lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 iwpm_register_pid: Unable to send a nlmsg (client = 2) ====================================================== WARNING: possible circular locking dependency detected 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 Not tainted ------------------------------------------------------ syz.1.396/4705 is trying to acquire lock: ffff000020489d58 (sk_lock-AF_INET6){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1651 [inline] ffff000020489d58 (sk_lock-AF_INET6){+.+.}-{0:0}, at: sock_set_reuseaddr+0x1c/0x70 net/core/sock.c:788 but task is already holding lock: ffff8000883721e8 (lock#5){+.+.}-{4:4}, at: cma_add_one+0x4b0/0xb04 drivers/infiniband/core/cma.c:5384 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #3 (lock#5){+.+.}-{4:4}: __mutex_lock_common kernel/locking/mutex.c:601 [inline] __mutex_lock+0x144/0x9d8 kernel/locking/mutex.c:746 mutex_lock_nested+0x24/0x30 kernel/locking/mutex.c:798 cma_init+0x30/0x104 drivers/infiniband/core/cma.c:5468 do_one_initcall+0x130/0x7f0 init/main.c:1257 do_initcall_level init/main.c:1319 [inline] do_initcalls init/main.c:1335 [inline] do_basic_setup init/main.c:1354 [inline] kernel_init_freeable+0x488/0x6f0 init/main.c:1567 kernel_init+0x24/0x1e0 init/main.c:1457 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:862 -> #2 (rtnl_mutex){+.+.}-{4:4}: __mutex_lock_common kernel/locking/mutex.c:601 [inline] __mutex_lock+0x144/0x9d8 kernel/locking/mutex.c:746 mutex_lock_nested+0x24/0x30 kernel/locking/mutex.c:798 rtnl_lock+0x1c/0x28 net/core/rtnetlink.c:80 ip_mroute_setsockopt+0xd4/0xe44 net/ipv4/ipmr.c:1396 do_ip_setsockopt+0x1e0/0x2354 net/ipv4/ip_sockglue.c:948 ip_setsockopt+0x34/0x9c net/ipv4/ip_sockglue.c:1417 ipv6_setsockopt+0xf4/0x114 net/ipv6/ipv6_sockglue.c:988 tcp_setsockopt+0x90/0xcc net/ipv4/tcp.c:4077 sock_common_setsockopt+0x70/0xe0 net/core/sock.c:3894 smc_setsockopt+0x14c/0x9ac net/smc/af_smc.c:3081 do_sock_setsockopt+0x17c/0x354 net/socket.c:2296 __sys_setsockopt+0xcc/0x144 net/socket.c:2321 __do_sys_setsockopt net/socket.c:2327 [inline] __se_sys_setsockopt net/socket.c:2324 [inline] __arm64_sys_setsockopt+0xa4/0x100 net/socket.c:2324 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:49 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x50/0x180 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}: __mutex_lock_common kernel/locking/mutex.c:601 [inline] __mutex_lock+0x144/0x9d8 kernel/locking/mutex.c:746 mutex_lock_nested+0x24/0x30 kernel/locking/mutex.c:798 smc_switch_to_fallback+0x34/0x804 net/smc/af_smc.c:903 smc_sendmsg+0xe4/0x8f8 net/smc/af_smc.c:2781 sock_sendmsg_nosec net/socket.c:712 [inline] __sock_sendmsg+0xc8/0x168 net/socket.c:727 __sys_sendto+0x1d8/0x26c net/socket.c:2180 __do_sys_sendto net/socket.c:2187 [inline] __se_sys_sendto net/socket.c:2183 [inline] __arm64_sys_sendto+0xc0/0x134 net/socket.c:2183 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:49 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x50/0x180 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 -> #0 (sk_lock-AF_INET6){+.+.}-{0:0}: check_prev_add kernel/locking/lockdep.c:3166 [inline] check_prevs_add kernel/locking/lockdep.c:3285 [inline] validate_chain kernel/locking/lockdep.c:3909 [inline] __lock_acquire+0x15f4/0x2314 kernel/locking/lockdep.c:5235 lock_acquire kernel/locking/lockdep.c:5866 [inline] lock_acquire+0x310/0x38c kernel/locking/lockdep.c:5823 lock_sock_nested+0x38/0xe8 net/core/sock.c:3702 lock_sock include/net/sock.h:1651 [inline] sock_set_reuseaddr+0x1c/0x70 net/core/sock.c:788 siw_create_listen+0x114/0xed0 drivers/infiniband/sw/siw/siw_cm.c:1777 iw_cm_listen+0x124/0x190 drivers/infiniband/core/iwcm.c:587 cma_iw_listen drivers/infiniband/core/cma.c:2698 [inline] rdma_listen+0x4c0/0x8a4 drivers/infiniband/core/cma.c:3983 cma_listen_on_dev+0x394/0x628 drivers/infiniband/core/cma.c:2757 cma_add_one+0x574/0xb04 drivers/infiniband/core/cma.c:5387 add_client_context+0x2c0/0x424 drivers/infiniband/core/device.c:720 enable_device_and_get+0x18c/0x300 drivers/infiniband/core/device.c:1331 ib_register_device drivers/infiniband/core/device.c:1447 [inline] ib_register_device+0x5e8/0xa48 drivers/infiniband/core/device.c:1393 siw_device_register drivers/infiniband/sw/siw/siw_main.c:71 [inline] siw_newlink+0x960/0xbf8 drivers/infiniband/sw/siw/siw_main.c:430 nldev_newlink+0x280/0x4b4 drivers/infiniband/core/nldev.c:1796 rdma_nl_rcv_msg+0x274/0x56c drivers/infiniband/core/netlink.c:195 rdma_nl_rcv_skb.constprop.0.isra.0+0x204/0x340 drivers/infiniband/core/netlink.c:239 rdma_nl_rcv+0x10/0x1c drivers/infiniband/core/netlink.c:259 netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline] netlink_unicast+0x3c0/0x670 net/netlink/af_netlink.c:1339 netlink_sendmsg+0x658/0xa50 net/netlink/af_netlink.c:1883 sock_sendmsg_nosec net/socket.c:712 [inline] __sock_sendmsg+0xc8/0x168 net/socket.c:727 ____sys_sendmsg+0x51c/0x734 net/socket.c:2566 ___sys_sendmsg+0x11c/0x19c net/socket.c:2620 __sys_sendmsg+0x114/0x198 net/socket.c:2652 __do_sys_sendmsg net/socket.c:2657 [inline] __se_sys_sendmsg net/socket.c:2655 [inline] __arm64_sys_sendmsg+0x70/0xa0 net/socket.c:2655 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:49 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x50/0x180 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 other info that might help us debug this: Chain exists of: sk_lock-AF_INET6 --> rtnl_mutex --> lock#5 Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(lock#5); lock(rtnl_mutex); lock(lock#5); lock(sk_lock-AF_INET6); *** DEADLOCK *** 6 locks held by syz.1.396/4705: #0: ffff80008d3838b8 (&rdma_nl_types[idx].sem){.+.+}-{4:4}, at: rdma_nl_rcv_msg+0x130/0x56c drivers/infiniband/core/netlink.c:164 #1: ffff80008835a730 (link_ops_rwsem){++++}-{4:4}, at: nldev_newlink+0x204/0x4b4 drivers/infiniband/core/nldev.c:1786 #2: ffff8000883452f0 (devices_rwsem){++++}-{4:4}, at: enable_device_and_get+0xfc/0x300 drivers/infiniband/core/device.c:1321 #3: ffff8000883453b0 (clients_rwsem){++++}-{4:4}, at: enable_device_and_get+0x140/0x300 drivers/infiniband/core/device.c:1329 #4: ffff00001f5c45f0 (&device->client_data_rwsem){++++}-{4:4}, at: add_client_context+0x298/0x424 drivers/infiniband/core/device.c:718 #5: ffff8000883721e8 (lock#5){+.+.}-{4:4}, at: cma_add_one+0x4b0/0xb04 drivers/infiniband/core/cma.c:5384 stack backtrace: CPU: 0 UID: 0 PID: 4705 Comm: syz.1.396 Not tainted 6.15.0-rc1-syzkaller-00325-g7cdabafc0012 #0 PREEMPT Hardware name: linux,dummy-virt (DT) Call trace: show_stack+0x18/0x24 arch/arm64/kernel/stacktrace.c:466 (C) __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0xa4/0xf4 lib/dump_stack.c:120 dump_stack+0x1c/0x28 lib/dump_stack.c:129 print_circular_bug+0x28c/0x370 kernel/locking/lockdep.c:2079 check_noncircular+0x168/0x17c kernel/locking/lockdep.c:2211 check_prev_add kernel/locking/lockdep.c:3166 [inline] check_prevs_add kernel/locking/lockdep.c:3285 [inline] validate_chain kernel/locking/lockdep.c:3909 [inline] __lock_acquire+0x15f4/0x2314 kernel/locking/lockdep.c:5235 lock_acquire kernel/locking/lockdep.c:5866 [inline] lock_acquire+0x310/0x38c kernel/locking/lockdep.c:5823 lock_sock_nested+0x38/0xe8 net/core/sock.c:3702 lock_sock include/net/sock.h:1651 [inline] sock_set_reuseaddr+0x1c/0x70 net/core/sock.c:788 siw_create_listen+0x114/0xed0 drivers/infiniband/sw/siw/siw_cm.c:1777 iw_cm_listen+0x124/0x190 drivers/infiniband/core/iwcm.c:587 cma_iw_listen drivers/infiniband/core/cma.c:2698 [inline] rdma_listen+0x4c0/0x8a4 drivers/infiniband/core/cma.c:3983 cma_listen_on_dev+0x394/0x628 drivers/infiniband/core/cma.c:2757 cma_add_one+0x574/0xb04 drivers/infiniband/core/cma.c:5387 add_client_context+0x2c0/0x424 drivers/infiniband/core/device.c:720 enable_device_and_get+0x18c/0x300 drivers/infiniband/core/device.c:1331 ib_register_device drivers/infiniband/core/device.c:1447 [inline] ib_register_device+0x5e8/0xa48 drivers/infiniband/core/device.c:1393 siw_device_register drivers/infiniband/sw/siw/siw_main.c:71 [inline] siw_newlink+0x960/0xbf8 drivers/infiniband/sw/siw/siw_main.c:430 nldev_newlink+0x280/0x4b4 drivers/infiniband/core/nldev.c:1796 rdma_nl_rcv_msg+0x274/0x56c drivers/infiniband/core/netlink.c:195 rdma_nl_rcv_skb.constprop.0.isra.0+0x204/0x340 drivers/infiniband/core/netlink.c:239 rdma_nl_rcv+0x10/0x1c drivers/infiniband/core/netlink.c:259 netlink_unicast_kernel net/netlink/af_netlink.c:1313 [inline] netlink_unicast+0x3c0/0x670 net/netlink/af_netlink.c:1339 netlink_sendmsg+0x658/0xa50 net/netlink/af_netlink.c:1883 sock_sendmsg_nosec net/socket.c:712 [inline] __sock_sendmsg+0xc8/0x168 net/socket.c:727 ____sys_sendmsg+0x51c/0x734 net/socket.c:2566 ___sys_sendmsg+0x11c/0x19c net/socket.c:2620 __sys_sendmsg+0x114/0x198 net/socket.c:2652 __do_sys_sendmsg net/socket.c:2657 [inline] __se_sys_sendmsg net/socket.c:2655 [inline] __arm64_sys_sendmsg+0x70/0xa0 net/socket.c:2655 __invoke_syscall arch/arm64/kernel/syscall.c:35 [inline] invoke_syscall+0x6c/0x258 arch/arm64/kernel/syscall.c:49 el0_svc_common.constprop.0+0xac/0x230 arch/arm64/kernel/syscall.c:132 do_el0_svc+0x40/0x58 arch/arm64/kernel/syscall.c:151 el0_svc+0x50/0x180 arch/arm64/kernel/entry-common.c:744 el0t_64_sync_handler+0x10c/0x138 arch/arm64/kernel/entry-common.c:762 el0t_64_sync+0x198/0x19c arch/arm64/kernel/entry.S:600 infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000