Warning: Permanently added '10.128.1.138' (ECDSA) to the list of known hosts.
executing program
syzkaller login: [   42.638545][ T3973] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[   42.640667][ T3973] nci: nci_start_poll: failed to set local general bytes
[   47.719793][ T3973] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0
[   47.721996][ T3973] 
[   47.722518][ T3973] ======================================================
[   47.723999][ T3973] WARNING: possible circular locking dependency detected
[   47.725419][ T3973] 5.15.111-syzkaller #0 Not tainted
[   47.726517][ T3973] ------------------------------------------------------
[   47.727916][ T3973] syz-executor266/3973 is trying to acquire lock:
[   47.729246][ T3973] ffff800015c6ac48 (nci_mutex){+.+.}-{3:3}, at: virtual_nci_close+0x28/0x58
[   47.731095][ T3973] 
[   47.731095][ T3973] but task is already holding lock:
[   47.732659][ T3973] ffff0000c1115350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0xf0/0x5dc
[   47.734680][ T3973] 
[   47.734680][ T3973] which lock already depends on the new lock.
[   47.734680][ T3973] 
[   47.736936][ T3973] 
[   47.736936][ T3973] the existing dependency chain (in reverse order) is:
[   47.738906][ T3973] 
[   47.738906][ T3973] -> #3 (&ndev->req_lock){+.+.}-{3:3}:
[   47.740541][ T3973]        __mutex_lock_common+0x194/0x2154
[   47.741821][ T3973]        mutex_lock_nested+0xa4/0xf8
[   47.742937][ T3973]        nci_start_poll+0x498/0x1204
[   47.744042][ T3973]        nfc_start_poll+0x164/0x2a4
[   47.745169][ T3973]        nfc_genl_start_poll+0x1b8/0x308
[   47.746349][ T3973]        genl_rcv_msg+0xc18/0x1018
[   47.747416][ T3973]        netlink_rcv_skb+0x20c/0x3b8
[   47.748505][ T3973]        genl_rcv+0x38/0x50
[   47.749477][ T3973]        netlink_unicast+0x664/0x938
[   47.750563][ T3973]        netlink_sendmsg+0x844/0xb38
[   47.751698][ T3973]        ____sys_sendmsg+0x584/0x870
[   47.752780][ T3973]        ___sys_sendmsg+0x214/0x294
[   47.753895][ T3973]        __arm64_sys_sendmsg+0x1ac/0x25c
[   47.755056][ T3973]        invoke_syscall+0x98/0x2b8
[   47.756166][ T3973]        el0_svc_common+0x138/0x258
[   47.757255][ T3973]        do_el0_svc+0x58/0x14c
[   47.758248][ T3973]        el0_svc+0x7c/0x1f0
[   47.759176][ T3973]        el0t_64_sync_handler+0x84/0xe4
[   47.760347][ T3973]        el0t_64_sync+0x1a0/0x1a4
[   47.761391][ T3973] 
[   47.761391][ T3973] -> #2 (&genl_data->genl_data_mutex){+.+.}-{3:3}:
[   47.763221][ T3973]        __mutex_lock_common+0x194/0x2154
[   47.764460][ T3973]        mutex_lock_nested+0xa4/0xf8
[   47.765545][ T3973]        nfc_urelease_event_work+0xfc/0x2a8
[   47.766747][ T3973]        process_one_work+0x790/0x11b8
[   47.767890][ T3973]        worker_thread+0x910/0x1034
[   47.768950][ T3973]        kthread+0x37c/0x45c
[   47.769881][ T3973]        ret_from_fork+0x10/0x20
[   47.770952][ T3973] 
[   47.770952][ T3973] -> #1 (nfc_devlist_mutex){+.+.}-{3:3}:
[   47.772587][ T3973]        __mutex_lock_common+0x194/0x2154
[   47.773782][ T3973]        mutex_lock_nested+0xa4/0xf8
[   47.774863][ T3973]        nfc_register_device+0x4c/0x310
[   47.775974][ T3973]        nci_register_device+0x6ac/0x7c4
[   47.777156][ T3973]        virtual_ncidev_open+0x6c/0xd8
[   47.778291][ T3973]        misc_open+0x2f0/0x368
[   47.779349][ T3973]        chrdev_open+0x3e8/0x4fc
[   47.780365][ T3973]        do_dentry_open+0x780/0xed8
[   47.781442][ T3973]        vfs_open+0x7c/0x90
[   47.782365][ T3973]        path_openat+0x1f28/0x26f0
[   47.783406][ T3973]        do_filp_open+0x1a8/0x3b4
[   47.784459][ T3973]        do_sys_openat2+0x128/0x3d8
[   47.785526][ T3973]        __arm64_sys_openat+0x1f0/0x240
[   47.786696][ T3973]        invoke_syscall+0x98/0x2b8
[   47.787786][ T3973]        el0_svc_common+0x138/0x258
[   47.788847][ T3973]        do_el0_svc+0x58/0x14c
[   47.789831][ T3973]        el0_svc+0x7c/0x1f0
[   47.790763][ T3973]        el0t_64_sync_handler+0x84/0xe4
[   47.791913][ T3973]        el0t_64_sync+0x1a0/0x1a4
[   47.792981][ T3973] 
[   47.792981][ T3973] -> #0 (nci_mutex){+.+.}-{3:3}:
[   47.794458][ T3973]        __lock_acquire+0x32cc/0x7620
[   47.795541][ T3973]        lock_acquire+0x240/0x77c
[   47.796611][ T3973]        __mutex_lock_common+0x194/0x2154
[   47.797819][ T3973]        mutex_lock_nested+0xa4/0xf8
[   47.798958][ T3973]        virtual_nci_close+0x28/0x58
[   47.800088][ T3973]        nci_close_device+0x304/0x5dc
[   47.801238][ T3973]        nci_unregister_device+0x5c/0x22c
[   47.802510][ T3973]        virtual_ncidev_close+0x70/0xb0
[   47.803678][ T3973]        __fput+0x30c/0x7f0
[   47.804616][ T3973]        ____fput+0x20/0x30
[   47.805596][ T3973]        task_work_run+0x130/0x1e4
[   47.806658][ T3973]        do_exit+0x688/0x2134
[   47.807606][ T3973]        do_group_exit+0x110/0x268
[   47.808694][ T3973]        get_signal+0x634/0x1550
[   47.809720][ T3973]        do_notify_resume+0x3d0/0x32b8
[   47.810889][ T3973]        el0_svc+0xfc/0x1f0
[   47.811843][ T3973]        el0t_64_sync_handler+0x84/0xe4
[   47.813048][ T3973]        el0t_64_sync+0x1a0/0x1a4
[   47.814098][ T3973] 
[   47.814098][ T3973] other info that might help us debug this:
[   47.814098][ T3973] 
[   47.816244][ T3973] Chain exists of:
[   47.816244][ T3973]   nci_mutex --> &genl_data->genl_data_mutex --> &ndev->req_lock
[   47.816244][ T3973] 
[   47.819082][ T3973]  Possible unsafe locking scenario:
[   47.819082][ T3973] 
[   47.820628][ T3973]        CPU0                    CPU1
[   47.821741][ T3973]        ----                    ----
[   47.822831][ T3973]   lock(&ndev->req_lock);
[   47.823758][ T3973]                                lock(&genl_data->genl_data_mutex);
[   47.825386][ T3973]                                lock(&ndev->req_lock);
[   47.826853][ T3973]   lock(nci_mutex);
[   47.827649][ T3973] 
[   47.827649][ T3973]  *** DEADLOCK ***
[   47.827649][ T3973] 
[   47.829391][ T3973] 1 lock held by syz-executor266/3973:
[   47.830583][ T3973]  #0: ffff0000c1115350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0xf0/0x5dc
[   47.832671][ T3973] 
[   47.832671][ T3973] stack backtrace:
[   47.833880][ T3973] CPU: 0 PID: 3973 Comm: syz-executor266 Not tainted 5.15.111-syzkaller #0
[   47.835658][ T3973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[   47.837681][ T3973] Call trace:
[   47.838398][ T3973]  dump_backtrace+0x0/0x530
[   47.839404][ T3973]  show_stack+0x2c/0x3c
[   47.840286][ T3973]  dump_stack_lvl+0x108/0x170
[   47.841299][ T3973]  dump_stack+0x1c/0x58
[   47.842180][ T3973]  print_circular_bug+0x150/0x1b8
[   47.843202][ T3973]  check_noncircular+0x2cc/0x378
[   47.844215][ T3973]  __lock_acquire+0x32cc/0x7620
[   47.845219][ T3973]  lock_acquire+0x240/0x77c
[   47.846160][ T3973]  __mutex_lock_common+0x194/0x2154
[   47.847263][ T3973]  mutex_lock_nested+0xa4/0xf8
[   47.848240][ T3973]  virtual_nci_close+0x28/0x58
[   47.849236][ T3973]  nci_close_device+0x304/0x5dc
[   47.850259][ T3973]  nci_unregister_device+0x5c/0x22c
[   47.851363][ T3973]  virtual_ncidev_close+0x70/0xb0
[   47.852430][ T3973]  __fput+0x30c/0x7f0
[   47.853243][ T3973]  ____fput+0x20/0x30
[   47.854101][ T3973]  task_work_run+0x130/0x1e4
[   47.855120][ T3973]  do_exit+0x688/0x2134
[   47.856011][ T3973]  do_group_exit+0x110/0x268
[   47.857081][ T3973]  get_signal+0x634/0x1550
[   47.857974][ T3973]  do_notify_resume+0x3d0/0x32b8
[   47.859046][ T3973]  el0_svc+0xfc/0x1f0
[   47.859867][ T3973]  el0t_64_sync_handler+0x84/0xe4
[   47.860936][ T3973]  el0t_64_sync+0x1a0/0x1a4