DUID 00:04:d9:78:fe:a9:f5:34:ed:4b:d7:cc:6f:12:e4:bf:14:b5
forked to background, child pid 3180
[   27.000999][ T3181] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.011197][ T3181] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   33.735343][ T3388] sshd (3388) used greatest stack depth: 22848 bytes left
Warning: Permanently added '10.128.0.173' (ECDSA) to the list of known hosts.
executing program
[   57.953808][ T3602] FAULT_INJECTION: forcing a failure.
[   57.953808][ T3602] name failslab, interval 1, probability 0, space 0, times 1
[   57.953906][ T3602] 
[   57.953909][ T3602] ======================================================
[   57.953913][ T3602] WARNING: possible circular locking dependency detected
[   57.953916][ T3602] 5.17.0-rc1-syzkaller #0 Not tainted
[   57.953923][ T3602] ------------------------------------------------------
[   57.953926][ T3602] syz-executor577/3602 is trying to acquire lock:
[   57.953932][ T3602] ffffffff8ba921a0 (console_owner){....}-{0:0}, at: console_unlock+0x303/0xb70
[   57.953967][ T3602] 
[   57.953967][ T3602] but task is already holding lock:
[   57.953970][ T3602] ffff888147417158 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   57.953995][ T3602] 
[   57.953995][ T3602] which lock already depends on the new lock.
[   57.953995][ T3602] 
[   57.953998][ T3602] 
[   57.953998][ T3602] the existing dependency chain (in reverse order) is:
[   57.954002][ T3602] 
[   57.954002][ T3602] -> #2 (&port->lock){-.-.}-{2:2}:
[   57.954017][ T3602]        _raw_spin_lock_irqsave+0x39/0x50
[   57.954031][ T3602]        tty_port_tty_get+0x1f/0x100
[   57.954045][ T3602]        tty_port_default_wakeup+0x11/0x40
[   57.954059][ T3602]        serial8250_tx_chars+0x4f3/0xad0
[   57.954072][ T3602]        serial8250_handle_irq.part.0+0x328/0x3d0
[   57.954085][ T3602]        serial8250_default_handle_irq+0xb2/0x220
[   57.954098][ T3602]        serial8250_interrupt+0xfd/0x200
[   57.954112][ T3602]        __handle_irq_event_percpu+0x22b/0x880
[   57.954124][ T3602]        handle_irq_event+0xa7/0x1e0
[   57.954134][ T3602]        handle_edge_irq+0x25f/0xd00
[   57.954147][ T3602]        __common_interrupt+0x9d/0x210
[   57.954159][ T3602]        common_interrupt+0xa4/0xc0
[   57.954173][ T3602]        asm_common_interrupt+0x1e/0x40
[   57.954185][ T3602]        _raw_spin_unlock_irqrestore+0x38/0x70
[   57.954197][ T3602]        uart_write+0x30d/0x570
[   57.954210][ T3602]        n_tty_write+0x410/0xfd0
[   57.954221][ T3602]        file_tty_write.constprop.0+0x526/0x910
[   57.954241][ T3602]        redirected_tty_write+0xa1/0xc0
[   57.954253][ T3602]        new_sync_write+0x431/0x660
[   57.954274][ T3602]        vfs_write+0x7cd/0xae0
[   57.954286][ T3602]        ksys_write+0x12d/0x250
[   57.954298][ T3602]        do_syscall_64+0x35/0xb0
[   57.954310][ T3602]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[   57.954323][ T3602] 
[   57.954323][ T3602] -> #1 (&port_lock_key){-.-.}-{2:2}:
[   57.954339][ T3602]        _raw_spin_lock_irqsave+0x39/0x50
[   57.954350][ T3602]        serial8250_console_write+0xb11/0xe90
[   57.954362][ T3602]        console_unlock+0x7a9/0xb70
[   57.954375][ T3602]        vprintk_emit+0x198/0x4f0
[   57.954388][ T3602]        vprintk+0x80/0x90
[   57.954401][ T3602]        _printk+0xba/0xed
[   57.954414][ T3602]        register_console+0x410/0x7c0
[   57.954427][ T3602]        univ8250_console_init+0x3a/0x46
[   57.954443][ T3602]        console_init+0x3c1/0x58d
[   57.954458][ T3602]        start_kernel+0x30b/0x49b
[   57.954470][ T3602]        secondary_startup_64_no_verify+0xc3/0xcb
[   57.954486][ T3602] 
[   57.954486][ T3602] -> #0 (console_owner){....}-{0:0}:
[   57.954500][ T3602]        __lock_acquire+0x2a2c/0x5470
[   57.954514][ T3602]        lock_acquire+0x1ab/0x510
[   57.954527][ T3602]        console_unlock+0x356/0xb70
[   57.954540][ T3602]        vprintk_emit+0x198/0x4f0
[   57.954553][ T3602]        vprintk+0x80/0x90
[   57.954565][ T3602]        _printk+0xba/0xed
[   57.954577][ T3602]        should_fail+0x472/0x5a0
[   57.954589][ T3602]        should_failslab+0x5/0x10
[   57.954604][ T3602]        __kmalloc+0x72/0x340
[   57.954618][ T3602]        tty_buffer_alloc+0x23f/0x2a0
[   57.954631][ T3602]        __tty_buffer_request_room+0x156/0x2a0
[   57.954645][ T3602]        tty_insert_flip_string_fixed_flag+0x93/0x250
[   57.954660][ T3602]        pty_write+0x11c/0x1e0
[   57.954670][ T3602]        n_tty_write+0xa7a/0xfd0
[   57.954681][ T3602]        file_tty_write.constprop.0+0x526/0x910
[   57.954693][ T3602]        new_sync_write+0x431/0x660
[   57.954705][ T3602]        vfs_write+0x7cd/0xae0
[   57.954717][ T3602]        ksys_write+0x12d/0x250
[   57.954728][ T3602]        __do_fast_syscall_32+0x65/0xf0
[   57.954741][ T3602]        do_fast_syscall_32+0x2f/0x70
[   57.954754][ T3602]        entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   57.954774][ T3602] 
[   57.954774][ T3602] other info that might help us debug this:
[   57.954774][ T3602] 
[   57.954777][ T3602] Chain exists of:
[   57.954777][ T3602]   console_owner --> &port_lock_key --> &port->lock
[   57.954777][ T3602] 
[   57.954792][ T3602]  Possible unsafe locking scenario:
[   57.954792][ T3602] 
[   57.954795][ T3602]        CPU0                    CPU1
[   57.954797][ T3602]        ----                    ----
[   57.954799][ T3602]   lock(&port->lock);
[   57.954805][ T3602]                                lock(&port_lock_key);
[   57.954812][ T3602]                                lock(&port->lock);
[   57.954819][ T3602]   lock(console_owner);
[   57.954825][ T3602] 
[   57.954825][ T3602]  *** DEADLOCK ***
[   57.954825][ T3602] 
[   57.954827][ T3602] 6 locks held by syz-executor577/3602:
[   57.954834][ T3602]  #0: ffff8881413b2098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80
[   57.954863][ T3602]  #1: ffff8881413b2130 (&tty->atomic_write_lock){+.+.}-{3:3}, at: file_tty_write.constprop.0+0x29f/0x910
[   57.954892][ T3602]  #2: ffff8881413b22e8 (&tty->termios_rwsem){++++}-{3:3}, at: n_tty_write+0x1bf/0xfd0
[   57.954920][ T3602]  #3: ffffc90001a88378 (&ldata->output_lock){+.+.}-{3:3}, at: n_tty_write+0xa47/0xfd0
[   57.954948][ T3602]  #4: ffff888147417158 (&port->lock){-.-.}-{2:2}, at: pty_write+0xea/0x1e0
[   57.954974][ T3602]  #5: ffffffff8bb725e0 (console_lock){+.+.}-{0:0}, at: vprintk+0x80/0x90
[   57.955003][ T3602] 
[   57.955003][ T3602] stack backtrace:
[   57.955005][ T3602] CPU: 0 PID: 3602 Comm: syz-executor577 Not tainted 5.17.0-rc1-syzkaller #0
[   57.955018][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   57.955026][ T3602] Call Trace:
[   57.955029][ T3602]  <TASK>
[   57.955033][ T3602]  dump_stack_lvl+0xcd/0x134
[   57.955050][ T3602]  check_noncircular+0x25f/0x2e0
[   57.955064][ T3602]  ? filter_irq_stacks+0x90/0x90
[   57.955080][ T3602]  ? print_circular_bug+0x1e0/0x1e0
[   57.955095][ T3602]  ? memcpy+0x39/0x60
[   57.955108][ T3602]  ? lockdep_lock+0xc6/0x200
[   57.955121][ T3602]  ? call_rcu_zapped+0xb0/0xb0
[   57.955135][ T3602]  __lock_acquire+0x2a2c/0x5470
[   57.955152][ T3602]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   57.955170][ T3602]  lock_acquire+0x1ab/0x510
[   57.955183][ T3602]  ? console_unlock+0x303/0xb70
[   57.955198][ T3602]  ? lock_release+0x720/0x720
[   57.955211][ T3602]  ? lock_downgrade+0x6e0/0x6e0
[   57.955225][ T3602]  ? do_raw_spin_lock+0x120/0x2b0
[   57.955240][ T3602]  ? rwlock_bug.part.0+0x90/0x90
[   57.955256][ T3602]  console_unlock+0x356/0xb70
[   57.955273][ T3602]  ? console_unlock+0x303/0xb70
[   57.955289][ T3602]  ? devkmsg_read+0x730/0x730
[   57.955303][ T3602]  ? lock_release+0x720/0x720
[   57.955319][ T3602]  ? vprintk+0x80/0x90
[   57.955333][ T3602]  vprintk_emit+0x198/0x4f0
[   57.955348][ T3602]  vprintk+0x80/0x90
[   57.955362][ T3602]  _printk+0xba/0xed
[   57.955375][ T3602]  ? record_print_text.cold+0x16/0x16
[   57.955391][ T3602]  ? ___ratelimit+0x222/0x4b0
[   57.955404][ T3602]  should_fail+0x472/0x5a0
[   57.955417][ T3602]  ? tty_buffer_alloc+0x23f/0x2a0
[   57.955430][ T3602]  should_failslab+0x5/0x10
[   57.955444][ T3602]  __kmalloc+0x72/0x340
[   57.955459][ T3602]  tty_buffer_alloc+0x23f/0x2a0
[   57.955474][ T3602]  __tty_buffer_request_room+0x156/0x2a0
[   57.955490][ T3602]  tty_insert_flip_string_fixed_flag+0x93/0x250
[   57.955508][ T3602]  pty_write+0x11c/0x1e0
[   57.955519][ T3602]  n_tty_write+0xa7a/0xfd0
[   57.955533][ T3602]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   57.955550][ T3602]  ? _copy_from_iter+0x12b/0x1410
[   57.955565][ T3602]  ? n_tty_receive_char+0x5b0/0x5b0
[   57.955579][ T3602]  ? __init_waitqueue_head+0xd0/0xd0
[   57.955593][ T3602]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   57.955609][ T3602]  ? __phys_addr+0xc4/0x140
[   57.955624][ T3602]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   57.955640][ T3602]  ? __phys_addr_symbol+0x2c/0x70
[   57.955654][ T3602]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   57.955669][ T3602]  ? __check_object_size+0x16e/0x310
[   57.955686][ T3602]  file_tty_write.constprop.0+0x526/0x910
[   57.955700][ T3602]  ? n_tty_receive_char+0x5b0/0x5b0
[   57.955715][ T3602]  new_sync_write+0x431/0x660
[   57.955728][ T3602]  ? new_sync_read+0x6e0/0x6e0
[   57.955742][ T3602]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   57.955756][ T3602]  ? x86_pmu_start+0x170/0x270
[   57.955778][ T3602]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   57.955794][ T3602]  ? security_file_permission+0xab/0xd0
[   57.955810][ T3602]  vfs_write+0x7cd/0xae0
[   57.955824][ T3602]  ksys_write+0x12d/0x250
[   57.955837][ T3602]  ? __ia32_sys_read+0xb0/0xb0
[   57.955851][ T3602]  ? syscall_enter_from_user_mode_prepare+0x17/0x40
[   57.955866][ T3602]  __do_fast_syscall_32+0x65/0xf0
[   57.955880][ T3602]  do_fast_syscall_32+0x2f/0x70
[   57.955894][ T3602]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   57.955910][ T3602] RIP: 0023:0xf7ee7549
[   57.955920][ T3602] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   57.955932][ T3602] RSP: 002b:00000000ff9ce30c EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   57.955945][ T3602] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140
[   57.955953][ T3602] RDX: 000000000000092c RSI: 0000000000000033 RDI: 00000000ff9ce424
[   57.955961][ T3602] RBP: 00000000ff9ce42c R08: 0000000000000000 R09: 0000000000000000
[   57.955969][ T3602] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   57.955976][ T3602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   57.955987][ T3602]  </TASK>
[   58.898018][ T3602] CPU: 0 PID: 3602 Comm: syz-executor577 Not tainted 5.17.0-rc1-syzkaller #0
[   58.906798][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   58.916838][ T3602] Call Trace:
[   58.920104][ T3602]  <TASK>
[   58.923019][ T3602]  dump_stack_lvl+0xcd/0x134
[   58.927602][ T3602]  should_fail.cold+0x5/0xa
[   58.932089][ T3602]  ? tty_buffer_alloc+0x23f/0x2a0
[   58.937110][ T3602]  should_failslab+0x5/0x10
[   58.941656][ T3602]  __kmalloc+0x72/0x340
[   58.945821][ T3602]  tty_buffer_alloc+0x23f/0x2a0
[   58.950839][ T3602]  __tty_buffer_request_room+0x156/0x2a0
[   58.956466][ T3602]  tty_insert_flip_string_fixed_flag+0x93/0x250
[   58.962703][ T3602]  pty_write+0x11c/0x1e0
[   58.966937][ T3602]  n_tty_write+0xa7a/0xfd0
[   58.971345][ T3602]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   58.977059][ T3602]  ? _copy_from_iter+0x12b/0x1410
[   58.982076][ T3602]  ? n_tty_receive_char+0x5b0/0x5b0
[   58.987264][ T3602]  ? __init_waitqueue_head+0xd0/0xd0
[   58.992536][ T3602]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   58.998766][ T3602]  ? __phys_addr+0xc4/0x140
[   59.003257][ T3602]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[   59.009536][ T3602]  ? __phys_addr_symbol+0x2c/0x70
[   59.014551][ T3602]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[   59.020259][ T3602]  ? __check_object_size+0x16e/0x310
[   59.025539][ T3602]  file_tty_write.constprop.0+0x526/0x910
[   59.031346][ T3602]  ? n_tty_receive_char+0x5b0/0x5b0
[   59.036605][ T3602]  new_sync_write+0x431/0x660
[   59.041284][ T3602]  ? new_sync_read+0x6e0/0x6e0
[   59.046038][ T3602]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   59.052049][ T3602]  ? x86_pmu_start+0x170/0x270
[   59.056806][ T3602]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[   59.063035][ T3602]  ? security_file_permission+0xab/0xd0
[   59.068571][ T3602]  vfs_write+0x7cd/0xae0
[   59.072801][ T3602]  ksys_write+0x12d/0x250
[   59.077114][ T3602]  ? __ia32_sys_read+0xb0/0xb0
[   59.081864][ T3602]  ? syscall_enter_from_user_mode_prepare+0x17/0x40
[   59.088440][ T3602]  __do_fast_syscall_32+0x65/0xf0
[   59.093465][ T3602]  do_fast_syscall_32+0x2f/0x70
[   59.098313][ T3602]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[   59.104631][ T3602] RIP: 0023:0xf7ee7549
[   59.108686][ T3602] Code: 03 74 c0 01 10 05 03 74 b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   59.128286][ T3602] RSP: 002b:00000000ff9ce30c EFLAGS: 00000246 ORIG_RAX: 0000000000000004
[   59.136687][ T3602] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000140
[   59.144644][ T3602] RDX: 000000000000092c RSI: 0000000000000033 RDI: 00000000ff9ce424
[   59.152603][ T3602] RBP: 00000000ff9ce42c R08: 0000000000000000 R09: 0000000000000000
[   59.160560][ T3602] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[   59.168516][ T3602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   59.176477][ T3602]  </TASK>