Warning: Permanently added '10.128.1.113' (ED25519) to the list of known hosts.
2024/07/17 13:22:24 ignoring optional flag "sandboxArg"="0"
2024/07/17 13:22:24 parsed 1 programs
2024/07/17 13:22:25 executed programs: 0
[   50.504750][ T2428] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   51.125574][ T2434] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   51.133399][ T2434] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   51.141124][ T2434] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   51.148759][ T2434] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   53.039524][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   53.047684][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   53.056190][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   53.065565][   T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   53.073543][   T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   53.082182][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   53.113175][ T3115] input: syz1 as /devices/virtual/input/input5
[   53.126288][ T3115] 
[   53.128630][ T3115] ======================================================
[   53.135645][ T3115] WARNING: possible circular locking dependency detected
[   53.142741][ T3115] 5.15.162-syzkaller #0 Not tainted
[   53.147926][ T3115] ------------------------------------------------------
[   53.154934][ T3115] syz-executor.0/3115 is trying to acquire lock:
[   53.161238][ T3115] ffff88810b6a8470 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   53.171399][ T3115] 
[   53.171399][ T3115] but task is already holding lock:
[   53.178740][ T3115] ffff88810b6aa0b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   53.187553][ T3115] 
[   53.187553][ T3115] which lock already depends on the new lock.
[   53.187553][ T3115] 
[   53.198018][ T3115] 
[   53.198018][ T3115] the existing dependency chain (in reverse order) is:
[   53.207007][ T3115] 
[   53.207007][ T3115] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   53.214195][ T3115]        __mutex_lock+0x60/0x660
[   53.219201][ T3115]        input_ff_flush+0x37/0xc0
[   53.224236][ T3115]        uinput_dev_flush+0x28/0x40
[   53.229421][ T3115]        input_flush_device+0x58/0x80
[   53.234804][ T3115]        evdev_release+0x192/0x1a0
[   53.239900][ T3115]        __fput+0xff/0x430
[   53.244294][ T3115]        task_work_run+0x73/0xb0
[   53.249226][ T3115]        exit_to_user_mode_prepare+0x20b/0x210
[   53.255446][ T3115]        syscall_exit_to_user_mode+0x19/0x60
[   53.261843][ T3115]        do_syscall_64+0x40/0xb0
[   53.266759][ T3115]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   53.273149][ T3115] 
[   53.273149][ T3115] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   53.280601][ T3115]        __mutex_lock+0x60/0x660
[   53.285516][ T3115]        input_register_handle+0x2f/0x1b0
[   53.291313][ T3115]        kbd_connect+0x4a/0xb0
[   53.296074][ T3115]        input_attach_handler+0xd5/0x120
[   53.301695][ T3115]        input_register_device.cold+0xdf/0x1c5
[   53.307843][ T3115]        acpi_button_add+0x2f7/0x600
[   53.313100][ T3115]        acpi_device_probe+0x63/0x220
[   53.318547][ T3115]        really_probe+0x138/0x520
[   53.323546][ T3115]        __driver_probe_device+0x149/0x1c0
[   53.329413][ T3115]        driver_probe_device+0x2a/0x120
[   53.334942][ T3115]        __driver_attach+0x178/0x290
[   53.340214][ T3115]        bus_for_each_dev+0xac/0x100
[   53.345660][ T3115]        bus_add_driver+0x195/0x2c0
[   53.350917][ T3115]        driver_register+0xc4/0x150
[   53.356104][ T3115]        acpi_bus_register_driver+0x52/0x70
[   53.362083][ T3115]        acpi_button_driver_init+0x8b/0x9a
[   53.367870][ T3115]        do_one_initcall+0x8b/0x2f0
[   53.373054][ T3115]        kernel_init_freeable+0x322/0x397
[   53.378760][ T3115]        kernel_init+0x1a/0x1c0
[   53.383610][ T3115]        ret_from_fork+0x1f/0x30
[   53.388539][ T3115] 
[   53.388539][ T3115] -> #1 (input_mutex){+.+.}-{3:3}:
[   53.395916][ T3115]        __mutex_lock+0x60/0x660
[   53.400829][ T3115]        input_register_device.cold+0x57/0x1c5
[   53.406961][ T3115]        uinput_ioctl_handler.isra.0+0x4f3/0xec0
[   53.413267][ T3115]        __x64_sys_ioctl+0xfc/0x140
[   53.418446][ T3115]        do_syscall_64+0x33/0xb0
[   53.423460][ T3115]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   53.429859][ T3115] 
[   53.429859][ T3115] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   53.437492][ T3115]        __lock_acquire+0x10b6/0x1a40
[   53.442848][ T3115]        lock_acquire+0xbb/0x290
[   53.447764][ T3115]        __mutex_lock+0x60/0x660
[   53.452939][ T3115]        uinput_request_submit.part.0+0x1f/0x130
[   53.459255][ T3115]        uinput_dev_upload_effect+0xa6/0xe0
[   53.465123][ T3115]        input_ff_upload+0x314/0x4b0
[   53.470390][ T3115]        evdev_do_ioctl+0xdc8/0x1040
[   53.475658][ T3115]        evdev_ioctl+0xa2/0xe0
[   53.480490][ T3115]        __x64_sys_ioctl+0xfc/0x140
[   53.485689][ T3115]        do_syscall_64+0x33/0xb0
[   53.490614][ T3115]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   53.497013][ T3115] 
[   53.497013][ T3115] other info that might help us debug this:
[   53.497013][ T3115] 
[   53.507328][ T3115] Chain exists of:
[   53.507328][ T3115]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   53.507328][ T3115] 
[   53.519800][ T3115]  Possible unsafe locking scenario:
[   53.519800][ T3115] 
[   53.527228][ T3115]        CPU0                    CPU1
[   53.532739][ T3115]        ----                    ----
[   53.538259][ T3115]   lock(&ff->mutex);
[   53.542414][ T3115]                                lock(&dev->mutex#2);
[   53.549203][ T3115]                                lock(&ff->mutex);
[   53.555735][ T3115]   lock(&newdev->mutex);
[   53.560041][ T3115] 
[   53.560041][ T3115]  *** DEADLOCK ***
[   53.560041][ T3115] 
[   53.568162][ T3115] 2 locks held by syz-executor.0/3115:
[   53.573615][ T3115]  #0: ffff88817c021910 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   53.582627][ T3115]  #1: ffff88810b6aa0b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   53.591825][ T3115] 
[   53.591825][ T3115] stack backtrace:
[   53.597683][ T3115] CPU: 1 PID: 3115 Comm: syz-executor.0 Not tainted 5.15.162-syzkaller #0
[   53.606169][ T3115] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[   53.616301][ T3115] Call Trace:
[   53.619571][ T3115]  <TASK>
[   53.622484][ T3115]  dump_stack_lvl+0xcd/0x134
[   53.627057][ T3115]  check_noncircular+0xcc/0xe0
[   53.631979][ T3115]  __lock_acquire+0x10b6/0x1a40
[   53.636813][ T3115]  ? __lock_acquire+0xe65/0x1a40
[   53.641724][ T3115]  lock_acquire+0xbb/0x290
[   53.646290][ T3115]  ? uinput_request_submit.part.0+0x1f/0x130
[   53.652360][ T3115]  ? lock_acquire+0xbb/0x290
[   53.656934][ T3115]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   53.662852][ T3115]  __mutex_lock+0x60/0x660
[   53.667775][ T3115]  ? uinput_request_submit.part.0+0x1f/0x130
[   53.674388][ T3115]  ? uinput_request_submit.part.0+0x1f/0x130
[   53.680471][ T3115]  ? do_raw_spin_unlock+0x50/0xa0
[   53.685502][ T3115]  ? _raw_spin_unlock+0x1a/0x30
[   53.690342][ T3115]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   53.696393][ T3115]  uinput_request_submit.part.0+0x1f/0x130
[   53.702203][ T3115]  uinput_dev_upload_effect+0xa6/0xe0
[   53.707572][ T3115]  ? input_ff_upload+0x12a/0x4b0
[   53.712597][ T3115]  ? tomoyo_path_number_perm+0x127/0x2b0
[   53.718227][ T3115]  input_ff_upload+0x314/0x4b0
[   53.722975][ T3115]  evdev_do_ioctl+0xdc8/0x1040
[   53.727832][ T3115]  ? evdev_ioctl+0x3c/0xe0
[   53.732219][ T3115]  evdev_ioctl+0xa2/0xe0
[   53.736468][ T3115]  ? evdev_ioctl_compat+0xe0/0xe0
[   53.741737][ T3115]  __x64_sys_ioctl+0xfc/0x140
[   53.746406][ T3115]  do_syscall_64+0x33/0xb0
[   53.750808][ T3115]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   53.756674][ T3115] RIP: 0033:0x7fed9fa68ca9
[   53.761072][ T3115] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   53.781016][ T3115] RSP: 002b:00007fed9f5ea0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   53.789503][ T3115] RAX: ffffffffffffffda RBX: 00007fed9fb96f80 RCX: 00007fed9fa68ca9
[   53.797554][ T3115] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   53.805506][ T3115] RBP: 00007fed9fab447e R08: 0000000000000000 R09: 0000000000000000
[   53.813762][ T3115] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   53.821714][ T3115] R13: 0000000000000006 R14: 00007fed9fb96f80 R15: 00007ffd5ebc0788
[   53.829876][ T3115]  </TASK>
[   53.947961][ T3119] input: syz1 as /devices/virtual/input/input6
[   54.788684][ T3121] input: syz1 as /devices/virtual/input/input7
2024/07/17 13:22:31 executed programs: 3
[   55.627318][ T3123] input: syz1 as /devices/virtual/input/input8
[   56.465910][ T3125] input: syz1 as /devices/virtual/input/input9
[   57.304452][ T3127] input: syz1 as /devices/virtual/input/input10
[   58.142380][ T3129] input: syz1 as /devices/virtual/input/input11
[   58.990364][ T3131] input: syz1 as /devices/virtual/input/input12
[   59.862490][ T3133] input: syz1 as /devices/virtual/input/input13
2024/07/17 13:22:36 executed programs: 9
[   60.701416][ T3135] input: syz1 as /devices/virtual/input/input14
[   61.540764][ T3137] input: syz1 as /devices/virtual/input/input15
[   62.379167][ T3139] input: syz1 as /devices/virtual/input/input16