Warning: Permanently added '10.128.1.88' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   34.834662][ T4219] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   35.065625][ T4226] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   35.293729][ T4233] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   35.522414][ T4239] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   35.751123][ T4246] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   35.980992][ T4252] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   36.210102][ T4259] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   36.438910][ T4265] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   36.505440][ T4275] 
[   36.506061][ T4275] ======================================================
[   36.507537][ T4275] WARNING: possible circular locking dependency detected
[   36.509098][ T4275] 6.1.27-syzkaller #0 Not tainted
[   36.510202][ T4275] ------------------------------------------------------
[   36.511760][ T4275] syz-executor265/4275 is trying to acquire lock:
[   36.513124][ T4275] ffff0000de458350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_start_poll+0x498/0x1204
[   36.515163][ T4275] 
[   36.515163][ T4275] but task is already holding lock:
[   36.516774][ T4275] ffff0000de459520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308
[   36.519012][ T4275] 
[   36.519012][ T4275] which lock already depends on the new lock.
[   36.519012][ T4275] 
[   36.521243][ T4275] 
[   36.521243][ T4275] the existing dependency chain (in reverse order) is:
[   36.523289][ T4275] 
[   36.523289][ T4275] -> #3 (&genl_data->genl_data_mutex){+.+.}-{3:3}:
[   36.525223][ T4275]        __mutex_lock_common+0x190/0x21a0
[   36.526414][ T4275]        mutex_lock_nested+0x38/0x44
[   36.527478][ T4275]        nfc_urelease_event_work+0xfc/0x2a8
[   36.528798][ T4275]        process_one_work+0x7ac/0x1404
[   36.529990][ T4275]        worker_thread+0x8e4/0xfec
[   36.531032][ T4275]        kthread+0x250/0x2d8
[   36.532071][ T4275]        ret_from_fork+0x10/0x20
[   36.533178][ T4275] 
[   36.533178][ T4275] -> #2 (nfc_devlist_mutex){+.+.}-{3:3}:
[   36.534888][ T4275]        __mutex_lock_common+0x190/0x21a0
[   36.536222][ T4275]        mutex_lock_nested+0x38/0x44
[   36.537392][ T4275]        nfc_register_device+0x4c/0x310
[   36.538644][ T4275]        nci_register_device+0x6ac/0x7c4
[   36.539855][ T4275]        virtual_ncidev_open+0x6c/0xd8
[   36.541038][ T4275]        misc_open+0x2f0/0x368
[   36.542065][ T4275]        chrdev_open+0x3e8/0x4fc
[   36.543119][ T4275]        do_dentry_open+0x734/0xfa0
[   36.544277][ T4275]        vfs_open+0x7c/0x90
[   36.545270][ T4275]        path_openat+0x1e14/0x2548
[   36.546462][ T4275]        do_filp_open+0x1bc/0x3cc
[   36.547533][ T4275]        do_sys_openat2+0x128/0x3d8
[   36.548612][ T4275]        __arm64_sys_openat+0x1f0/0x240
[   36.549847][ T4275]        invoke_syscall+0x98/0x2c0
[   36.551044][ T4275]        el0_svc_common+0x138/0x258
[   36.552118][ T4275]        do_el0_svc+0x64/0x218
[   36.553128][ T4275]        el0_svc+0x58/0x168
[   36.554050][ T4275]        el0t_64_sync_handler+0x84/0xf0
[   36.555287][ T4275]        el0t_64_sync+0x18c/0x190
[   36.556480][ T4275] 
[   36.556480][ T4275] -> #1 (nci_mutex){+.+.}-{3:3}:
[   36.558069][ T4275]        __mutex_lock_common+0x190/0x21a0
[   36.559281][ T4275]        mutex_lock_nested+0x38/0x44
[   36.560426][ T4275]        virtual_nci_close+0x28/0x58
[   36.561637][ T4275]        nci_dev_up+0x754/0xb10
[   36.562753][ T4275]        nfc_dev_up+0x154/0x300
[   36.563856][ T4275]        nfc_genl_dev_up+0x98/0xdc
[   36.564931][ T4275]        genl_rcv_msg+0x948/0xc2c
[   36.566013][ T4275]        netlink_rcv_skb+0x20c/0x3b8
[   36.567161][ T4275]        genl_rcv+0x38/0x50
[   36.568134][ T4275]        netlink_unicast+0x660/0x8d4
[   36.569301][ T4275]        netlink_sendmsg+0x834/0xb18
[   36.570441][ T4275]        ____sys_sendmsg+0x558/0x844
[   36.571475][ T4275]        __sys_sendmsg+0x26c/0x33c
[   36.572654][ T4275]        __arm64_sys_sendmsg+0x80/0x94
[   36.573946][ T4275]        invoke_syscall+0x98/0x2c0
[   36.574993][ T4275]        el0_svc_common+0x138/0x258
[   36.576234][ T4275]        do_el0_svc+0x64/0x218
[   36.577260][ T4275]        el0_svc+0x58/0x168
[   36.578249][ T4275]        el0t_64_sync_handler+0x84/0xf0
[   36.579391][ T4275]        el0t_64_sync+0x18c/0x190
[   36.580459][ T4275] 
[   36.580459][ T4275] -> #0 (&ndev->req_lock){+.+.}-{3:3}:
[   36.582127][ T4275]        __lock_acquire+0x3338/0x764c
[   36.583295][ T4275]        lock_acquire+0x26c/0x7cc
[   36.584417][ T4275]        __mutex_lock_common+0x190/0x21a0
[   36.585659][ T4275]        mutex_lock_nested+0x38/0x44
[   36.586784][ T4275]        nci_start_poll+0x498/0x1204
[   36.587864][ T4275]        nfc_start_poll+0x164/0x2a4
[   36.589043][ T4275]        nfc_genl_start_poll+0x1b8/0x308
[   36.590277][ T4275]        genl_rcv_msg+0x948/0xc2c
[   36.591424][ T4275]        netlink_rcv_skb+0x20c/0x3b8
[   36.592628][ T4275]        genl_rcv+0x38/0x50
[   36.593663][ T4275]        netlink_unicast+0x660/0x8d4
[   36.594762][ T4275]        netlink_sendmsg+0x834/0xb18
[   36.595941][ T4275]        ____sys_sendmsg+0x558/0x844
[   36.597133][ T4275]        __sys_sendmsg+0x26c/0x33c
[   36.598333][ T4275]        __arm64_sys_sendmsg+0x80/0x94
[   36.599516][ T4275]        invoke_syscall+0x98/0x2c0
[   36.600671][ T4275]        el0_svc_common+0x138/0x258
[   36.601829][ T4275]        do_el0_svc+0x64/0x218
[   36.602912][ T4275]        el0_svc+0x58/0x168
[   36.603860][ T4275]        el0t_64_sync_handler+0x84/0xf0
[   36.605071][ T4275]        el0t_64_sync+0x18c/0x190
[   36.606208][ T4275] 
[   36.606208][ T4275] other info that might help us debug this:
[   36.606208][ T4275] 
[   36.608350][ T4275] Chain exists of:
[   36.608350][ T4275]   &ndev->req_lock --> nfc_devlist_mutex --> &genl_data->genl_data_mutex
[   36.608350][ T4275] 
[   36.611619][ T4275]  Possible unsafe locking scenario:
[   36.611619][ T4275] 
[   36.613228][ T4275]        CPU0                    CPU1
[   36.614393][ T4275]        ----                    ----
[   36.615559][ T4275]   lock(&genl_data->genl_data_mutex);
[   36.616757][ T4275]                                lock(nfc_devlist_mutex);
[   36.618222][ T4275]                                lock(&genl_data->genl_data_mutex);
[   36.619944][ T4275]   lock(&ndev->req_lock);
[   36.620871][ T4275] 
[   36.620871][ T4275]  *** DEADLOCK ***
[   36.620871][ T4275] 
[   36.622568][ T4275] 4 locks held by syz-executor265/4275:
[   36.623795][ T4275]  #0: ffff800017bbf050 (cb_lock){++++}-{3:3}, at: genl_rcv+0x28/0x50
[   36.625527][ T4275]  #1: ffff800017bbef08 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x114/0xc2c
[   36.627485][ T4275]  #2: ffff0000de459520 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x1a8/0x308
[   36.629913][ T4275]  #3: ffff0000de459100 (&dev->mutex){....}-{3:3}, at: nfc_start_poll+0x60/0x2a4
[   36.632083][ T4275] 
[   36.632083][ T4275] stack backtrace:
[   36.633474][ T4275] CPU: 0 PID: 4275 Comm: syz-executor265 Not tainted 6.1.27-syzkaller #0
[   36.635321][ T4275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[   36.637541][ T4275] Call trace:
[   36.638306][ T4275]  dump_backtrace+0x1c8/0x1f4
[   36.639346][ T4275]  show_stack+0x2c/0x3c
[   36.640250][ T4275]  dump_stack_lvl+0x108/0x170
[   36.641217][ T4275]  dump_stack+0x1c/0x5c
[   36.642159][ T4275]  print_circular_bug+0x150/0x1b8
[   36.643336][ T4275]  check_noncircular+0x2cc/0x378
[   36.644345][ T4275]  __lock_acquire+0x3338/0x764c
[   36.645514][ T4275]  lock_acquire+0x26c/0x7cc
[   36.646470][ T4275]  __mutex_lock_common+0x190/0x21a0
[   36.647529][ T4275]  mutex_lock_nested+0x38/0x44
[   36.648548][ T4275]  nci_start_poll+0x498/0x1204
[   36.649488][ T4275]  nfc_start_poll+0x164/0x2a4
[   36.650476][ T4275]  nfc_genl_start_poll+0x1b8/0x308
[   36.651645][ T4275]  genl_rcv_msg+0x948/0xc2c
[   36.652645][ T4275]  netlink_rcv_skb+0x20c/0x3b8
[   36.653716][ T4275]  genl_rcv+0x38/0x50
[   36.654619][ T4275]  netlink_unicast+0x660/0x8d4
[   36.655780][ T4275]  netlink_sendmsg+0x834/0xb18
[   36.656841][ T4275]  ____sys_sendmsg+0x558/0x844
[   36.657957][ T4275]  __sys_sendmsg+0x26c/0x33c
[   36.658989][ T4275]  __arm64_sys_sendmsg+0x80/0x94
[   36.660177][ T4275]  invoke_syscall+0x98/0x2c0
[   36.661209][ T4275]  el0_svc_common+0x138/0x258
[   36.662222][ T4275]  do_el0_svc+0x64/0x218
[   36.663158][ T4275]  el0_svc+0x58/0x168
[   36.664063][ T4275]  el0t_64_sync_handler+0x84/0xf0
[   36.665240][ T4275]  el0t_64_sync+0x18c/0x190
[   36.776178][ T4275] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   36.778090][ T4275] nci: nci_start_poll: failed to set local general bytes
[   41.855669][ T4275] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
executing program
[   42.079143][ T4278] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
executing program
[   42.298944][ T4289] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   42.300921][ T4289] nci: nci_start_poll: failed to set local general bytes