forked to background, child pid 3208
no interfaces have a carrier
[   27.553288][ T3209] 8021q: adding VLAN 0 to HW filter on device bond0
[   27.574516][ T3209] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
syzkaller login: [   75.742768][   T14] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.1.13' (ECDSA) to the list of known hosts.
executing program
executing program
[  108.360796][ T3646] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  108.595547][ T3652] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  108.830036][ T3658] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  109.064252][ T3664] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  109.297498][ T3670] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  109.533563][ T3676] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  109.767355][ T3682] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  110.000427][ T3688] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  110.233692][ T3694] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  110.465967][ T3700] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  110.700032][ T3706] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  110.935025][ T3712] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  111.170120][ T3718] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  111.405120][ T3725] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  111.639014][ T3731] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  111.873203][ T3737] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  111.947639][ T3747] 
[  111.949985][ T3747] ======================================================
[  111.956980][ T3747] WARNING: possible circular locking dependency detected
[  111.963981][ T3747] 6.1.0-rc6-syzkaller-00251-g0b1dcc2cf55a #0 Not tainted
[  111.970976][ T3747] ------------------------------------------------------
[  111.977969][ T3747] syz-executor423/3747 is trying to acquire lock:
[  111.984357][ T3747] ffff88807db57350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_start_poll+0x688/0x900
[  111.993489][ T3747] 
[  111.993489][ T3747] but task is already holding lock:
[  112.000830][ T3747] ffff88801df65508 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x19e/0x490
[  112.011426][ T3747] 
[  112.011426][ T3747] which lock already depends on the new lock.
[  112.011426][ T3747] 
[  112.021805][ T3747] 
[  112.021805][ T3747] the existing dependency chain (in reverse order) is:
[  112.030884][ T3747] 
[  112.030884][ T3747] -> #3 (&genl_data->genl_data_mutex){+.+.}-{3:3}:
[  112.039550][ T3747]        __mutex_lock+0x12f/0x1360
[  112.044655][ T3747]        nfc_urelease_event_work+0x143/0x2d0
[  112.050619][ T3747]        process_one_work+0x9bf/0x1710
[  112.056065][ T3747]        worker_thread+0x669/0x1090
[  112.061262][ T3747]        kthread+0x2e8/0x3a0
[  112.065847][ T3747]        ret_from_fork+0x1f/0x30
[  112.070771][ T3747] 
[  112.070771][ T3747] -> #2 (nfc_devlist_mutex){+.+.}-{3:3}:
[  112.078568][ T3747]        __mutex_lock+0x12f/0x1360
[  112.083670][ T3747]        nfc_register_device+0x32/0x3b0
[  112.089198][ T3747]        nci_register_device+0x7cb/0xb50
[  112.094818][ T3747]        virtual_ncidev_open+0x71/0x110
[  112.100354][ T3747]        misc_open+0x37a/0x4a0
[  112.105102][ T3747]        chrdev_open+0x26a/0x770
[  112.110022][ T3747]        do_dentry_open+0x6cc/0x13f0
[  112.115311][ T3747]        path_openat+0x1bf6/0x2860
[  112.120426][ T3747]        do_filp_open+0x1ba/0x410
[  112.125441][ T3747]        do_sys_openat2+0x16d/0x4c0
[  112.130627][ T3747]        __x64_sys_openat+0x143/0x1f0
[  112.135989][ T3747]        do_syscall_64+0x39/0xb0
[  112.140918][ T3747]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  112.147331][ T3747] 
[  112.147331][ T3747] -> #1 (nci_mutex){+.+.}-{3:3}:
[  112.154537][ T3747]        __mutex_lock+0x12f/0x1360
[  112.159644][ T3747]        virtual_nci_close+0x17/0x50
[  112.164925][ T3747]        nci_dev_up+0x4cb/0x660
[  112.169768][ T3747]        nfc_dev_up+0x1aa/0x3b0
[  112.174690][ T3747]        nfc_genl_dev_up+0xa6/0xf0
[  112.179784][ T3747]        genl_family_rcv_msg_doit+0x228/0x320
[  112.185837][ T3747]        genl_rcv_msg+0x445/0x780
[  112.190845][ T3747]        netlink_rcv_skb+0x157/0x430
[  112.196121][ T3747]        genl_rcv+0x28/0x40
[  112.200605][ T3747]        netlink_unicast+0x547/0x7f0
[  112.205887][ T3747]        netlink_sendmsg+0x91b/0xe10
[  112.211167][ T3747]        sock_sendmsg+0xd3/0x120
[  112.216099][ T3747]        ____sys_sendmsg+0x712/0x8c0
[  112.221383][ T3747]        ___sys_sendmsg+0x110/0x1b0
[  112.226565][ T3747]        __sys_sendmsg+0xf7/0x1c0
[  112.231575][ T3747]        do_syscall_64+0x39/0xb0
[  112.236500][ T3747]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  112.242903][ T3747] 
[  112.242903][ T3747] -> #0 (&ndev->req_lock){+.+.}-{3:3}:
[  112.250531][ T3747]        __lock_acquire+0x2a43/0x56d0
[  112.255903][ T3747]        lock_acquire+0x1e3/0x630
[  112.260926][ T3747]        __mutex_lock+0x12f/0x1360
[  112.266030][ T3747]        nci_start_poll+0x688/0x900
[  112.271221][ T3747]        nfc_start_poll+0x192/0x320
[  112.276412][ T3747]        nfc_genl_start_poll+0x1ac/0x490
[  112.282036][ T3747]        genl_family_rcv_msg_doit+0x228/0x320
[  112.288088][ T3747]        genl_rcv_msg+0x445/0x780
[  112.293098][ T3747]        netlink_rcv_skb+0x157/0x430
[  112.298379][ T3747]        genl_rcv+0x28/0x40
[  112.302863][ T3747]        netlink_unicast+0x547/0x7f0
[  112.308138][ T3747]        netlink_sendmsg+0x91b/0xe10
[  112.313416][ T3747]        sock_sendmsg+0xd3/0x120
[  112.318343][ T3747]        ____sys_sendmsg+0x712/0x8c0
[  112.323618][ T3747]        ___sys_sendmsg+0x110/0x1b0
[  112.328797][ T3747]        __sys_sendmsg+0xf7/0x1c0
[  112.333807][ T3747]        do_syscall_64+0x39/0xb0
[  112.338734][ T3747]        entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  112.345224][ T3747] 
[  112.345224][ T3747] other info that might help us debug this:
[  112.345224][ T3747] 
[  112.355432][ T3747] Chain exists of:
[  112.355432][ T3747]   &ndev->req_lock --> nfc_devlist_mutex --> &genl_data->genl_data_mutex
[  112.355432][ T3747] 
[  112.369665][ T3747]  Possible unsafe locking scenario:
[  112.369665][ T3747] 
[  112.377093][ T3747]        CPU0                    CPU1
[  112.382436][ T3747]        ----                    ----
[  112.387776][ T3747]   lock(&genl_data->genl_data_mutex);
[  112.393219][ T3747]                                lock(nfc_devlist_mutex);
[  112.400308][ T3747]                                lock(&genl_data->genl_data_mutex);
[  112.408269][ T3747]   lock(&ndev->req_lock);
[  112.412667][ T3747] 
[  112.412667][ T3747]  *** DEADLOCK ***
[  112.412667][ T3747] 
[  112.420788][ T3747] 4 locks held by syz-executor423/3747:
[  112.426315][ T3747]  #0: ffffffff8df50630 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[  112.434663][ T3747]  #1: ffffffff8df506e8 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x50d/0x780
[  112.443611][ T3747]  #2: ffff88801df65508 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x19e/0x490
[  112.454644][ T3747]  #3: ffff88801df65100 (&dev->mutex){....}-{3:3}, at: nfc_start_poll+0x58/0x320
[  112.463766][ T3747] 
[  112.463766][ T3747] stack backtrace:
[  112.469632][ T3747] CPU: 0 PID: 3747 Comm: syz-executor423 Not tainted 6.1.0-rc6-syzkaller-00251-g0b1dcc2cf55a #0
[  112.480024][ T3747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[  112.490234][ T3747] Call Trace:
[  112.493500][ T3747]  <TASK>
[  112.496417][ T3747]  dump_stack_lvl+0xd1/0x138
[  112.500998][ T3747]  check_noncircular+0x25f/0x2e0
[  112.505928][ T3747]  ? print_circular_bug+0x1e0/0x1e0
[  112.511120][ T3747]  ? __kmem_cache_free+0xaf/0x3b0
[  112.516135][ T3747]  ? kasan_save_stack+0x35/0x40
[  112.520974][ T3747]  ? ____kasan_slab_free+0x160/0x1c0
[  112.526251][ T3747]  ? slab_free_freelist_hook+0x8b/0x1c0
[  112.531785][ T3747]  ? __kmem_cache_free+0xaf/0x3b0
[  112.536800][ T3747]  ? nfc_llcp_build_gb.isra.0+0x2b8/0x3f0
[  112.542510][ T3747]  ? nfc_llcp_general_bytes+0x30/0xe0
[  112.547873][ T3747]  __lock_acquire+0x2a43/0x56d0
[  112.552723][ T3747]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  112.558699][ T3747]  lock_acquire+0x1e3/0x630
[  112.563194][ T3747]  ? nci_start_poll+0x688/0x900
[  112.568037][ T3747]  ? lock_release+0x810/0x810
[  112.572710][ T3747]  __mutex_lock+0x12f/0x1360
[  112.577291][ T3747]  ? nci_start_poll+0x688/0x900
[  112.582133][ T3747]  ? nfc_llcp_build_gb.isra.0+0x2b8/0x3f0
[  112.587839][ T3747]  ? nci_start_poll+0x688/0x900
[  112.592678][ T3747]  ? nfc_llcp_reserve_sdp_ssap+0x120/0x120
[  112.598472][ T3747]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  112.604012][ T3747]  ? rcu_read_lock_sched_held+0x3e/0x70
[  112.609548][ T3747]  ? trace_contention_end+0x153/0x1e0
[  112.614911][ T3747]  nci_start_poll+0x688/0x900
[  112.619583][ T3747]  ? nci_dep_link_up+0x1b0/0x1b0
[  112.624511][ T3747]  ? nfc_genl_start_poll+0x19e/0x490
[  112.629785][ T3747]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  112.635328][ T3747]  nfc_start_poll+0x192/0x320
[  112.639993][ T3747]  nfc_genl_start_poll+0x1ac/0x490
[  112.645179][ T3747]  genl_family_rcv_msg_doit+0x228/0x320
[  112.650715][ T3747]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290
[  112.658075][ T3747]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  112.663796][ T3747]  ? ns_capable+0xdd/0x100
[  112.668201][ T3747]  genl_rcv_msg+0x445/0x780
[  112.672866][ T3747]  ? genl_start+0x670/0x670
[  112.677353][ T3747]  ? nfc_genl_dep_link_up+0x250/0x250
[  112.682715][ T3747]  ? lock_release+0x810/0x810
[  112.687390][ T3747]  netlink_rcv_skb+0x157/0x430
[  112.692152][ T3747]  ? genl_start+0x670/0x670
[  112.696640][ T3747]  ? netlink_ack+0xd60/0xd60
[  112.701221][ T3747]  ? netlink_deliver_tap+0x1b1/0xc50
[  112.706508][ T3747]  genl_rcv+0x28/0x40
[  112.710476][ T3747]  netlink_unicast+0x547/0x7f0
[  112.715233][ T3747]  ? netlink_attachskb+0x890/0x890
[  112.720336][ T3747]  ? __virt_addr_valid+0x61/0x2e0
[  112.725358][ T3747]  ? __phys_addr_symbol+0x30/0x70
[  112.730379][ T3747]  ? __check_object_size+0x2e2/0x5a0
[  112.735660][ T3747]  netlink_sendmsg+0x91b/0xe10
[  112.740421][ T3747]  ? netlink_unicast+0x7f0/0x7f0
[  112.745354][ T3747]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  112.750630][ T3747]  ? netlink_unicast+0x7f0/0x7f0
[  112.755562][ T3747]  sock_sendmsg+0xd3/0x120
[  112.759971][ T3747]  ____sys_sendmsg+0x712/0x8c0
[  112.764726][ T3747]  ? copy_msghdr_from_user+0xfc/0x150
[  112.770084][ T3747]  ? kernel_sendmsg+0x50/0x50
[  112.774753][ T3747]  ? futex_unqueue+0xb7/0x120
[  112.779418][ T3747]  ___sys_sendmsg+0x110/0x1b0
[  112.784081][ T3747]  ? do_recvmmsg+0x6e0/0x6e0
[  112.788653][ T3747]  ? __fget_files+0x248/0x440
[  112.793342][ T3747]  ? lock_downgrade+0x6e0/0x6e0
[  112.798196][ T3747]  ? __fget_files+0x26a/0x440
[  112.802863][ T3747]  ? __fget_light+0xe5/0x270
[  112.807444][ T3747]  __sys_sendmsg+0xf7/0x1c0
[  112.811931][ T3747]  ? __sys_sendmsg_sock+0x40/0x40
[  112.816939][ T3747]  ? restore_fpregs_from_fpstate+0xc1/0x1c0
[  112.822827][ T3747]  ? syscall_enter_from_user_mode+0x26/0xb0
[  112.828708][ T3747]  ? lockdep_hardirqs_on+0x7d/0x100
[  112.833902][ T3747]  do_syscall_64+0x39/0xb0
[  112.838400][ T3747]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  112.844284][ T3747] RIP: 0033:0x7f2cc2185649
[  112.848684][ T3747] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  112.868294][ T3747] RSP: 002b:00007f2cc2115318 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  112.876700][ T3747] RAX: ffffffffffffffda RBX: 00007f2cc220d438 RCX: 00007f2cc2185649
[  112.884658][ T3747] RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000004
[  112.892703][ T3747] RBP: 00007f2cc220d430 R08: 0000000000000003 R09: 0000000000000000
[  112.900758][ T3747] R10: 0000000000000008 R11: 0000000000000246 R12: 00007f2cc21db074
[  112.908734][ T3747] R13: 00007ffc13a82eaf R14: 00007f2cc2115400 R15: 0000000000022000
[  112.916708][ T3747]  </TASK>
[  113.033754][ T3747] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  113.042525][ T3747] nci: nci_start_poll: failed to set local general bytes
executing program
[  118.061453][ T3747] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
executing program
[  118.292327][ T3749] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[  118.516566][ T3756] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  118.741627][ T3762] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  118.750342][ T3762] nci: nci_start_poll: failed to set local general bytes