Warning: Permanently added '10.128.1.12' (ED25519) to the list of known hosts.
2025/03/11 14:40:40 ignoring optional flag "sandboxArg"="0"
2025/03/11 14:40:40 ignoring optional flag "type"="gce"
2025/03/11 14:40:40 parsed 1 programs
2025/03/11 14:40:42 executed programs: 0
[   57.985156][ T2428] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   58.824182][ T2434] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   58.833246][ T2434] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   58.841403][ T2434] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   58.850074][ T2434] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   61.296632][ T2151] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.304624][ T2151] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.313130][  T776] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   61.331169][  T776] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   61.339298][  T776] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   61.347775][  T776] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   61.385971][ T3100] input: syz1 as /devices/virtual/input/input5
[   61.403739][ T3100] 
[   61.406094][ T3100] ======================================================
[   61.413119][ T3100] WARNING: possible circular locking dependency detected
[   61.420150][ T3100] 5.15.178-syzkaller #0 Not tainted
[   61.425350][ T3100] ------------------------------------------------------
[   61.432475][ T3100] syz-executor.0/3100 is trying to acquire lock:
[   61.438799][ T3100] ffff888107ff1c70 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   61.448992][ T3100] 
[   61.448992][ T3100] but task is already holding lock:
[   61.456348][ T3100] ffff888107ff20b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   61.465219][ T3100] 
[   61.465219][ T3100] which lock already depends on the new lock.
[   61.465219][ T3100] 
[   61.475700][ T3100] 
[   61.475700][ T3100] the existing dependency chain (in reverse order) is:
[   61.484706][ T3100] 
[   61.484706][ T3100] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   61.491916][ T3100]        __mutex_lock+0x60/0x660
[   61.496888][ T3100]        input_ff_flush+0x37/0xc0
[   61.501913][ T3100]        uinput_dev_flush+0x28/0x40
[   61.507219][ T3100]        input_flush_device+0x58/0x80
[   61.512593][ T3100]        evdev_release+0x192/0x1a0
[   61.517700][ T3100]        __fput+0x101/0x430
[   61.522215][ T3100]        task_work_run+0x73/0xb0
[   61.527156][ T3100]        exit_to_user_mode_prepare+0x20b/0x210
[   61.533313][ T3100]        syscall_exit_to_user_mode+0x19/0x60
[   61.539387][ T3100]        do_syscall_64+0x40/0xb0
[   61.544327][ T3100]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   61.550744][ T3100] 
[   61.550744][ T3100] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   61.558235][ T3100]        __mutex_lock+0x60/0x660
[   61.563191][ T3100]        input_register_handle+0x2f/0x1b0
[   61.568918][ T3100]        kbd_connect+0x4a/0xb0
[   61.573687][ T3100]        input_attach_handler+0xd5/0x120
[   61.579319][ T3100]        input_register_device.cold+0xdf/0x1c5
[   61.585471][ T3100]        acpi_button_add+0x2f7/0x600
[   61.590754][ T3100]        acpi_device_probe+0x63/0x220
[   61.596130][ T3100]        really_probe+0x138/0x520
[   61.601163][ T3100]        __driver_probe_device+0x149/0x1c0
[   61.606980][ T3100]        driver_probe_device+0x2a/0x120
[   61.612537][ T3100]        __driver_attach+0x178/0x290
[   61.617851][ T3100]        bus_for_each_dev+0xac/0x100
[   61.623137][ T3100]        bus_add_driver+0x195/0x2c0
[   61.628338][ T3100]        driver_register+0xc4/0x150
[   61.633580][ T3100]        acpi_bus_register_driver+0x52/0x70
[   61.639476][ T3100]        acpi_button_driver_init+0x8b/0x9a
[   61.645291][ T3100]        do_one_initcall+0x8b/0x2f0
[   61.650487][ T3100]        kernel_init_freeable+0x322/0x397
[   61.656229][ T3100]        kernel_init+0x1a/0x1c0
[   61.661078][ T3100]        ret_from_fork+0x1f/0x30
[   61.666108][ T3100] 
[   61.666108][ T3100] -> #1 (input_mutex){+.+.}-{3:3}:
[   61.673399][ T3100]        __mutex_lock+0x60/0x660
[   61.678339][ T3100]        input_register_device.cold+0x57/0x1c5
[   61.684493][ T3100]        uinput_ioctl_handler.isra.0+0x4f0/0xe80
[   61.690823][ T3100]        __x64_sys_ioctl+0xfc/0x140
[   61.696020][ T3100]        do_syscall_64+0x33/0xb0
[   61.700955][ T3100]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   61.707366][ T3100] 
[   61.707366][ T3100] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   61.714910][ T3100]        __lock_acquire+0x10b6/0x1a40
[   61.720284][ T3100]        lock_acquire+0xbb/0x290
[   61.725218][ T3100]        __mutex_lock+0x60/0x660
[   61.730246][ T3100]        uinput_request_submit.part.0+0x1f/0x130
[   61.736584][ T3100]        uinput_dev_upload_effect+0xa6/0xe0
[   61.742479][ T3100]        input_ff_upload+0x314/0x4b0
[   61.747770][ T3100]        evdev_do_ioctl+0xdc8/0x1040
[   61.753055][ T3100]        evdev_ioctl+0xa2/0xe0
[   61.757820][ T3100]        __x64_sys_ioctl+0xfc/0x140
[   61.763026][ T3100]        do_syscall_64+0x33/0xb0
[   61.767979][ T3100]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   61.774421][ T3100] 
[   61.774421][ T3100] other info that might help us debug this:
[   61.774421][ T3100] 
[   61.784731][ T3100] Chain exists of:
[   61.784731][ T3100]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   61.784731][ T3100] 
[   61.797075][ T3100]  Possible unsafe locking scenario:
[   61.797075][ T3100] 
[   61.804525][ T3100]        CPU0                    CPU1
[   61.809877][ T3100]        ----                    ----
[   61.815228][ T3100]   lock(&ff->mutex);
[   61.819200][ T3100]                                lock(&dev->mutex#2);
[   61.825975][ T3100]                                lock(&ff->mutex);
[   61.832463][ T3100]   lock(&newdev->mutex);
[   61.836817][ T3100] 
[   61.836817][ T3100]  *** DEADLOCK ***
[   61.836817][ T3100] 
[   61.844946][ T3100] 2 locks held by syz-executor.0/3100:
[   61.850482][ T3100]  #0: ffff88817ce76110 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   61.859446][ T3100]  #1: ffff888107ff20b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   61.868671][ T3100] 
[   61.868671][ T3100] stack backtrace:
[   61.874558][ T3100] CPU: 1 PID: 3100 Comm: syz-executor.0 Not tainted 5.15.178-syzkaller #0
[   61.883066][ T3100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   61.893131][ T3100] Call Trace:
[   61.896405][ T3100]  <TASK>
[   61.899328][ T3100]  dump_stack_lvl+0xcd/0x134
[   61.903919][ T3100]  check_noncircular+0xcc/0xe0
[   61.908684][ T3100]  __lock_acquire+0x10b6/0x1a40
[   61.913630][ T3100]  ? __lock_acquire+0xe65/0x1a40
[   61.918564][ T3100]  lock_acquire+0xbb/0x290
[   61.922977][ T3100]  ? uinput_request_submit.part.0+0x1f/0x130
[   61.929007][ T3100]  ? lock_acquire+0xbb/0x290
[   61.933600][ T3100]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   61.939524][ T3100]  __mutex_lock+0x60/0x660
[   61.943945][ T3100]  ? uinput_request_submit.part.0+0x1f/0x130
[   61.949927][ T3100]  ? uinput_request_submit.part.0+0x1f/0x130
[   61.955915][ T3100]  ? do_raw_spin_unlock+0x50/0xa0
[   61.960968][ T3100]  ? _raw_spin_unlock+0x1a/0x30
[   61.965817][ T3100]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   61.971803][ T3100]  uinput_request_submit.part.0+0x1f/0x130
[   61.977737][ T3100]  uinput_dev_upload_effect+0xa6/0xe0
[   61.983200][ T3100]  ? input_ff_upload+0x12a/0x4b0
[   61.988143][ T3100]  ? tomoyo_path_number_perm+0x127/0x2b0
[   61.993776][ T3100]  input_ff_upload+0x314/0x4b0
[   61.998650][ T3100]  evdev_do_ioctl+0xdc8/0x1040
[   62.003413][ T3100]  ? evdev_ioctl+0x3c/0xe0
[   62.007830][ T3100]  evdev_ioctl+0xa2/0xe0
[   62.012079][ T3100]  ? evdev_ioctl_compat+0xe0/0xe0
[   62.017104][ T3100]  __x64_sys_ioctl+0xfc/0x140
[   62.021817][ T3100]  do_syscall_64+0x33/0xb0
[   62.026238][ T3100]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   62.032134][ T3100] RIP: 0033:0x7fad587c3ca9
[   62.036546][ T3100] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   62.056161][ T3100] RSP: 002b:00007fad583450c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   62.064692][ T3100] RAX: ffffffffffffffda RBX: 00007fad588f1f80 RCX: 00007fad587c3ca9
[   62.072660][ T3100] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   62.080626][ T3100] RBP: 00007fad5880f47e R08: 0000000000000000 R09: 0000000000000000
[   62.088703][ T3100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   62.096796][ T3100] R13: 0000000000000006 R14: 00007fad588f1f80 R15: 00007ffd0c2acdc8
[   62.104765][ T3100]  </TASK>
[   62.225966][ T3119] input: syz1 as /devices/virtual/input/input6
2025/03/11 14:40:47 executed programs: 2
[   63.066333][ T3121] input: syz1 as /devices/virtual/input/input7
[   63.908299][ T3123] input: syz1 as /devices/virtual/input/input8
[   64.749414][ T3125] input: syz1 as /devices/virtual/input/input9
[   65.592000][ T3127] input: syz1 as /devices/virtual/input/input10
[   66.446098][ T3129] input: syz1 as /devices/virtual/input/input11
[   67.286542][ T3131] input: syz1 as /devices/virtual/input/input12
2025/03/11 14:40:53 executed programs: 8
[   68.127472][ T3133] input: syz1 as /devices/virtual/input/input13
[   68.968586][ T3135] input: syz1 as /devices/virtual/input/input14
[   69.809338][ T3137] input: syz1 as /devices/virtual/input/input15
[   70.648923][ T3139] input: syz1 as /devices/virtual/input/input16