[ 18.032479][ T3640] 8021q: adding VLAN 0 to HW filter on device bond0 [ 18.037109][ T3640] eql: remember to turn off Van-Jacobson compression on your slave devices [ 18.078405][ T136] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 18.081667][ T1532] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.7' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 37.085979][ T3964] FAULT_INJECTION: forcing a failure. [ 37.085979][ T3964] name failslab, interval 1, probability 0, space 0, times 1 [ 37.086045][ T3964] [ 37.086048][ T3964] ====================================================== [ 37.086052][ T3964] WARNING: possible circular locking dependency detected [ 37.086055][ T3964] 5.15.110-syzkaller #0 Not tainted [ 37.086060][ T3964] ------------------------------------------------------ [ 37.086064][ T3964] syz-executor105/3964 is trying to acquire lock: [ 37.086069][ T3964] ffff800014a97d20 (console_owner){....}-{0:0}, at: console_lock_spinning_enable+0x38/0x78 [ 37.086101][ T3964] [ 37.086101][ T3964] but task is already holding lock: [ 37.086103][ T3964] ffff0000c8b86158 (&port->lock){....}-{2:2}, at: tty_insert_flip_string_and_push_buffer+0x48/0x324 [ 37.086127][ T3964] [ 37.086127][ T3964] which lock already depends on the new lock. [ 37.086127][ T3964] [ 37.086131][ T3964] [ 37.086131][ T3964] the existing dependency chain (in reverse order) is: [ 37.086134][ T3964] [ 37.086134][ T3964] -> #2 (&port->lock){....}-{2:2}: [ 37.086147][ T3964] _raw_spin_lock_irqsave+0xc4/0x14c [ 37.086158][ T3964] tty_port_tty_get+0x2c/0x124 [ 37.086167][ T3964] tty_port_default_wakeup+0x20/0x54 [ 37.086175][ T3964] tty_port_tty_wakeup+0x64/0x78 [ 37.086185][ T3964] uart_write_wakeup+0x4c/0x64 [ 37.086193][ T3964] pl011_tx_chars+0xd04/0x157c [ 37.086204][ T3964] pl011_start_tx+0x364/0x8b8 [ 37.086213][ T3964] uart_write+0x62c/0x8b8 [ 37.086221][ T3964] n_tty_write+0xae0/0xf38 [ 37.086229][ T3964] file_tty_write+0x44c/0x758 [ 37.086238][ T3964] redirected_tty_write+0xc4/0x10c [ 37.086248][ T3964] vfs_write+0x87c/0xb3c [ 37.086258][ T3964] ksys_write+0x15c/0x26c [ 37.086266][ T3964] __arm64_sys_write+0x7c/0x90 [ 37.086275][ T3964] invoke_syscall+0x98/0x2b8 [ 37.086285][ T3964] el0_svc_common+0x138/0x258 [ 37.086294][ T3964] do_el0_svc+0x58/0x14c [ 37.086303][ T3964] el0_svc+0x7c/0x1f0 [ 37.086313][ T3964] el0t_64_sync_handler+0x84/0xe4 [ 37.086322][ T3964] el0t_64_sync+0x1a0/0x1a4 [ 37.086330][ T3964] [ 37.086330][ T3964] -> #1 (&port_lock_key){....}-{2:2}: [ 37.086343][ T3964] _raw_spin_lock+0xb0/0x10c [ 37.086351][ T3964] pl011_console_write+0x1a0/0x774 [ 37.086361][ T3964] console_unlock+0xbac/0x1394 [ 37.086370][ T3964] register_console+0x560/0x870 [ 37.086380][ T3964] uart_add_one_port+0xe70/0x1540 [ 37.086388][ T3964] pl011_register_port+0x1a0/0x434 [ 37.086397][ T3964] sbsa_uart_probe+0x474/0x5dc [ 37.086406][ T3964] platform_probe+0x148/0x1c0 [ 37.086416][ T3964] really_probe+0x26c/0xaec [ 37.086424][ T3964] __driver_probe_device+0x194/0x3b4 [ 37.086432][ T3964] driver_probe_device+0x78/0x34c [ 37.086441][ T3964] __device_attach_driver+0x28c/0x4d8 [ 37.086449][ T3964] bus_for_each_drv+0x158/0x1e0 [ 37.086459][ T3964] __device_attach+0x2f0/0x480 [ 37.086467][ T3964] device_initial_probe+0x24/0x34 [ 37.086475][ T3964] bus_probe_device+0xbc/0x1c8 [ 37.086485][ T3964] device_add+0xae0/0xef4 [ 37.086493][ T3964] platform_device_add+0x3f8/0x708 [ 37.086502][ T3964] platform_device_register_full+0x508/0x618 [ 37.086512][ T3964] acpi_create_platform_device+0x4d8/0x650 [ 37.086522][ T3964] acpi_default_enumeration+0x6c/0xdc [ 37.086533][ T3964] acpi_bus_attach+0x88c/0xab4 [ 37.086542][ T3964] acpi_bus_attach+0x314/0xab4 [ 37.086551][ T3964] acpi_bus_attach+0x314/0xab4 [ 37.086560][ T3964] acpi_bus_scan+0xe4/0x20c [ 37.086569][ T3964] acpi_scan_init+0x220/0x71c [ 37.086580][ T3964] acpi_init+0x188/0x24c [ 37.086588][ T3964] do_one_initcall+0x234/0x990 [ 37.086596][ T3964] do_initcall_level+0x154/0x214 [ 37.086606][ T3964] do_initcalls+0x58/0xac [ 37.086614][ T3964] do_basic_setup+0x8c/0xa0 [ 37.086622][ T3964] kernel_init_freeable+0x470/0x650 [ 37.086631][ T3964] kernel_init+0x24/0x294 [ 37.086640][ T3964] ret_from_fork+0x10/0x20 [ 37.086648][ T3964] [ 37.086648][ T3964] -> #0 (console_owner){....}-{0:0}: [ 37.086661][ T3964] __lock_acquire+0x32cc/0x7620 [ 37.086671][ T3964] lock_acquire+0x240/0x77c [ 37.086679][ T3964] console_lock_spinning_enable+0x68/0x78 [ 37.086690][ T3964] console_unlock+0x910/0x1394 [ 37.086699][ T3964] vprintk_emit+0x13c/0x218 [ 37.086708][ T3964] vprintk_default+0xa0/0xe4 [ 37.086717][ T3964] vprintk+0x218/0x2f0 [ 37.086726][ T3964] _printk+0xdc/0x128 [ 37.086734][ T3964] should_fail+0x3e0/0x5cc [ 37.086742][ T3964] __should_failslab+0xbc/0x110 [ 37.086752][ T3964] should_failslab+0x10/0x28 [ 37.086762][ T3964] slab_pre_alloc_hook+0x64/0xe8 [ 37.086772][ T3964] __kmalloc+0xc0/0x4c8 [ 37.086781][ T3964] __tty_buffer_request_room+0x1a4/0x440 [ 37.086790][ T3964] tty_insert_flip_string_and_push_buffer+0x74/0x324 [ 37.086800][ T3964] pty_write+0xb8/0xe8 [ 37.086808][ T3964] n_tty_write+0x4f4/0xf38 [ 37.086816][ T3964] file_tty_write+0x44c/0x758 [ 37.086825][ T3964] tty_write+0x48/0x58 [ 37.086834][ T3964] vfs_write+0x87c/0xb3c [ 37.086842][ T3964] ksys_write+0x15c/0x26c [ 37.086851][ T3964] __arm64_sys_write+0x7c/0x90 [ 37.086872][ T3964] invoke_syscall+0x98/0x2b8 [ 37.086881][ T3964] el0_svc_common+0x138/0x258 [ 37.086891][ T3964] do_el0_svc+0x58/0x14c [ 37.086900][ T3964] el0_svc+0x7c/0x1f0 [ 37.086908][ T3964] el0t_64_sync_handler+0x84/0xe4 [ 37.086917][ T3964] el0t_64_sync+0x1a0/0x1a4 [ 37.086925][ T3964] [ 37.086925][ T3964] other info that might help us debug this: [ 37.086925][ T3964] [ 37.086928][ T3964] Chain exists of: [ 37.086928][ T3964] console_owner --> &port_lock_key --> &port->lock [ 37.086928][ T3964] [ 37.086942][ T3964] Possible unsafe locking scenario: [ 37.086942][ T3964] [ 37.086945][ T3964] CPU0 CPU1 [ 37.086947][ T3964] ---- ---- [ 37.086950][ T3964] lock(&port->lock); [ 37.086955][ T3964] lock(&port_lock_key); [ 37.086961][ T3964] lock(&port->lock); [ 37.086967][ T3964] lock(console_owner); [ 37.086973][ T3964] [ 37.086973][ T3964] *** DEADLOCK *** [ 37.086973][ T3964] [ 37.086975][ T3964] 6 locks held by syz-executor105/3964: [ 37.086981][ T3964] #0: ffff0000c8414098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x40/0x50 [ 37.087003][ T3964] #1: ffff0000c8414130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write+0x1d4/0x758 [ 37.087027][ T3964] #2: ffff0000c84142e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1ec/0xf38 [ 37.087049][ T3964] #3: ffff800018db6378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0x4b0/0xf38 [ 37.087071][ T3964] #4: ffff0000c8b86158 (&port->lock){....}-{2:2}, at: tty_insert_flip_string_and_push_buffer+0x48/0x324 [ 37.087095][ T3964] #5: ffff80001497f820 (console_lock){+.+.}-{0:0}, at: console_trylock_spinning+0x1c/0x280 [ 37.087119][ T3964] [ 37.087119][ T3964] stack backtrace: [ 37.087122][ T3964] CPU: 0 PID: 3964 Comm: syz-executor105 Not tainted 5.15.110-syzkaller #0 [ 37.087132][ T3964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 37.087138][ T3964] Call trace: [ 37.087141][ T3964] dump_backtrace+0x0/0x530 [ 37.087151][ T3964] show_stack+0x2c/0x3c [ 37.087160][ T3964] dump_stack_lvl+0x108/0x170 [ 37.087169][ T3964] dump_stack+0x1c/0x58 [ 37.087177][ T3964] print_circular_bug+0x150/0x1b8 [ 37.087187][ T3964] check_noncircular+0x2cc/0x378 [ 37.087196][ T3964] __lock_acquire+0x32cc/0x7620 [ 37.087205][ T3964] lock_acquire+0x240/0x77c [ 37.087214][ T3964] console_lock_spinning_enable+0x68/0x78 [ 37.087224][ T3964] console_unlock+0x910/0x1394 [ 37.087233][ T3964] vprintk_emit+0x13c/0x218 [ 37.087243][ T3964] vprintk_default+0xa0/0xe4 [ 37.087252][ T3964] vprintk+0x218/0x2f0 [ 37.087261][ T3964] _printk+0xdc/0x128 [ 37.087268][ T3964] should_fail+0x3e0/0x5cc [ 37.087276][ T3964] __should_failslab+0xbc/0x110 [ 37.087285][ T3964] should_failslab+0x10/0x28 [ 37.087294][ T3964] slab_pre_alloc_hook+0x64/0xe8 [ 37.087303][ T3964] __kmalloc+0xc0/0x4c8 [ 37.087312][ T3964] __tty_buffer_request_room+0x1a4/0x440 [ 37.087321][ T3964] tty_insert_flip_string_and_push_buffer+0x74/0x324 [ 37.087331][ T3964] pty_write+0xb8/0xe8 [ 37.087339][ T3964] n_tty_write+0x4f4/0xf38 [ 37.087347][ T3964] file_tty_write+0x44c/0x758 [ 37.087356][ T3964] tty_write+0x48/0x58 [ 37.087365][ T3964] vfs_write+0x87c/0xb3c [ 37.087373][ T3964] ksys_write+0x15c/0x26c [ 37.087382][ T3964] __arm64_sys_write+0x7c/0x90 [ 37.087391][ T3964] invoke_syscall+0x98/0x2b8 [ 37.087401][ T3964] el0_svc_common+0x138/0x258 [ 37.087410][ T3964] do_el0_svc+0x58/0x14c [ 37.087418][ T3964] el0_svc+0x7c/0x1f0 [ 37.087427][ T3964] el0t_64_sync_handler+0x84/0xe4 [ 37.087436][ T3964] el0t_64_sync+0x1a0/0x1a4 [ 37.273296][ T3964] CPU: 0 PID: 3964 Comm: syz-executor105 Not tainted 5.15.110-syzkaller #0 [ 37.275170][ T3964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 37.277312][ T3964] Call trace: [ 37.278097][ T3964] dump_backtrace+0x0/0x530 [ 37.279091][ T3964] show_stack+0x2c/0x3c [ 37.279942][ T3964] dump_stack_lvl+0x108/0x170 [ 37.280969][ T3964] dump_stack+0x1c/0x58 [ 37.281897][ T3964] should_fail+0x400/0x5cc [ 37.282898][ T3964] __should_failslab+0xbc/0x110 [ 37.283945][ T3964] should_failslab+0x10/0x28 [ 37.284952][ T3964] slab_pre_alloc_hook+0x64/0xe8 [ 37.285952][ T3964] __kmalloc+0xc0/0x4c8 [ 37.286831][ T3964] __tty_buffer_request_room+0x1a4/0x440 [ 37.288150][ T3964] tty_insert_flip_string_and_push_buffer+0x74/0x324 [ 37.289527][ T3964] pty_write+0xb8/0xe8 [ 37.290480][ T3964] n_tty_write+0x4f4/0xf38 [ 37.291473][ T3964] file_tty_write+0x44c/0x758 [ 37.292546][ T3964] tty_write+0x48/0x58 [ 37.293372][ T3964] vfs_write+0x87c/0xb3c [ 37.294290][ T3964] ksys_write+0x15c/0x26c [ 37.295323][ T3964] __arm64_sys_write+0x7c/0x90 [ 37.296449][ T3964] invoke_syscall+0x98/0x2b8 [ 37.297475][ T3964] el0_svc_common+0x138/0x258 [ 37.298498][ T3964] do_el0_svc+0x58/0x14c [ 37.299412][ T3964] el0_svc+0x7c/0x1f0 [ 37.300250][ T3964] el0t_64_sync_handler+0x84/0xe4 [ 37.301340][ T3964] el0t_64_sync+0x1a0/0x1a4