DUID 00:04:cd:7d:74:7d:04:96:3f:c0:f2:1a:da:5a:49:b1:9f:fb forked to background, child pid 3187 [ 26.601491][ T3188] 8021q: adding VLAN 0 to HW filter on device bond0 [ 26.613476][ T3188] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.154' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 55.327219][ T56] [ 55.329575][ T56] ====================================================== [ 55.336590][ T56] WARNING: possible circular locking dependency detected [ 55.343598][ T56] 6.0.0-rc1-next-20220819-syzkaller #0 Not tainted [ 55.350073][ T56] ------------------------------------------------------ [ 55.357064][ T56] kworker/u4:4/56 is trying to acquire lock: [ 55.363105][ T56] ffff88814a78acb0 (sk_lock-AF_INET6){+.+.}-{0:0}, at: strp_work+0x40/0x130 [ 55.371813][ T56] [ 55.371813][ T56] but task is already holding lock: [ 55.379156][ T56] ffffc90001577da8 ((work_completion)(&strp->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 [ 55.389834][ T56] [ 55.389834][ T56] which lock already depends on the new lock. [ 55.389834][ T56] [ 55.400215][ T56] [ 55.400215][ T56] the existing dependency chain (in reverse order) is: [ 55.409206][ T56] [ 55.409206][ T56] -> #1 ((work_completion)(&strp->work)){+.+.}-{0:0}: [ 55.418128][ T56] __flush_work+0x105/0xae0 [ 55.423141][ T56] __cancel_work_timer+0x3f9/0x570 [ 55.428765][ T56] strp_done+0x64/0xf0 [ 55.433342][ T56] kcm_ioctl+0x913/0x1180 [ 55.438180][ T56] sock_do_ioctl+0xcc/0x230 [ 55.443192][ T56] sock_ioctl+0x2f1/0x640 [ 55.448029][ T56] __x64_sys_ioctl+0x193/0x200 [ 55.453314][ T56] do_syscall_64+0x35/0xb0 [ 55.458240][ T56] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 55.464641][ T56] [ 55.464641][ T56] -> #0 (sk_lock-AF_INET6){+.+.}-{0:0}: [ 55.472357][ T56] __lock_acquire+0x2a43/0x56d0 [ 55.477712][ T56] lock_acquire+0x1ab/0x570 [ 55.482719][ T56] lock_sock_nested+0x36/0xf0 [ 55.487916][ T56] strp_work+0x40/0x130 [ 55.492582][ T56] process_one_work+0x991/0x1610 [ 55.498031][ T56] worker_thread+0x665/0x1080 [ 55.503219][ T56] kthread+0x2e4/0x3a0 [ 55.507811][ T56] ret_from_fork+0x1f/0x30 [ 55.512738][ T56] [ 55.512738][ T56] other info that might help us debug this: [ 55.512738][ T56] [ 55.522943][ T56] Possible unsafe locking scenario: [ 55.522943][ T56] [ 55.530371][ T56] CPU0 CPU1 [ 55.535716][ T56] ---- ---- [ 55.541059][ T56] lock((work_completion)(&strp->work)); [ 55.546782][ T56] lock(sk_lock-AF_INET6); [ 55.553782][ T56] lock((work_completion)(&strp->work)); [ 55.562015][ T56] lock(sk_lock-AF_INET6); [ 55.566513][ T56] [ 55.566513][ T56] *** DEADLOCK *** [ 55.566513][ T56] [ 55.574632][ T56] 2 locks held by kworker/u4:4/56: [ 55.579720][ T56] #0: ffff888026dbd938 ((wq_completion)kstrp){+.+.}-{0:0}, at: process_one_work+0x87a/0x1610 [ 55.589980][ T56] #1: ffffc90001577da8 ((work_completion)(&strp->work)){+.+.}-{0:0}, at: process_one_work+0x8ae/0x1610 [ 55.601095][ T56] [ 55.601095][ T56] stack backtrace: [ 55.606970][ T56] CPU: 1 PID: 56 Comm: kworker/u4:4 Not tainted 6.0.0-rc1-next-20220819-syzkaller #0 [ 55.616405][ T56] kworker/u4:4[56] cmdline: a [ 55.621756][ T56] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 55.631793][ T56] Workqueue: kstrp strp_work [ 55.636377][ T56] Call Trace: [ 55.639640][ T56] [ 55.642580][ T56] dump_stack_lvl+0xcd/0x134 [ 55.647164][ T56] check_noncircular+0x25f/0x2e0 [ 55.652091][ T56] ? print_circular_bug+0x1e0/0x1e0 [ 55.657293][ T56] ? __pv_queued_spin_lock_slowpath+0x264/0xb50 [ 55.663524][ T56] __lock_acquire+0x2a43/0x56d0 [ 55.668379][ T56] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 55.674346][ T56] lock_acquire+0x1ab/0x570 [ 55.678836][ T56] ? strp_work+0x40/0x130 [ 55.683157][ T56] ? lock_release+0x780/0x780 [ 55.687828][ T56] ? lock_release+0x780/0x780 [ 55.692490][ T56] ? lock_downgrade+0x6e0/0x6e0 [ 55.697332][ T56] ? lockdep_hardirqs_on+0x79/0x100 [ 55.702522][ T56] lock_sock_nested+0x36/0xf0 [ 55.707189][ T56] ? strp_work+0x40/0x130 [ 55.711508][ T56] strp_work+0x40/0x130 [ 55.715666][ T56] process_one_work+0x991/0x1610 [ 55.720593][ T56] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 55.725967][ T56] ? rwlock_bug.