Warning: Permanently added '10.128.0.68' (ED25519) to the list of known hosts. executing program [ 34.700712][ T4230] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 34.932957][ T4237] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 35.161092][ T4246] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 35.389467][ T4253] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 35.618856][ T4259] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 35.849057][ T4266] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 36.077694][ T4272] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 36.306100][ T4278] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 36.536459][ T4284] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 36.767445][ T4290] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 36.995931][ T4296] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 37.225676][ T4302] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 37.456204][ T4308] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 37.684220][ T4314] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 37.913769][ T4320] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 38.142602][ T4326] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 38.370921][ T4332] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 38.599436][ T4338] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 38.829230][ T4344] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 39.057354][ T4350] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 39.126326][ T4360] [ 39.127031][ T4360] ====================================================== [ 39.128877][ T4360] WARNING: possible circular locking dependency detected [ 39.130733][ T4360] 6.1.79-syzkaller #0 Not tainted [ 39.132050][ T4360] ------------------------------------------------------ [ 39.133890][ T4360] syz-executor356/4360 is trying to acquire lock: [ 39.135622][ T4360] ffff0000d820c350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_start_poll+0x498/0x1204 [ 39.138109][ T4360] [ 39.138109][ T4360] but task is already holding lock: [ 39.140055][ T4360] ffff0000d820d520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308 [ 39.142884][ T4360] [ 39.142884][ T4360] which lock already depends on the new lock. [ 39.142884][ T4360] [ 39.145632][ T4360] [ 39.145632][ T4360] the existing dependency chain (in reverse order) is: [ 39.148076][ T4360] [ 39.148076][ T4360] -> #3 (&genl_data->genl_data_mutex){+.+.}-{3:3}: [ 39.150399][ T4360] __mutex_lock_common+0x190/0x21a0 [ 39.151950][ T4360] mutex_lock_nested+0x38/0x44 [ 39.153352][ T4360] nfc_urelease_event_work+0xfc/0x2a8 [ 39.154949][ T4360] process_one_work+0x7ac/0x1404 [ 39.156510][ T4360] worker_thread+0x8e4/0xfec [ 39.157901][ T4360] kthread+0x250/0x2d8 [ 39.159159][ T4360] ret_from_fork+0x10/0x20 [ 39.160483][ T4360] [ 39.160483][ T4360] -> #2 (nfc_devlist_mutex){+.+.}-{3:3}: [ 39.162665][ T4360] __mutex_lock_common+0x190/0x21a0 [ 39.164254][ T4360] mutex_lock_nested+0x38/0x44 [ 39.165793][ T4360] nfc_register_device+0x4c/0x310 [ 39.167386][ T4360] nci_register_device+0x6ac/0x7c4 [ 39.168995][ T4360] virtual_ncidev_open+0x6c/0xd8 [ 39.170430][ T4360] misc_open+0x2f0/0x368 [ 39.171772][ T4360] chrdev_open+0x3e8/0x4fc [ 39.173186][ T4360] do_dentry_open+0x734/0xfa0 [ 39.174648][ T4360] vfs_open+0x7c/0x90 [ 39.175938][ T4360] path_openat+0x1e14/0x2548 [ 39.177405][ T4360] do_filp_open+0x1bc/0x3cc [ 39.178902][ T4360] do_sys_openat2+0x128/0x3d8 [ 39.180387][ T4360] __arm64_sys_openat+0x1f0/0x240 [ 39.182028][ T4360] invoke_syscall+0x98/0x2c0 [ 39.183478][ T4360] el0_svc_common+0x138/0x258 [ 39.184941][ T4360] do_el0_svc+0x64/0x218 [ 39.186279][ T4360] el0_svc+0x58/0x168 [ 39.187579][ T4360] el0t_64_sync_handler+0x84/0xf0 [ 39.189263][ T4360] el0t_64_sync+0x18c/0x190 [ 39.190644][ T4360] [ 39.190644][ T4360] -> #1 (nci_mutex){+.+.}-{3:3}: [ 39.192722][ T4360] __mutex_lock_common+0x190/0x21a0 [ 39.194292][ T4360] mutex_lock_nested+0x38/0x44 [ 39.195785][ T4360] virtual_nci_close+0x28/0x58 [ 39.197268][ T4360] nci_dev_up+0x754/0xb10 [ 39.198625][ T4360] nfc_dev_up+0x154/0x300 [ 39.200016][ T4360] nfc_genl_dev_up+0x98/0xdc [ 39.201462][ T4360] genl_rcv_msg+0x948/0xc2c [ 39.202894][ T4360] netlink_rcv_skb+0x20c/0x3b8 [ 39.204351][ T4360] genl_rcv+0x38/0x50 [ 39.205568][ T4360] netlink_unicast+0x65c/0x898 [ 39.207043][ T4360] netlink_sendmsg+0x834/0xb18 [ 39.208501][ T4360] ____sys_sendmsg+0x55c/0x848 [ 39.209965][ T4360] __sys_sendmsg+0x26c/0x33c [ 39.211387][ T4360] __arm64_sys_sendmsg+0x80/0x94 [ 39.212969][ T4360] invoke_syscall+0x98/0x2c0 [ 39.214347][ T4360] el0_svc_common+0x138/0x258 [ 39.215787][ T4360] do_el0_svc+0x64/0x218 [ 39.217114][ T4360] el0_svc+0x58/0x168 [ 39.218388][ T4360] el0t_64_sync_handler+0x84/0xf0 [ 39.219954][ T4360] el0t_64_sync+0x18c/0x190 [ 39.221412][ T4360] [ 39.221412][ T4360] -> #0 (&ndev->req_lock){+.+.}-{3:3}: [ 39.223579][ T4360] __lock_acquire+0x3338/0x7680 [ 39.225105][ T4360] lock_acquire+0x26c/0x7cc [ 39.226490][ T4360] __mutex_lock_common+0x190/0x21a0 [ 39.228084][ T4360] mutex_lock_nested+0x38/0x44 [ 39.229593][ T4360] nci_start_poll+0x498/0x1204 [ 39.231156][ T4360] nfc_start_poll+0x164/0x2a4 [ 39.232566][ T4360] nfc_genl_start_poll+0x1b8/0x308 [ 39.234140][ T4360] genl_rcv_msg+0x948/0xc2c [ 39.235475][ T4360] netlink_rcv_skb+0x20c/0x3b8 [ 39.236891][ T4360] genl_rcv+0x38/0x50 [ 39.238076][ T4360] netlink_unicast+0x65c/0x898 [ 39.239562][ T4360] netlink_sendmsg+0x834/0xb18 [ 39.241133][ T4360] ____sys_sendmsg+0x55c/0x848 [ 39.242652][ T4360] __sys_sendmsg+0x26c/0x33c [ 39.243966][ T4360] __arm64_sys_sendmsg+0x80/0x94 [ 39.245535][ T4360] invoke_syscall+0x98/0x2c0 [ 39.247005][ T4360] el0_svc_common+0x138/0x258 [ 39.248469][ T4360] do_el0_svc+0x64/0x218 [ 39.249794][ T4360] el0_svc+0x58/0x168 [ 39.251025][ T4360] el0t_64_sync_handler+0x84/0xf0 [ 39.252586][ T4360] el0t_64_sync+0x18c/0x190 [ 39.253941][ T4360] [ 39.253941][ T4360] other info that might help us debug this: [ 39.253941][ T4360] [ 39.256837][ T4360] Chain exists of: [ 39.256837][ T4360] &ndev->req_lock --> nfc_devlist_mutex --> &genl_data->genl_data_mutex [ 39.256837][ T4360] [ 39.260851][ T4360] Possible unsafe locking scenario: [ 39.260851][ T4360] [ 39.262935][ T4360] CPU0 CPU1 [ 39.264450][ T4360] ---- ---- [ 39.265957][ T4360] lock(&genl_data->genl_data_mutex); [ 39.267444][ T4360] lock(nfc_devlist_mutex); [ 39.269568][ T4360] lock(&genl_data->genl_data_mutex); [ 39.271864][ T4360] lock(&ndev->req_lock); [ 39.273098][ T4360] [ 39.273098][ T4360] *** DEADLOCK *** [ 39.273098][ T4360] [ 39.275361][ T4360] 4 locks held by syz-executor356/4360: [ 39.276864][ T4360] #0: ffff800017e782b0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x28/0x50 [ 39.279196][ T4360] #1: ffff800017e78168 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x114/0xc2c [ 39.281726][ T4360] #2: ffff0000d820d520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308 [ 39.284821][ T4360] #3: ffff0000d820d100 (&dev->mutex){....}-{3:3}, at: nfc_start_poll+0x60/0x2a4 [ 39.287342][ T4360] [ 39.287342][ T4360] stack backtrace: [ 39.288964][ T4360] CPU: 1 PID: 4360 Comm: syz-executor356 Not tainted 6.1.79-syzkaller #0 [ 39.291359][ T4360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 39.294135][ T4360] Call trace: [ 39.295043][ T4360] dump_backtrace+0x1c8/0x1f4 [ 39.296365][ T4360] show_stack+0x2c/0x3c [ 39.297479][ T4360] dump_stack_lvl+0x108/0x170 [ 39.298823][ T4360] dump_stack+0x1c/0x58 [ 39.300073][ T4360] print_circular_bug+0x150/0x1b8 [ 39.301482][ T4360] check_noncircular+0x2cc/0x378 [ 39.302869][ T4360] __lock_acquire+0x3338/0x7680 [ 39.304200][ T4360] lock_acquire+0x26c/0x7cc [ 39.305446][ T4360] __mutex_lock_common+0x190/0x21a0 [ 39.306887][ T4360] mutex_lock_nested+0x38/0x44 [ 39.308209][ T4360] nci_start_poll+0x498/0x1204 [ 39.309582][ T4360] nfc_start_poll+0x164/0x2a4 [ 39.310877][ T4360] nfc_genl_start_poll+0x1b8/0x308 [ 39.312246][ T4360] genl_rcv_msg+0x948/0xc2c [ 39.313459][ T4360] netlink_rcv_skb+0x20c/0x3b8 [ 39.314781][ T4360] genl_rcv+0x38/0x50 [ 39.315852][ T4360] netlink_unicast+0x65c/0x898 [ 39.317157][ T4360] netlink_sendmsg+0x834/0xb18 [ 39.318496][ T4360] ____sys_sendmsg+0x55c/0x848 [ 39.319810][ T4360] __sys_sendmsg+0x26c/0x33c [ 39.321079][ T4360] __arm64_sys_sendmsg+0x80/0x94 [ 39.322395][ T4360] invoke_syscall+0x98/0x2c0 [ 39.323748][ T4360] el0_svc_common+0x138/0x258 [ 39.325068][ T4360] do_el0_svc+0x64/0x218 [ 39.326280][ T4360] el0_svc+0x58/0x168 [ 39.327372][ T4360] el0t_64_sync_handler+0x84/0xf0 [ 39.328846][ T4360] el0t_64_sync+0x18c/0x190 [ 39.441128][ T4360] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 39.443425][ T4360] nci: nci_start_poll: failed to set local general bytes [ 44.495167][ T4360] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 executing program [ 44.718275][ T4363] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 44.938779][ T4369] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 45.157792][ T4379] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 45.160125][ T4379] nci: nci_start_poll: failed to set local general bytes