T2193] usb 1-1: SerialNumber: syz [ 74.314290][ T2193] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input7