[v5.15] WARNING in corrupted/usb_submit_urb
8 views
Skip to first unread message
syzbot
Jun 3, 2023, 12:50:59 PM6/3/23
to syzkaller...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 0ab06468cbd1 Linux 5.15.114
git tree: linux-5.15.y
console output: https://syzkaller.appspot.com/x/log.txt?x=15f37d7d280000
kernel config: https://syzkaller.appspot.com/x/.config?x=2d24dbde73b9b505
dashboard link: https://syzkaller.appspot.com/bug?extid=38ebbc9acce0587aa35d
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13779d45280000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=129cab71280000
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/48a0cd4fb454/disk-0ab06468.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/d857ea64526d/vmlinux-0ab06468.xz
kernel image: https://storage.googleapis.com/syzbot-assets/330499c124c4/bzImage-0ab06468.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+38ebbc...@syzkaller.appspotmail.com
usb 1-1: string descriptor 0 read error: -22
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=b9.c5
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 1934 at drivers/usb/core/urb.c:503 usb_submit_urb+0xc8d/0x1990 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 1934 Comm: kworker/1:2 Not tainted 5.15.114-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0xc8d/0x1990 drivers/usb/core/urb.c:502
Code: 0f b6 04 18 84 c0 44 8b 64 24 1c 0f 85 2b 09 00 00 45 8b 07 48 c7 c7 e0 0b 22 8b 48 8b 74 24 08 4c 89 f2 89 e9 e8 73 16 32 fb <0f> 0b 48 8b 5c 24 20 48 8b 6c 24 28 41 89 de 4c 89 f7 48 c7 c6 50
RSP: 0018:ffffc900061d6a90 EFLAGS: 00010246
RAX: ce305bbca2d2e500 RBX: dffffc0000000000 RCX: ffff88801f569dc0
RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
RBP: 0000000000000001 R08: ffffffff8166491c R09: ffffed10173667a0
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff888015f80600 R14: ffff8881443fafc8 R15: ffffffff8b2209c8
FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000560d1751b440 CR3: 000000002318c000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot found the following issue on:
HEAD commit: 0ab06468cbd1 Linux 5.15.114
git tree: linux-5.15.y
console output: https://syzkaller.appspot.com/x/log.txt?x=15f37d7d280000
kernel config: https://syzkaller.appspot.com/x/.config?x=2d24dbde73b9b505
dashboard link: https://syzkaller.appspot.com/bug?extid=38ebbc9acce0587aa35d
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=13779d45280000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=129cab71280000
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/48a0cd4fb454/disk-0ab06468.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/d857ea64526d/vmlinux-0ab06468.xz
kernel image: https://storage.googleapis.com/syzbot-assets/330499c124c4/bzImage-0ab06468.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
Reported-by: syzbot+38ebbc...@syzkaller.appspotmail.com
usb 1-1: string descriptor 0 read error: -22
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=b9.c5
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
WARNING: CPU: 1 PID: 1934 at drivers/usb/core/urb.c:503 usb_submit_urb+0xc8d/0x1990 drivers/usb/core/urb.c:502
Modules linked in:
CPU: 1 PID: 1934 Comm: kworker/1:2 Not tainted 5.15.114-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0xc8d/0x1990 drivers/usb/core/urb.c:502
Code: 0f b6 04 18 84 c0 44 8b 64 24 1c 0f 85 2b 09 00 00 45 8b 07 48 c7 c7 e0 0b 22 8b 48 8b 74 24 08 4c 89 f2 89 e9 e8 73 16 32 fb <0f> 0b 48 8b 5c 24 20 48 8b 6c 24 28 41 89 de 4c 89 f7 48 c7 c6 50
RSP: 0018:ffffc900061d6a90 EFLAGS: 00010246
RAX: ce305bbca2d2e500 RBX: dffffc0000000000 RCX: ffff88801f569dc0
RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
RBP: 0000000000000001 R08: ffffffff8166491c R09: ffffed10173667a0
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff888015f80600 R14: ffff8881443fafc8 R15: ffffffff8b2209c8
FS: 0000000000000000(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000560d1751b440 CR3: 000000002318c000 CR4: 00000000003506e0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
<TASK>
---
This report is generated by a bot. It may contain errors.
See https://goo.gl/tpsmEJ for more information about syzbot.
syzbot engineers can be reached at syzk...@googlegroups.com.
syzbot will keep track of this issue. See:
https://goo.gl/tpsmEJ#status for how to communicate with syzbot.
If the bug is already fixed, let syzbot know by replying with:
#syz fix: exact-commit-title
If you want syzbot to run the reproducer, reply with:
#syz test: git://repo/address.git branch-or-commit-hash
If you attach or paste a git patch, syzbot will apply it before testing.
If you want to change bug's subsystems, reply with:
#syz set subsystems: new-subsystem
(See the list of subsystem names on the web dashboard)
If the bug is a duplicate of another bug, reply with:
#syz dup: exact-subject-of-another-report
If you want to undo deduplication, reply with:
#syz undup
syzbot
Jun 7, 2023, 7:05:54 AM6/7/23
to syzkaller...@googlegroups.com
Hello,
syzbot found the following issue on:
HEAD commit: 76ba310227d2 Linux 6.1.32
syzbot found the following issue on:
git tree: linux-6.1.y
console output: https://syzkaller.appspot.com/x/log.txt?x=13659a2d280000
kernel config: https://syzkaller.appspot.com/x/.config?x=662f56cd322cfd0e
dashboard link: https://syzkaller.appspot.com/bug?extid=c8410485d71b395d830f
compiler: Debian clang version 15.0.7, GNU ld (GNU Binutils for Debian) 2.35.2
syz repro: https://syzkaller.appspot.com/x/repro.syz?x=12340393280000
C reproducer: https://syzkaller.appspot.com/x/repro.c?x=11c69369280000
Downloadable assets:
disk image: https://storage.googleapis.com/syzbot-assets/18131e2f7e2f/disk-76ba3102.raw.xz
vmlinux: https://storage.googleapis.com/syzbot-assets/d71316d229b0/vmlinux-76ba3102.xz
kernel image: https://storage.googleapis.com/syzbot-assets/f0de40c3e8b5/bzImage-76ba3102.xz
IMPORTANT: if you fix the issue, please add the following tag to the commit:
usb 1-1: string descriptor 0 read error: -22
usb 1-1: New USB device found, idVendor=07ca, idProduct=b800, bcdDevice=b9.c5
usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
------------[ cut here ]------------
usb 1-1: BOGUS urb xfer, pipe 1 != type 3
Modules linked in:
CPU: 0 PID: 154 Comm: kworker/0:2 Not tainted 6.1.32-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
Workqueue: usb_hub_wq hub_event
RIP: 0010:usb_submit_urb+0xc8d/0x1990 drivers/usb/core/urb.c:504
Workqueue: usb_hub_wq hub_event
Code: 0f b6 04 18 84 c0 44 8b 64 24 1c 0f 85 2b 09 00 00 45 8b 07 48 c7 c7 80 b5 89 8b 48 8b 74 24 08 4c 89 f2 89 e9 e8 b3 10 f0 fa <0f> 0b 48 8b 5c 24 20 48 8b 6c 24 28 41 89 de 4c 89 f7 48 c7 c6 50
RSP: 0018:ffffc9000254ea90 EFLAGS: 00010246
RAX: 768f20bf427bbe00 RBX: dffffc0000000000 RCX: ffff888015733b80
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
RBP: 0000000000000001 R08: ffffffff81524d7e R09: ffffed1017304f1c
R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000000
R13: ffff888017649f00 R14: ffff8880275b6ac8 R15: ffffffff8b89b368
FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fffa143af88 CR3: 00000000742cf000 CR4: 00000000003506f0
Reply all
Reply to author
Forward
0 new messages