ci starts bisection 2022-11-16 00:55:19.922363449 +0000 UTC m=+1830.486856233 bisecting cause commit starting from 094226ad94f471a9f19e8f8e7140a09c2625abaa building syzkaller on 943f4cb8411ec16e466b0bb48bd6bcdbc526f442 ensuring issue is reproducible on original commit 094226ad94f471a9f19e8f8e7140a09c2625abaa testing commit 094226ad94f471a9f19e8f8e7140a09c2625abaa gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 86e9a97489387cf3a209f1b0ae26b9f53b811d23fd06da25088e639d35d58c5e all runs: crashed: possible deadlock in nci_start_poll testing release v6.0 testing commit 4fe89d07dcc2804c8b562f6c7896a45643d34b2f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c9b54358fcd488fddb888927f83649827dfe72ce737da42b8f5884c29e417ad6 all runs: crashed: possible deadlock in nci_start_poll testing release v5.19 testing commit 3d7cb6b04c3f3115719235cc6866b10326de34cd gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9b94dfa76ff39dea790b07988f1de4b2bc0d97d8778f5fa0e09a8ceb9750b348 all runs: crashed: possible deadlock in nci_start_poll testing release v5.18 testing commit 4b0986a3613c92f4ec1bdc7f60ec66fea135991f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: f839f2b2def874f621427d41648b0e650089807d99718c35b258d3546d4985c5 all runs: crashed: possible deadlock in nci_start_poll testing release v5.17 testing commit f443e374ae131c168a065ea1748feac6b2e76613 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 55549434e3adeaa532a73a6d4c9d11e69614736566f5fde8122bf858924287ff all runs: crashed: possible deadlock in nci_start_poll testing release v5.16 testing commit df0cc57e057f18e44dac8e6c18aba47ab53202f9 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: dfcaca2b9a21400b10c754a6b12c75c308c550b4104deb17e8ec42f5c22829af all runs: crashed: possible deadlock in nci_start_poll testing release v5.15 testing commit 8bb7eca972ad531c9b149c0a51ab43a417385813 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 503498673e595d6dfeb83715b5907557adbe3390266172763d8ee97e5942f694 all runs: crashed: possible deadlock in nci_start_poll testing release v5.14 testing commit 7d2a07b769330c34b4deabeed939325c77a7ec2f gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: bf7f4af90ff3d968cfaeb0f0f8042043198cb885ca53e846a5dd98deb406d9c0 all runs: crashed: possible deadlock in nci_start_poll testing release v5.13 testing commit 62fb9874f5da54fdb243003b386128037319b219 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3166464f647081bcf28bf91b364f6b53e39c3d1bbd1e59bfe92747ade541131d run #0: failed: failed to run command in VM: broken console: Permission denied (publickey) run #1: failed: failed to run command in VM: broken console: Permission denied (publickey) run #2: crashed: possible deadlock in virtual_nci_close run #3: crashed: possible deadlock in nci_start_poll run #4: crashed: possible deadlock in nci_start_poll run #5: crashed: possible deadlock in nci_start_poll run #6: crashed: possible deadlock in nci_start_poll run #7: crashed: possible deadlock in nci_start_poll run #8: crashed: possible deadlock in nci_start_poll run #9: crashed: possible deadlock in nci_start_poll testing release v5.12 testing commit 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a88d20bc48b4f448b3657ba42a9a1637c79942c1503702c270813ed79f224aab all runs: crashed: possible deadlock in nci_start_poll testing release v5.11 testing commit f40ddce88593482919761f74910f42f4b84c004b gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 21b7ebab6bfe6c2829998f3e7b350d3843995d6e84f9697a31dd7bd3188166dd all runs: OK # git bisect start 9f4ad9e425a1d3b6a34617b8ea226d56a119a717 f40ddce88593482919761f74910f42f4b84c004b Bisecting: 6798 revisions left to test after this (roughly 13 steps) [d99676af540c2dc829999928fb81c58c80a1dce4] Merge tag 'drm-next-2021-02-19' of git://anongit.freedesktop.org/drm/drm testing commit d99676af540c2dc829999928fb81c58c80a1dce4 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: a9c0556a3593c89b179eb6f502dd2c8fa13a4e1293fa931a11bbb7274c82405e run #0: crashed: possible deadlock in nci_start_poll run #1: crashed: possible deadlock in nci_start_poll run #2: crashed: possible deadlock in nci_start_poll run #3: crashed: possible deadlock in nci_start_poll run #4: crashed: possible deadlock in nci_start_poll run #5: crashed: possible deadlock in nci_start_poll run #6: crashed: possible deadlock in nci_start_poll run #7: crashed: possible deadlock in nci_start_poll run #8: boot failed: WARNING in kvm_wait run #9: boot failed: WARNING in kvm_wait # git bisect bad d99676af540c2dc829999928fb81c58c80a1dce4 Bisecting: 3717 revisions left to test after this (roughly 12 steps) [f9d58de23152f2c16f326d7e014cfa2933b00304] Merge tag 'affs-for-5.12-tag' of git://git.kernel.org/pub/scm/linux/kernel/git/kdave/linux testing commit f9d58de23152f2c16f326d7e014cfa2933b00304 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 7d144d35f3e3efee88582dc77fa3de702ad6550feb7de31d67076574a32bc3fc all runs: crashed: possible deadlock in nci_start_poll # git bisect bad f9d58de23152f2c16f326d7e014cfa2933b00304 Bisecting: 1819 revisions left to test after this (roughly 11 steps) [b8af417e4d93caeefb89bbfbd56ec95dedd8dab5] Merge git://git.kernel.org/pub/scm/linux/kernel/git/bpf/bpf-next testing commit b8af417e4d93caeefb89bbfbd56ec95dedd8dab5 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 73ca900a854e43143d45e12eb78192571f5c7bd156f185bbcf01f57024ab00f5 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad b8af417e4d93caeefb89bbfbd56ec95dedd8dab5 Bisecting: 911 revisions left to test after this (roughly 10 steps) [4d469ec8ec05e1fa4792415de1a95b28871ff2fa] Merge branch '1GbE' of git://git.kernel.org/pub/scm/linux/kernel/git/tnguy/next-queue testing commit 4d469ec8ec05e1fa4792415de1a95b28871ff2fa gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: b1055acfb7c56340bc2800739f7f5651efa1723aa5a5e80a2bba1f30fb242c79 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad 4d469ec8ec05e1fa4792415de1a95b28871ff2fa Bisecting: 458 revisions left to test after this (roughly 9 steps) [05fcc25662a3bbfc5daa9247132b2d8535053883] cxgb4: remove bogus CHELSIO_VPD_UNIQUE_ID constant testing commit 05fcc25662a3bbfc5daa9247132b2d8535053883 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: f020eed30db7869cfb76fde8600630c6dc5410f4ebf60aa47980e837f0ac7d47 all runs: OK # git bisect good 05fcc25662a3bbfc5daa9247132b2d8535053883 Bisecting: 229 revisions left to test after this (roughly 8 steps) [a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3] nexthop: Strongly-type context of rtm_dump_nexthop() testing commit a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e1cff3263f3799f12715dd9bdc0a77cfd92f918fbf77c86d0b7a7957656c4844 all runs: OK # git bisect good a6fbbaa64c3b0e744e7e421a13658a7441f5a9f3 Bisecting: 114 revisions left to test after this (roughly 7 steps) [6208fd822a2c656461d2f2dc29a309d379ab5850] selftests: mptcp: add testcases for newly added addresses testing commit 6208fd822a2c656461d2f2dc29a309d379ab5850 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: c737c6454b681bd226d6d0226215b69ab258979e4c764022a27241cdaeca48cc all runs: crashed: possible deadlock in nci_start_poll # git bisect bad 6208fd822a2c656461d2f2dc29a309d379ab5850 Bisecting: 57 revisions left to test after this (roughly 6 steps) [4e146def5855bea30ab14d2a27c13be90b7cd2d1] Merge branch 'net-bridge-drop-hosts-limit-sysfs-and-add-a-comment' testing commit 4e146def5855bea30ab14d2a27c13be90b7cd2d1 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 9569a3be0354bfa8916638e3f2f3c0adf28b503d7dbfbdf076bc1b335dde752d all runs: crashed: possible deadlock in nci_start_poll # git bisect bad 4e146def5855bea30ab14d2a27c13be90b7cd2d1 Bisecting: 24 revisions left to test after this (roughly 5 steps) [fd3d37551cec11fc69f8909d2a591754b2752db9] Merge tag 'linux-can-next-for-5.12-20210129' of git://git.kernel.org/pub/scm/linux/kernel/git/mkl/linux-can-next testing commit fd3d37551cec11fc69f8909d2a591754b2752db9 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: dc824df88c0f83184406b972ed46de6488f26c52ade4bd0cc71fbfa746fc88d5 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad fd3d37551cec11fc69f8909d2a591754b2752db9 Bisecting: 15 revisions left to test after this (roughly 4 steps) [a5b88632fc967906a86e16513bae9cc49070934c] net: atm: pppoatm: use tasklet_init to initialize wakeup tasklet testing commit a5b88632fc967906a86e16513bae9cc49070934c gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: e7e0f14a03f3bdb2d8ef29d9b8a5830f0351cd5a0510496810429833352baf9d all runs: crashed: possible deadlock in nci_start_poll # git bisect bad a5b88632fc967906a86e16513bae9cc49070934c Bisecting: 7 revisions left to test after this (roughly 3 steps) [8c22475148a8d3222be712bd02a74d7279d50daf] net: packet: make pkt_sk() inline testing commit 8c22475148a8d3222be712bd02a74d7279d50daf gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 612fd02bb6a63d60d039d5e537b9f06e20036135fb6cf788610b506800d18ecb all runs: OK # git bisect good 8c22475148a8d3222be712bd02a74d7279d50daf Bisecting: 3 revisions left to test after this (roughly 2 steps) [8c85d18ce647ac2517a1a1bb01b02648e23700e6] net/sched: cls_flower: Add match on the ct_state reply flag testing commit 8c85d18ce647ac2517a1a1bb01b02648e23700e6 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: 3b494e5b89390720102a4bdf603c7f1014e3f6a57fe921c0f711abc5c28e7ec0 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad 8c85d18ce647ac2517a1a1bb01b02648e23700e6 Bisecting: 1 revision left to test after this (roughly 1 step) [f595cf1242f3d64d78f9c96fa56bb5e22146d0ca] selftests: Add nci suite testing commit f595cf1242f3d64d78f9c96fa56bb5e22146d0ca gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ea87625d0bbcd64e5c5122bdcb1ae7ec43795192ca594bcb68e7f0ae25567e85 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad f595cf1242f3d64d78f9c96fa56bb5e22146d0ca Bisecting: 0 revisions left to test after this (roughly 0 steps) [e624e6c3e777fb3dfed036b9da4d433aee3608a5] nfc: Add a virtual nci device driver testing commit e624e6c3e777fb3dfed036b9da4d433aee3608a5 gcc compiler: gcc (Debian 10.2.1-6) 10.2.1 20210110, GNU ld (GNU Binutils for Debian) 2.35.2 kernel signature: ea87625d0bbcd64e5c5122bdcb1ae7ec43795192ca594bcb68e7f0ae25567e85 all runs: crashed: possible deadlock in nci_start_poll # git bisect bad e624e6c3e777fb3dfed036b9da4d433aee3608a5 e624e6c3e777fb3dfed036b9da4d433aee3608a5 is the first bad commit commit e624e6c3e777fb3dfed036b9da4d433aee3608a5 Author: Bongsu Jeon Date: Wed Jan 27 22:08:28 2021 +0900 nfc: Add a virtual nci device driver NCI virtual device simulates a NCI device to the user. It can be used to validate the NCI module and applications. This driver supports communication between the virtual NCI device and NCI module. Signed-off-by: Bongsu Jeon Signed-off-by: Jakub Kicinski drivers/nfc/Kconfig | 11 +++ drivers/nfc/Makefile | 1 + drivers/nfc/virtual_ncidev.c | 215 +++++++++++++++++++++++++++++++++++++++++++ 3 files changed, 227 insertions(+) create mode 100644 drivers/nfc/virtual_ncidev.c culprit signature: ea87625d0bbcd64e5c5122bdcb1ae7ec43795192ca594bcb68e7f0ae25567e85 parent signature: 612fd02bb6a63d60d039d5e537b9f06e20036135fb6cf788610b506800d18ecb revisions tested: 25, total time: 5h2m0.015421254s (build: 2h57m27.523481589s, test: 2h1m20.66800495s) first bad commit: e624e6c3e777fb3dfed036b9da4d433aee3608a5 nfc: Add a virtual nci device driver recipients (to): ["bongsu.jeon@samsung.com" "kuba@kernel.org" "netdev@vger.kernel.org"] recipients (cc): ["clement.perrochaud@nxp.com" "linux-kernel@vger.kernel.org" "michael.thalmeier@hale.at" "r.baldyga@samsung.com" "robert.dolca@intel.com" "sameo@linux.intel.com" "shikha.singh@st.com" "thierry.escande@linux.intel.com"] crash: possible deadlock in nci_start_poll ====================================================== WARNING: possible circular locking dependency detected 5.11.0-rc5-syzkaller #0 Not tainted ------------------------------------------------------ syz-executor.0/6772 is trying to acquire lock: ffff888028112350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_request net/nfc/nci/core.c:151 [inline] ffff888028112350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_set_local_general_bytes net/nfc/nci/core.c:759 [inline] ffff888028112350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_start_poll+0x496/0x740 net/nfc/nci/core.c:823 but task is already holding lock: ffff88803140f588 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x175/0x410 net/nfc/netlink.c:824 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #3 (&genl_data->genl_data_mutex){+.+.}-{3:3}: __mutex_lock_common kernel/locking/mutex.c:956 [inline] __mutex_lock+0x134/0x1110 kernel/locking/mutex.c:1103 nfc_urelease_event_work+0x116/0x290 net/nfc/netlink.c:1791 process_one_work+0x84c/0x13b0 kernel/workqueue.c:2275 worker_thread+0x598/0xf80 kernel/workqueue.c:2421 kthread+0x36f/0x450 kernel/kthread.c:292 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:296 -> #2 (nfc_devlist_mutex){+.+.}-{3:3}: __mutex_lock_common kernel/locking/mutex.c:956 [inline] __mutex_lock+0x134/0x1110 kernel/locking/mutex.c:1103 nfc_register_device+0x1e/0x2d0 net/nfc/core.c:1116 nci_register_device+0x796/0xaf0 net/nfc/nci/core.c:1245 virtual_ncidev_open+0x44/0xb0 drivers/nfc/virtual_ncidev.c:138 misc_open+0x2f0/0x410 drivers/char/misc.c:141 chrdev_open+0x20f/0x650 fs/char_dev.c:414 do_dentry_open+0x42a/0xfb0 fs/open.c:817 do_open fs/namei.c:3254 [inline] path_openat+0x12cd/0x21d0 fs/namei.c:3371 do_filp_open+0x16d/0x390 fs/namei.c:3398 do_sys_openat2+0x11e/0x360 fs/open.c:1172 do_sys_open fs/open.c:1188 [inline] __do_sys_openat fs/open.c:1204 [inline] __se_sys_openat fs/open.c:1199 [inline] __x64_sys_openat+0x11b/0x1d0 fs/open.c:1199 do_syscall_64+0x2d/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 -> #1 (nci_mutex){+.+.}-{3:3}: __mutex_lock_common kernel/locking/mutex.c:956 [inline] __mutex_lock+0x134/0x1110 kernel/locking/mutex.c:1103 virtual_nci_close+0xe/0x40 drivers/nfc/virtual_ncidev.c:42 nci_open_device net/nfc/nci/core.c:538 [inline] nci_dev_up+0x380/0x540 net/nfc/nci/core.c:617 nfc_dev_up+0x150/0x300 net/nfc/core.c:118 nfc_genl_dev_up+0x90/0xe0 net/nfc/netlink.c:768 genl_family_rcv_msg_doit+0x1e4/0x2f0 net/netlink/genetlink.c:739 genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] genl_rcv_msg+0x27d/0x490 net/netlink/genetlink.c:800 netlink_rcv_skb+0x118/0x370 net/netlink/af_netlink.c:2494 genl_rcv+0x1f/0x30 net/netlink/genetlink.c:811 netlink_unicast_kernel net/netlink/af_netlink.c:1304 [inline] netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1330 netlink_sendmsg+0x70e/0xbe0 net/netlink/af_netlink.c:1919 sock_sendmsg_nosec net/socket.c:652 [inline] sock_sendmsg+0xab/0xe0 net/socket.c:672 ____sys_sendmsg+0x5bf/0x7a0 net/socket.c:2345 ___sys_sendmsg+0xd3/0x150 net/socket.c:2399 __sys_sendmsg+0xb2/0x140 net/socket.c:2432 do_syscall_64+0x2d/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 -> #0 (&ndev->req_lock){+.+.}-{3:3}: check_prev_add kernel/locking/lockdep.c:2868 [inline] check_prevs_add kernel/locking/lockdep.c:2993 [inline] validate_chain kernel/locking/lockdep.c:3608 [inline] __lock_acquire+0x2b2a/0x5500 kernel/locking/lockdep.c:4832 lock_acquire kernel/locking/lockdep.c:5442 [inline] lock_acquire+0x1a8/0x720 kernel/locking/lockdep.c:5407 __mutex_lock_common kernel/locking/mutex.c:956 [inline] __mutex_lock+0x134/0x1110 kernel/locking/mutex.c:1103 nci_request net/nfc/nci/core.c:151 [inline] nci_set_local_general_bytes net/nfc/nci/core.c:759 [inline] nci_start_poll+0x496/0x740 net/nfc/nci/core.c:823 nfc_start_poll+0x130/0x290 net/nfc/core.c:225 nfc_genl_start_poll+0x183/0x410 net/nfc/netlink.c:826 genl_family_rcv_msg_doit+0x1e4/0x2f0 net/netlink/genetlink.c:739 genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] genl_rcv_msg+0x27d/0x490 net/netlink/genetlink.c:800 netlink_rcv_skb+0x118/0x370 net/netlink/af_netlink.c:2494 genl_rcv+0x1f/0x30 net/netlink/genetlink.c:811 netlink_unicast_kernel net/netlink/af_netlink.c:1304 [inline] netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1330 netlink_sendmsg+0x70e/0xbe0 net/netlink/af_netlink.c:1919 sock_sendmsg_nosec net/socket.c:652 [inline] sock_sendmsg+0xab/0xe0 net/socket.c:672 ____sys_sendmsg+0x5bf/0x7a0 net/socket.c:2345 ___sys_sendmsg+0xd3/0x150 net/socket.c:2399 __sys_sendmsg+0xb2/0x140 net/socket.c:2432 do_syscall_64+0x2d/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 other info that might help us debug this: Chain exists of: &ndev->req_lock --> nfc_devlist_mutex --> &genl_data->genl_data_mutex Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(&genl_data->genl_data_mutex); lock(nfc_devlist_mutex); lock(&genl_data->genl_data_mutex); lock(&ndev->req_lock); *** DEADLOCK *** 4 locks held by syz-executor.0/6772: #0: ffffffff8bdd8b50 (cb_lock){++++}-{3:3}, at: genl_rcv+0x10/0x30 net/netlink/genetlink.c:810 #1: ffffffff8bdd8c08 (genl_mutex){+.+.}-{3:3}, at: genl_lock net/netlink/genetlink.c:33 [inline] #1: ffffffff8bdd8c08 (genl_mutex){+.+.}-{3:3}, at: genl_rcv_msg+0x317/0x490 net/netlink/genetlink.c:798 #2: ffff88803140f588 (&genl_data->genl_data_mutex){+.+.}-{3:3}, at: nfc_genl_start_poll+0x175/0x410 net/nfc/netlink.c:824 #3: ffff88803140f190 (&dev->mutex){....}-{3:3}, at: device_lock include/linux/device.h:737 [inline] #3: ffff88803140f190 (&dev->mutex){....}-{3:3}, at: nfc_start_poll+0x33/0x290 net/nfc/core.c:208 stack backtrace: CPU: 0 PID: 6772 Comm: syz-executor.0 Not tainted 5.11.0-rc5-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 Call Trace: __dump_stack lib/dump_stack.c:79 [inline] dump_stack+0x9a/0xcc lib/dump_stack.c:120 check_noncircular+0x25f/0x2e0 kernel/locking/lockdep.c:2117 check_prev_add kernel/locking/lockdep.c:2868 [inline] check_prevs_add kernel/locking/lockdep.c:2993 [inline] validate_chain kernel/locking/lockdep.c:3608 [inline] __lock_acquire+0x2b2a/0x5500 kernel/locking/lockdep.c:4832 lock_acquire kernel/locking/lockdep.c:5442 [inline] lock_acquire+0x1a8/0x720 kernel/locking/lockdep.c:5407 __mutex_lock_common kernel/locking/mutex.c:956 [inline] __mutex_lock+0x134/0x1110 kernel/locking/mutex.c:1103 nci_request net/nfc/nci/core.c:151 [inline] nci_set_local_general_bytes net/nfc/nci/core.c:759 [inline] nci_start_poll+0x496/0x740 net/nfc/nci/core.c:823 nfc_start_poll+0x130/0x290 net/nfc/core.c:225 nfc_genl_start_poll+0x183/0x410 net/nfc/netlink.c:826 genl_family_rcv_msg_doit+0x1e4/0x2f0 net/netlink/genetlink.c:739 genl_family_rcv_msg net/netlink/genetlink.c:783 [inline] genl_rcv_msg+0x27d/0x490 net/netlink/genetlink.c:800 netlink_rcv_skb+0x118/0x370 net/netlink/af_netlink.c:2494 genl_rcv+0x1f/0x30 net/netlink/genetlink.c:811 netlink_unicast_kernel net/netlink/af_netlink.c:1304 [inline] netlink_unicast+0x42e/0x700 net/netlink/af_netlink.c:1330 netlink_sendmsg+0x70e/0xbe0 net/netlink/af_netlink.c:1919 sock_sendmsg_nosec net/socket.c:652 [inline] sock_sendmsg+0xab/0xe0 net/socket.c:672 ____sys_sendmsg+0x5bf/0x7a0 net/socket.c:2345 ___sys_sendmsg+0xd3/0x150 net/socket.c:2399 __sys_sendmsg+0xb2/0x140 net/socket.c:2432 do_syscall_64+0x2d/0x40 arch/x86/entry/common.c:46 entry_SYSCALL_64_after_hwframe+0x44/0xa9 RIP: 0033:0x7f2e67179639 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f2e664cb168 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f2e6729a050 RCX: 00007f2e67179639 RDX: 0000000000000000 RSI: 0000000020000440 RDI: 0000000000000005 RBP: 00007f2e671d4ae9 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 00007ffe75f0b95f R14: 00007f2e664cb300 R15: 0000000000022000 nci: nci_start_poll: failed to set local general bytes