Warning: Permanently added '10.128.0.82' (ED25519) to the list of known hosts. executing program [ 51.367506][ C0] TCP: request_sock_TCP: Possible SYN flooding on port 55048. Sending cookies. Check SNMP counters. [ 51.382852][ T3541] [ 51.385205][ T3541] ====================================================== [ 51.392211][ T3541] WARNING: possible circular locking dependency detected [ 51.399219][ T3541] 6.1.75-syzkaller #0 Not tainted [ 51.404240][ T3541] ------------------------------------------------------ [ 51.411248][ T3541] syz-executor242/3541 is trying to acquire lock: [ 51.417670][ T3541] ffff888075a01450 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0xe5/0xad0 [ 51.429075][ T3541] [ 51.429075][ T3541] but task is already holding lock: [ 51.436431][ T3541] ffff888075a00130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 51.445406][ T3541] [ 51.445406][ T3541] which lock already depends on the new lock. [ 51.445406][ T3541] [ 51.455801][ T3541] [ 51.455801][ T3541] the existing dependency chain (in reverse order) is: [ 51.464806][ T3541] [ 51.464806][ T3541] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 51.472672][ T3541] lock_acquire+0x1f8/0x5a0 [ 51.477704][ T3541] lock_sock_nested+0x44/0x100 [ 51.482997][ T3541] smc_listen_out+0x113/0x3d0 [ 51.488288][ T3541] process_one_work+0x8a9/0x11d0 [ 51.493845][ T3541] worker_thread+0xa47/0x1200 [ 51.499049][ T3541] kthread+0x28d/0x320 [ 51.503657][ T3541] ret_from_fork+0x1f/0x30 [ 51.508608][ T3541] [ 51.508608][ T3541] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 51.518789][ T3541] validate_chain+0x1661/0x5950 [ 51.524178][ T3541] __lock_acquire+0x125b/0x1f80 [ 51.529656][ T3541] lock_acquire+0x1f8/0x5a0 [ 51.534695][ T3541] __flush_work+0xfe/0xad0 [ 51.539635][ T3541] __cancel_work_timer+0x519/0x6a0 [ 51.545279][ T3541] smc_clcsock_release+0x5e/0xe0 [ 51.550737][ T3541] __smc_release+0x678/0x7f0 [ 51.555846][ T3541] smc_close_non_accepted+0xd4/0x1e0 [ 51.561662][ T3541] smc_close_active+0xa75/0xe20 [ 51.567032][ T3541] __smc_release+0xa0/0x7f0 [ 51.572051][ T3541] smc_release+0x2d5/0x530 [ 51.577072][ T3541] sock_close+0xcd/0x230 [ 51.581839][ T3541] __fput+0x3b7/0x890 [ 51.586344][ T3541] task_work_run+0x246/0x300 [ 51.591462][ T3541] do_exit+0xa73/0x26a0 [ 51.596148][ T3541] do_group_exit+0x202/0x2b0 [ 51.601267][ T3541] __x64_sys_exit_group+0x3b/0x40 [ 51.606818][ T3541] do_syscall_64+0x3d/0xb0 [ 51.611781][ T3541] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 51.618209][ T3541] [ 51.618209][ T3541] other info that might help us debug this: [ 51.618209][ T3541] [ 51.628465][ T3541] Possible unsafe locking scenario: [ 51.628465][ T3541] [ 51.635925][ T3541] CPU0 CPU1 [ 51.641372][ T3541] ---- ---- [ 51.646732][ T3541] lock(sk_lock-AF_SMC/1); [ 51.651245][ T3541] lock((work_completion)(&new_smc->smc_listen_work)); [ 51.660713][ T3541] lock(sk_lock-AF_SMC/1); [ 51.667746][ T3541] lock((work_completion)(&new_smc->smc_listen_work)); [ 51.674682][ T3541] [ 51.674682][ T3541] *** DEADLOCK *** [ 51.674682][ T3541] [ 51.682909][ T3541] 2 locks held by syz-executor242/3541: [ 51.688450][ T3541] #0: ffff888076216810 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x98/0x230 [ 51.698652][ T3541] #1: ffff888075a00130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 51.708155][ T3541] [ 51.708155][ T3541] stack backtrace: [ 51.714046][ T3541] CPU: 0 PID: 3541 Comm: syz-executor242 Not tainted 6.1.75-syzkaller #0 [ 51.722463][ T3541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 51.732517][ T3541] Call Trace: [ 51.735796][ T3541] [ 51.738728][ T3541] dump_stack_lvl+0x1e3/0x2cb [ 51.743421][ T3541] ? nf_tcp_handle_invalid+0x642/0x642 [ 51.748908][ T3541] ? print_circular_bug+0x12b/0x1a0 [ 51.754118][ T3541] check_noncircular+0x2fa/0x3b0 [ 51.759066][ T3541] ? add_chain_block+0x850/0x850 [ 51.764011][ T3541] ? lockdep_lock+0x11f/0x2a0 [ 51.768716][ T3541] ? _find_first_zero_bit+0xd0/0x100 [ 51.774022][ T3541] validate_chain+0x1661/0x5950 [ 51.779316][ T3541] ? read_lock_is_recursive+0x10/0x10 [ 51.784702][ T3541] ? preempt_count_add+0x8f/0x180 [ 51.789733][ T3541] ? hlock_conflict+0x55/0x1f0 [ 51.794521][ T3541] ? reacquire_held_locks+0x660/0x660 [ 51.799915][ T3541] ? __bfs+0x359/0x6e0 [ 51.803991][ T3541] ? check_path+0x40/0x40 [ 51.808325][ T3541] ? noop_count+0x30/0x30 [ 51.812675][ T3541] ? __bfs+0x359/0x6e0 [ 51.816750][ T3541] ? look_up_lock_class+0x77/0x140 [ 51.821866][ T3541] ? register_lock_class+0x100/0x990 [ 51.827250][ T3541] ? check_path+0x21/0x40 [ 51.831588][ T3541] ? check_noncircular+0x1e3/0x3b0 [ 51.836709][ T3541] ? is_dynamic_key+0x260/0x260 [ 51.841567][ T3541] ? mark_lock+0x9a/0x340 [ 51.845910][ T3541] __lock_acquire+0x125b/0x1f80 [ 51.850778][ T3541] lock_acquire+0x1f8/0x5a0 [ 51.855302][ T3541] ? __flush_work+0xe5/0xad0 [ 51.859909][ T3541] ? read_lock_is_recursive+0x10/0x10 [ 51.865294][ T3541] ? reacquire_held_locks+0x660/0x660 [ 51.870681][ T3541] ? reacquire_held_locks+0x660/0x660 [ 51.876065][ T3541] ? __flush_work+0xe5/0xad0 [ 51.880652][ T3541] __flush_work+0xfe/0xad0 [ 51.885066][ T3541] ? __flush_work+0xe5/0xad0 [ 51.889655][ T3541] ? flush_work+0x20/0x20 [ 51.893995][ T3541] ? print_irqtrace_events+0x210/0x210 [ 51.899463][ T3541] ? __cancel_work_timer+0x467/0x6a0 [ 51.904748][ T3541] __cancel_work_timer+0x519/0x6a0 [ 51.909860][ T3541] ? mark_lock+0x9a/0x340 [ 51.914213][ T3541] ? cancel_work_sync+0x20/0x20 [ 51.919087][ T3541] ? __smc_release+0x670/0x7f0 [ 51.923853][ T3541] ? __local_bh_enable_ip+0x164/0x1f0 [ 51.929235][ T3541] ? lockdep_hardirqs_on+0x94/0x130 [ 51.934435][ T3541] ? __local_bh_enable_ip+0x164/0x1f0 [ 51.939820][ T3541] ? __smc_release+0x670/0x7f0 [ 51.944580][ T3541] ? _local_bh_enable+0xa0/0xa0 [ 51.949437][ T3541] smc_clcsock_release+0x5e/0xe0 [ 51.954380][ T3541] __smc_release+0x678/0x7f0 [ 51.958973][ T3541] smc_close_non_accepted+0xd4/0x1e0 [ 51.964258][ T3541] smc_close_active+0xa75/0xe20 [ 51.969110][ T3541] ? sock_no_sendpage_locked+0x1e0/0x1e0 [ 51.974750][ T3541] __smc_release+0xa0/0x7f0 [ 51.979263][ T3541] smc_release+0x2d5/0x530 [ 51.983680][ T3541] sock_close+0xcd/0x230 [ 51.987928][ T3541] ? sock_mmap+0x90/0x90 [ 51.992168][ T3541] __fput+0x3b7/0x890 [ 51.996174][ T3541] task_work_run+0x246/0x300 [ 52.000773][ T3541] ? task_work_cancel+0x2b0/0x2b0 [ 52.005801][ T3541] ? exit_task_namespaces+0xdd/0xf0 [ 52.011015][ T3541] do_exit+0xa73/0x26a0 [ 52.015179][ T3541] ? put_task_struct+0x80/0x80 [ 52.019971][ T3541] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 52.025976][ T3541] ? print_irqtrace_events+0x210/0x210 [ 52.031445][ T3541] ? _raw_spin_unlock_irq+0x1f/0x40 [ 52.036646][ T3541] ? lockdep_hardirqs_on+0x94/0x130 [ 52.041857][ T3541] do_group_exit+0x202/0x2b0 [ 52.046465][ T3541] __x64_sys_exit_group+0x3b/0x40 [ 52.051494][ T3541] do_syscall_64+0x3d/0xb0 [ 52.055913][ T3541] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 52.061806][ T3541] RIP: 0033:0x7fe063f15cf9 [ 52.066218][ T3541] Code: Unable to access opcode bytes at 0x7fe063f15ccf. [ 52.073228][ T3541] RSP: 002b:00007fffa8dfcc18 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 52.081646][ T3541] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fe063f15cf9 [ 52.089617][ T3541] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 52.097586][ T3541] RBP: 00007fe063f902b0 R08: ffffffffffffffb8 R09: 00007fffa8dfce38 [ 52.105557][ T3541] R10: 00007fffa8dfce38 R11: 0000000000000246 R12: 00007fe063f902b0 [ 52.113538][ T3541] R13: 0000000000000000 R14: 00007fe063f90d00 R15: 00007fe063ee7a