[   20.465918][ T3637] 8021q: adding VLAN 0 to HW filter on device bond0
[   20.474318][ T3637] eql: remember to turn off Van-Jacobson compression on your slave devices
[   20.521173][ T1855] gvnic 0000:00:00.0 enp0s0: Device link is up.
[   20.531704][ T1529] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.102' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   43.584772][ T4058] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   43.587016][ T4058] nci: nci_start_poll: failed to set local general bytes
[   48.667307][ T4058] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
[   48.669783][ T4058] 
[   48.670317][ T4058] ======================================================
[   48.672060][ T4058] WARNING: possible circular locking dependency detected
[   48.673719][ T4058] 5.15.98-syzkaller #0 Not tainted
[   48.675038][ T4058] ------------------------------------------------------
[   48.676649][ T4058] syz-executor178/4058 is trying to acquire lock:
[   48.678230][ T4058] ffff800015cd4fe8 (nci_mutex){+.+.}-{3:3}, at: virtual_nci_close+0x28/0x58
[   48.680319][ T4058] 
[   48.680319][ T4058] but task is already holding lock:
[   48.682167][ T4058] ffff0000ce289350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0xf0/0x5dc
[   48.684438][ T4058] 
[   48.684438][ T4058] which lock already depends on the new lock.
[   48.684438][ T4058] 
[   48.686972][ T4058] 
[   48.686972][ T4058] the existing dependency chain (in reverse order) is:
[   48.689068][ T4058] 
[   48.689068][ T4058] -> #3 (&ndev->req_lock){+.+.}-{3:3}:
[   48.690892][ T4058]        __mutex_lock_common+0x194/0x2154
[   48.692309][ T4058]        mutex_lock_nested+0xa4/0xf8
[   48.693561][ T4058]        nci_start_poll+0x498/0x1204
[   48.694871][ T4058]        nfc_start_poll+0x164/0x2a4
[   48.696053][ T4058]        nfc_genl_start_poll+0x1b8/0x308
[   48.697381][ T4058]        genl_rcv_msg+0xc18/0x1018
[   48.698560][ T4058]        netlink_rcv_skb+0x20c/0x3b8
[   48.699846][ T4058]        genl_rcv+0x38/0x50
[   48.700982][ T4058]        netlink_unicast+0x664/0x938
[   48.702209][ T4058]        netlink_sendmsg+0x814/0xb00
[   48.703495][ T4058]        ____sys_sendmsg+0x584/0x870
[   48.704730][ T4058]        ___sys_sendmsg+0x214/0x294
[   48.706062][ T4058]        __arm64_sys_sendmsg+0x1ac/0x25c
[   48.707460][ T4058]        invoke_syscall+0x98/0x2b8
[   48.708661][ T4058]        el0_svc_common+0x138/0x258
[   48.709923][ T4058]        do_el0_svc+0x58/0x14c
[   48.711080][ T4058]        el0_svc+0x7c/0x1f0
[   48.712117][ T4058]        el0t_64_sync_handler+0x84/0xe4
[   48.713457][ T4058]        el0t_64_sync+0x1a0/0x1a4
[   48.714645][ T4058] 
[   48.714645][ T4058] -> #2 (&genl_data->genl_data_mutex){+.+.}-{3:3}:
[   48.716773][ T4058]        __mutex_lock_common+0x194/0x2154
[   48.718131][ T4058]        mutex_lock_nested+0xa4/0xf8
[   48.719374][ T4058]        nfc_urelease_event_work+0xfc/0x2a8
[   48.720823][ T4058]        process_one_work+0x82c/0x1478
[   48.722075][ T4058]        worker_thread+0x910/0x1034
[   48.723300][ T4058]        kthread+0x37c/0x45c
[   48.724449][ T4058]        ret_from_fork+0x10/0x20
[   48.725629][ T4058] 
[   48.725629][ T4058] -> #1 (nfc_devlist_mutex){+.+.}-{3:3}:
[   48.727479][ T4058]        __mutex_lock_common+0x194/0x2154
[   48.728862][ T4058]        mutex_lock_nested+0xa4/0xf8
[   48.730101][ T4058]        nfc_register_device+0x4c/0x310
[   48.731416][ T4058]        nci_register_device+0x6ac/0x7c4
[   48.732774][ T4058]        virtual_ncidev_open+0x6c/0xd8
[   48.734081][ T4058]        misc_open+0x2f0/0x368
[   48.735226][ T4058]        chrdev_open+0x3e8/0x4fc
[   48.736418][ T4058]        do_dentry_open+0x780/0xed8
[   48.737588][ T4058]        vfs_open+0x7c/0x90
[   48.738666][ T4058]        path_openat+0x1f00/0x26c4
[   48.739943][ T4058]        do_filp_open+0x1a8/0x3b4
[   48.741140][ T4058]        do_sys_openat2+0x128/0x3d8
[   48.742434][ T4058]        __arm64_sys_openat+0x1f0/0x240
[   48.743710][ T4058]        invoke_syscall+0x98/0x2b8
[   48.744927][ T4058]        el0_svc_common+0x138/0x258
[   48.746195][ T4058]        do_el0_svc+0x58/0x14c
[   48.747324][ T4058]        el0_svc+0x7c/0x1f0
[   48.748387][ T4058]        el0t_64_sync_handler+0x84/0xe4
[   48.749667][ T4058]        el0t_64_sync+0x1a0/0x1a4
[   48.750789][ T4058] 
[   48.750789][ T4058] -> #0 (nci_mutex){+.+.}-{3:3}:
[   48.752459][ T4058]        __lock_acquire+0x32cc/0x7620
[   48.753699][ T4058]        lock_acquire+0x2b8/0x894
[   48.754876][ T4058]        __mutex_lock_common+0x194/0x2154
[   48.756247][ T4058]        mutex_lock_nested+0xa4/0xf8
[   48.757539][ T4058]        virtual_nci_close+0x28/0x58
[   48.758786][ T4058]        nci_close_device+0x304/0x5dc
[   48.760067][ T4058]        nci_unregister_device+0x5c/0x22c
[   48.761515][ T4058]        virtual_ncidev_close+0x70/0xb0
[   48.762792][ T4058]        __fput+0x30c/0x7f0
[   48.763817][ T4058]        ____fput+0x20/0x30
[   48.764892][ T4058]        task_work_run+0x130/0x1e4
[   48.766080][ T4058]        do_exit+0x55c/0x1c20
[   48.767169][ T4058]        do_group_exit+0x110/0x268
[   48.768344][ T4058]        get_signal+0x634/0x1550
[   48.769512][ T4058]        do_notify_resume+0x3d0/0x32b8
[   48.770830][ T4058]        el0_svc+0xfc/0x1f0
[   48.771881][ T4058]        el0t_64_sync_handler+0x84/0xe4
[   48.773145][ T4058]        el0t_64_sync+0x1a0/0x1a4
[   48.774305][ T4058] 
[   48.774305][ T4058] other info that might help us debug this:
[   48.774305][ T4058] 
[   48.776740][ T4058] Chain exists of:
[   48.776740][ T4058]   nci_mutex --> &genl_data->genl_data_mutex --> &ndev->req_lock
[   48.776740][ T4058] 
[   48.779965][ T4058]  Possible unsafe locking scenario:
[   48.779965][ T4058] 
[   48.781680][ T4058]        CPU0                    CPU1
[   48.782942][ T4058]        ----                    ----
[   48.784267][ T4058]   lock(&ndev->req_lock);
[   48.785377][ T4058]                                lock(&genl_data->genl_data_mutex);
[   48.787381][ T4058]                                lock(&ndev->req_lock);
[   48.788986][ T4058]   lock(nci_mutex);
[   48.789894][ T4058] 
[   48.789894][ T4058]  *** DEADLOCK ***
[   48.789894][ T4058] 
[   48.791872][ T4058] 1 lock held by syz-executor178/4058:
[   48.793104][ T4058]  #0: ffff0000ce289350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0xf0/0x5dc
[   48.795464][ T4058] 
[   48.795464][ T4058] stack backtrace:
[   48.796913][ T4058] CPU: 1 PID: 4058 Comm: syz-executor178 Not tainted 5.15.98-syzkaller #0
[   48.798951][ T4058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   48.801261][ T4058] Call trace:
[   48.802019][ T4058]  dump_backtrace+0x0/0x530
[   48.803134][ T4058]  show_stack+0x2c/0x3c
[   48.804157][ T4058]  dump_stack_lvl+0x108/0x170
[   48.805221][ T4058]  dump_stack+0x1c/0x58
[   48.806264][ T4058]  print_circular_bug+0x150/0x1b8
[   48.807583][ T4058]  check_noncircular+0x2cc/0x378
[   48.808679][ T4058]  __lock_acquire+0x32cc/0x7620
[   48.809862][ T4058]  lock_acquire+0x2b8/0x894
[   48.810973][ T4058]  __mutex_lock_common+0x194/0x2154
[   48.812226][ T4058]  mutex_lock_nested+0xa4/0xf8
[   48.813314][ T4058]  virtual_nci_close+0x28/0x58
[   48.814469][ T4058]  nci_close_device+0x304/0x5dc
[   48.815571][ T4058]  nci_unregister_device+0x5c/0x22c
[   48.816775][ T4058]  virtual_ncidev_close+0x70/0xb0
[   48.817932][ T4058]  __fput+0x30c/0x7f0
[   48.818864][ T4058]  ____fput+0x20/0x30
[   48.819845][ T4058]  task_work_run+0x130/0x1e4
[   48.820932][ T4058]  do_exit+0x55c/0x1c20
[   48.821857][ T4058]  do_group_exit+0x110/0x268
[   48.822986][ T4058]  get_signal+0x634/0x1550
[   48.823983][ T4058]  do_notify_resume+0x3d0/0x32b8
[   48.825120][ T4058]  el0_svc+0xfc/0x1f0
[   48.826084][ T4058]  el0t_64_sync_handler+0x84/0xe4
[   48.827224][ T4058]  el0t_64_sync+0x1a0/0x1a4