[ 9.321578][ T2610] 8021q: adding VLAN 0 to HW filter on device bond0 [ 9.324120][ T2610] eql: remember to turn off Van-Jacobson compression on your slave devices [ 9.348986][ T9] gvnic 0000:00:00.0 enp0s0: Device link is up. [ 9.351992][ T915] IPv6: ADDRCONF(NETDEV_CHANGE): enp0s0: link becomes ready Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.191' (ECDSA) to the list of known hosts. executing program syzkaller login: [ 29.750792][ T3032] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 29.753052][ T3032] nci: nci_start_poll: failed to set local general bytes [ 34.805181][ T3032] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 34.807541][ T3032] [ 34.808117][ T3032] ====================================================== [ 34.809860][ T3032] WARNING: possible circular locking dependency detected [ 34.811636][ T3032] 6.1.0-rc4-syzkaller-31872-g1621b6eaebf7 #0 Not tainted [ 34.813397][ T3032] ------------------------------------------------------ [ 34.815161][ T3032] syz-executor424/3032 is trying to acquire lock: [ 34.816839][ T3032] ffff80000d5fac10 (nci_mutex){+.+.}-{3:3}, at: virtual_nci_close+0x28/0x58 [ 34.819145][ T3032] [ 34.819145][ T3032] but task is already holding lock: [ 34.821199][ T3032] ffff0000cb900350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0x74/0x2b4 [ 34.823633][ T3032] [ 34.823633][ T3032] which lock already depends on the new lock. [ 34.823633][ T3032] [ 34.826376][ T3032] [ 34.826376][ T3032] the existing dependency chain (in reverse order) is: [ 34.828948][ T3032] [ 34.828948][ T3032] -> #3 (&ndev->req_lock){+.+.}-{3:3}: [ 34.830924][ T3032] __mutex_lock_common+0xd4/0xca8 [ 34.832342][ T3032] mutex_lock_nested+0x38/0x44 [ 34.833712][ T3032] nci_set_local_general_bytes+0xbc/0x480 [ 34.835366][ T3032] nci_start_poll+0x1e8/0x474 [ 34.836712][ T3032] nfc_start_poll+0xfc/0x170 [ 34.838035][ T3032] nfc_genl_start_poll+0xd4/0x174 [ 34.839454][ T3032] genl_rcv_msg+0x458/0x4f4 [ 34.840749][ T3032] netlink_rcv_skb+0xe8/0x1d4 [ 34.842067][ T3032] genl_rcv+0x38/0x50 [ 34.843238][ T3032] netlink_unicast_kernel+0xfc/0x1dc [ 34.844762][ T3032] netlink_unicast+0x164/0x248 [ 34.846145][ T3032] netlink_sendmsg+0x484/0x584 [ 34.847513][ T3032] ____sys_sendmsg+0x2f8/0x440 [ 34.848898][ T3032] __sys_sendmsg+0x1ac/0x228 [ 34.850229][ T3032] __arm64_sys_sendmsg+0x2c/0x3c [ 34.851664][ T3032] el0_svc_common+0x138/0x220 [ 34.853008][ T3032] do_el0_svc+0x48/0x164 [ 34.854243][ T3032] el0_svc+0x58/0x150 [ 34.855290][ T3032] el0t_64_sync_handler+0x84/0xf0 [ 34.856690][ T3032] el0t_64_sync+0x190/0x194 [ 34.857992][ T3032] [ 34.857992][ T3032] -> #2 (&genl_data->genl_data_mutex){+.+.}-{3:3}: [ 34.860253][ T3032] __mutex_lock_common+0xd4/0xca8 [ 34.861719][ T3032] mutex_lock_nested+0x38/0x44 [ 34.863090][ T3032] nfc_urelease_event_work+0x88/0x16c [ 34.864608][ T3032] process_one_work+0x2d8/0x504 [ 34.865991][ T3032] worker_thread+0x340/0x610 [ 34.867324][ T3032] kthread+0x12c/0x158 [ 34.868533][ T3032] ret_from_fork+0x10/0x20 [ 34.869801][ T3032] [ 34.869801][ T3032] -> #1 (nfc_devlist_mutex){+.+.}-{3:3}: [ 34.871828][ T3032] __mutex_lock_common+0xd4/0xca8 [ 34.873263][ T3032] mutex_lock_nested+0x38/0x44 [ 34.874631][ T3032] nfc_register_device+0x34/0x208 [ 34.876127][ T3032] nci_register_device+0x338/0x3b0 [ 34.877604][ T3032] virtual_ncidev_open+0x6c/0xd8 [ 34.879004][ T3032] misc_open+0x1b8/0x200 [ 34.880262][ T3032] chrdev_open+0x2b4/0x2e8 [ 34.881554][ T3032] do_dentry_open+0x364/0x748 [ 34.882891][ T3032] vfs_open+0x38/0x48 [ 34.884053][ T3032] path_openat+0xe34/0x11c4 [ 34.885363][ T3032] do_filp_open+0xdc/0x1b8 [ 34.886617][ T3032] do_sys_openat2+0xb8/0x22c [ 34.887960][ T3032] __arm64_sys_openat+0xb0/0xe0 [ 34.889351][ T3032] el0_svc_common+0x138/0x220 [ 34.890694][ T3032] do_el0_svc+0x48/0x164 [ 34.891931][ T3032] el0_svc+0x58/0x150 [ 34.893093][ T3032] el0t_64_sync_handler+0x84/0xf0 [ 34.894517][ T3032] el0t_64_sync+0x190/0x194 [ 34.895843][ T3032] [ 34.895843][ T3032] -> #0 (nci_mutex){+.+.}-{3:3}: [ 34.897709][ T3032] __lock_acquire+0x1530/0x3084 [ 34.899124][ T3032] lock_acquire+0x100/0x1f8 [ 34.900433][ T3032] __mutex_lock_common+0xd4/0xca8 [ 34.901891][ T3032] mutex_lock_nested+0x38/0x44 [ 34.903283][ T3032] virtual_nci_close+0x28/0x58 [ 34.904666][ T3032] nci_close_device+0x188/0x2b4 [ 34.906077][ T3032] nci_unregister_device+0x3c/0x100 [ 34.907573][ T3032] virtual_ncidev_close+0x70/0xb0 [ 34.909013][ T3032] __fput+0x198/0x3e4 [ 34.910175][ T3032] ____fput+0x20/0x30 [ 34.911352][ T3032] task_work_run+0x100/0x148 [ 34.912690][ T3032] do_exit+0x2dc/0xcac [ 34.913861][ T3032] do_group_exit+0x98/0xcc [ 34.915126][ T3032] get_signal+0xabc/0xb2c [ 34.916371][ T3032] do_signal+0x128/0x438 [ 34.917617][ T3032] do_notify_resume+0xc0/0x1f0 [ 34.919008][ T3032] el0_svc+0x9c/0x150 [ 34.920178][ T3032] el0t_64_sync_handler+0x84/0xf0 [ 34.921596][ T3032] el0t_64_sync+0x190/0x194 [ 34.922882][ T3032] [ 34.922882][ T3032] other info that might help us debug this: [ 34.922882][ T3032] [ 34.925508][ T3032] Chain exists of: [ 34.925508][ T3032] nci_mutex --> &genl_data->genl_data_mutex --> &ndev->req_lock [ 34.925508][ T3032] [ 34.929005][ T3032] Possible unsafe locking scenario: [ 34.929005][ T3032] [ 34.930938][ T3032] CPU0 CPU1 [ 34.932323][ T3032] ---- ---- [ 34.933682][ T3032] lock(&ndev->req_lock); [ 34.934812][ T3032] lock(&genl_data->genl_data_mutex); [ 34.936863][ T3032] lock(&ndev->req_lock); [ 34.938655][ T3032] lock(nci_mutex); [ 34.939663][ T3032] [ 34.939663][ T3032] *** DEADLOCK *** [ 34.939663][ T3032] [ 34.941783][ T3032] 1 lock held by syz-executor424/3032: [ 34.943185][ T3032] #0: ffff0000cb900350 (&ndev->req_lock){+.+.}-{3:3}, at: nci_close_device+0x74/0x2b4 [ 34.945712][ T3032] [ 34.945712][ T3032] stack backtrace: [ 34.947213][ T3032] CPU: 0 PID: 3032 Comm: syz-executor424 Not tainted 6.1.0-rc4-syzkaller-31872-g1621b6eaebf7 #0 [ 34.949934][ T3032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/30/2022 [ 34.952531][ T3032] Call trace: [ 34.953364][ T3032] dump_backtrace+0x1c4/0x1f0 [ 34.954557][ T3032] show_stack+0x2c/0x54 [ 34.955622][ T3032] dump_stack_lvl+0x104/0x16c [ 34.956832][ T3032] dump_stack+0x1c/0x58 [ 34.957931][ T3032] print_circular_bug+0x2c4/0x2c8 [ 34.959241][ T3032] check_noncircular+0x14c/0x154 [ 34.960530][ T3032] __lock_acquire+0x1530/0x3084 [ 34.961786][ T3032] lock_acquire+0x100/0x1f8 [ 34.962957][ T3032] __mutex_lock_common+0xd4/0xca8 [ 34.964276][ T3032] mutex_lock_nested+0x38/0x44 [ 34.965513][ T3032] virtual_nci_close+0x28/0x58 [ 34.966764][ T3032] nci_close_device+0x188/0x2b4 [ 34.968053][ T3032] nci_unregister_device+0x3c/0x100 [ 34.969384][ T3032] virtual_ncidev_close+0x70/0xb0 [ 34.970704][ T3032] __fput+0x198/0x3e4 [ 34.971733][ T3032] ____fput+0x20/0x30 [ 34.972763][ T3032] task_work_run+0x100/0x148 [ 34.973937][ T3032] do_exit+0x2dc/0xcac [ 34.975000][ T3032] do_group_exit+0x98/0xcc [ 34.976127][ T3032] get_signal+0xabc/0xb2c [ 34.977221][ T3032] do_signal+0x128/0x438 [ 34.978341][ T3032] do_notify_resume+0xc0/0x1f0 [ 34.979559][ T3032] el0_svc+0x9c/0x150 [ 34.980588][ T3032] el0t_64_sync_handler+0x84/0xf0 [ 34.981871][ T3032] el0t_64_sync+0x190/0x194 executing program [ 35.200243][ T3041] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 35.202605][ T3041] nci: nci_start_poll: failed to set local general bytes [ 40.245122][ T3041] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 executing program [ 40.460058][ T3044] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 executing program [ 40.676423][ T3056] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 40.678762][ T3056] nci: nci_start_poll: failed to set local general bytes