Warning: Permanently added '10.128.1.41' (ED25519) to the list of known hosts. 2023/09/14 20:59:51 ignoring optional flag "sandboxArg"="0" 2023/09/14 20:59:51 parsed 1 programs 2023/09/14 20:59:51 executed programs: 0 [ 44.945172][ T2656] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.716428][ T2661] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 45.731587][ T2661] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 45.744253][ T2661] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 45.756584][ T2661] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 47.611164][ T2277] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.619425][ T2277] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.630021][ T25] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 47.638113][ T25] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 47.670608][ T3375] [ 47.677291][ T3375] ===================================================== [ 47.684639][ T3375] WARNING: HARDIRQ-safe -> HARDIRQ-unsafe lock order detected [ 47.692337][ T3375] 6.6.0-rc1-syzkaller #0 Not tainted [ 47.697600][ T3375] ----------------------------------------------------- [ 47.704597][ T3375] syz-executor.0/3375 [HC0[0]:SC0[0]:HE0:SE1] is trying to acquire: [ 47.712838][ T3375] ffff88810c72c080 (&new->fa_lock){....}-{2:2}, at: kill_fasync+0x12b/0x340 [ 47.722201][ T3375] [ 47.722201][ T3375] and this task is already holding: [ 47.729884][ T3375] ffff888110db0828 (&client->buffer_lock){....}-{2:2}, at: evdev_pass_values+0x81/0x3d0 [ 47.740017][ T3375] which would create a new lock dependency: [ 47.746135][ T3375] (&client->buffer_lock){....}-{2:2} -> (&new->fa_lock){....}-{2:2} [ 47.754227][ T3375] [ 47.754227][ T3375] but this new dependency connects a HARDIRQ-irq-safe lock: [ 47.763822][ T3375] (&dev->event_lock){-...}-{2:2} [ 47.763832][ T3375] [ 47.763832][ T3375] ... which became HARDIRQ-irq-safe at: [ 47.776957][ T3375] lock_acquire+0xd2/0x260 [ 47.781893][ T3375] _raw_spin_lock_irqsave+0x5e/0x90 [ 47.787167][ T3375] input_event+0x77/0xb0 [ 47.791828][ T3375] psmouse_report_standard_packet+0x33/0x100 [ 47.798156][ T3375] psmouse_process_byte+0x2ce/0x2f0 [ 47.803947][ T3375] psmouse_handle_byte+0x17/0x190 [ 47.809309][ T3375] ps2_interrupt+0xbc/0x460 [ 47.814438][ T3375] serio_interrupt+0x4c/0xc0 [ 47.819398][ T3375] i8042_interrupt+0x2d6/0x560 [ 47.824340][ T3375] __handle_irq_event_percpu+0xf7/0x460 [ 47.830162][ T3375] handle_irq_event+0x39/0xa0 [ 47.834921][ T3375] handle_edge_irq+0xeb/0x350 [ 47.839756][ T3375] __common_interrupt+0xce/0x160 [ 47.844947][ T3375] common_interrupt+0x7f/0x90 [ 47.849704][ T3375] asm_common_interrupt+0x26/0x40 [ 47.855348][ T3375] _raw_spin_unlock_irqrestore+0x69/0xa0 [ 47.861064][ T3375] i8042_aux_write+0x86/0xb0 [ 47.865897][ T3375] ps2_do_sendbyte+0xad/0x3e0 [ 47.870655][ T3375] ps2_sendbyte+0x36/0x90 [ 47.875060][ T3375] cypress_send_ext_cmd+0x145/0x530 [ 47.880324][ T3375] cypress_detect+0x47/0xf0 [ 47.885455][ T3375] psmouse_extensions+0xa06/0xe10 [ 47.890583][ T3375] psmouse_switch_protocol+0x52/0x530 [ 47.896114][ T3375] psmouse_connect+0x411/0x7f0 [ 47.901051][ T3375] serio_driver_probe+0x3b/0x50 [ 47.906024][ T3375] really_probe+0x1a0/0x660 [ 47.910767][ T3375] __driver_probe_device+0xdf/0x1e0 [ 47.916292][ T3375] driver_probe_device+0x2e/0x240 [ 47.921467][ T3375] __driver_attach+0x256/0x3a0 [ 47.926378][ T3375] bus_for_each_dev+0x148/0x1b0 [ 47.931638][ T3375] serio_handle_event+0xd8/0x4f0 [ 47.936642][ T3375] process_one_work+0x28b/0x680 [ 47.941749][ T3375] worker_thread+0x3b6/0x550 [ 47.946580][ T3375] kthread+0x11b/0x140 [ 47.950799][ T3375] ret_from_fork+0x48/0x60 [ 47.955291][ T3375] ret_from_fork_asm+0x11/0x20 [ 47.960221][ T3375] [ 47.960221][ T3375] to a HARDIRQ-irq-unsafe lock: [ 47.967306][ T3375] (tasklist_lock){.+.+}-{2:2} [ 47.967316][ T3375] [ 47.967316][ T3375] ... which became HARDIRQ-irq-unsafe at: [ 47.985215][ T3375] ... [ 47.985219][ T3375] lock_acquire+0xd2/0x260 [ 47.992261][ T3375] _raw_read_lock+0x33/0x40 [ 47.996830][ T3375] do_wait+0xf8/0x4c0 [ 48.001057][ T3375] kernel_wait+0xa2/0x100 [ 48.005463][ T3375] call_usermodehelper_exec_work+0x93/0x120 [ 48.011806][ T3375] process_one_work+0x28b/0x680 [ 48.016911][ T3375] worker_thread+0x3b6/0x550 [ 48.021670][ T3375] kthread+0x11b/0x140 [ 48.025935][ T3375] ret_from_fork+0x48/0x60 [ 48.030674][ T3375] ret_from_fork_asm+0x11/0x20 [ 48.035797][ T3375] [ 48.035797][ T3375] other info that might help us debug this: [ 48.035797][ T3375] [ 48.046400][ T3375] Chain exists of: [ 48.046400][ T3375] &dev->event_lock --> &client->buffer_lock --> tasklist_lock [ 48.046400][ T3375] [ 48.060880][ T3375] Possible interrupt unsafe locking scenario: [ 48.060880][ T3375] [ 48.069441][ T3375] CPU0 CPU1 [ 48.075234][ T3375] ---- ---- [ 48.081015][ T3375] lock(tasklist_lock); [ 48.085429][ T3375] local_irq_disable(); [ 48.092955][ T3375] lock(&dev->event_lock); [ 48.100232][ T3375] lock(&client->buffer_lock); [ 48.108686][ T3375] [ 48.113264][ T3375] lock(&dev->event_lock); [ 48.118388][ T3375] [ 48.118388][ T3375] *** DEADLOCK *** [ 48.118388][ T3375] [ 48.127499][ T3375] 7 locks held by syz-executor.0/3375: [ 48.133582][ T3375] #0: ffff88810aff8110 (&evdev->mutex){+.+.}-{3:3}, at: evdev_write+0xc7/0x260 [ 48.146183][ T3375] #1: ffff88810a183230 (&dev->event_lock){-...}-{2:2}, at: input_inject_event+0x7a/0x290 [ 48.164747][ T3375] #2: ffffffff83bad3b0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x40 [ 48.175249][ T3375] #3: ffffffff83bad3b0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x40 [ 48.186443][ T3375] #4: ffffffff83bad3b0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x40 [ 48.196505][ T3375] #5: ffff888110db0828 (&client->buffer_lock){....}-{2:2}, at: evdev_pass_values+0x81/0x3d0 [ 48.208563][ T3375] #6: ffffffff83bad3b0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x5/0x40 [ 48.220536][ T3375] [ 48.220536][ T3375] the dependencies between HARDIRQ-irq-safe lock and the holding lock: [ 48.231453][ T3375] -> (&dev->event_lock){-...}-{2:2} { [ 48.237545][ T3375] IN-HARDIRQ-W at: [ 48.241695][ T3375] lock_acquire+0xd2/0x260 [ 48.248428][ T3375] _raw_spin_lock_irqsave+0x5e/0x90 [ 48.256044][ T3375] input_event+0x77/0xb0 [ 48.262708][ T3375] psmouse_report_standard_packet+0x33/0x100 [ 48.270940][ T3375] psmouse_process_byte+0x2ce/0x2f0 [ 48.278666][ T3375] psmouse_handle_byte+0x17/0x190 [ 48.285592][ T3375] ps2_interrupt+0xbc/0x460 [ 48.292085][ T3375] serio_interrupt+0x4c/0xc0 [ 48.298612][ T3375] i8042_interrupt+0x2d6/0x560 [ 48.305628][ T3375] __handle_irq_event_percpu+0xf7/0x460 [ 48.313260][ T3375] handle_irq_event+0x39/0xa0 [ 48.319985][ T3375] handle_edge_irq+0xeb/0x350 [ 48.326652][ T3375] __common_interrupt+0xce/0x160 [ 48.333402][ T3375] common_interrupt+0x7f/0x90 [ 48.340102][ T3375] asm_common_interrupt+0x26/0x40 [ 48.347968][ T3375] _raw_spin_unlock_irqrestore+0x69/0xa0 [ 48.355764][ T3375] i8042_aux_write+0x86/0xb0 [ 48.362618][ T3375] ps2_do_sendbyte+0xad/0x3e0 [ 48.369701][ T3375] ps2_sendbyte+0x36/0x90 [ 48.376029][ T3375] cypress_send_ext_cmd+0x145/0x530 [ 48.383468][ T3375] cypress_detect+0x47/0xf0 [ 48.389879][ T3375] psmouse_extensions+0xa06/0xe10 [ 48.397237][ T3375] psmouse_switch_protocol+0x52/0x530 [ 48.404520][ T3375] psmouse_connect+0x411/0x7f0 [ 48.411266][ T3375] serio_driver_probe+0x3b/0x50 [ 48.417935][ T3375] really_probe+0x1a0/0x660 [ 48.424337][ T3375] __driver_probe_device+0xdf/0x1e0 [ 48.431377][ T3375] driver_probe_device+0x2e/0x240 [ 48.439532][ T3375] __driver_attach+0x256/0x3a0 [ 48.446455][ T3375] bus_for_each_dev+0x148/0x1b0 [ 48.453209][ T3375] serio_handle_event+0xd8/0x4f0 [ 48.460050][ T3375] process_one_work+0x28b/0x680 [ 48.466811][ T3375] worker_thread+0x3b6/0x550 [ 48.473453][ T3375] kthread+0x11b/0x140 [ 48.479878][ T3375] ret_from_fork+0x48/0x60 [ 48.486401][ T3375] ret_from_fork_asm+0x11/0x20 [ 48.492999][ T3375] INITIAL USE at: [ 48.497072][ T3375] lock_acquire+0xd2/0x260 [ 48.503480][ T3375] _raw_spin_lock_irqsave+0x5e/0x90 [ 48.510836][ T3375] input_inject_event+0x7a/0x290 [ 48.517506][ T3375] kbd_update_leds_helper+0x5e/0xb0 [ 48.524423][ T3375] kbd_start+0x52/0x70 [ 48.530482][ T3375] input_register_handle+0x140/0x160 [ 48.537768][ T3375] kbd_connect+0x49/0xb0 [ 48.543778][ T3375] input_register_device+0x758/0x8a0 [ 48.550809][ T3375] atkbd_connect+0x3bd/0x480 [ 48.557319][ T3375] serio_driver_probe+0x3b/0x50 [ 48.564000][ T3375] really_probe+0x1a0/0x660 [ 48.570279][ T3375] __driver_probe_device+0xdf/0x1e0 [ 48.577330][ T3375] driver_probe_device+0x2e/0x240 [ 48.584432][ T3375] __driver_attach+0x256/0x3a0 [ 48.591170][ T3375] bus_for_each_dev+0x148/0x1b0 [ 48.598092][ T3375] serio_handle_event+0xd8/0x4f0 [ 48.605016][ T3375] process_one_work+0x28b/0x680 [ 48.611689][ T3375] worker_thread+0x3b6/0x550 [ 48.618331][ T3375] kthread+0x11b/0x140 [ 48.624401][ T3375] ret_from_fork+0x48/0x60 [ 48.630645][ T3375] ret_from_fork_asm+0x11/0x20 [ 48.638127][ T3375] } [ 48.641175][ T3375] ... key at: [] input_allocate_device.__key.6+0x0/0x10 [ 48.650982][ T3375] -> (&client->buffer_lock){....}-{2:2} { [ 48.657276][ T3375] INITIAL USE at: [ 48.661352][ T3375] lock_acquire+0xd2/0x260 [ 48.667525][ T3375] _raw_spin_lock+0x2b/0x40 [ 48.674642][ T3375] evdev_pass_values+0x81/0x3d0 [ 48.681306][ T3375] evdev_events+0x127/0x230 [ 48.687537][ T3375] input_pass_values+0x2dd/0x6f0 [ 48.694135][ T3375] input_event_dispose+0x159/0x1d0 [ 48.701377][ T3375] input_inject_event+0x181/0x290 [ 48.708031][ T3375] evdev_write+0x1db/0x260 [ 48.714267][ T3375] vfs_write+0x16b/0x4d0 [ 48.720064][ T3375] ksys_write+0xc6/0x170 [ 48.727632][ T3375] do_syscall_64+0x41/0x90 [ 48.734385][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 48.742101][ T3375] } [ 48.744662][ T3375] ... key at: [] evdev_open.__key.14+0x0/0x10 [ 48.753420][ T3375] ... acquired at: [ 48.757321][ T3375] _raw_spin_lock+0x2b/0x40 [ 48.762133][ T3375] evdev_pass_values+0x81/0x3d0 [ 48.767246][ T3375] evdev_events+0x127/0x230 [ 48.772032][ T3375] input_pass_values+0x2dd/0x6f0 [ 48.777578][ T3375] input_event_dispose+0x159/0x1d0 [ 48.783330][ T3375] input_inject_event+0x181/0x290 [ 48.788705][ T3375] evdev_write+0x1db/0x260 [ 48.793365][ T3375] vfs_write+0x16b/0x4d0 [ 48.797852][ T3375] ksys_write+0xc6/0x170 [ 48.802763][ T3375] do_syscall_64+0x41/0x90 [ 48.808120][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 48.815396][ T3375] [ 48.817963][ T3375] [ 48.817963][ T3375] the dependencies between the lock to be acquired [ 48.817967][ T3375] and HARDIRQ-irq-unsafe lock: [ 48.832993][ T3375] -> (tasklist_lock){.+.+}-{2:2} { [ 48.841159][ T3375] HARDIRQ-ON-R at: [ 48.847643][ T3375] lock_acquire+0xd2/0x260 [ 48.855239][ T3375] _raw_read_lock+0x33/0x40 [ 48.862424][ T3375] do_wait+0xf8/0x4c0 [ 48.869002][ T3375] kernel_wait+0xa2/0x100 [ 48.875686][ T3375] call_usermodehelper_exec_work+0x93/0x120 [ 48.885024][ T3375] process_one_work+0x28b/0x680 [ 48.892349][ T3375] worker_thread+0x3b6/0x550 [ 48.899188][ T3375] kthread+0x11b/0x140 [ 48.905254][ T3375] ret_from_fork+0x48/0x60 [ 48.911943][ T3375] ret_from_fork_asm+0x11/0x20 [ 48.918697][ T3375] SOFTIRQ-ON-R at: [ 48.922830][ T3375] lock_acquire+0xd2/0x260 [ 48.929499][ T3375] _raw_read_lock+0x33/0x40 [ 48.936160][ T3375] do_wait+0xf8/0x4c0 [ 48.942270][ T3375] kernel_wait+0xa2/0x100 [ 48.948684][ T3375] call_usermodehelper_exec_work+0x93/0x120 [ 48.956675][ T3375] process_one_work+0x28b/0x680 [ 48.963748][ T3375] worker_thread+0x3b6/0x550 [ 48.970357][ T3375] kthread+0x11b/0x140 [ 48.976588][ T3375] ret_from_fork+0x48/0x60 [ 48.983076][ T3375] ret_from_fork_asm+0x11/0x20 [ 48.990908][ T3375] INITIAL USE at: [ 48.994964][ T3375] lock_acquire+0xd2/0x260 [ 49.001616][ T3375] _raw_write_lock_irq+0x59/0x80 [ 49.008635][ T3375] copy_process+0x1060/0x1aa0 [ 49.015657][ T3375] kernel_clone+0x189/0x4e0 [ 49.022517][ T3375] user_mode_thread+0xce/0x100 [ 49.029540][ T3375] rest_init+0x23/0x250 [ 49.035902][ T3375] arch_call_rest_init+0x9/0x10 [ 49.042945][ T3375] start_kernel+0x3b1/0x3c0 [ 49.049757][ T3375] x86_64_start_reservations+0x2a/0x30 [ 49.057391][ T3375] x86_64_start_kernel+0x94/0xa0 [ 49.064679][ T3375] secondary_startup_64_no_verify+0x167/0x16b [ 49.073040][ T3375] INITIAL READ USE at: [ 49.077788][ T3375] lock_acquire+0xd2/0x260 [ 49.084798][ T3375] _raw_read_lock+0x33/0x40 [ 49.092407][ T3375] do_wait+0xf8/0x4c0 [ 49.099074][ T3375] kernel_wait+0xa2/0x100 [ 49.106001][ T3375] call_usermodehelper_exec_work+0x93/0x120 [ 49.114777][ T3375] process_one_work+0x28b/0x680 [ 49.122254][ T3375] worker_thread+0x3b6/0x550 [ 49.129615][ T3375] kthread+0x11b/0x140 [ 49.136802][ T3375] ret_from_fork+0x48/0x60 [ 49.144119][ T3375] ret_from_fork_asm+0x11/0x20 [ 49.152091][ T3375] } [ 49.154759][ T3375] ... key at: [] tasklist_lock+0x18/0x40 [ 49.162950][ T3375] ... acquired at: [ 49.167186][ T3375] _raw_read_lock+0x33/0x40 [ 49.172069][ T3375] send_sigio+0x9b/0x250 [ 49.176566][ T3375] kill_fasync+0x17d/0x340 [ 49.181213][ T3375] lease_break_callback+0x26/0x30 [ 49.186566][ T3375] __break_lease+0x236/0x9c0 [ 49.191676][ T3375] do_dentry_open+0x3f9/0x830 [ 49.196993][ T3375] path_openat+0x1240/0x16a0 [ 49.201778][ T3375] do_filp_open+0xc9/0x1b0 [ 49.206720][ T3375] do_sys_openat2+0xaa/0x110 [ 49.212107][ T3375] __x64_sys_open+0xcb/0xf0 [ 49.218142][ T3375] do_syscall_64+0x41/0x90 [ 49.224121][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.230703][ T3375] [ 49.233338][ T3375] -> (&f->f_owner.lock){....}-{2:2} { [ 49.239083][ T3375] INITIAL USE at: [ 49.243750][ T3375] lock_acquire+0xd2/0x260 [ 49.250694][ T3375] _raw_write_lock_irq+0x59/0x80 [ 49.258875][ T3375] f_modown+0x29/0x130 [ 49.266220][ T3375] do_fcntl+0xc4e/0xd00 [ 49.273527][ T3375] __se_sys_fcntl+0xb8/0x170 [ 49.280040][ T3375] do_syscall_64+0x41/0x90 [ 49.286389][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.294753][ T3375] INITIAL READ USE at: [ 49.299639][ T3375] lock_acquire+0xd2/0x260 [ 49.306675][ T3375] _raw_read_lock_irqsave+0x66/0xa0 [ 49.314954][ T3375] send_sigio+0x29/0x250 [ 49.322235][ T3375] kill_fasync+0x17d/0x340 [ 49.330818][ T3375] lease_break_callback+0x26/0x30 [ 49.340288][ T3375] __break_lease+0x236/0x9c0 [ 49.348112][ T3375] do_dentry_open+0x3f9/0x830 [ 49.356775][ T3375] path_openat+0x1240/0x16a0 [ 49.364137][ T3375] do_filp_open+0xc9/0x1b0 [ 49.371006][ T3375] do_sys_openat2+0xaa/0x110 [ 49.378845][ T3375] __x64_sys_open+0xcb/0xf0 [ 49.386136][ T3375] do_syscall_64+0x41/0x90 [ 49.392985][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.401383][ T3375] } [ 49.404036][ T3375] ... key at: [] init_file.__key+0x0/0x10 [ 49.412328][ T3375] ... acquired at: [ 49.416303][ T3375] _raw_read_lock_irqsave+0x66/0xa0 [ 49.422006][ T3375] send_sigio+0x29/0x250 [ 49.426691][ T3375] kill_fasync+0x17d/0x340 [ 49.431294][ T3375] lease_break_callback+0x26/0x30 [ 49.436581][ T3375] __break_lease+0x236/0x9c0 [ 49.441433][ T3375] do_dentry_open+0x3f9/0x830 [ 49.446352][ T3375] path_openat+0x1240/0x16a0 [ 49.451306][ T3375] do_filp_open+0xc9/0x1b0 [ 49.456238][ T3375] do_sys_openat2+0xaa/0x110 [ 49.461172][ T3375] __x64_sys_open+0xcb/0xf0 [ 49.465993][ T3375] do_syscall_64+0x41/0x90 [ 49.470837][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.477014][ T3375] [ 49.479435][ T3375] -> (&new->fa_lock){....}-{2:2} { [ 49.484627][ T3375] INITIAL READ USE at: [ 49.489108][ T3375] lock_acquire+0xd2/0x260 [ 49.495573][ T3375] _raw_read_lock_irqsave+0x66/0xa0 [ 49.502934][ T3375] kill_fasync+0x12b/0x340 [ 49.509430][ T3375] lease_break_callback+0x26/0x30 [ 49.516712][ T3375] __break_lease+0x236/0x9c0 [ 49.523286][ T3375] do_dentry_open+0x3f9/0x830 [ 49.530132][ T3375] path_openat+0x1240/0x16a0 [ 49.536709][ T3375] do_filp_open+0xc9/0x1b0 [ 49.543274][ T3375] do_sys_openat2+0xaa/0x110 [ 49.550060][ T3375] __x64_sys_open+0xcb/0xf0 [ 49.556701][ T3375] do_syscall_64+0x41/0x90 [ 49.563192][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.571250][ T3375] } [ 49.573879][ T3375] ... key at: [] fasync_insert_entry.__key+0x0/0x10 [ 49.582542][ T3375] ... acquired at: [ 49.586379][ T3375] _raw_read_lock_irqsave+0x66/0xa0 [ 49.591738][ T3375] kill_fasync+0x12b/0x340 [ 49.596378][ T3375] evdev_pass_values+0x2e4/0x3d0 [ 49.602002][ T3375] evdev_events+0x127/0x230 [ 49.606788][ T3375] input_pass_values+0x2dd/0x6f0 [ 49.611911][ T3375] input_event_dispose+0x159/0x1d0 [ 49.617300][ T3375] input_inject_event+0x181/0x290 [ 49.622533][ T3375] evdev_write+0x1db/0x260 [ 49.627538][ T3375] vfs_write+0x16b/0x4d0 [ 49.632020][ T3375] ksys_write+0xc6/0x170 [ 49.636591][ T3375] do_syscall_64+0x41/0x90 [ 49.641170][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.647210][ T3375] [ 49.649565][ T3375] [ 49.649565][ T3375] stack backtrace: [ 49.655467][ T3375] CPU: 1 PID: 3375 Comm: syz-executor.0 Not tainted 6.6.0-rc1-syzkaller #0 [ 49.664702][ T3375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 49.675781][ T3375] Call Trace: [ 49.679048][ T3375] [ 49.681982][ T3375] dump_stack_lvl+0xfe/0x190 [ 49.686739][ T3375] __lock_acquire+0x725/0x26a0 [ 49.691674][ T3375] ? kill_fasync+0x12b/0x340 [ 49.696252][ T3375] lock_acquire+0xd2/0x260 [ 49.700919][ T3375] ? kill_fasync+0x12b/0x340 [ 49.706044][ T3375] _raw_read_lock_irqsave+0x66/0xa0 [ 49.712001][ T3375] ? kill_fasync+0x12b/0x340 [ 49.717433][ T3375] kill_fasync+0x12b/0x340 [ 49.722881][ T3375] evdev_pass_values+0x2e4/0x3d0 [ 49.728714][ T3375] ? evdev_pass_values+0x1c1/0x3d0 [ 49.734002][ T3375] evdev_events+0x127/0x230 [ 49.738683][ T3375] ? evdev_event+0x70/0x70 [ 49.743182][ T3375] input_pass_values+0x2dd/0x6f0 [ 49.748381][ T3375] input_event_dispose+0x159/0x1d0 [ 49.753702][ T3375] input_inject_event+0x181/0x290 [ 49.759417][ T3375] evdev_write+0x1db/0x260 [ 49.764121][ T3375] ? evdev_read+0x510/0x510 [ 49.768825][ T3375] vfs_write+0x16b/0x4d0 [ 49.773211][ T3375] ? __fget_files+0x2a3/0x2f0 [ 49.777976][ T3375] ksys_write+0xc6/0x170 [ 49.782478][ T3375] do_syscall_64+0x41/0x90 [ 49.786985][ T3375] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.793041][ T3375] RIP: 0033:0x7fee25684b29 [ 49.797691][ T3375] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 49.819451][ T3375] RSP: 002b:00007fee252070c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 49.828122][ T3375] RAX: ffffffffffffffda RBX: 00007fee257a3f80 RCX: 00007fee25684b29 [ 49.836686][ T3375] RDX: 0000000000000079 RSI: 000000002004d000 RDI: 0000000000000005 [ 49.844903][ T3375] RBP: 00007fee256d047a R08: 0000000000000000 R09: 0000000000000000 [ 49.853130][ T3375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 49.861167][ T3375] R13: 0000000000000006 R14: 00007fee257a3f80 R15: 00007ffd97df37d8 [ 49.869127][ T3375] 2023/09/14 20:59:56 executed programs: 18 2023/09/14 21:00:01 executed programs: 1232