Warning: Permanently added '10.128.0.100' (ED25519) to the list of known hosts.
2024/08/27 01:30:21 ignoring optional flag "sandboxArg"="0"
2024/08/27 01:30:21 parsed 1 programs
2024/08/27 01:30:22 executed programs: 0
[   52.089574][ T2427] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   52.744823][ T2433] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   52.752878][ T2433] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   52.760853][ T2433] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   52.769344][ T2433] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   54.676028][   T72] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.684156][   T72] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.695877][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   54.705110][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   54.713173][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   54.721705][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   54.744701][ T3116] input: syz1 as /devices/virtual/input/input5
[   54.752987][ T3116] 
[   54.755305][ T3116] ======================================================
[   54.762383][ T3116] WARNING: possible circular locking dependency detected
[   54.769395][ T3116] 5.15.165-syzkaller #0 Not tainted
[   54.774760][ T3116] ------------------------------------------------------
[   54.781936][ T3116] syz-executor.0/3116 is trying to acquire lock:
[   54.788347][ T3116] ffff88817aab4c70 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   54.798507][ T3116] 
[   54.798507][ T3116] but task is already holding lock:
[   54.806508][ T3116] ffff88817aab48b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   54.815284][ T3116] 
[   54.815284][ T3116] which lock already depends on the new lock.
[   54.815284][ T3116] 
[   54.826003][ T3116] 
[   54.826003][ T3116] the existing dependency chain (in reverse order) is:
[   54.834997][ T3116] 
[   54.834997][ T3116] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   54.842259][ T3116]        __mutex_lock+0x60/0x660
[   54.847175][ T3116]        input_ff_flush+0x37/0xc0
[   54.852174][ T3116]        uinput_dev_flush+0x28/0x40
[   54.857434][ T3116]        input_flush_device+0x58/0x80
[   54.862895][ T3116]        evdev_release+0x192/0x1a0
[   54.868067][ T3116]        __fput+0xff/0x430
[   54.872577][ T3116]        task_work_run+0x73/0xb0
[   54.877577][ T3116]        exit_to_user_mode_prepare+0x20b/0x210
[   54.883770][ T3116]        syscall_exit_to_user_mode+0x19/0x60
[   54.889861][ T3116]        do_syscall_64+0x40/0xb0
[   54.894865][ T3116]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   54.901523][ T3116] 
[   54.901523][ T3116] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   54.908975][ T3116]        __mutex_lock+0x60/0x660
[   54.913887][ T3116]        input_register_handle+0x2f/0x1b0
[   54.919670][ T3116]        kbd_connect+0x4a/0xb0
[   54.924497][ T3116]        input_attach_handler+0xd5/0x120
[   54.930202][ T3116]        input_register_device.cold+0xdf/0x1c5
[   54.936337][ T3116]        acpi_button_add+0x2f7/0x600
[   54.941691][ T3116]        acpi_device_probe+0x63/0x220
[   54.947130][ T3116]        really_probe+0x138/0x520
[   54.952144][ T3116]        __driver_probe_device+0x149/0x1c0
[   54.958038][ T3116]        driver_probe_device+0x2a/0x120
[   54.963756][ T3116]        __driver_attach+0x178/0x290
[   54.969018][ T3116]        bus_for_each_dev+0xac/0x100
[   54.974372][ T3116]        bus_add_driver+0x195/0x2c0
[   54.979552][ T3116]        driver_register+0xc4/0x150
[   54.984822][ T3116]        acpi_bus_register_driver+0x52/0x70
[   54.990704][ T3116]        acpi_button_driver_init+0x8b/0x9a
[   54.996493][ T3116]        do_one_initcall+0x8b/0x2f0
[   55.001681][ T3116]        kernel_init_freeable+0x322/0x397
[   55.007389][ T3116]        kernel_init+0x1a/0x1c0
[   55.012318][ T3116]        ret_from_fork+0x1f/0x30
[   55.017318][ T3116] 
[   55.017318][ T3116] -> #1 (input_mutex){+.+.}-{3:3}:
[   55.024588][ T3116]        __mutex_lock+0x60/0x660
[   55.029502][ T3116]        input_register_device.cold+0x57/0x1c5
[   55.035637][ T3116]        uinput_ioctl_handler.isra.0+0x4f3/0xec0
[   55.041968][ T3116]        __x64_sys_ioctl+0xfc/0x140
[   55.047227][ T3116]        do_syscall_64+0x33/0xb0
[   55.052137][ T3116]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   55.058533][ T3116] 
[   55.058533][ T3116] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   55.066056][ T3116]        __lock_acquire+0x10b6/0x1a40
[   55.071405][ T3116]        lock_acquire+0xbb/0x290
[   55.076310][ T3116]        __mutex_lock+0x60/0x660
[   55.081379][ T3116]        uinput_request_submit.part.0+0x1f/0x130
[   55.087874][ T3116]        uinput_dev_upload_effect+0xa6/0xe0
[   55.093857][ T3116]        input_ff_upload+0x314/0x4b0
[   55.099129][ T3116]        evdev_do_ioctl+0xdc8/0x1040
[   55.104397][ T3116]        evdev_ioctl+0xa2/0xe0
[   55.109279][ T3116]        __x64_sys_ioctl+0xfc/0x140
[   55.114672][ T3116]        do_syscall_64+0x33/0xb0
[   55.119593][ T3116]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   55.126397][ T3116] 
[   55.126397][ T3116] other info that might help us debug this:
[   55.126397][ T3116] 
[   55.136740][ T3116] Chain exists of:
[   55.136740][ T3116]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   55.136740][ T3116] 
[   55.149040][ T3116]  Possible unsafe locking scenario:
[   55.149040][ T3116] 
[   55.156646][ T3116]        CPU0                    CPU1
[   55.161982][ T3116]        ----                    ----
[   55.167318][ T3116]   lock(&ff->mutex);
[   55.171300][ T3116]                                lock(&dev->mutex#2);
[   55.178042][ T3116]                                lock(&ff->mutex);
[   55.184897][ T3116]   lock(&newdev->mutex);
[   55.189304][ T3116] 
[   55.189304][ T3116]  *** DEADLOCK ***
[   55.189304][ T3116] 
[   55.197532][ T3116] 2 locks held by syz-executor.0/3116:
[   55.203160][ T3116]  #0: ffff88817b6e5910 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   55.212353][ T3116]  #1: ffff88817aab48b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   55.221833][ T3116] 
[   55.221833][ T3116] stack backtrace:
[   55.227937][ T3116] CPU: 0 PID: 3116 Comm: syz-executor.0 Not tainted 5.15.165-syzkaller #0
[   55.236499][ T3116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[   55.246542][ T3116] Call Trace:
[   55.249828][ T3116]  <TASK>
[   55.252824][ T3116]  dump_stack_lvl+0xcd/0x134
[   55.257418][ T3116]  check_noncircular+0xcc/0xe0
[   55.262185][ T3116]  __lock_acquire+0x10b6/0x1a40
[   55.267021][ T3116]  ? __lock_acquire+0xe65/0x1a40
[   55.272025][ T3116]  lock_acquire+0xbb/0x290
[   55.276520][ T3116]  ? uinput_request_submit.part.0+0x1f/0x130
[   55.282650][ T3116]  ? lock_acquire+0xbb/0x290
[   55.287408][ T3116]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   55.293539][ T3116]  __mutex_lock+0x60/0x660
[   55.298041][ T3116]  ? uinput_request_submit.part.0+0x1f/0x130
[   55.304011][ T3116]  ? uinput_request_submit.part.0+0x1f/0x130
[   55.309993][ T3116]  ? do_raw_spin_unlock+0x50/0xa0
[   55.315004][ T3116]  ? _raw_spin_unlock+0x1a/0x30
[   55.319856][ T3116]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   55.325990][ T3116]  uinput_request_submit.part.0+0x1f/0x130
[   55.331923][ T3116]  uinput_dev_upload_effect+0xa6/0xe0
[   55.337282][ T3116]  ? input_ff_upload+0x12a/0x4b0
[   55.342316][ T3116]  ? tomoyo_path_number_perm+0x127/0x2b0
[   55.348280][ T3116]  input_ff_upload+0x314/0x4b0
[   55.353035][ T3116]  evdev_do_ioctl+0xdc8/0x1040
[   55.357820][ T3116]  ? evdev_ioctl+0x3c/0xe0
[   55.362315][ T3116]  evdev_ioctl+0xa2/0xe0
[   55.366545][ T3116]  ? evdev_ioctl_compat+0xe0/0xe0
[   55.371542][ T3116]  __x64_sys_ioctl+0xfc/0x140
[   55.376373][ T3116]  do_syscall_64+0x33/0xb0
[   55.380772][ T3116]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   55.386652][ T3116] RIP: 0033:0x7f3292baeca9
[   55.391062][ T3116] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   55.411080][ T3116] RSP: 002b:00007f32927300c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   55.419752][ T3116] RAX: ffffffffffffffda RBX: 00007f3292cdcf80 RCX: 00007f3292baeca9
[   55.427804][ T3116] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   55.435836][ T3116] RBP: 00007f3292bfa47e R08: 0000000000000000 R09: 0000000000000000
[   55.443906][ T3116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   55.451960][ T3116] R13: 0000000000000006 R14: 00007f3292cdcf80 R15: 00007ffcf17b3a68
[   55.460094][ T3116]  </TASK>
[   55.581640][ T3118] input: syz1 as /devices/virtual/input/input6
[   56.449396][ T3120] input: syz1 as /devices/virtual/input/input7
2024/08/27 01:30:28 executed programs: 3
[   57.289516][ T3122] input: syz1 as /devices/virtual/input/input8
[   58.129362][ T3124] input: syz1 as /devices/virtual/input/input9
[   58.969963][ T3126] input: syz1 as /devices/virtual/input/input10
[   59.809319][ T3128] input: syz1 as /devices/virtual/input/input11
[   60.647652][ T3130] input: syz1 as /devices/virtual/input/input12
[   61.489083][ T3132] input: syz1 as /devices/virtual/input/input13
2024/08/27 01:30:33 executed programs: 9
[   62.327988][ T3134] input: syz1 as /devices/virtual/input/input14
[   63.167611][ T3136] input: syz1 as /devices/virtual/input/input15
[   64.005608][ T3138] input: syz1 as /devices/virtual/input/input16