forked to background, child pid 3174
no interfaces have a carri[   22.157061][ T3175] 8021q: adding VLAN 0 to HW filter on device bond0
er
[   22.171925][ T3175] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.122' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   41.782207][ T3589] FAULT_INJECTION: forcing a failure.
[   41.782207][ T3589] name failslab, interval 1, probability 0, space 0, times 1
[   41.782285][ T3589] 
[   41.782288][ T3589] ======================================================
[   41.782291][ T3589] WARNING: possible circular locking dependency detected
[   41.782295][ T3589] 5.18.0-rc3-syzkaller-00218-g13bc32bad705 #0 Not tainted
[   41.782301][ T3589] ------------------------------------------------------
[   41.782304][ T3589] syz-executor317/3589 is trying to acquire lock:
[   41.782310][ T3589] ffffffff8bc90700 (console_owner){....}-{0:0}, at: console_unlock+0x35e/0xdd0
[   41.782360][ T3589] 
[   41.782360][ T3589] but task is already holding lock:
[   41.782362][ T3589] ffff88801da0c958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   41.782390][ T3589] 
[   41.782390][ T3589] which lock already depends on the new lock.
[   41.782390][ T3589] 
[   41.782393][ T3589] 
[   41.782393][ T3589] the existing dependency chain (in reverse order) is:
[   41.782396][ T3589] 
[   41.782396][ T3589] -> #2 (&port->lock){-.-.}-{2:2}:
[   41.782410][ T3589]        _raw_spin_lock_irqsave+0x39/0x50
[   41.782425][ T3589]        tty_port_tty_get+0x1f/0x100
[   41.782437][ T3589]        tty_port_default_wakeup+0x11/0x40
[   41.782449][ T3589]        serial8250_tx_chars+0x4f3/0xa50
[   41.782463][ T3589]        serial8250_handle_irq.part.0+0x328/0x3d0
[   41.782476][ T3589]        serial8250_default_handle_irq+0xb2/0x220
[   41.782490][ T3589]        serial8250_interrupt+0xfd/0x200
[   41.782502][ T3589]        __handle_irq_event_percpu+0x22b/0x880
[   41.782513][ T3589]        handle_irq_event+0xa7/0x1e0
[   41.782523][ T3589]        handle_edge_irq+0x25f/0xd00
[   41.782535][ T3589]        __common_interrupt+0x9d/0x210
[   41.782546][ T3589]        common_interrupt+0xa4/0xc0
[   41.782559][ T3589]        asm_common_interrupt+0x1e/0x40
[   41.782570][ T3589]        acpi_idle_do_entry+0x1c6/0x250
[   41.782580][ T3589]        acpi_idle_enter+0x361/0x500
[   41.782594][ T3589]        cpuidle_enter_state+0x1b1/0xc80
[   41.782605][ T3589]        cpuidle_enter+0x4a/0xa0
[   41.782615][ T3589]        do_idle+0x3e8/0x590
[   41.782624][ T3589]        cpu_startup_entry+0x14/0x20
[   41.782634][ T3589]        start_kernel+0x47f/0x4a0
[   41.782648][ T3589]        secondary_startup_64_no_verify+0xc3/0xcb
[   41.782662][ T3589] 
[   41.782662][ T3589] -> #1 (&port_lock_key){-.-.}-{2:2}:
[   41.782676][ T3589]        _raw_spin_lock_irqsave+0x39/0x50
[   41.782686][ T3589]        serial8250_console_write+0x91a/0xb70
[   41.782700][ T3589]        console_unlock+0x9bc/0xdd0
[   41.782712][ T3589]        vprintk_emit+0x1b4/0x5f0
[   41.782724][ T3589]        vprintk+0x80/0x90
[   41.782736][ T3589]        _printk+0xba/0xed
[   41.782748][ T3589]        register_console+0x410/0x7c0
[   41.782760][ T3589]        univ8250_console_init+0x3a/0x46
[   41.782772][ T3589]        console_init+0x3c1/0x58d
[   41.782783][ T3589]        start_kernel+0x30b/0x4a0
[   41.782795][ T3589]        secondary_startup_64_no_verify+0xc3/0xcb
[   41.782807][ T3589] 
[   41.782807][ T3589] -> #0 (console_owner){....}-{0:0}:
[   41.782821][ T3589]        __lock_acquire+0x2ac6/0x56c0
[   41.782834][ T3589]        lock_acquire+0x1ab/0x510
[   41.782846][ T3589]        console_unlock+0x3b1/0xdd0
[   41.782858][ T3589]        vprintk_emit+0x1b4/0x5f0
[   41.782870][ T3589]        vprintk+0x80/0x90
[   41.782882][ T3589]        _printk+0xba/0xed
[   41.782892][ T3589]        should_fail+0x472/0x5a0
[   41.782903][ T3589]        should_failslab+0x5/0x10
[   41.782914][ T3589]        __kmalloc+0x7e/0x350
[   41.782924][ T3589]        tty_buffer_alloc+0x23f/0x2a0
[   41.782935][ T3589]        __tty_buffer_request_room+0x156/0x2a0
[   41.782947][ T3589]        tty_insert_flip_string_fixed_flag+0x8c/0x240
[   41.782959][ T3589]        pty_write+0x11c/0x1e0
[   41.782970][ T3589]        n_tty_write+0xa7a/0xfc0
[   41.782980][ T3589]        file_tty_write.constprop.0+0x520/0x900
[   41.782999][ T3589]        new_sync_write+0x38a/0x560
[   41.783010][ T3589]        vfs_write+0x7c0/0xac0
[   41.783019][ T3589]        ksys_write+0x127/0x250
[   41.783029][ T3589]        do_syscall_64+0x35/0xb0
[   41.783040][ T3589]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[   41.783052][ T3589] 
[   41.783052][ T3589] other info that might help us debug this:
[   41.783052][ T3589] 
[   41.783055][ T3589] Chain exists of:
[   41.783055][ T3589]   console_owner --> &port_lock_key --> &port->lock
[   41.783055][ T3589] 
[   41.783070][ T3589]  Possible unsafe locking scenario:
[   41.783070][ T3589] 
[   41.783073][ T3589]        CPU0                    CPU1
[   41.783075][ T3589]        ----                    ----
[   41.783077][ T3589]   lock(&port->lock);
[   41.783083][ T3589]                                lock(&port_lock_key);
[   41.783093][ T3589]                                lock(&port->lock);
[   41.783099][ T3589]   lock(console_owner);
[   41.783105][ T3589] 
[   41.783105][ T3589]  *** DEADLOCK ***
[   41.783105][ T3589] 
[   41.783107][ T3589] 6 locks held by syz-executor317/3589:
[   41.783114][ T3589]  #0: ffff88807ba3e098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[   41.783141][ T3589]  #1: ffff88807ba3e130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x299/0x900
[   41.783170][ T3589]  #2: ffff88807ba3e2e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1bf/0xfc0
[   41.783196][ T3589]  #3: ffffc90001a48378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0xa47/0xfc0
[   41.783221][ T3589]  #4: ffff88801da0c958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   41.783248][ T3589]  #5: ffffffff8bd70b40 (console_lock){+.+.}-{0:0}, at: vprintk+0x80/0x90
[   41.783275][ T3589] 
[   41.783275][ T3589] stack backtrace:
[   41.783278][ T3589] CPU: 1 PID: 3589 Comm: syz-executor317 Not tainted 5.18.0-rc3-syzkaller-00218-g13bc32bad705 #0
[   41.783291][ T3589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   41.783298][ T3589] Call Trace:
[   41.783301][ T3589]  <TASK>
[   41.783305][ T3589]  dump_stack_lvl+0xcd/0x134
[   41.783321][ T3589]  check_noncircular+0x25f/0x2e0
[   41.783334][ T3589]  ? filter_irq_stacks+0x90/0x90
[   41.783348][ T3589]  ? print_circular_bug+0x1e0/0x1e0
[   41.783362][ T3589]  ? pointer+0x950/0x950
[   41.783375][ T3589]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   41.783389][ T3589]  ? add_lock_to_list.constprop.0+0x185/0x370
[   41.783405][ T3589]  __lock_acquire+0x2ac6/0x56c0
[   41.783421][ T3589]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   41.783436][ T3589]  ? msg_add_ext_text+0x1d0/0x1d0
[   41.783451][ T3589]  lock_acquire+0x1ab/0x510
[   41.783465][ T3589]  ? console_unlock+0x35e/0xdd0
[   41.783482][ T3589]  ? lock_release+0x720/0x720
[   41.783498][ T3589]  ? lock_downgrade+0x6e0/0x6e0
[   41.783514][ T3589]  ? do_raw_spin_lock+0x120/0x2a0
[   41.783532][ T3589]  ? rwlock_bug.part.0+0x90/0x90
[   41.783549][ T3589]  ? prb_final_commit+0x64/0xa0
[   41.783567][ T3589]  console_unlock+0x3b1/0xdd0
[   41.783583][ T3589]  ? console_unlock+0x35e/0xdd0
[   41.783597][ T3589]  ? devkmsg_read+0x730/0x730
[   41.783610][ T3589]  ? lock_release+0x720/0x720
[   41.783625][ T3589]  ? vprintk+0x80/0x90
[   41.783639][ T3589]  vprintk_emit+0x1b4/0x5f0
[   41.783652][ T3589]  ? add_lock_to_list.constprop.0+0x185/0x370
[   41.783666][ T3589]  vprintk+0x80/0x90
[   41.783679][ T3589]  _printk+0xba/0xed
[   41.783690][ T3589]  ? record_print_text.cold+0x16/0x16
[   41.783704][ T3589]  ? ___ratelimit+0x222/0x4b0
[   41.783716][ T3589]  should_fail+0x472/0x5a0
[   41.783728][ T3589]  should_failslab+0x5/0x10
[   41.783739][ T3589]  __kmalloc+0x7e/0x350
[   41.783749][ T3589]  ? tty_buffer_alloc+0x23f/0x2a0
[   41.783761][ T3589]  tty_buffer_alloc+0x23f/0x2a0
[   41.783773][ T3589]  __tty_buffer_request_room+0x156/0x2a0
[   41.783787][ T3589]  tty_insert_flip_string_fixed_flag+0x8c/0x240
[   41.783802][ T3589]  pty_write+0x11c/0x1e0
[   41.783815][ T3589]  n_tty_write+0xa7a/0xfc0
[   41.783825][ T3589]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   41.783837][ T3589]  ? _copy_from_iter+0x12b/0x15a0
[   41.783851][ T3589]  ? n_tty_check_unthrottle+0x440/0x440
[   41.783862][ T3589]  ? rcu_read_lock_sched_held+0x3a/0x70
[   41.783876][ T3589]  ? __init_waitqueue_head+0xd0/0xd0
[   41.783889][ T3589]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   41.783901][ T3589]  ? __phys_addr+0xc4/0x140
[   41.783914][ T3589]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   41.783926][ T3589]  ? __phys_addr_symbol+0x2c/0x70
[   41.783939][ T3589]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   41.783950][ T3589]  ? __check_object_size+0x16c/0x4f0
[   41.783963][ T3589]  file_tty_write.constprop.0+0x520/0x900
[   41.783978][ T3589]  ? n_tty_check_unthrottle+0x440/0x440
[   41.783995][ T3589]  new_sync_write+0x38a/0x560
[   41.784005][ T3589]  ? new_sync_read+0x5f0/0x5f0
[   41.784019][ T3589]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   41.784031][ T3589]  ? security_file_permission+0xab/0xd0
[   41.784046][ T3589]  vfs_write+0x7c0/0xac0
[   41.784057][ T3589]  ksys_write+0x127/0x250
[   41.784068][ T3589]  ? __ia32_sys_read+0xb0/0xb0
[   41.784079][ T3589]  ? syscall_enter_from_user_mode+0x21/0x70
[   41.784093][ T3589]  do_syscall_64+0x35/0xb0
[   41.784107][ T3589]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   41.784120][ T3589] RIP: 0033:0x7f9ea11d0679
[   41.784131][ T3589] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   41.784143][ T3589] RSP: 002b:00007ffead5dd528 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   41.784157][ T3589] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f9ea11d0679
[   41.784165][ T3589] RDX: 000000000000092c RSI: 0000000020000140 RDI: 0000000000000003
[   41.784172][ T3589] RBP: 00007ffead5dd530 R08: 0000000000000001 R09: 00007f9ea1190033
[   41.784179][ T3589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[   41.784186][ T3589] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   41.784196][ T3589]  </TASK>
[   42.720819][ T3589] CPU: 1 PID: 3589 Comm: syz-executor317 Not tainted 5.18.0-rc3-syzkaller-00218-g13bc32bad705 #0
[   42.731300][ T3589] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   42.741335][ T3589] Call Trace:
[   42.744595][ T3589]  <TASK>
[   42.747505][ T3589]  dump_stack_lvl+0xcd/0x134
[   42.752085][ T3589]  should_fail.cold+0x5/0xa
[   42.756573][ T3589]  should_failslab+0x5/0x10
[   42.761057][ T3589]  __kmalloc+0x7e/0x350
[   42.765196][ T3589]  ? tty_buffer_alloc+0x23f/0x2a0
[   42.770204][ T3589]  tty_buffer_alloc+0x23f/0x2a0
[   42.775040][ T3589]  __tty_buffer_request_room+0x156/0x2a0
[   42.780675][ T3589]  tty_insert_flip_string_fixed_flag+0x8c/0x240
[   42.786899][ T3589]  pty_write+0x11c/0x1e0
[   42.791124][ T3589]  n_tty_write+0xa7a/0xfc0
[   42.795521][ T3589]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   42.801222][ T3589]  ? _copy_from_iter+0x12b/0x15a0
[   42.806321][ T3589]  ? n_tty_check_unthrottle+0x440/0x440
[   42.811849][ T3589]  ? rcu_read_lock_sched_held+0x3a/0x70
[   42.817381][ T3589]  ? __init_waitqueue_head+0xd0/0xd0
[   42.822658][ T3589]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   42.828889][ T3589]  ? __phys_addr+0xc4/0x140
[   42.833379][ T3589]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   42.839601][ T3589]  ? __phys_addr_symbol+0x2c/0x70
[   42.844611][ T3589]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   42.850312][ T3589]  ? __check_object_size+0x16c/0x4f0
[   42.855582][ T3589]  file_tty_write.constprop.0+0x520/0x900
[   42.861289][ T3589]  ? n_tty_check_unthrottle+0x440/0x440
[   42.866817][ T3589]  new_sync_write+0x38a/0x560
[   42.871482][ T3589]  ? new_sync_read+0x5f0/0x5f0
[   42.876249][ T3589]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   42.882476][ T3589]  ? security_file_permission+0xab/0xd0
[   42.888007][ T3589]  vfs_write+0x7c0/0xac0
[   42.892233][ T3589]  ksys_write+0x127/0x250
[   42.896543][ T3589]  ? __ia32_sys_read+0xb0/0xb0
[   42.901286][ T3589]  ? syscall_enter_from_user_mode+0x21/0x70
[   42.907161][ T3589]  do_syscall_64+0x35/0xb0
[   42.911560][ T3589]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   42.917435][ T3589] RIP: 0033:0x7f9ea11d0679
[   42.921839][ T3589] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   42.941430][ T3589] RSP: 002b:00007ffead5dd528 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   42.949831][ T3589] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f9ea11d0679
[   42.957784][ T3589] RDX: 000000000000092c RSI: 0000000020000140 RDI: 0000000000000003
[   42.965820][ T3589] RBP: 00007ffead5dd530 R08: 0000000000000001 R09: 00007f9ea1190033
[   42.973768][ T3589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[   42.981732][ T3589] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   42.989901][ T3589]  </TASK>