Warning: Permanently added '10.128.1.88' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   36.149827][ T4225] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   36.380496][ T4232] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   36.449262][ T4244] 
[   36.449819][ T4244] ======================================================
[   36.451234][ T4244] WARNING: possible circular locking dependency detected
[   36.452730][ T4244] 6.1.28-syzkaller #0 Not tainted
[   36.453760][ T4244] ------------------------------------------------------
[   36.455232][ T4244] syz-executor303/4244 is trying to acquire lock:
[   36.456624][ T4244] ffff0000c4b0b350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_start_poll+0x498/0x1204
[   36.458721][ T4244] 
[   36.458721][ T4244] but task is already holding lock:
[   36.460272][ T4244] ffff0000c4b0c520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308
[   36.462592][ T4244] 
[   36.462592][ T4244] which lock already depends on the new lock.
[   36.462592][ T4244] 
[   36.464805][ T4244] 
[   36.464805][ T4244] the existing dependency chain (in reverse order) is:
[   36.466716][ T4244] 
[   36.466716][ T4244] -> #3 (&genl_data->genl_data_mutex){+.+.}-{3:3}:
[   36.468646][ T4244]        __mutex_lock_common+0x190/0x21a0
[   36.469875][ T4244]        mutex_lock_nested+0x38/0x44
[   36.471051][ T4244]        nfc_urelease_event_work+0xfc/0x2a8
[   36.472273][ T4244]        process_one_work+0x7ac/0x1404
[   36.473639][ T4244]        worker_thread+0x8e4/0xfec
[   36.474679][ T4244]        kthread+0x250/0x2d8
[   36.475517][ T4244]        ret_from_fork+0x10/0x20
[   36.476350][ T4244] 
[   36.476350][ T4244] -> #2 (nfc_devlist_mutex){+.+.}-{3:3}:
[   36.477716][ T4244]        __mutex_lock_common+0x190/0x21a0
[   36.478883][ T4244]        mutex_lock_nested+0x38/0x44
[   36.479968][ T4244]        nfc_register_device+0x4c/0x310
[   36.481111][ T4244]        nci_register_device+0x6ac/0x7c4
[   36.482328][ T4244]        virtual_ncidev_open+0x6c/0xd8
[   36.483562][ T4244]        misc_open+0x2f0/0x368
[   36.484590][ T4244]        chrdev_open+0x3e8/0x4fc
[   36.485651][ T4244]        do_dentry_open+0x734/0xfa0
[   36.486730][ T4244]        vfs_open+0x7c/0x90
[   36.487715][ T4244]        path_openat+0x1e14/0x2548
[   36.488826][ T4244]        do_filp_open+0x1bc/0x3cc
[   36.489865][ T4244]        do_sys_openat2+0x128/0x3d8
[   36.490951][ T4244]        __arm64_sys_openat+0x1f0/0x240
[   36.492142][ T4244]        invoke_syscall+0x98/0x2c0
[   36.493204][ T4244]        el0_svc_common+0x138/0x258
[   36.494258][ T4244]        do_el0_svc+0x64/0x218
[   36.495226][ T4244]        el0_svc+0x58/0x168
[   36.496172][ T4244]        el0t_64_sync_handler+0x84/0xf0
[   36.497296][ T4244]        el0t_64_sync+0x18c/0x190
[   36.498331][ T4244] 
[   36.498331][ T4244] -> #1 (nci_mutex){+.+.}-{3:3}:
[   36.499778][ T4244]        __mutex_lock_common+0x190/0x21a0
[   36.501020][ T4244]        mutex_lock_nested+0x38/0x44
[   36.502146][ T4244]        virtual_nci_close+0x28/0x58
[   36.503227][ T4244]        nci_dev_up+0x754/0xb10
[   36.504159][ T4244]        nfc_dev_up+0x154/0x300
[   36.505150][ T4244]        nfc_genl_dev_up+0x98/0xdc
[   36.506242][ T4244]        genl_rcv_msg+0x948/0xc2c
[   36.507229][ T4244]        netlink_rcv_skb+0x20c/0x3b8
[   36.508332][ T4244]        genl_rcv+0x38/0x50
[   36.509273][ T4244]        netlink_unicast+0x660/0x8d4
[   36.510280][ T4244]        netlink_sendmsg+0x834/0xb18
[   36.511373][ T4244]        ____sys_sendmsg+0x558/0x844
[   36.512421][ T4244]        __sys_sendmsg+0x26c/0x33c
[   36.513557][ T4244]        __arm64_sys_sendmsg+0x80/0x94
[   36.514706][ T4244]        invoke_syscall+0x98/0x2c0
[   36.515774][ T4244]        el0_svc_common+0x138/0x258
[   36.516906][ T4244]        do_el0_svc+0x64/0x218
[   36.517982][ T4244]        el0_svc+0x58/0x168
[   36.519013][ T4244]        el0t_64_sync_handler+0x84/0xf0
[   36.520130][ T4244]        el0t_64_sync+0x18c/0x190
[   36.521285][ T4244] 
[   36.521285][ T4244] -> #0 (&ndev->req_lock){+.+.}-{3:3}:
[   36.522950][ T4244]        __lock_acquire+0x3338/0x764c
[   36.524120][ T4244]        lock_acquire+0x26c/0x7cc
[   36.525175][ T4244]        __mutex_lock_common+0x190/0x21a0
[   36.526449][ T4244]        mutex_lock_nested+0x38/0x44
[   36.527521][ T4244]        nci_start_poll+0x498/0x1204
[   36.528651][ T4244]        nfc_start_poll+0x164/0x2a4
[   36.529776][ T4244]        nfc_genl_start_poll+0x1b8/0x308
[   36.530970][ T4244]        genl_rcv_msg+0x948/0xc2c
[   36.532029][ T4244]        netlink_rcv_skb+0x20c/0x3b8
[   36.533203][ T4244]        genl_rcv+0x38/0x50
[   36.534158][ T4244]        netlink_unicast+0x660/0x8d4
[   36.535243][ T4244]        netlink_sendmsg+0x834/0xb18
[   36.536428][ T4244]        ____sys_sendmsg+0x558/0x844
[   36.537532][ T4244]        __sys_sendmsg+0x26c/0x33c
[   36.538708][ T4244]        __arm64_sys_sendmsg+0x80/0x94
[   36.539824][ T4244]        invoke_syscall+0x98/0x2c0
[   36.540905][ T4244]        el0_svc_common+0x138/0x258
[   36.541945][ T4244]        do_el0_svc+0x64/0x218
[   36.542903][ T4244]        el0_svc+0x58/0x168
[   36.543843][ T4244]        el0t_64_sync_handler+0x84/0xf0
[   36.545057][ T4244]        el0t_64_sync+0x18c/0x190
[   36.546107][ T4244] 
[   36.546107][ T4244] other info that might help us debug this:
[   36.546107][ T4244] 
[   36.548287][ T4244] Chain exists of:
[   36.548287][ T4244]   &ndev->req_lock --> nfc_devlist_mutex --> &genl_data->genl_data_mutex
[   36.548287][ T4244] 
[   36.551324][ T4244]  Possible unsafe locking scenario:
[   36.551324][ T4244] 
[   36.552906][ T4244]        CPU0                    CPU1
[   36.554047][ T4244]        ----                    ----
[   36.555124][ T4244]   lock(&genl_data->genl_data_mutex);
[   36.556242][ T4244]                                lock(nfc_devlist_mutex);
[   36.557687][ T4244]                                lock(&genl_data->genl_data_mutex);
[   36.559345][ T4244]   lock(&ndev->req_lock);
[   36.560273][ T4244] 
[   36.560273][ T4244]  *** DEADLOCK ***
[   36.560273][ T4244] 
[   36.561968][ T4244] 4 locks held by syz-executor303/4244:
[   36.563189][ T4244]  #0: ffff800017bbfd70 (cb_lock){++++}-{3:3}, at: genl_rcv+0x28/0x50
[   36.564891][ T4244]  #1: ffff800017bbfc28 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x114/0xc2c
[   36.566794][ T4244]  #2: ffff0000c4b0c520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308
[   36.569138][ T4244]  #3: ffff0000c4b0c100 (&dev->mutex){....}-{3:3}, at: nfc_start_poll+0x60/0x2a4
[   36.571042][ T4244] 
[   36.571042][ T4244] stack backtrace:
[   36.572286][ T4244] CPU: 0 PID: 4244 Comm: syz-executor303 Not tainted 6.1.28-syzkaller #0
[   36.574015][ T4244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[   36.576217][ T4244] Call trace:
[   36.576857][ T4244]  dump_backtrace+0x1c8/0x1f4
[   36.577867][ T4244]  show_stack+0x2c/0x3c
[   36.578803][ T4244]  dump_stack_lvl+0x108/0x170
[   36.579701][ T4244]  dump_stack+0x1c/0x5c
[   36.580568][ T4244]  print_circular_bug+0x150/0x1b8
[   36.581612][ T4244]  check_noncircular+0x2cc/0x378
[   36.582685][ T4244]  __lock_acquire+0x3338/0x764c
[   36.583784][ T4244]  lock_acquire+0x26c/0x7cc
[   36.584767][ T4244]  __mutex_lock_common+0x190/0x21a0
[   36.585822][ T4244]  mutex_lock_nested+0x38/0x44
[   36.586886][ T4244]  nci_start_poll+0x498/0x1204
[   36.587853][ T4244]  nfc_start_poll+0x164/0x2a4
[   36.588881][ T4244]  nfc_genl_start_poll+0x1b8/0x308
[   36.589929][ T4244]  genl_rcv_msg+0x948/0xc2c
[   36.590919][ T4244]  netlink_rcv_skb+0x20c/0x3b8
[   36.591914][ T4244]  genl_rcv+0x38/0x50
[   36.592737][ T4244]  netlink_unicast+0x660/0x8d4
[   36.593758][ T4244]  netlink_sendmsg+0x834/0xb18
[   36.594753][ T4244]  ____sys_sendmsg+0x558/0x844
[   36.595758][ T4244]  __sys_sendmsg+0x26c/0x33c
[   36.596708][ T4244]  __arm64_sys_sendmsg+0x80/0x94
[   36.597725][ T4244]  invoke_syscall+0x98/0x2c0
[   36.598695][ T4244]  el0_svc_common+0x138/0x258
[   36.599743][ T4244]  do_el0_svc+0x64/0x218
[   36.600675][ T4244]  el0_svc+0x58/0x168
[   36.601515][ T4244]  el0t_64_sync_handler+0x84/0xf0
[   36.602515][ T4244]  el0t_64_sync+0x18c/0x190
[   36.714492][ T4244] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   36.716275][ T4244] nci: nci_start_poll: failed to set local general bytes
[   41.794259][ T4244] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
executing program
[   42.015752][ T4247] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   42.235898][ T4255] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   42.455627][ T4261] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   42.674221][ T4267] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   42.894026][ T4273] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   43.114535][ T4283] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   43.116325][ T4283] nci: nci_start_poll: failed to set local general bytes