Warning: Permanently added '10.128.1.160' (ED25519) to the list of known hosts.
2024/10/14 08:16:00 ignoring optional flag "sandboxArg"="0"
2024/10/14 08:16:00 ignoring optional flag "type"="gce"
2024/10/14 08:16:00 parsed 1 programs
2024/10/14 08:16:02 executed programs: 0
[   55.839479][ T2429] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   56.496260][ T2435] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   56.503936][ T2435] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   56.511696][ T2435] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   56.519480][ T2435] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   58.461252][   T72] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.469314][   T72] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.477912][   T58] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   58.488862][ T2239] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   58.496822][ T2239] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   58.504664][ T2239] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   58.524974][ T3118] input: syz1 as /devices/virtual/input/input5
[   58.532909][ T3118] 
[   58.535269][ T3118] ======================================================
[   58.542268][ T3118] WARNING: possible circular locking dependency detected
[   58.549380][ T3118] 5.15.167-syzkaller #0 Not tainted
[   58.554548][ T3118] ------------------------------------------------------
[   58.561539][ T3118] syz-executor.0/3118 is trying to acquire lock:
[   58.568010][ T3118] ffff88817b58a470 (&newdev->mutex){+.+.}-{3:3}, at: uinput_request_submit.part.0+0x1f/0x130
[   58.578158][ T3118] 
[   58.578158][ T3118] but task is already holding lock:
[   58.585604][ T3118] ffff88817b58a0b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   58.594534][ T3118] 
[   58.594534][ T3118] which lock already depends on the new lock.
[   58.594534][ T3118] 
[   58.605081][ T3118] 
[   58.605081][ T3118] the existing dependency chain (in reverse order) is:
[   58.614063][ T3118] 
[   58.614063][ T3118] -> #3 (&ff->mutex){+.+.}-{3:3}:
[   58.621238][ T3118]        __mutex_lock+0x60/0x660
[   58.626153][ T3118]        input_ff_flush+0x37/0xc0
[   58.631151][ T3118]        uinput_dev_flush+0x28/0x40
[   58.636327][ T3118]        input_flush_device+0x58/0x80
[   58.641676][ T3118]        evdev_release+0x192/0x1a0
[   58.646759][ T3118]        __fput+0xff/0x430
[   58.651160][ T3118]        task_work_run+0x73/0xb0
[   58.656187][ T3118]        exit_to_user_mode_prepare+0x20b/0x210
[   58.662335][ T3118]        syscall_exit_to_user_mode+0x19/0x60
[   58.668292][ T3118]        do_syscall_64+0x40/0xb0
[   58.673206][ T3118]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   58.679640][ T3118] 
[   58.679640][ T3118] -> #2 (&dev->mutex#2){+.+.}-{3:3}:
[   58.687187][ T3118]        __mutex_lock+0x60/0x660
[   58.692208][ T3118]        input_register_handle+0x2f/0x1b0
[   58.697916][ T3118]        kbd_connect+0x4a/0xb0
[   58.702673][ T3118]        input_attach_handler+0xd5/0x120
[   58.708288][ T3118]        input_register_device.cold+0xdf/0x1c5
[   58.714419][ T3118]        acpi_button_add+0x2f7/0x600
[   58.719678][ T3118]        acpi_device_probe+0x63/0x220
[   58.725038][ T3118]        really_probe+0x138/0x520
[   58.730063][ T3118]        __driver_probe_device+0x149/0x1c0
[   58.735854][ T3118]        driver_probe_device+0x2a/0x120
[   58.741497][ T3118]        __driver_attach+0x178/0x290
[   58.746801][ T3118]        bus_for_each_dev+0xac/0x100
[   58.752254][ T3118]        bus_add_driver+0x195/0x2c0
[   58.757522][ T3118]        driver_register+0xc4/0x150
[   58.762720][ T3118]        acpi_bus_register_driver+0x52/0x70
[   58.769009][ T3118]        acpi_button_driver_init+0x8b/0x9a
[   58.774804][ T3118]        do_one_initcall+0x8b/0x2f0
[   58.779993][ T3118]        kernel_init_freeable+0x322/0x397
[   58.785710][ T3118]        kernel_init+0x1a/0x1c0
[   58.790569][ T3118]        ret_from_fork+0x1f/0x30
[   58.795484][ T3118] 
[   58.795484][ T3118] -> #1 (input_mutex){+.+.}-{3:3}:
[   58.802833][ T3118]        __mutex_lock+0x60/0x660
[   58.807838][ T3118]        input_register_device.cold+0x57/0x1c5
[   58.813967][ T3118]        uinput_ioctl_handler.isra.0+0x4f0/0xe80
[   58.820294][ T3118]        __x64_sys_ioctl+0xfc/0x140
[   58.825468][ T3118]        do_syscall_64+0x33/0xb0
[   58.830385][ T3118]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   58.836874][ T3118] 
[   58.836874][ T3118] -> #0 (&newdev->mutex){+.+.}-{3:3}:
[   58.844449][ T3118]        __lock_acquire+0x10b6/0x1a40
[   58.849812][ T3118]        lock_acquire+0xbb/0x290
[   58.854850][ T3118]        __mutex_lock+0x60/0x660
[   58.859775][ T3118]        uinput_request_submit.part.0+0x1f/0x130
[   58.866102][ T3118]        uinput_dev_upload_effect+0xa6/0xe0
[   58.871980][ T3118]        input_ff_upload+0x314/0x4b0
[   58.877262][ T3118]        evdev_do_ioctl+0xdc8/0x1040
[   58.882532][ T3118]        evdev_ioctl+0xa2/0xe0
[   58.887292][ T3118]        __x64_sys_ioctl+0xfc/0x140
[   58.892506][ T3118]        do_syscall_64+0x33/0xb0
[   58.897422][ T3118]        entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   58.903992][ T3118] 
[   58.903992][ T3118] other info that might help us debug this:
[   58.903992][ T3118] 
[   58.914202][ T3118] Chain exists of:
[   58.914202][ T3118]   &newdev->mutex --> &dev->mutex#2 --> &ff->mutex
[   58.914202][ T3118] 
[   58.926642][ T3118]  Possible unsafe locking scenario:
[   58.926642][ T3118] 
[   58.934092][ T3118]        CPU0                    CPU1
[   58.939696][ T3118]        ----                    ----
[   58.945037][ T3118]   lock(&ff->mutex);
[   58.948998][ T3118]                                lock(&dev->mutex#2);
[   58.955735][ T3118]                                lock(&ff->mutex);
[   58.962248][ T3118]   lock(&newdev->mutex);
[   58.966550][ T3118] 
[   58.966550][ T3118]  *** DEADLOCK ***
[   58.966550][ T3118] 
[   58.975228][ T3118] 2 locks held by syz-executor.0/3118:
[   58.980666][ T3118]  #0: ffff88817a371910 (&evdev->mutex){+.+.}-{3:3}, at: evdev_ioctl+0x3c/0xe0
[   58.989630][ T3118]  #1: ffff88817b58a0b0 (&ff->mutex){+.+.}-{3:3}, at: input_ff_upload+0x12a/0x4b0
[   58.998820][ T3118] 
[   58.998820][ T3118] stack backtrace:
[   59.004698][ T3118] CPU: 0 PID: 3118 Comm: syz-executor.0 Not tainted 5.15.167-syzkaller #0
[   59.013287][ T3118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   59.023519][ T3118] Call Trace:
[   59.026841][ T3118]  <TASK>
[   59.029752][ T3118]  dump_stack_lvl+0xcd/0x134
[   59.034325][ T3118]  check_noncircular+0xcc/0xe0
[   59.039102][ T3118]  __lock_acquire+0x10b6/0x1a40
[   59.043981][ T3118]  ? __lock_acquire+0xe65/0x1a40
[   59.048914][ T3118]  lock_acquire+0xbb/0x290
[   59.053564][ T3118]  ? uinput_request_submit.part.0+0x1f/0x130
[   59.059528][ T3118]  ? lock_acquire+0xbb/0x290
[   59.064102][ T3118]  ? uinput_request_reserve_slot+0x3c/0x1a0
[   59.069974][ T3118]  __mutex_lock+0x60/0x660
[   59.074454][ T3118]  ? uinput_request_submit.part.0+0x1f/0x130
[   59.080415][ T3118]  ? uinput_request_submit.part.0+0x1f/0x130
[   59.086381][ T3118]  ? do_raw_spin_unlock+0x50/0xa0
[   59.091395][ T3118]  ? _raw_spin_unlock+0x1a/0x30
[   59.096237][ T3118]  ? uinput_request_reserve_slot+0x14a/0x1a0
[   59.102213][ T3118]  uinput_request_submit.part.0+0x1f/0x130
[   59.108018][ T3118]  uinput_dev_upload_effect+0xa6/0xe0
[   59.113368][ T3118]  ? input_ff_upload+0x12a/0x4b0
[   59.118286][ T3118]  ? tomoyo_path_number_perm+0x127/0x2b0
[   59.124193][ T3118]  input_ff_upload+0x314/0x4b0
[   59.128934][ T3118]  evdev_do_ioctl+0xdc8/0x1040
[   59.133681][ T3118]  ? evdev_ioctl+0x3c/0xe0
[   59.138087][ T3118]  evdev_ioctl+0xa2/0xe0
[   59.142304][ T3118]  ? evdev_ioctl_compat+0xe0/0xe0
[   59.147300][ T3118]  __x64_sys_ioctl+0xfc/0x140
[   59.152052][ T3118]  do_syscall_64+0x33/0xb0
[   59.156445][ T3118]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[   59.162322][ T3118] RIP: 0033:0x7fe3188b6ca9
[   59.166710][ T3118] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   59.186288][ T3118] RSP: 002b:00007fe3184380c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   59.194731][ T3118] RAX: ffffffffffffffda RBX: 00007fe3189e4f80 RCX: 00007fe3188b6ca9
[   59.202691][ T3118] RDX: 0000000020000300 RSI: 0000000040304580 RDI: 0000000000000004
[   59.210637][ T3118] RBP: 00007fe31890247e R08: 0000000000000000 R09: 0000000000000000
[   59.218579][ T3118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   59.226748][ T3118] R13: 0000000000000006 R14: 00007fe3189e4f80 R15: 00007ffd46e7b968
[   59.234887][ T3118]  </TASK>
[   59.363183][ T3120] input: syz1 as /devices/virtual/input/input6
[   60.203204][ T3122] input: syz1 as /devices/virtual/input/input7
2024/10/14 08:16:07 executed programs: 3
[   61.042529][ T3124] input: syz1 as /devices/virtual/input/input8
[   61.882606][ T3126] input: syz1 as /devices/virtual/input/input9
[   62.722459][ T3128] input: syz1 as /devices/virtual/input/input10
[   63.561732][ T3130] input: syz1 as /devices/virtual/input/input11
[   64.400860][ T3132] input: syz1 as /devices/virtual/input/input12
[   65.251714][ T3134] input: syz1 as /devices/virtual/input/input13
2024/10/14 08:16:12 executed programs: 9
[   66.090163][ T3136] input: syz1 as /devices/virtual/input/input14
[   66.929479][ T3138] input: syz1 as /devices/virtual/input/input15
[   67.777513][ T3140] input: syz1 as /devices/virtual/input/input16