DUID 00:04:68:cd:ba:d8:04:98:55:08:1d:08:ab:8f:2f:6c:bb:03
forked to background, child pid 3176
[   26.723063][ T3177] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.732981][ T3177] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.10.22' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   48.271128][ T3592] FAULT_INJECTION: forcing a failure.
[   48.271128][ T3592] name failslab, interval 1, probability 0, space 0, times 1
[   48.271219][ T3592] 
[   48.271223][ T3592] ======================================================
[   48.271226][ T3592] WARNING: possible circular locking dependency detected
[   48.271230][ T3592] 5.18.0-rc7-syzkaller-00181-geaea45fc0e7b #0 Not tainted
[   48.271237][ T3592] ------------------------------------------------------
[   48.271240][ T3592] syz-executor155/3592 is trying to acquire lock:
[   48.271246][ T3592] ffffffff8bc90700 (console_owner){....}-{0:0}, at: console_unlock+0x35e/0xdd0
[   48.271297][ T3592] 
[   48.271297][ T3592] but task is already holding lock:
[   48.271300][ T3592] ffff88807dc0e958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   48.271329][ T3592] 
[   48.271329][ T3592] which lock already depends on the new lock.
[   48.271329][ T3592] 
[   48.271332][ T3592] 
[   48.271332][ T3592] the existing dependency chain (in reverse order) is:
[   48.271336][ T3592] 
[   48.271336][ T3592] -> #2 (&port->lock){-.-.}-{2:2}:
[   48.271350][ T3592]        _raw_spin_lock_irqsave+0x39/0x50
[   48.271368][ T3592]        tty_port_tty_get+0x1f/0x100
[   48.271381][ T3592]        tty_port_default_wakeup+0x11/0x40
[   48.271394][ T3592]        serial8250_tx_chars+0x4f3/0xa50
[   48.271409][ T3592]        serial8250_handle_irq.part.0+0x328/0x3d0
[   48.271424][ T3592]        serial8250_default_handle_irq+0xb2/0x220
[   48.271439][ T3592]        serial8250_interrupt+0xfd/0x200
[   48.271468][ T3592]        __handle_irq_event_percpu+0x22b/0x880
[   48.271480][ T3592]        handle_irq_event+0xa7/0x1e0
[   48.271490][ T3592]        handle_edge_irq+0x25f/0xd00
[   48.271503][ T3592]        __common_interrupt+0x9d/0x210
[   48.271515][ T3592]        common_interrupt+0xa4/0xc0
[   48.271526][ T3592]        asm_common_interrupt+0x1e/0x40
[   48.271539][ T3592]        acpi_idle_do_entry+0x1c6/0x250
[   48.271550][ T3592]        acpi_idle_enter+0x361/0x500
[   48.271567][ T3592]        cpuidle_enter_state+0x1b1/0xc80
[   48.271579][ T3592]        cpuidle_enter+0x4a/0xa0
[   48.271589][ T3592]        do_idle+0x3e8/0x590
[   48.271599][ T3592]        cpu_startup_entry+0x14/0x20
[   48.271609][ T3592]        rest_init+0x169/0x270
[   48.271621][ T3592]        arch_call_rest_init+0xf/0x14
[   48.271633][ T3592]        start_kernel+0x47f/0x4a0
[   48.271643][ T3592]        secondary_startup_64_no_verify+0xc3/0xcb
[   48.271658][ T3592] 
[   48.271658][ T3592] -> #1 (&port_lock_key){-.-.}-{2:2}:
[   48.271674][ T3592]        _raw_spin_lock_irqsave+0x39/0x50
[   48.271686][ T3592]        serial8250_console_write+0x9cb/0xc30
[   48.271701][ T3592]        console_unlock+0x9bc/0xdd0
[   48.271714][ T3592]        vprintk_emit+0x1b4/0x5f0
[   48.271727][ T3592]        vprintk+0x80/0x90
[   48.271739][ T3592]        _printk+0xba/0xed
[   48.271752][ T3592]        register_console+0x410/0x7c0
[   48.271765][ T3592]        univ8250_console_init+0x3a/0x46
[   48.271780][ T3592]        console_init+0x3c1/0x58d
[   48.271795][ T3592]        start_kernel+0x30b/0x4a0
[   48.271805][ T3592]        secondary_startup_64_no_verify+0xc3/0xcb
[   48.271819][ T3592] 
[   48.271819][ T3592] -> #0 (console_owner){....}-{0:0}:
[   48.271833][ T3592]        __lock_acquire+0x2ac6/0x56c0
[   48.271847][ T3592]        lock_acquire+0x1ab/0x510
[   48.271859][ T3592]        console_unlock+0x3b1/0xdd0
[   48.271872][ T3592]        vprintk_emit+0x1b4/0x5f0
[   48.271885][ T3592]        vprintk+0x80/0x90
[   48.271898][ T3592]        _printk+0xba/0xed
[   48.271909][ T3592]        should_fail+0x472/0x5a0
[   48.271922][ T3592]        should_failslab+0x5/0x10
[   48.271934][ T3592]        __kmalloc+0x7e/0x350
[   48.271944][ T3592]        tty_buffer_alloc+0x23f/0x2a0
[   48.271956][ T3592]        __tty_buffer_request_room+0x156/0x2a0
[   48.271968][ T3592]        tty_insert_flip_string_fixed_flag+0x8c/0x240
[   48.271981][ T3592]        pty_write+0x11c/0x1e0
[   48.271993][ T3592]        n_tty_write+0xa7a/0xfc0
[   48.272003][ T3592]        file_tty_write.constprop.0+0x520/0x900
[   48.272019][ T3592]        new_sync_write+0x38a/0x560
[   48.272029][ T3592]        vfs_write+0x7c0/0xac0
[   48.272039][ T3592]        ksys_write+0x127/0x250
[   48.272049][ T3592]        __do_fast_syscall_32+0x65/0xf0
[   48.272063][ T3592]        do_fast_syscall_32+0x2f/0x70
[   48.272077][ T3592]        entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   48.272092][ T3592] 
[   48.272092][ T3592] other info that might help us debug this:
[   48.272092][ T3592] 
[   48.272095][ T3592] Chain exists of:
[   48.272095][ T3592]   console_owner --> &port_lock_key --> &port->lock
[   48.272095][ T3592] 
[   48.272111][ T3592]  Possible unsafe locking scenario:
[   48.272111][ T3592] 
[   48.272113][ T3592]        CPU0                    CPU1
[   48.272115][ T3592]        ----                    ----
[   48.272118][ T3592]   lock(&port->lock);
[   48.272123][ T3592]                                lock(&port_lock_key);
[   48.272130][ T3592]                                lock(&port->lock);
[   48.272137][ T3592]   lock(console_owner);
[   48.272143][ T3592] 
[   48.272143][ T3592]  *** DEADLOCK ***
[   48.272143][ T3592] 
[   48.272144][ T3592] 6 locks held by syz-executor155/3592:
[   48.272152][ T3592]  #0: ffff88801dba4098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[   48.272179][ T3592]  #1: ffff88801dba4130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x299/0x900
[   48.272211][ T3592]  #2: ffff88801dba42e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1bf/0xfc0
[   48.272237][ T3592]  #3: ffffc90001c08378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0xa47/0xfc0
[   48.272268][ T3592]  #4: ffff88807dc0e958 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   48.272296][ T3592]  #5: ffffffff8bd70b40 (console_lock){+.+.}-{0:0}, at: vprintk+0x80/0x90
[   48.272325][ T3592] 
[   48.272325][ T3592] stack backtrace:
[   48.272328][ T3592] CPU: 1 PID: 3592 Comm: syz-executor155 Not tainted 5.18.0-rc7-syzkaller-00181-geaea45fc0e7b #0
[   48.272342][ T3592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   48.272349][ T3592] Call Trace:
[   48.272353][ T3592]  <TASK>
[   48.272358][ T3592]  dump_stack_lvl+0xcd/0x134
[   48.272374][ T3592]  check_noncircular+0x25f/0x2e0
[   48.272388][ T3592]  ? filter_irq_stacks+0x90/0x90
[   48.272405][ T3592]  ? print_circular_bug+0x1e0/0x1e0
[   48.272419][ T3592]  ? pointer+0x950/0x950
[   48.272433][ T3592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   48.272448][ T3592]  ? add_lock_to_list.constprop.0+0x185/0x370
[   48.272464][ T3592]  __lock_acquire+0x2ac6/0x56c0
[   48.272481][ T3592]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   48.272496][ T3592]  ? msg_add_ext_text+0x1d0/0x1d0
[   48.272512][ T3592]  lock_acquire+0x1ab/0x510
[   48.272526][ T3592]  ? console_unlock+0x35e/0xdd0
[   48.272540][ T3592]  ? lock_release+0x720/0x720
[   48.272554][ T3592]  ? lock_downgrade+0x6e0/0x6e0
[   48.272568][ T3592]  ? do_raw_spin_lock+0x120/0x2a0
[   48.272583][ T3592]  ? rwlock_bug.part.0+0x90/0x90
[   48.272598][ T3592]  ? prb_final_commit+0x64/0xa0
[   48.272614][ T3592]  console_unlock+0x3b1/0xdd0
[   48.272628][ T3592]  ? console_unlock+0x35e/0xdd0
[   48.272643][ T3592]  ? devkmsg_read+0x730/0x730
[   48.272657][ T3592]  ? lock_release+0x720/0x720
[   48.272673][ T3592]  ? vprintk+0x80/0x90
[   48.272688][ T3592]  vprintk_emit+0x1b4/0x5f0
[   48.272702][ T3592]  ? add_lock_to_list.constprop.0+0x185/0x370
[   48.272717][ T3592]  vprintk+0x80/0x90
[   48.272731][ T3592]  _printk+0xba/0xed
[   48.272743][ T3592]  ? record_print_text.cold+0x16/0x16
[   48.272759][ T3592]  ? ___ratelimit+0x222/0x4b0
[   48.272771][ T3592]  should_fail+0x472/0x5a0
[   48.272784][ T3592]  should_failslab+0x5/0x10
[   48.272795][ T3592]  __kmalloc+0x7e/0x350
[   48.272806][ T3592]  ? tty_buffer_alloc+0x23f/0x2a0
[   48.272819][ T3592]  tty_buffer_alloc+0x23f/0x2a0
[   48.272832][ T3592]  __tty_buffer_request_room+0x156/0x2a0
[   48.272846][ T3592]  tty_insert_flip_string_fixed_flag+0x8c/0x240
[   48.272863][ T3592]  pty_write+0x11c/0x1e0
[   48.272877][ T3592]  n_tty_write+0xa7a/0xfc0
[   48.272888][ T3592]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   48.272900][ T3592]  ? _copy_from_iter+0x12b/0x15a0
[   48.272915][ T3592]  ? n_tty_check_unthrottle+0x440/0x440
[   48.272927][ T3592]  ? rcu_read_lock_sched_held+0x3a/0x70
[   48.272943][ T3592]  ? __init_waitqueue_head+0xd0/0xd0
[   48.272957][ T3592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   48.272970][ T3592]  ? __phys_addr+0xc4/0x140
[   48.272985][ T3592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   48.272997][ T3592]  ? __phys_addr_symbol+0x2c/0x70
[   48.273012][ T3592]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   48.273023][ T3592]  ? __check_object_size+0x16c/0x4f0
[   48.273038][ T3592]  file_tty_write.constprop.0+0x520/0x900
[   48.273054][ T3592]  ? n_tty_check_unthrottle+0x440/0x440
[   48.273068][ T3592]  new_sync_write+0x38a/0x560
[   48.273079][ T3592]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   48.273094][ T3592]  ? new_sync_read+0x5f0/0x5f0
[   48.273105][ T3592]  ? find_held_lock+0x2d/0x110
[   48.273121][ T3592]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   48.273133][ T3592]  ? security_file_permission+0xab/0xd0
[   48.273149][ T3592]  vfs_write+0x7c0/0xac0
[   48.273161][ T3592]  ksys_write+0x127/0x250
[   48.273172][ T3592]  ? __ia32_sys_read+0xb0/0xb0
[   48.273185][ T3592]  ? syscall_enter_from_user_mode_prepare+0x17/0x40
[   48.273200][ T3592]  __do_fast_syscall_32+0x65/0xf0
[   48.273215][ T3592]  do_fast_syscall_32+0x2f/0x70
[   48.273230][ T3592]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   48.273247][ T3592] RIP: 0023:0xf7e9f549
[   48.273260][ T3592] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   48.273272][ T3592] RSP: 002b:00000000ffc650ec EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   48.273284][ T3592] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020c34fff
[   48.273292][ T3592] RDX: 00000000ffffff0b RSI: 0000000000000035 RDI: 00000000ffc65204
[   48.273299][ T3592] RBP: 00000000ffc6520c R08: 0000000000000000 R09: 0000000000000000
[   48.273307][ T3592] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   48.273314][ T3592] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.273324][ T3592]  </TASK>
[   49.241857][ T3592] CPU: 1 PID: 3592 Comm: syz-executor155 Not tainted 5.18.0-rc7-syzkaller-00181-geaea45fc0e7b #0
[   49.252333][ T3592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   49.262366][ T3592] Call Trace:
[   49.265624][ T3592]  <TASK>
[   49.268537][ T3592]  dump_stack_lvl+0xcd/0x134
[   49.273118][ T3592]  should_fail.cold+0x5/0xa
[   49.277600][ T3592]  should_failslab+0x5/0x10
[   49.282088][ T3592]  __kmalloc+0x7e/0x350
[   49.286220][ T3592]  ? tty_buffer_alloc+0x23f/0x2a0
[   49.291223][ T3592]  tty_buffer_alloc+0x23f/0x2a0
[   49.296054][ T3592]  __tty_buffer_request_room+0x156/0x2a0
[   49.301670][ T3592]  tty_insert_flip_string_fixed_flag+0x8c/0x240
[   49.307893][ T3592]  pty_write+0x11c/0x1e0
[   49.312115][ T3592]  n_tty_write+0xa7a/0xfc0
[   49.316510][ T3592]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   49.322208][ T3592]  ? _copy_from_iter+0x12b/0x15a0
[   49.327215][ T3592]  ? n_tty_check_unthrottle+0x440/0x440
[   49.332738][ T3592]  ? rcu_read_lock_sched_held+0x3a/0x70
[   49.338267][ T3592]  ? __init_waitqueue_head+0xd0/0xd0
[   49.343537][ T3592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   49.349758][ T3592]  ? __phys_addr+0xc4/0x140
[   49.354242][ T3592]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   49.360463][ T3592]  ? __phys_addr_symbol+0x2c/0x70
[   49.365469][ T3592]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   49.371164][ T3592]  ? __check_object_size+0x16c/0x4f0
[   49.376430][ T3592]  file_tty_write.constprop.0+0x520/0x900
[   49.382132][ T3592]  ? n_tty_check_unthrottle+0x440/0x440
[   49.387664][ T3592]  new_sync_write+0x38a/0x560
[   49.392319][ T3592]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   49.398287][ T3592]  ? new_sync_read+0x5f0/0x5f0
[   49.403035][ T3592]  ? find_held_lock+0x2d/0x110
[   49.407779][ T3592]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   49.413999][ T3592]  ? security_file_permission+0xab/0xd0
[   49.419526][ T3592]  vfs_write+0x7c0/0xac0
[   49.423751][ T3592]  ksys_write+0x127/0x250
[   49.428059][ T3592]  ? __ia32_sys_read+0xb0/0xb0
[   49.432801][ T3592]  ? syscall_enter_from_user_mode_prepare+0x17/0x40
[   49.439368][ T3592]  __do_fast_syscall_32+0x65/0xf0
[   49.444374][ T3592]  do_fast_syscall_32+0x2f/0x70
[   49.449207][ T3592]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   49.455521][ T3592] RIP: 0023:0xf7e9f549
[   49.459568][ T3592] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   49.479155][ T3592] RSP: 002b:00000000ffc650ec EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   49.487546][ T3592] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020c34fff
[   49.495496][ T3592] RDX: 00000000ffffff0b RSI: 0000000000000035 RDI: 00000000ffc65204
[   49.503444][ T3592] RBP: 00000000ffc6520c R08: 0000000000000000 R09: 0000000000000000
[   49.511393][ T3592] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   49.519341][ T3592] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   49.527473]