[ 9.157324][ T6223] 8021q: adding VLAN 0 to HW filter on device bond0 Starting crond: [ 9.161929][ T6223] eql: remember to turn off Van-Jacobson compression on your slave devices OK [ 9.198728][ T1048] gve 0000:00:00.0 enp0s0: Device link is up. Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.242' (ED25519) to the list of known hosts. 1970/01/01 00:00:33 parsed 1 programs syzkaller login: [ 34.546810][ T6533] cgroup: Unknown subsys name 'net' [ 34.663677][ T6533] cgroup: Unknown subsys name 'cpuset' [ 34.665451][ T6533] cgroup: Unknown subsys name 'rlimit' [ 34.811877][ T6533] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 38.613628][ T6541] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 38.615304][ T6541] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 38.617277][ T6541] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 38.619040][ T6541] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 38.620612][ T6541] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 38.694941][ T6539] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 39.698545][ T1116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.698570][ T1116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.710389][ T240] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 39.710411][ T240] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 39.867471][ T6612] chnl_net:caif_netlink_parms(): no params data found [ 39.920976][ T6612] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.922347][ T6612] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.922410][ T6612] bridge_slave_0: entered allmulticast mode [ 39.923736][ T6612] bridge_slave_0: entered promiscuous mode [ 39.924814][ T6612] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.924836][ T6612] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.924882][ T6612] bridge_slave_1: entered allmulticast mode [ 39.925284][ T6612] bridge_slave_1: entered promiscuous mode [ 39.939934][ T6612] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 39.940832][ T6612] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 39.957433][ T6612] team0: Port device team_slave_0 added [ 39.958105][ T6612] team0: Port device team_slave_1 added [ 39.968155][ T6612] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 39.968179][ T6612] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.968202][ T6612] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 39.968905][ T6612] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 39.968913][ T6612] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 39.968924][ T6612] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 39.984461][ T6612] hsr_slave_0: entered promiscuous mode [ 39.984896][ T6612] hsr_slave_1: entered promiscuous mode [ 40.100103][ T6612] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 40.103280][ T6612] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 40.105404][ T6612] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 40.107494][ T6612] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 40.151719][ T6612] 8021q: adding VLAN 0 to HW filter on device bond0 [ 40.155303][ T6612] 8021q: adding VLAN 0 to HW filter on device team0 [ 40.157175][ T2232] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.157229][ T2232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.163045][ T2232] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.163086][ T2232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.168098][ T6612] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 40.168132][ T6612] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 40.226770][ T6612] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 40.237677][ T6612] veth0_vlan: entered promiscuous mode [ 40.239145][ T6612] veth1_vlan: entered promiscuous mode [ 40.244415][ T6612] veth0_macvtap: entered promiscuous mode [ 40.245266][ T6612] veth1_macvtap: entered promiscuous mode [ 40.248541][ T6612] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 40.249419][ T6612] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 40.251397][ T2232] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.252371][ T2232] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.252399][ T2232] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 40.252415][ T2232] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:00:40 executed programs: 0 [ 40.588954][ T6541] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 40.590369][ T6541] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 40.591774][ T6541] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 40.593291][ T6541] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 40.594906][ T6541] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 40.687391][ T1048] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.728836][ T6638] chnl_net:caif_netlink_parms(): no params data found [ 40.740599][ T1048] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.753523][ T6638] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.753588][ T6638] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.753638][ T6638] bridge_slave_0: entered allmulticast mode [ 40.754025][ T6638] bridge_slave_0: entered promiscuous mode [ 40.754697][ T6638] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.754738][ T6638] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.754780][ T6638] bridge_slave_1: entered allmulticast mode [ 40.755140][ T6638] bridge_slave_1: entered promiscuous mode [ 40.767108][ T6638] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 40.767918][ T6638] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 40.774706][ T6638] team0: Port device team_slave_0 added [ 40.775326][ T6638] team0: Port device team_slave_1 added [ 40.781175][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 40.781200][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.781211][ T6638] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 40.781672][ T6638] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 40.781679][ T6638] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 40.781689][ T6638] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 40.800399][ T6638] hsr_slave_0: entered promiscuous mode [ 40.800658][ T6638] hsr_slave_1: entered promiscuous mode [ 40.800816][ T6638] debugfs: 'hsr0' already exists in 'hsr' [ 40.800859][ T6638] Cannot create hsr debugfs directory [ 40.817567][ T1048] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 40.857598][ T1048] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 42.672547][ T6541] Bluetooth: hci0: command tx timeout [ 44.045857][ T1048] bridge_slave_1: left allmulticast mode [ 44.045899][ T1048] bridge_slave_1: left promiscuous mode [ 44.046261][ T1048] bridge0: port 2(bridge_slave_1) entered disabled state [ 44.048521][ T1048] bridge_slave_0: left allmulticast mode [ 44.048532][ T1048] bridge_slave_0: left promiscuous mode [ 44.048589][ T1048] bridge0: port 1(bridge_slave_0) entered disabled state [ 44.214395][ T1048] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 44.243356][ T1048] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 44.263172][ T1048] bond0 (unregistering): Released all slaves [ 44.336585][ T1048] hsr_slave_0: left promiscuous mode [ 44.337827][ T1048] hsr_slave_1: left promiscuous mode [ 44.338112][ T1048] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 44.338124][ T1048] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 44.339300][ T1048] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 44.339311][ T1048] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 44.346975][ T1048] veth1_macvtap: left promiscuous mode [ 44.347231][ T1048] veth0_macvtap: left promiscuous mode [ 44.347280][ T1048] veth1_vlan: left promiscuous mode [ 44.347513][ T1048] veth0_vlan: left promiscuous mode [ 44.456963][ T1048] team0 (unregistering): Port device team_slave_1 removed [ 44.466826][ T1048] team0 (unregistering): Port device team_slave_0 removed [ 44.666398][ T6638] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 44.669715][ T6638] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 44.674954][ T6638] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 44.678014][ T6638] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 44.698943][ T6638] 8021q: adding VLAN 0 to HW filter on device bond0 [ 44.707331][ T6638] 8021q: adding VLAN 0 to HW filter on device team0 [ 44.708731][ T2232] bridge0: port 1(bridge_slave_0) entered blocking state [ 44.708773][ T2232] bridge0: port 1(bridge_slave_0) entered forwarding state [ 44.711675][ T2232] bridge0: port 2(bridge_slave_1) entered blocking state [ 44.711724][ T2232] bridge0: port 2(bridge_slave_1) entered forwarding state [ 44.743704][ T6541] Bluetooth: hci0: command tx timeout [ 44.790568][ T6638] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 44.814438][ T6638] veth0_vlan: entered promiscuous mode [ 44.815918][ T6638] veth1_vlan: entered promiscuous mode [ 44.821567][ T6638] veth0_macvtap: entered promiscuous mode [ 44.824310][ T6638] veth1_macvtap: entered promiscuous mode [ 44.827807][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 44.829162][ T6638] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 44.830895][ T1116] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.833964][ T1116] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.835462][ T1116] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.845908][ T1116] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 44.860531][ T1116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.862603][ T1116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 44.867689][ T1116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 44.869032][ T1116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 45.099888][ T6541] block nbd0: Receive control failed (result -107) [ 45.099892][ T6129] block nbd0: Receive control failed (result -107) [ 45.142285][ T6716] nbd0: detected capacity change from 0 to 32 [ 45.144427][ T6649] [ 45.144816][ T6649] ====================================================== [ 45.146006][ T6649] WARNING: possible circular locking dependency detected [ 45.147174][ T6649] syzkaller #0 Not tainted [ 45.147878][ T6649] ------------------------------------------------------ [ 45.148964][ T6649] udevd/6649 is trying to acquire lock: [ 45.149824][ T6649] ffff0000d90a0470 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x20c/0xc48 [ 45.151189][ T6649] [ 45.151189][ T6649] but task is already holding lock: [ 45.152253][ T6649] ffff0000d2287178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xb4/0xc48 [ 45.153541][ T6649] [ 45.153541][ T6649] which lock already depends on the new lock. [ 45.153541][ T6649] [ 45.155156][ T6649] [ 45.155156][ T6649] the existing dependency chain (in reverse order) is: [ 45.156612][ T6649] [ 45.156612][ T6649] -> #7 (&cmd->lock){+.+.}-{4:4}: [ 45.157738][ T6649] __mutex_lock_common+0x1d0/0x2678 [ 45.158677][ T6649] mutex_lock_nested+0x2c/0x38 [ 45.159453][ T6649] nbd_queue_rq+0xb4/0xc48 [ 45.160268][ T6649] blk_mq_dispatch_rq_list+0x890/0x1548 [ 45.161283][ T6649] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 45.162420][ T6649] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 45.163378][ T6649] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 45.164231][ T6649] blk_mq_dispatch_list+0xa00/0xaf8 [ 45.165158][ T6649] blk_mq_flush_plug_list+0x3a4/0x488 [ 45.166116][ T6649] __blk_flush_plug+0x330/0x408 [ 45.167001][ T6649] __submit_bio+0x3f4/0x4d8 [ 45.167772][ T6649] submit_bio_noacct_nocheck+0x390/0xaac [ 45.168789][ T6649] submit_bio_noacct+0xc94/0x177c [ 45.169666][ T6649] submit_bio+0x3b4/0x550 [ 45.170444][ T6649] submit_bh_wbc+0x3ec/0x4bc [ 45.171253][ T6649] block_read_full_folio+0x734/0x824 [ 45.172160][ T6649] blkdev_read_folio+0x28/0x38 [ 45.173029][ T6649] filemap_read_folio+0xec/0x2f8 [ 45.173905][ T6649] do_read_cache_folio+0x364/0x5bc [ 45.174810][ T6649] read_cache_folio+0x68/0x88 [ 45.175616][ T6649] read_part_sector+0xcc/0x6fc [ 45.176476][ T6649] adfspart_check_ICS+0xa0/0x83c [ 45.177298][ T6649] bdev_disk_changed+0x674/0x11fc [ 45.178150][ T6649] blkdev_get_whole+0x2b0/0x4a4 [ 45.178915][ T6649] bdev_open+0x3b0/0xc20 [ 45.179635][ T6649] blkdev_open+0x300/0x440 [ 45.180356][ T6649] do_dentry_open+0x7a4/0x10bc [ 45.181114][ T6649] vfs_open+0x44/0x2d4 [ 45.181822][ T6649] path_openat+0x2424/0x2c40 [ 45.182756][ T6649] do_filp_open+0x18c/0x36c [ 45.183600][ T6649] do_sys_openat2+0x11c/0x1b4 [ 45.184442][ T6649] __arm64_sys_openat+0x120/0x158 [ 45.185298][ T6649] invoke_syscall+0x98/0x2b8 [ 45.186049][ T6649] el0_svc_common+0x130/0x23c [ 45.186797][ T6649] do_el0_svc+0x48/0x58 [ 45.187471][ T6649] el0_svc+0x5c/0x254 [ 45.188111][ T6649] el0t_64_sync_handler+0x84/0x12c [ 45.188961][ T6649] el0t_64_sync+0x198/0x19c [ 45.189690][ T6649] [ 45.189690][ T6649] -> #6 (set->srcu){.+.+}-{0:0}: [ 45.190721][ T6649] srcu_lock_sync+0x2c/0x38 [ 45.191435][ T6649] __synchronize_srcu+0xa0/0x348 [ 45.192235][ T6649] synchronize_srcu+0x2cc/0x338 [ 45.193086][ T6649] blk_mq_quiesce_queue+0x118/0x16c [ 45.193997][ T6649] elevator_switch+0x12c/0x410 [ 45.194793][ T6649] elevator_change+0x264/0x3cc [ 45.195594][ T6649] elevator_set_default+0x138/0x21c [ 45.196442][ T6649] blk_register_queue+0x2b4/0x338 [ 45.197212][ T6649] __add_disk+0x560/0xb90 [ 45.197908][ T6649] add_disk_fwnode+0xdc/0x438 [ 45.198642][ T6649] device_add_disk+0x38/0x4c [ 45.199341][ T6649] nbd_dev_add+0x560/0x820 [ 45.200029][ T6649] nbd_init+0x15c/0x174 [ 45.200710][ T6649] do_one_initcall+0x250/0x990 [ 45.201468][ T6649] do_initcall_level+0x128/0x1c4 [ 45.202302][ T6649] do_initcalls+0x70/0xd0 [ 45.203045][ T6649] do_basic_setup+0x78/0x8c [ 45.203794][ T6649] kernel_init_freeable+0x268/0x39c [ 45.204622][ T6649] kernel_init+0x24/0x1dc [ 45.205366][ T6649] ret_from_fork+0x10/0x20 [ 45.206141][ T6649] [ 45.206141][ T6649] -> #5 (&q->elevator_lock){+.+.}-{4:4}: [ 45.207448][ T6649] __mutex_lock_common+0x1d0/0x2678 [ 45.208370][ T6649] mutex_lock_nested+0x2c/0x38 [ 45.209251][ T6649] elevator_change+0x16c/0x3cc [ 45.210092][ T6649] elevator_set_none+0x48/0xac [ 45.210904][ T6649] blk_mq_update_nr_hw_queues+0x4c8/0x15f4 [ 45.211831][ T6649] nbd_start_device+0x158/0xa48 [ 45.212563][ T6649] nbd_genl_connect+0xf88/0x158c [ 45.213310][ T6649] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 45.214184][ T6649] genl_rcv_msg+0x450/0x624 [ 45.214984][ T6649] netlink_rcv_skb+0x220/0x3fc [ 45.215874][ T6649] genl_rcv+0x38/0x50 [ 45.216548][ T6649] netlink_unicast+0x694/0x8c4 [ 45.217335][ T6649] netlink_sendmsg+0x648/0x930 [ 45.218115][ T6649] ____sys_sendmsg+0x490/0x7b8 [ 45.218896][ T6649] ___sys_sendmsg+0x204/0x278 [ 45.219658][ T6649] __arm64_sys_sendmsg+0x184/0x238 [ 45.220480][ T6649] invoke_syscall+0x98/0x2b8 [ 45.221184][ T6649] el0_svc_common+0x130/0x23c [ 45.221979][ T6649] do_el0_svc+0x48/0x58 [ 45.222751][ T6649] el0_svc+0x5c/0x254 [ 45.223420][ T6649] el0t_64_sync_handler+0x84/0x12c [ 45.224256][ T6649] el0t_64_sync+0x198/0x19c [ 45.224949][ T6649] [ 45.224949][ T6649] -> #4 (&q->q_usage_counter(io)#33){++++}-{0:0}: [ 45.226199][ T6649] blk_alloc_queue+0x48c/0x54c [ 45.226979][ T6649] __blk_mq_alloc_disk+0x124/0x304 [ 45.227808][ T6649] nbd_dev_add+0x398/0x820 [ 45.228574][ T6649] nbd_init+0x15c/0x174 [ 45.229401][ T6649] do_o