lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 iwpm_register_pid: Unable to send a nlmsg (client = 2) ====================================================== WARNING: possible circular locking dependency detected 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0 Not tainted ------------------------------------------------------ syz.4.864/9725 is trying to acquire lock: ffff8880247a45d8 (sk_lock-AF_INET6){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1624 [inline] ffff8880247a45d8 (sk_lock-AF_INET6){+.+.}-{0:0}, at: sock_set_reuseaddr+0x17/0x60 net/core/sock.c:788 but task is already holding lock: ffffffff8fc6c9e8 (lock#7){+.+.}-{4:4}, at: cma_add_one+0x6bc/0xcd0 drivers/infiniband/core/cma.c:5370 which lock already depends on the new lock. the existing dependency chain (in reverse order) is: -> #3 (lock#7){+.+.}-{4:4}: lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5851 __mutex_lock_common kernel/locking/mutex.c:585 [inline] __mutex_lock+0x19c/0x1010 kernel/locking/mutex.c:730 cma_init+0x1e/0x140 drivers/infiniband/core/cma.c:5454 do_one_initcall+0x24a/0x930 init/main.c:1257 do_initcall_level+0x157/0x210 init/main.c:1319 do_initcalls+0x71/0xd0 init/main.c:1335 kernel_init_freeable+0x435/0x5d0 init/main.c:1568 kernel_init+0x1d/0x2b0 init/main.c:1457 ret_from_fork+0x4d/0x80 arch/x86/kernel/process.c:148 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244 -> #2 (rtnl_mutex){+.+.}-{4:4}: lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5851 __mutex_lock_common kernel/locking/mutex.c:585 [inline] __mutex_lock+0x19c/0x1010 kernel/locking/mutex.c:730 do_ip_getsockopt+0x10da/0x27c0 net/ipv4/ip_sockglue.c:1702 ip_getsockopt+0xed/0x2e0 net/ipv4/ip_sockglue.c:1765 ipv6_getsockopt+0x1ba/0x360 net/ipv6/ipv6_sockglue.c:1478 tcp_getsockopt+0x165/0x1c0 net/ipv4/tcp.c:4671 smc_getsockopt+0x1db/0x3e0 net/smc/af_smc.c:3163 do_sock_getsockopt+0x390/0x740 net/socket.c:2364 __sys_getsockopt net/socket.c:2393 [inline] __do_sys_getsockopt net/socket.c:2400 [inline] __se_sys_getsockopt net/socket.c:2397 [inline] __x64_sys_getsockopt+0x2a1/0x370 net/socket.c:2397 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f -> #1 (&smc->clcsock_release_lock){+.+.}-{4:4}: lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5851 __mutex_lock_common kernel/locking/mutex.c:585 [inline] __mutex_lock+0x19c/0x1010 kernel/locking/mutex.c:730 smc_switch_to_fallback+0x35/0xd90 net/smc/af_smc.c:903 smc_sendmsg+0x11f/0x530 net/smc/af_smc.c:2781 sock_sendmsg_nosec net/socket.c:718 [inline] __sock_sendmsg+0x223/0x270 net/socket.c:733 ____sys_sendmsg+0x53a/0x860 net/socket.c:2573 ___sys_sendmsg net/socket.c:2627 [inline] __sys_sendmmsg+0x36a/0x720 net/socket.c:2716 __do_sys_sendmmsg net/socket.c:2743 [inline] __se_sys_sendmmsg net/socket.c:2740 [inline] __x64_sys_sendmmsg+0xa0/0xb0 net/socket.c:2740 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f -> #0 (sk_lock-AF_INET6){+.+.}-{0:0}: check_prev_add kernel/locking/lockdep.c:3163 [inline] check_prevs_add kernel/locking/lockdep.c:3282 [inline] validate_chain+0x18ef/0x5920 kernel/locking/lockdep.c:3906 __lock_acquire+0x1397/0x2100 kernel/locking/lockdep.c:5228 lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5851 lock_sock_nested+0x48/0x100 net/core/sock.c:3645 lock_sock include/net/sock.h:1624 [inline] sock_set_reuseaddr+0x17/0x60 net/core/sock.c:788 siw_create_listen+0x19d/0x11d0 drivers/infiniband/sw/siw/siw_cm.c:1777 iw_cm_listen+0x160/0x230 drivers/infiniband/core/iwcm.c:585 cma_iw_listen drivers/infiniband/core/cma.c:2684 [inline] rdma_listen+0xac8/0xdd0 drivers/infiniband/core/cma.c:3969 cma_listen_on_dev+0x3e0/0x6f0 drivers/infiniband/core/cma.c:2743 cma_add_one+0x7d7/0xcd0 drivers/infiniband/core/cma.c:5373 add_client_context+0x538/0x8b0 drivers/infiniband/core/device.c:711 enable_device_and_get+0x1e6/0x440 drivers/infiniband/core/device.c:1322 ib_register_device+0x1120/0x1460 drivers/infiniband/core/device.c:1433 siw_device_register drivers/infiniband/sw/siw/siw_main.c:72 [inline] siw_newlink+0x938/0xda0 drivers/infiniband/sw/siw/siw_main.c:431 nldev_newlink+0x5ec/0x680 drivers/infiniband/core/nldev.c:1795 rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline] rdma_nl_rcv+0x6df/0x9e0 drivers/infiniband/core/netlink.c:259 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline] netlink_unicast+0x7f8/0x990 net/netlink/af_netlink.c:1348 netlink_sendmsg+0x8de/0xcb0 net/netlink/af_netlink.c:1892 sock_sendmsg_nosec net/socket.c:718 [inline] __sock_sendmsg+0x223/0x270 net/socket.c:733 ____sys_sendmsg+0x53a/0x860 net/socket.c:2573 ___sys_sendmsg net/socket.c:2627 [inline] __sys_sendmsg+0x269/0x350 net/socket.c:2659 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f other info that might help us debug this: Chain exists of: sk_lock-AF_INET6 --> rtnl_mutex --> lock#7 Possible unsafe locking scenario: CPU0 CPU1 ---- ---- lock(lock#7); lock(rtnl_mutex); lock(lock#7); lock(sk_lock-AF_INET6); *** DEADLOCK *** 6 locks held by syz.4.864/9725: #0: ffffffff9aa0bb18 (&rdma_nl_types[idx].sem){.+.+}-{4:4}, at: rdma_nl_rcv_msg drivers/infiniband/core/netlink.c:164 [inline] #0: ffffffff9aa0bb18 (&rdma_nl_types[idx].sem){.+.+}-{4:4}, at: rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline] #0: ffffffff9aa0bb18 (&rdma_nl_types[idx].sem){.+.+}-{4:4}, at: rdma_nl_rcv+0x32d/0x9e0 drivers/infiniband/core/netlink.c:259 #1: ffffffff8fc58bb0 (link_ops_rwsem){++++}-{4:4}, at: nldev_newlink+0x454/0x680 drivers/infiniband/core/nldev.c:1785 #2: ffffffff8fc4b850 (devices_rwsem){++++}-{4:4}, at: enable_device_and_get+0x12e/0x440 drivers/infiniband/core/device.c:1312 #3: ffffffff8fc4bb50 (clients_rwsem){++++}-{4:4}, at: enable_device_and_get+0x196/0x440 drivers/infiniband/core/device.c:1320 #4: ffff88803462c5e0 (&device->client_data_rwsem){++++}-{4:4}, at: add_client_context+0x4f4/0x8b0 drivers/infiniband/core/device.c:709 #5: ffffffff8fc6c9e8 (lock#7){+.+.}-{4:4}, at: cma_add_one+0x6bc/0xcd0 drivers/infiniband/core/cma.c:5370 stack backtrace: CPU: 1 UID: 0 PID: 9725 Comm: syz.4.864 Not tainted 6.14.0-rc3-syzkaller-00079-g87a132e73910 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 Call Trace: __dump_stack lib/dump_stack.c:94 [inline] dump_stack_lvl+0x241/0x360 lib/dump_stack.c:120 print_circular_bug+0x13a/0x1b0 kernel/locking/lockdep.c:2076 check_noncircular+0x36a/0x4a0 kernel/locking/lockdep.c:2208 check_prev_add kernel/locking/lockdep.c:3163 [inline] check_prevs_add kernel/locking/lockdep.c:3282 [inline] validate_chain+0x18ef/0x5920 kernel/locking/lockdep.c:3906 __lock_acquire+0x1397/0x2100 kernel/locking/lockdep.c:5228 lock_acquire+0x1ed/0x550 kernel/locking/lockdep.c:5851 lock_sock_nested+0x48/0x100 net/core/sock.c:3645 lock_sock include/net/sock.h:1624 [inline] sock_set_reuseaddr+0x17/0x60 net/core/sock.c:788 siw_create_listen+0x19d/0x11d0 drivers/infiniband/sw/siw/siw_cm.c:1777 iw_cm_listen+0x160/0x230 drivers/infiniband/core/iwcm.c:585 cma_iw_listen drivers/infiniband/core/cma.c:2684 [inline] rdma_listen+0xac8/0xdd0 drivers/infiniband/core/cma.c:3969 cma_listen_on_dev+0x3e0/0x6f0 drivers/infiniband/core/cma.c:2743 cma_add_one+0x7d7/0xcd0 drivers/infiniband/core/cma.c:5373 add_client_context+0x538/0x8b0 drivers/infiniband/core/device.c:711 enable_device_and_get+0x1e6/0x440 drivers/infiniband/core/device.c:1322 ib_register_device+0x1120/0x1460 drivers/infiniband/core/device.c:1433 siw_device_register drivers/infiniband/sw/siw/siw_main.c:72 [inline] siw_newlink+0x938/0xda0 drivers/infiniband/sw/siw/siw_main.c:431 nldev_newlink+0x5ec/0x680 drivers/infiniband/core/nldev.c:1795 rdma_nl_rcv_skb drivers/infiniband/core/netlink.c:239 [inline] rdma_nl_rcv+0x6df/0x9e0 drivers/infiniband/core/netlink.c:259 netlink_unicast_kernel net/netlink/af_netlink.c:1322 [inline] netlink_unicast+0x7f8/0x990 net/netlink/af_netlink.c:1348 netlink_sendmsg+0x8de/0xcb0 net/netlink/af_netlink.c:1892 sock_sendmsg_nosec net/socket.c:718 [inline] __sock_sendmsg+0x223/0x270 net/socket.c:733 ____sys_sendmsg+0x53a/0x860 net/socket.c:2573 ___sys_sendmsg net/socket.c:2627 [inline] __sys_sendmsg+0x269/0x350 net/socket.c:2659 do_syscall_x64 arch/x86/entry/common.c:52 [inline] do_syscall_64+0xf3/0x230 arch/x86/entry/common.c:83 entry_SYSCALL_64_after_hwframe+0x77/0x7f RIP: 0033:0x7f8bc698cde9 Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007f8bc7753038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e RAX: ffffffffffffffda RBX: 00007f8bc6ba6160 RCX: 00007f8bc698cde9 RDX: 0000000000000810 RSI: 0000400000000240 RDI: 0000000000000004 RBP: 00007f8bc6a0e2a0 R08: 0000000000000000 R09: 0000000000000000 R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 R13: 0000000000000001 R14: 00007f8bc6ba6160 R15: 00007ffc744efb48 infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000 lo speed is unknown, defaulting to 1000