Warning: Permanently added '10.128.1.161' (ED25519) to the list of known hosts.
2024/06/05 22:38:34 ignoring optional flag "sandboxArg"="0"
2024/06/05 22:38:34 parsed 1 programs
2024/06/05 22:38:36 executed programs: 0
[   48.070983][ T2427] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   48.745988][ T2433] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.753622][ T2433] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.761347][ T2433] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.769498][ T2433] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   50.597008][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.605000][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.613396][ T2578] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   50.624150][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.632052][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.640172][ T2578] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   50.661540][ T3117] input: syz1 as /devices/virtual/input/input5
[   50.669858][ T3117] 
[   50.672445][ T3117] ======================================================
[   50.679530][ T3117] WARNING: possible circular locking dependency detected
[   50.686533][ T3117] 5.15.160-syzkaller #0 Not tainted
[   50.691716][ T3117] ------------------------------------------------------
[   50.698712][ T3117] syz-executor.0/3117 is trying to acquire lock:
[   50.705008][ T3117] ffff8881017fb070 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   50.715168][ T3117] 
[   50.715168][ T3117] but task is already holding lock:
[   50.722534][ T3117] ffff8881017facb0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   50.731309][ T3117] 
[   50.731309][ T3117] which lock already depends on the new lock.
[   50.731309][ T3117] 
[   50.741691][ T3117] 
[   50.741691][ T3117] the existing dependency chain (in reverse order) is:
[   50.750711][ T3117] 
[   50.750711][ T3117] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   50.757904][ T3117]        __mutex_lock+0x60/0x660
[   50.762916][ T3117]        input_ff_flush+0x37/0xc0
[   50.767940][ T3117]        uinput_dev_flush+0x28/0x40
[   50.773123][ T3117]        input_flush_device+0x58/0x80
[   50.778474][ T3117]        evdev_release+0x192/0x1a0
[   50.783568][ T3117]        __fput+0xff/0x430
[   50.787987][ T3117]        task_work_run+0x73/0xb0
[   50.792901][ T3117]        exit_to_user_mode_prepare+0x20b/0x210
[   50.799230][ T3117]        syscall_exit_to_user_mode+0x19/0x60
[   50.805198][ T3117]        do_syscall_64+0x40/0xb0
[   50.810110][ T3117]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   50.816503][ T3117] 
[   50.816503][ T3117] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   50.824026][ T3117]        __mutex_lock+0x60/0x660
[   50.828943][ T3117]        input_register_handle+0x2f/0x1b0
[   50.834940][ T3117]        kbd_connect+0x4a/0xb0
[   50.839701][ T3117]        input_attach_handler+0xd5/0x120
[   50.845417][ T3117]        input_register_device.cold+0xdf/0x1c5
[   50.851554][ T3117]        acpi_button_add+0x2f7/0x600
[   50.856927][ T3117]        acpi_device_probe+0x63/0x220
[   50.862278][ T3117]        really_probe+0x138/0x520
[   50.867385][ T3117]        __driver_probe_device+0x149/0x1c0
[   50.873180][ T3117]        driver_probe_device+0x2a/0x120
[   50.878718][ T3117]        __driver_attach+0x178/0x290
[   50.884000][ T3117]        bus_for_each_dev+0xac/0x100
[   50.889263][ T3117]        bus_add_driver+0x195/0x2c0
[   50.894450][ T3117]        driver_register+0xc4/0x150
[   50.899624][ T3117]        acpi_bus_register_driver+0x52/0x70
[   50.905514][ T3117]        acpi_button_driver_init+0x8b/0x9a
[   50.911319][ T3117]        do_one_initcall+0x8b/0x2f0
[   50.916493][ T3117]        kernel_init_freeable+0x322/0x397
[   50.922205][ T3117]        kernel_init+0x1a/0x1c0
[   50.927045][ T3117]        ret_from_fork+0x1f/0x30
[   50.931958][ T3117] 
[   50.931958][ T3117] -> #1 (input_mutex){+.+.}-{3:3}:
[   50.939217][ T3117]        __mutex_lock+0x60/0x660
[   50.944144][ T3117]        input_register_device.cold+0x57/0x1c5
[   50.950374][ T3117]        uinput_ioctl_handler.isra.0+0x4f3/0xec0
[   50.956708][ T3117]        __x64_sys_ioctl+0xfc/0x140
[   50.961929][ T3117]        do_syscall_64+0x33/0xb0
[   50.966853][ T3117]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   50.973348][ T3117] 
[   50.973348][ T3117] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   50.980875][ T3117]        __lock_acquire+0x10b6/0x1a40
[   50.986233][ T3117]        lock_acquire+0xbb/0x290
[   50.991147][ T3117]        __mutex_lock+0x60/0x660
[   50.996062][ T3117]        uinput_request_submit.part.0+0x1f/0x130
[   51.002367][ T3117]        uinput_dev_upload_effect+0xa6/0xe0
[   51.008234][ T3117]        input_ff_upload+0x314/0x4b0
[   51.013498][ T3117]        evdev_do_ioctl+0xdc8/0x1040
[   51.018786][ T3117]        evdev_ioctl+0xa2/0xe0
[   51.023563][ T3117]        __x64_sys_ioctl+0xfc/0x140
[   51.028805][ T3117]        do_syscall_64+0x33/0xb0
[   51.033741][ T3117]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   51.040179][ T3117] 
[   51.040179][ T3117] other info that might help us debug this:
[   51.040179][ T3117] 
[   51.050404][ T3117] Chain exists of:
[   51.050404][ T3117]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   51.050404][ T3117] 
[   51.062702][ T3117]  Possible unsafe locking scenario:
[   51.062702][ T3117] 
[   51.070147][ T3117]        CPU0                    CPU1
[   51.075482][ T3117]        ----                    ----
[   51.080816][ T3117]   lock(&ff->mutex);
[   51.084870][ T3117]                                lock(&dev->mutex#2);
[   51.091600][ T3117]                                lock(&ff->mutex);
[   51.098066][ T3117]   lock(&newdev->mutex);
[   51.102361][ T3117] 
[   51.102361][ T3117]  *** DEADLOCK ***
[   51.102361][ T3117] 
[   51.110653][ T3117] 2 locks held by syz-executor.0/3117:
[   51.116079][ T3117]  #0: ffff88817cdb6910 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   51.125035][ T3117]  #1: ffff8881017facb0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   51.134533][ T3117] 
[   51.134533][ T3117] stack backtrace:
[   51.140396][ T3117] CPU: 1 PID: 3117 Comm: syz-executor.0 Not tainted 5.15.160-syzkaller #0
[   51.148963][ T3117] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   51.159097][ T3117] Call Trace:
[   51.162360][ T3117]  <TASK>
[   51.165273][ T3117]  dump_stack_lvl+0xcd/0x134
[   51.169864][ T3117]  check_noncircular+0xcc/0xe0
[   51.174606][ T3117]  __lock_acquire+0x10b6/0x1a40
[   51.179429][ T3117]  ? __lock_acquire+0xe65/0x1a40
[   51.184341][ T3117]  lock_acquire+0xbb/0x290
[   51.188823][ T3117]  ? uinput_request_submit.part.0+0x1f/0x130
[   51.194800][ T3117]  ? lock_acquire+0xbb/0x290
[   51.199374][ T3117]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   51.205253][ T3117]  __mutex_lock+0x60/0x660
[   51.209661][ T3117]  ? uinput_request_submit.part.0+0x1f/0x130
[   51.215618][ T3117]  ? uinput_request_submit.part.0+0x1f/0x130
[   51.221574][ T3117]  ? do_raw_spin_unlock+0x50/0xa0
[   51.226585][ T3117]  ? _raw_spin_unlock+0x1a/0x30
[   51.231413][ T3117]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   51.237368][ T3117]  uinput_request_submit.part.0+0x1f/0x130
[   51.243147][ T3117]  uinput_dev_upload_effect+0xa6/0xe0
[   51.248505][ T3117]  ? input_ff_upload+0x12a/0x4b0
[   51.253415][ T3117]  ? tomoyo_path_number_perm+0x127/0x2b0
[   51.259019][ T3117]  input_ff_upload+0x314/0x4b0
[   51.263757][ T3117]  evdev_do_ioctl+0xdc8/0x1040
[   51.268492][ T3117]  ? evdev_ioctl+0x3c/0xe0
[   51.272880][ T3117]  evdev_ioctl+0xa2/0xe0
[   51.277109][ T3117]  ? evdev_ioctl_compat+0xe0/0xe0
[   51.282100][ T3117]  __x64_sys_ioctl+0xfc/0x140
[   51.286750][ T3117]  do_syscall_64+0x33/0xb0
[   51.291141][ T3117]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   51.297011][ T3117] RIP: 0033:0x7f82f63cbca9
[   51.301398][ T3117] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   51.320988][ T3117] RSP: 002b:00007f82f5f4d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   51.329382][ T3117] RAX: ffffffffffffffda RBX: 00007f82f64f9f80 RCX: 00007f82f63cbca9
[   51.337422][ T3117] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   51.345381][ T3117] RBP: 00007f82f641747e R08: 0000000000000000 R09: 0000000000000000
[   51.353322][ T3117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   51.361265][ T3117] R13: 0000000000000006 R14: 00007f82f64f9f80 R15: 00007fff84318a28
[   51.369210][ T3117]  </TASK>
[   51.500214][ T3119] input: syz1 as /devices/virtual/input/input6
[   52.361641][ T3121] input: syz1 as /devices/virtual/input/input7
2024/06/05 22:38:41 executed programs: 3
[   53.200627][ T3123] input: syz1 as /devices/virtual/input/input8
[   54.039389][ T3125] input: syz1 as /devices/virtual/input/input9
[   54.879168][ T3127] input: syz1 as /devices/virtual/input/input10
[   55.717302][ T3129] input: syz1 as /devices/virtual/input/input11
[   56.556007][ T3131] input: syz1 as /devices/virtual/input/input12
[   57.396504][ T3133] input: syz1 as /devices/virtual/input/input13
2024/06/05 22:38:46 executed programs: 9
[   58.235983][ T3135] input: syz1 as /devices/virtual/input/input14
[   59.074740][ T3137] input: syz1 as /devices/virtual/input/input15
[   59.912912][ T3139] input: syz1 as /devices/virtual/input/input16