Warning: Permanently added '10.128.1.78' (ED25519) to the list of known hosts. [ 27.493497][ T6528] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 27.495232][ T6528] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 27.496636][ T6528] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 27.497951][ T6528] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 27.499495][ T6528] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 executing program [ 27.683960][ T6528] block nbd0: Receive control failed (result -107) [ 27.684108][ T6131] block nbd0: Receive control failed (result -107) [ 27.731788][ T6527] nbd0: detected capacity change from 0 to 32 [ 27.733612][ T6530] [ 27.733997][ T6530] ====================================================== [ 27.735112][ T6530] WARNING: possible circular locking dependency detected [ 27.736352][ T6530] syzkaller #0 Not tainted [ 27.737056][ T6530] ------------------------------------------------------ [ 27.738176][ T6530] udevd/6530 is trying to acquire lock: [ 27.739013][ T6530] ffff0000d5c35c70 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x20c/0xc48 [ 27.740471][ T6530] [ 27.740471][ T6530] but task is already holding lock: [ 27.741605][ T6530] ffff0000c842e178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xb4/0xc48 [ 27.743014][ T6530] [ 27.743014][ T6530] which lock already depends on the new lock. [ 27.743014][ T6530] [ 27.744539][ T6530] [ 27.744539][ T6530] the existing dependency chain (in reverse order) is: [ 27.745816][ T6530] [ 27.745816][ T6530] -> #7 (&cmd->lock){+.+.}-{4:4}: [ 27.746905][ T6530] __mutex_lock_common+0x1d0/0x2678 [ 27.747708][ T6530] mutex_lock_nested+0x2c/0x38 [ 27.748425][ T6530] nbd_queue_rq+0xb4/0xc48 [ 27.749217][ T6530] blk_mq_dispatch_rq_list+0x890/0x1548 [ 27.750160][ T6530] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 27.751251][ T6530] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 27.752247][ T6530] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 27.753160][ T6530] blk_mq_dispatch_list+0xa00/0xaf8 [ 27.754092][ T6530] blk_mq_flush_plug_list+0x3a4/0x488 [ 27.755059][ T6530] __blk_flush_plug+0x330/0x408 [ 27.755956][ T6530] __submit_bio+0x3f4/0x4d8 [ 27.756731][ T6530] submit_bio_noacct_nocheck+0x390/0xaac [ 27.757637][ T6530] submit_bio_noacct+0xc94/0x177c [ 27.758489][ T6530] submit_bio+0x3b4/0x550 [ 27.759224][ T6530] submit_bh_wbc+0x3ec/0x4bc [ 27.759991][ T6530] block_read_full_folio+0x734/0x824 [ 27.760836][ T6530] blkdev_read_folio+0x28/0x38 [ 27.761640][ T6530] filemap_read_folio+0xec/0x2f8 [ 27.762452][ T6530] do_read_cache_folio+0x364/0x5bc [ 27.763264][ T6530] read_cache_folio+0x68/0x88 [ 27.764010][ T6530] read_part_sector+0xcc/0x6fc [ 27.764928][ T6530] adfspart_check_ICS+0xa0/0x83c [ 27.765800][ T6530] bdev_disk_changed+0x674/0x11fc [ 27.766690][ T6530] blkdev_get_whole+0x2b0/0x4a4 [ 27.767504][ T6530] bdev_open+0x3b0/0xc20 [ 27.768222][ T6530] blkdev_open+0x300/0x440 [ 27.768987][ T6530] do_dentry_open+0x7a4/0x10bc [ 27.769790][ T6530] vfs_open+0x44/0x2d4 [ 27.770506][ T6530] path_openat+0x2424/0x2c40 [ 27.771316][ T6530] do_filp_open+0x18c/0x36c [ 27.772123][ T6530] do_sys_openat2+0x11c/0x1b4 [ 27.772977][ T6530] __arm64_sys_openat+0x120/0x158 [ 27.773791][ T6530] invoke_syscall+0x98/0x2b8 [ 27.774531][ T6530] el0_svc_common+0x130/0x23c [ 27.775315][ T6530] do_el0_svc+0x48/0x58 [ 27.776009][ T6530] el0_svc+0x5c/0x254 [ 27.776649][ T6530] el0t_64_sync_handler+0x84/0x12c [ 27.777521][ T6530] el0t_64_sync+0x198/0x19c [ 27.778190][ T6530] [ 27.778190][ T6530] -> #6 (set->srcu){.+.+}-{0:0}: [ 27.779284][ T6530] srcu_lock_sync+0x2c/0x38 [ 27.780111][ T6530] __synchronize_srcu+0xa0/0x348 [ 27.781009][ T6530] synchronize_srcu+0x2cc/0x338 [ 27.781911][ T6530] blk_mq_quiesce_queue+0x118/0x16c [ 27.782837][ T6530] elevator_switch+0x12c/0x410 [ 27.783665][ T6530] elevator_change+0x264/0x3cc [ 27.784511][ T6530] elevator_set_default+0x138/0x21c [ 27.785409][ T6530] blk_register_queue+0x2b4/0x338 [ 27.786274][ T6530] __add_disk+0x560/0xb90 [ 27.787044][ T6530] add_disk_fwnode+0xdc/0x438 [ 27.787844][ T6530] device_add_disk+0x38/0x4c [ 27.788603][ T6530] nbd_dev_add+0x560/0x820 [ 27.789452][ T6530] nbd_init+0x15c/0x174 [ 27.790220][ T6530] do_one_initcall+0x250/0x990 [ 27.791046][ T6530] do_initcall_level+0x128/0x1c4 [ 27.791891][ T6530] do_initcalls+0x70/0xd0 [ 27.792657][ T6530] do_basic_setup+0x78/0x8c [ 27.793384][ T6530] kernel_init_freeable+0x268/0x39c [ 27.794243][ T6530] kernel_init+0x24/0x1dc [ 27.794954][ T6530] ret_from_fork+0x10/0x20 [ 27.795772][ T6530] [ 27.795772][ T6530] -> #5 (&q->elevator_lock){+.+.}-{4:4}: [ 27.796978][ T6530] __mutex_lock_common+0x1d0/0x2678 [ 27.797942][ T6530] mutex_lock_nested+0x2c/0x38 [ 27.798832][ T6530] elevator_change+0x16c/0x3cc [ 27.799674][ T6530] elevator_set_none+0x48/0xac [ 27.800469][ T6530] blk_mq_update_nr_hw_queues+0x4c8/0x15f4 [ 27.801411][ T6530] nbd_start_device+0x158/0xa48 [ 27.802225][ T6530] nbd_genl_connect+0xf88/0x158c [ 27.802992][ T6530] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 27.803882][ T6530] genl_rcv_msg+0x450/0x624 [ 27.804655][ T6530] netlink_rcv_skb+0x220/0x3fc [ 27.805446][ T6530] genl_rcv+0x38/0x50 [ 27.806117][ T6530] netlink_unicast+0x694/0x8c4 [ 27.806852][ T6530] netlink_sendmsg+0x648/0x930 [ 27.807633][ T6530] ____sys_sendmsg+0x490/0x7b8 [ 27.808383][ T6530] ___sys_sendmsg+0x204/0x278 [ 27.809183][ T6530] __arm64_sys_sendmsg+0x184/0x238 [ 27.810077][ T6530] invoke_syscall+0x98/0x2b8 [ 27.810874][ T6530] el0_svc_common+0x130/0x23c [ 27.811647][ T6530] do_el0_svc+0x48/0x58 [ 27.812412][ T6530] el0_svc+0x5c/0x254 [ 27.813125][ T6530] el0t_64_sync_handler+0x84/0x12c [ 27.814035][ T6530] el0t_64_sync+0x198/0x19c [ 27.814814][ T6530] [ 27.814814][ T6530] -> #4 (&q->q_usage_counter(io)#33){++++}-{0:0}: [ 27.816141][ T6530] blk_alloc_queue+0x48c/0x54c [ 27.817025][ T6530] __blk_mq_alloc_disk+0x124/0x304 [ 27.817947][ T6530] nbd_dev_add+0x398/0x820 [ 27.818729][ T6530] nbd_init+0x15c/0x174 [ 27.819456][ T6530] do_one_initcall+0x250/0x990 [ 27.820284][ T6530] do_initcall_level+0x128/0x1c4 [ 27.821147][ T6530] do_initcalls+0x70/0xd0 [ 27.821867][ T6530] do_basic_setup+0x78/0x8c [ 27.822678][ T6530] kernel_init_freeable+0x268/0x39c [ 27.823645][ T6530] kernel_init+0x24/0x1dc [ 27.824380][ T6530] ret_from_fork+0x10/0x20 [ 27.825112][ T6530] [ 27.825112][ T6530] -> #3 (fs_reclaim){+.+.}-{0:0}: [ 27.826177][ T6530] fs_reclaim_acquire+0x8c/0x118 [ 27.826988][ T6530] kmem_cache_alloc_noprof+0x58/0x3e8 [ 27.827880][ T6530] mas_alloc_nodes+0x268/0x788 [ 27.828665][ T6530] mas_preallocate+0x4fc/0x7e8 [ 27.829433][ T6530] vma_link+0x100/0x5ac [ 27.830121][ T6530] insert_vm_struct+0x18c/0x244 [ 27.831019][ T6530] create_init_stack_vma+0x24c/0x56c [ 27.831977][ T6530] alloc_bprm+0x3d4/0x548 [ 27.832720][ T6530] kernel_execve+0xa4/0x7f4 [ 27.833564][ T6530] run_init_process+0x1bc/0x1ec [ 27.834426][ T6530] try_to_run_init_process+0x20/0x7c [ 27.835402][ T6530] kernel_init+0xa8/0x1dc [ 27.836230][ T6530] ret_from_fork+0x10/0x20 [ 27.837076][ T6530] [ 27.837076][ T6530] -> #2 (&mm->mmap_lock){++++}-{4:4}: [ 27.838348][ T6530] __might_fault+0xc4/0x124 [ 27.839210][ T6530] copy_from_sockptr+0x68/0x1c8 [ 27.840070][ T6530] vsock_connectible_setsockopt+0x3e0/0x634 [ 27.841095][ T6530] do_sock_setsockopt+0x1ec/0x328 [ 27.842008][ T6530] __arm64_sys_setsockopt+0x170/0x1e0 [ 27.842952][ T6530] invoke_syscall+0x98/0x2b8 [ 27.843807][ T6530] el0_svc_common+0x130/0x23c [ 27.844670][ T6530] do_el0_svc+0x48/0x58 [ 27.845414][ T6530] el0_svc+0x5c/0x254 [ 27.846142][ T6530] el0t_64_sync_handler+0x84/0x12c [ 27.847044][ T6530] el0t_64_sync+0x198/0x19c [ 27.847790][ T6530] [ 27.847790][ T6530] -> #1 (sk_lock-AF_VSOCK){+.+.}-{0:0}: [ 27.849069][ T6530] lock_sock_nested+0x58/0x118 [ 27.849965][ T6530] vsock_shutdown+0x70/0x280 [ 27.850848][ T6530] kernel_sock_shutdown+0x6c/0x80 [ 27.851818][ T6530] nbd_mark_nsock_dead+0x2a4/0x534 [ 27.852758][ T6530] recv_work+0x1cf8/0x2044 [ 27.853611][ T6530] process_one_work+0x7e8/0x155c [ 27.854476][ T6530] worker_thread+0x958/0xed8 [ 27.855300][ T6530] kthread+0x5fc/0x75c [ 27.856055][ T6530] ret_from_fork+0x10/0x20 [ 27.856851][ T6530] [ 27.856851][ T6530] -> #0 (&nsock->tx_lock){+.+.}-{4:4}: [ 27.858052][ T6530] __lock_acquire+0x1774/0x30a4 [ 27.858951][ T6530] lock_acquire+0x14c/0x2e0 [ 27.859777][ T6530] __mutex_lock_common+0x1d0/0x2678 [ 27.860737][ T6530] mutex_lock_nested+0x2c/0x38 [ 27.861620][ T6530] nbd_queue_rq+0x20c/0xc48 [ 27.862461][ T6530] blk_mq_dispatch_rq_list+0x890/0x1548 [ 27.863362][ T6530] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 27.864467][ T6530] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 27.865555][ T6530] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 27.866419][ T6530] blk_mq_dispatch_list+0xa00/0xaf8 [ 27.867269][ T6530] blk_mq_flush_plug_list+0x3a4/0x488 [ 27.868152][ T6530] __blk_flush_plug+0x330/0x408 [ 27.868977][ T6530] __submit_bio+0x3f4/0x4d8 [ 27.869777][ T6530] submit_bio_noacct_nocheck+0x390/0xaac [ 27.870714][ T6530] submit_bio_noacct+0xc94/0x177c [ 27.871528][ T6530] submit_bio+0x3b4/0x550 [ 27.872276][ T6530] submit_bh_wbc+0x3ec/0x4bc [ 27.873030][ T6530] block_read_full_folio+0x734/0x824 [ 27.873872][ T6530] blkdev_read_folio+0x28/0x38 [ 27.874621][ T6530] filemap_read_folio+0xec/0x2f8 [ 27.875470][ T6530] do_read_cache_folio+0x364/0x5bc [ 27.876312][ T6530] read_cache_folio+0x68/0x88 [ 27.877063][ T6530] read_part_sector+0xcc/0x6fc [ 27.877902][ T6530] adfspart_check_ICS+0xa0/0x83c [ 27.878787][ T6530] bdev_disk_changed+0x674/0x11fc [ 27.879672][ T6530] blkdev_get_whole+0x2b0/0x4a4 [ 27.880481][ T6530] bdev_open+0x3b0/0xc20 [ 27.881191][ T6530] blkdev_open+0x300/0x440 [ 27.881933][ T6530] do_dentry_open+0x7a4/0x10bc [ 27.882735][ T6530] vfs_open+0x44/0x2d4 [ 27.883363][ T6530] path_openat+0x2424/0x2c40 [ 27.884102][ T6530] do_filp_open+0x18c/0x36c [ 27.884855][ T6530] do_sys_openat2+0x11c/0x1b4 [ 27.885666][ T6530] __arm64_sys_openat+0x120/0x158 [ 27.886457][ T6530] invoke_syscall+0x98/0x2b8 [ 27.887185][ T6530] el0_svc_common+0x130/0x23c [ 27.888076][ T6530] do_el0_svc+0x48/0x58 [ 27.888847][ T6530] el0_svc+0x5c/0x254 [ 27.889557][ T6530] el0t_64_sync_handler+0x84/0x12c [ 27.890469][ T6530] el0t_64_sync+0x198/0x19c [ 27.891311][ T6530] [ 27.891311][ T6530] other info that might help us debug this: [ 27.891311][ T6530] [ 27.892962][ T6530] Chain exists of: [ 27.892962][ T6530] &nsock->tx_lock --> set->srcu --> &cmd->lock [ 27.892962][ T6530] [ 27.894821][ T6530] Possible unsafe locking scenario: [ 27.894821][ T6530] [ 27.895931][ T6530] CPU0 CPU1 [ 27.896691][ T6530] ---- ---- [ 27.897465][ T6530] lock(&cmd->lock); [ 27.898068][ T6530] lock(set->srcu); [ 27.899036][ T6530] lock(&cmd->lock); [ 27.900159][ T6530] lock(&nsock->tx_lock); [ 27.900908][ T6530] [ 27.900908][ T6530] *** DEADLOCK *** [ 27.900908][ T6530] [ 27.902280][ T6530] 3 locks held by udevd/6530: [ 27.903012][ T6530] #0: ffff0000ca38b358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xcc/0xc20 [ 27.904380][ T6530] #1: ffff0000ca10cd90 (set->srcu){.+.+}-{0:0}, at: srcu_lock_acquire+0x18/0x54 [ 27.905940][ T6530] #2: ffff0000c842e178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xb4/0xc48 [ 27.907326][ T6530] [ 27.907326][ T6530] stack backtrace: [ 27.908248][ T6530] CPU: 0 UID: 0 PID: 6530 Comm: udevd Not tainted syzkaller #0 PREEMPT [ 27.909650][ T6530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 27.911285][ T6530] Call trace: [ 27.911763][ T6530] show_stack+0x2c/0x3c (C) [ 27.912397][ T6530] __dump_stack+0x30/0x40 [ 27.913029][ T6530] dump_stack_lvl+0xd8/0x12c [ 27.913735][ T6530] dump_stack+0x1c/0x28 [ 27.914382][ T6530] print_circular_bug+0x324/0x32c [ 27.915243][ T6530] check_noncircular+0x154/0x174 [ 27.916052][ T6530] __lock_acquire+0x1774/0x30a4 [ 27.916797][ T6530] lock_acquire+0x14c/0x2e0 [ 27.917535][ T6530] __mutex_lock_common+0x1d0/0x2678 [ 27.918439][ T6530] mutex_lock_nested+0x2c/0x38 [ 27.919242][ T6530] nbd_queue_rq+0x20c/0xc48 [ 27.920005][ T6530] blk_mq_dispatch_rq_list+0x890/0x1548 [ 27.920913][ T6530] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 27.921977][ T6530] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 27.922937][ T6530] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 27.923744][ T6530] blk_mq_dispatch_list+0xa00/0xaf8 [ 27.924586][ T6530] blk_mq_flush_plug_list+0x3a4/0x488 [ 27.925403][ T6530] __blk_flush_plug+0x330/0x408 [ 27.926160][ T6530] __submit_bio+0x3f4/0x4d8 [ 27.926892][ T6530] submit_bio_noacct_nocheck+0x390/0xaac [ 27.927823][ T6530] submit_bio_noacct+0xc94/0x177c [ 27.928629][ T6530] submit_bio+0x3b4/0x550 [ 27.929368][ T6530] submit_bh_wbc+0x3ec/0x4bc [ 27.930111][ T6530] block_read_full_folio+0x734/0x824 [ 27.930959][ T6530] blkdev_read_folio+0x28/0x38 [ 27.931745][ T6530] filemap_read_folio+0xec/0x2f8 [ 27.932617][ T6530] do_read_cache_folio+0x364/0x5bc [ 27.933486][ T6530] read_cache_folio+0x68/0x88 [ 27.934249][ T6530] read_part_sector+0xcc/0x6fc [ 27.935050][ T6530] adfspart_check_ICS+0xa0/0x83c [ 27.935886][ T6530] bdev_disk_changed+0x674/0x11fc [ 27.936672][ T6530] blkdev_get_whole+0x2b0/0x4a4 [ 27.937491][ T6530] bdev_open+0x3b0/0xc20 [ 27.938156][ T6530] blkdev_open+0x300/0x440 [ 27.938897][ T6530] do_dentry_open+0x7a4/0x10bc [ 27.939697][ T6530] vfs_open+0x44/0x2d4 [ 27.940357][ T6530] path_openat+0x2424/0x2c40 [ 27.941132][ T6530] do_filp_open+0x18c/0x36c [ 27.941872][ T6530] do_sys_openat2+0x11c/0x1b4 [ 27.942648][ T6530] __arm64_sys_openat+0x120/0x158 [ 27.943500][ T6530] invoke_syscall+0x98/0x2b8 [ 27.944265][ T6530] el0_svc_common+0x130/0x23c [ 27.945073][ T6530] do_el0_svc+0x48/0x58 [ 27.945707][ T6530] el0_svc+0x5c/0x254 [ 27.946281][ T6530] el0t_64_sync_handler+0x84/0x12c [ 27.947129][ T6530] el0t_64_sync+0x198/0x19c [ 27.948021][ T6530] block nbd0: Dead connection, failed to find a fallback [ 27.948041][ T6530] block nbd0: shutting down sockets [ 27.948057][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948073][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948149][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948162][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948193][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948201][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948229][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948236][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948262][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948269][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948307][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948314][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948343][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948350][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948374][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948380][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948396][ T6530] ldm_validate_partition_table(): Disk read failed. [ 27.948409][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948415][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948439][ T6530] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 27.948445][ T6530] Buffer I/O error on dev nbd0, logical block 0, async page read [ 27.948504][ T6530] Dev nbd0: unable to read RDB block 0 [ 27.948628][ T6530] nbd0: unable to read partition table [ 27.980607][ T6530] ldm_validate_partition_table(): Disk read failed. [ 27.980699][ T6530] Dev nbd0: unable to read RDB block 0 [ 27.980787][ T6530] nbd0: unable to read partition table