Warning: Permanently added '10.128.0.97' (ED25519) to the list of known hosts.
2024/11/18 08:36:44 ignoring optional flag "sandboxArg"="0"
2024/11/18 08:36:44 ignoring optional flag "type"="gce"
2024/11/18 08:36:44 parsed 1 programs
2024/11/18 08:36:46 executed programs: 0
[   60.753214][ T2434] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   61.734396][ T2440] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   61.742332][ T2440] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   61.750646][ T2440] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   61.758524][ T2440] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   64.186730][   T80] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.194732][   T80] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.202045][ T2152] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.205191][   T80] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.210165][ T2152] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.225159][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   64.291686][ T3124] input: syz1 as /devices/virtual/input/input5
[   64.300258][ T3124] 
[   64.302630][ T3124] ======================================================
[   64.309640][ T3124] WARNING: possible circular locking dependency detected
[   64.316747][ T3124] 5.15.173-syzkaller #0 Not tainted
[   64.322027][ T3124] ------------------------------------------------------
[   64.329030][ T3124] syz-executor.0/3124 is trying to acquire lock:
[   64.335343][ T3124] ffff888179565870 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   64.345549][ T3124] 
[   64.345549][ T3124] but task is already holding lock:
[   64.353029][ T3124] ffff888179565cb0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   64.362094][ T3124] 
[   64.362094][ T3124] which lock already depends on the new lock.
[   64.362094][ T3124] 
[   64.372484][ T3124] 
[   64.372484][ T3124] the existing dependency chain (in reverse order) is:
[   64.381493][ T3124] 
[   64.381493][ T3124] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   64.388705][ T3124]        __mutex_lock+0x60/0x660
[   64.393642][ T3124]        input_ff_flush+0x37/0xc0
[   64.398679][ T3124]        uinput_dev_flush+0x28/0x40
[   64.404333][ T3124]        input_flush_device+0x58/0x80
[   64.409808][ T3124]        evdev_release+0x192/0x1a0
[   64.415025][ T3124]        __fput+0xff/0x430
[   64.419444][ T3124]        task_work_run+0x73/0xb0
[   64.424377][ T3124]        exit_to_user_mode_prepare+0x20b/0x210
[   64.430532][ T3124]        syscall_exit_to_user_mode+0x19/0x60
[   64.436507][ T3124]        do_syscall_64+0x40/0xb0
[   64.441455][ T3124]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   64.447866][ T3124] 
[   64.447866][ T3124] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   64.455324][ T3124]        __mutex_lock+0x60/0x660
[   64.460255][ T3124]        input_register_handle+0x2f/0x1b0
[   64.465971][ T3124]        kbd_connect+0x4a/0xb0
[   64.470826][ T3124]        input_attach_handler+0xd5/0x120
[   64.476458][ T3124]        input_register_device.cold+0xdf/0x1c5
[   64.482611][ T3124]        acpi_button_add+0x2f7/0x600
[   64.487905][ T3124]        acpi_device_probe+0x63/0x220
[   64.493268][ T3124]        really_probe+0x138/0x520
[   64.498292][ T3124]        __driver_probe_device+0x149/0x1c0
[   64.504097][ T3124]        driver_probe_device+0x2a/0x120
[   64.509651][ T3124]        __driver_attach+0x178/0x290
[   64.514945][ T3124]        bus_for_each_dev+0xac/0x100
[   64.520221][ T3124]        bus_add_driver+0x195/0x2c0
[   64.525413][ T3124]        driver_register+0xc4/0x150
[   64.530628][ T3124]        acpi_bus_register_driver+0x52/0x70
[   64.536777][ T3124]        acpi_button_driver_init+0x8b/0x9a
[   64.542603][ T3124]        do_one_initcall+0x8b/0x2f0
[   64.547804][ T3124]        kernel_init_freeable+0x322/0x397
[   64.553526][ T3124]        kernel_init+0x1a/0x1c0
[   64.558379][ T3124]        ret_from_fork+0x1f/0x30
[   64.563313][ T3124] 
[   64.563313][ T3124] -> #1 (input_mutex){+.+.}-{3:3}:
[   64.570597][ T3124]        __mutex_lock+0x60/0x660
[   64.575529][ T3124]        input_register_device.cold+0x57/0x1c5
[   64.581697][ T3124]        uinput_ioctl_handler.isra.0+0x4f0/0xe80
[   64.588027][ T3124]        __x64_sys_ioctl+0xfc/0x140
[   64.593225][ T3124]        do_syscall_64+0x33/0xb0
[   64.598161][ T3124]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   64.604571][ T3124] 
[   64.604571][ T3124] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   64.612114][ T3124]        __lock_acquire+0x10b6/0x1a40
[   64.617480][ T3124]        lock_acquire+0xbb/0x290
[   64.622407][ T3124]        __mutex_lock+0x60/0x660
[   64.627371][ T3124]        uinput_request_submit.part.0+0x1f/0x130
[   64.633697][ T3124]        uinput_dev_upload_effect+0xa6/0xe0
[   64.639612][ T3124]        input_ff_upload+0x314/0x4b0
[   64.644906][ T3124]        evdev_do_ioctl+0xdc8/0x1040
[   64.650288][ T3124]        evdev_ioctl+0xa2/0xe0
[   64.655053][ T3124]        __x64_sys_ioctl+0xfc/0x140
[   64.660243][ T3124]        do_syscall_64+0x33/0xb0
[   64.665180][ T3124]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   64.671602][ T3124] 
[   64.671602][ T3124] other info that might help us debug this:
[   64.671602][ T3124] 
[   64.681830][ T3124] Chain exists of:
[   64.681830][ T3124]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   64.681830][ T3124] 
[   64.694158][ T3124]  Possible unsafe locking scenario:
[   64.694158][ T3124] 
[   64.701610][ T3124]        CPU0                    CPU1
[   64.706956][ T3124]        ----                    ----
[   64.712329][ T3124]   lock(&ff->mutex);
[   64.716318][ T3124]                                lock(&dev->mutex#2);
[   64.723074][ T3124]                                lock(&ff->mutex);
[   64.729586][ T3124]   lock(&newdev->mutex);
[   64.733909][ T3124] 
[   64.733909][ T3124]  *** DEADLOCK ***
[   64.733909][ T3124] 
[   64.742384][ T3124] 2 locks held by syz-executor.0/3124:
[   64.747836][ T3124]  #0: ffff88817c0f4910 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   64.756909][ T3124]  #1: ffff888179565cb0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   64.766155][ T3124] 
[   64.766155][ T3124] stack backtrace:
[   64.772032][ T3124] CPU: 0 PID: 3124 Comm: syz-executor.0 Not tainted 5.15.173-syzkaller #0
[   64.780524][ T3124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   64.790571][ T3124] Call Trace:
[   64.793838][ T3124]  <TASK>
[   64.796783][ T3124]  dump_stack_lvl+0xcd/0x134
[   64.801394][ T3124]  check_noncircular+0xcc/0xe0
[   64.806182][ T3124]  __lock_acquire+0x10b6/0x1a40
[   64.811032][ T3124]  ? __lock_acquire+0xe65/0x1a40
[   64.815962][ T3124]  lock_acquire+0xbb/0x290
[   64.820386][ T3124]  ? uinput_request_submit.part.0+0x1f/0x130
[   64.826368][ T3124]  ? lock_acquire+0xbb/0x290
[   64.830956][ T3124]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   64.836854][ T3124]  __mutex_lock+0x60/0x660
[   64.841287][ T3124]  ? uinput_request_submit.part.0+0x1f/0x130
[   64.847293][ T3124]  ? uinput_request_submit.part.0+0x1f/0x130
[   64.853278][ T3124]  ? do_raw_spin_unlock+0x50/0xa0
[   64.858395][ T3124]  ? _raw_spin_unlock+0x1a/0x30
[   64.863262][ T3124]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   64.869243][ T3124]  uinput_request_submit.part.0+0x1f/0x130
[   64.875255][ T3124]  uinput_dev_upload_effect+0xa6/0xe0
[   64.880623][ T3124]  ? input_ff_upload+0x12a/0x4b0
[   64.885559][ T3124]  ? tomoyo_path_number_perm+0x127/0x2b0
[   64.891200][ T3124]  input_ff_upload+0x314/0x4b0
[   64.895970][ T3124]  evdev_do_ioctl+0xdc8/0x1040
[   64.900727][ T3124]  ? evdev_ioctl+0x3c/0xe0
[   64.905137][ T3124]  evdev_ioctl+0xa2/0xe0
[   64.909379][ T3124]  ? evdev_ioctl_compat+0xe0/0xe0
[   64.914394][ T3124]  __x64_sys_ioctl+0xfc/0x140
[   64.919073][ T3124]  do_syscall_64+0x33/0xb0
[   64.923503][ T3124]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   64.929405][ T3124] RIP: 0033:0x7f3524668ca9
[   64.933905][ T3124] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   64.953649][ T3124] RSP: 002b:00007f35241ea0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   64.962071][ T3124] RAX: ffffffffffffffda RBX: 00007f3524796f80 RCX: 00007f3524668ca9
[   64.970043][ T3124] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   64.978197][ T3124] RBP: 00007f35246b447e R08: 0000000000000000 R09: 0000000000000000
[   64.986294][ T3124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   64.994436][ T3124] R13: 0000000000000006 R14: 00007f3524796f80 R15: 00007ffd476b8d48
[   65.002432][ T3124]  </TASK>
[   65.131115][ T3126] input: syz1 as /devices/virtual/input/input6
2024/11/18 08:36:51 executed programs: 2
[   65.972236][ T3128] input: syz1 as /devices/virtual/input/input7
[   66.811727][ T3130] input: syz1 as /devices/virtual/input/input8
[   67.651972][ T3132] input: syz1 as /devices/virtual/input/input9
[   68.491671][ T3134] input: syz1 as /devices/virtual/input/input10
[   69.358223][ T3136] input: syz1 as /devices/virtual/input/input11
[   70.198247][ T3138] input: syz1 as /devices/virtual/input/input12
2024/11/18 08:36:56 executed programs: 8
[   71.037943][ T3140] input: syz1 as /devices/virtual/input/input13
[   71.877986][ T3142] input: syz1 as /devices/virtual/input/input14
[   72.718368][ T3144] input: syz1 as /devices/virtual/input/input15
[   73.559375][ T3146] input: syz1 as /devices/virtual/input/input16