Warning: Permanently added '10.128.1.235' (ED25519) to the list of known hosts. [ 30.407875][ T6525] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 30.409581][ T6525] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 30.411045][ T6525] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 30.412504][ T6525] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 30.414368][ T6525] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 executing program [ 30.654933][ T52] block nbd0: Receive control failed (result -107) [ 30.655327][ T6525] block nbd0: Receive control failed (result -107) [ 30.692648][ T6524] nbd0: detected capacity change from 0 to 32 [ 30.693913][ T6526] [ 30.694302][ T6526] ====================================================== [ 30.695391][ T6526] WARNING: possible circular locking dependency detected [ 30.696435][ T6526] syzkaller #0 Not tainted [ 30.697149][ T6526] ------------------------------------------------------ [ 30.698194][ T6526] udevd/6526 is trying to acquire lock: [ 30.699029][ T6526] ffff0000dbe1ee70 (&nsock->tx_lock){+.+.}-{4:4}, at: nbd_queue_rq+0x20c/0xc48 [ 30.700506][ T6526] [ 30.700506][ T6526] but task is already holding lock: [ 30.701685][ T6526] ffff0000e270e178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xb4/0xc48 [ 30.702906][ T6526] [ 30.702906][ T6526] which lock already depends on the new lock. [ 30.702906][ T6526] [ 30.704503][ T6526] [ 30.704503][ T6526] the existing dependency chain (in reverse order) is: [ 30.705761][ T6526] [ 30.705761][ T6526] -> #7 (&cmd->lock){+.+.}-{4:4}: [ 30.706844][ T6526] __mutex_lock_common+0x1d0/0x2678 [ 30.707772][ T6526] mutex_lock_nested+0x2c/0x38 [ 30.708688][ T6526] nbd_queue_rq+0xb4/0xc48 [ 30.709562][ T6526] blk_mq_dispatch_rq_list+0x890/0x1548 [ 30.710572][ T6526] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 30.711658][ T6526] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 30.712690][ T6526] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 30.713520][ T6526] blk_mq_dispatch_list+0xa00/0xaf8 [ 30.714392][ T6526] blk_mq_flush_plug_list+0x3a4/0x488 [ 30.715253][ T6526] __blk_flush_plug+0x330/0x408 [ 30.716088][ T6526] __submit_bio+0x3f4/0x4d8 [ 30.716939][ T6526] submit_bio_noacct_nocheck+0x390/0xaac [ 30.717924][ T6526] submit_bio_noacct+0xc94/0x177c [ 30.718769][ T6526] submit_bio+0x3b4/0x550 [ 30.719520][ T6526] submit_bh_wbc+0x3ec/0x4bc [ 30.720374][ T6526] block_read_full_folio+0x734/0x824 [ 30.721272][ T6526] blkdev_read_folio+0x28/0x38 [ 30.722094][ T6526] filemap_read_folio+0xec/0x2f8 [ 30.722896][ T6526] do_read_cache_folio+0x364/0x5bc [ 30.723865][ T6526] read_cache_folio+0x68/0x88 [ 30.724683][ T6526] read_part_sector+0xcc/0x6fc [ 30.725497][ T6526] adfspart_check_ICS+0xa0/0x83c [ 30.726328][ T6526] bdev_disk_changed+0x674/0x11fc [ 30.727136][ T6526] blkdev_get_whole+0x2b0/0x4a4 [ 30.727932][ T6526] bdev_open+0x3b0/0xc20 [ 30.728652][ T6526] blkdev_open+0x300/0x440 [ 30.729372][ T6526] do_dentry_open+0x7a4/0x10bc [ 30.730196][ T6526] vfs_open+0x44/0x2d4 [ 30.730911][ T6526] path_openat+0x2424/0x2c40 [ 30.731796][ T6526] do_filp_open+0x18c/0x36c [ 30.732602][ T6526] do_sys_openat2+0x11c/0x1b4 [ 30.733427][ T6526] __arm64_sys_openat+0x120/0x158 [ 30.734346][ T6526] invoke_syscall+0x98/0x2b8 [ 30.735121][ T6526] el0_svc_common+0x130/0x23c [ 30.735942][ T6526] do_el0_svc+0x48/0x58 [ 30.736625][ T6526] el0_svc+0x5c/0x254 [ 30.737272][ T6526] el0t_64_sync_handler+0x84/0x12c [ 30.738101][ T6526] el0t_64_sync+0x198/0x19c [ 30.738805][ T6526] [ 30.738805][ T6526] -> #6 (set->srcu){.+.+}-{0:0}: [ 30.739832][ T6526] srcu_lock_sync+0x2c/0x38 [ 30.740667][ T6526] __synchronize_srcu+0xa0/0x348 [ 30.741583][ T6526] synchronize_srcu+0x2cc/0x338 [ 30.742408][ T6526] blk_mq_quiesce_queue+0x118/0x16c [ 30.743277][ T6526] elevator_switch+0x12c/0x410 [ 30.744082][ T6526] elevator_change+0x264/0x3cc [ 30.744858][ T6526] elevator_set_default+0x138/0x21c [ 30.745766][ T6526] blk_register_queue+0x2b4/0x338 [ 30.746619][ T6526] __add_disk+0x560/0xb90 [ 30.747343][ T6526] add_disk_fwnode+0xdc/0x438 [ 30.748083][ T6526] device_add_disk+0x38/0x4c [ 30.748933][ T6526] nbd_dev_add+0x560/0x820 [ 30.749675][ T6526] nbd_init+0x15c/0x174 [ 30.750380][ T6526] do_one_initcall+0x250/0x990 [ 30.751164][ T6526] do_initcall_level+0x128/0x1c4 [ 30.751939][ T6526] do_initcalls+0x70/0xd0 [ 30.752612][ T6526] do_basic_setup+0x78/0x8c [ 30.753383][ T6526] kernel_init_freeable+0x268/0x39c [ 30.754196][ T6526] kernel_init+0x24/0x1dc [ 30.754883][ T6526] ret_from_fork+0x10/0x20 [ 30.755568][ T6526] [ 30.755568][ T6526] -> #5 (&q->elevator_lock){+.+.}-{4:4}: [ 30.756703][ T6526] __mutex_lock_common+0x1d0/0x2678 [ 30.757484][ T6526] mutex_lock_nested+0x2c/0x38 [ 30.758279][ T6526] elevator_change+0x16c/0x3cc [ 30.759022][ T6526] elevator_set_none+0x48/0xac [ 30.759775][ T6526] blk_mq_update_nr_hw_queues+0x4c8/0x15f4 [ 30.760679][ T6526] nbd_start_device+0x158/0xa48 [ 30.761455][ T6526] nbd_genl_connect+0xf88/0x158c [ 30.762208][ T6526] genl_family_rcv_msg_doit+0x1d8/0x2bc [ 30.763133][ T6526] genl_rcv_msg+0x450/0x624 [ 30.763870][ T6526] netlink_rcv_skb+0x220/0x3fc [ 30.764608][ T6526] genl_rcv+0x38/0x50 [ 30.765234][ T6526] netlink_unicast+0x694/0x8c4 [ 30.765983][ T6526] netlink_sendmsg+0x648/0x930 [ 30.766728][ T6526] ____sys_sendmsg+0x490/0x7b8 [ 30.767589][ T6526] ___sys_sendmsg+0x204/0x278 [ 30.768409][ T6526] __arm64_sys_sendmsg+0x184/0x238 [ 30.769256][ T6526] invoke_syscall+0x98/0x2b8 [ 30.769994][ T6526] el0_svc_common+0x130/0x23c [ 30.770808][ T6526] do_el0_svc+0x48/0x58 [ 30.771543][ T6526] el0_svc+0x5c/0x254 [ 30.772305][ T6526] el0t_64_sync_handler+0x84/0x12c [ 30.773181][ T6526] el0t_64_sync+0x198/0x19c [ 30.773940][ T6526] [ 30.773940][ T6526] -> #4 (&q->q_usage_counter(io)#33){++++}-{0:0}: [ 30.775309][ T6526] blk_alloc_queue+0x48c/0x54c [ 30.776202][ T6526] __blk_mq_alloc_disk+0x124/0x304 [ 30.777091][ T6526] nbd_dev_add+0x398/0x820 [ 30.777859][ T6526] nbd_init+0x15c/0x174 [ 30.778516][ T6526] do_one_initcall+0x250/0x990 [ 30.779276][ T6526] do_initcall_level+0x128/0x1c4 [ 30.780049][ T6526] do_initcalls+0x70/0xd0 [ 30.780791][ T6526] do_basic_setup+0x78/0x8c [ 30.781533][ T6526] kernel_init_freeable+0x268/0x39c [ 30.782315][ T6526] kernel_init+0x24/0x1dc [ 30.783005][ T6526] ret_from_fork+0x10/0x20 [ 30.783765][ T6526] [ 30.783765][ T6526] -> #3 (fs_reclaim){+.+.}-{0:0}: [ 30.784912][ T6526] fs_reclaim_acquire+0x8c/0x118 [ 30.785752][ T6526] kmem_cache_alloc_noprof+0x58/0x3e8 [ 30.786692][ T6526] mas_alloc_nodes+0x268/0x788 [ 30.787545][ T6526] mas_preallocate+0x4fc/0x7e8 [ 30.788337][ T6526] vma_link+0x100/0x5ac [ 30.789052][ T6526] insert_vm_struct+0x18c/0x244 [ 30.789826][ T6526] create_init_stack_vma+0x24c/0x56c [ 30.790733][ T6526] alloc_bprm+0x3d4/0x548 [ 30.791470][ T6526] kernel_execve+0xa4/0x7f4 [ 30.792257][ T6526] run_init_process+0x1bc/0x1ec [ 30.793102][ T6526] try_to_run_init_process+0x20/0x7c [ 30.794038][ T6526] kernel_init+0xa8/0x1dc [ 30.794823][ T6526] ret_from_fork+0x10/0x20 [ 30.795614][ T6526] [ 30.795614][ T6526] -> #2 (&mm->mmap_lock){++++}-{4:4}: [ 30.796843][ T6526] __might_fault+0xc4/0x124 [ 30.797647][ T6526] copy_from_sockptr+0x68/0x1c8 [ 30.798508][ T6526] vsock_connectible_setsockopt+0x3e0/0x634 [ 30.799571][ T6526] do_sock_setsockopt+0x1ec/0x328 [ 30.800434][ T6526] __arm64_sys_setsockopt+0x170/0x1e0 [ 30.801408][ T6526] invoke_syscall+0x98/0x2b8 [ 30.802212][ T6526] el0_svc_common+0x130/0x23c [ 30.803019][ T6526] do_el0_svc+0x48/0x58 [ 30.803720][ T6526] el0_svc+0x5c/0x254 [ 30.804349][ T6526] el0t_64_sync_handler+0x84/0x12c [ 30.805309][ T6526] el0t_64_sync+0x198/0x19c [ 30.806082][ T6526] [ 30.806082][ T6526] -> #1 (sk_lock-AF_VSOCK){+.+.}-{0:0}: [ 30.807269][ T6526] lock_sock_nested+0x58/0x118 [ 30.808104][ T6526] vsock_shutdown+0x70/0x280 [ 30.808902][ T6526] kernel_sock_shutdown+0x6c/0x80 [ 30.809710][ T6526] nbd_mark_nsock_dead+0x2a4/0x534 [ 30.810555][ T6526] recv_work+0x1cf8/0x2044 [ 30.811340][ T6526] process_one_work+0x7e8/0x155c [ 30.812114][ T6526] worker_thread+0x958/0xed8 [ 30.812833][ T6526] kthread+0x5fc/0x75c [ 30.813532][ T6526] ret_from_fork+0x10/0x20 [ 30.814245][ T6526] [ 30.814245][ T6526] -> #0 (&nsock->tx_lock){+.+.}-{4:4}: [ 30.815368][ T6526] __lock_acquire+0x1774/0x30a4 [ 30.816203][ T6526] lock_acquire+0x14c/0x2e0 [ 30.816905][ T6526] __mutex_lock_common+0x1d0/0x2678 [ 30.817794][ T6526] mutex_lock_nested+0x2c/0x38 [ 30.818600][ T6526] nbd_queue_rq+0x20c/0xc48 [ 30.819318][ T6526] blk_mq_dispatch_rq_list+0x890/0x1548 [ 30.820264][ T6526] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 30.821323][ T6526] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 30.822318][ T6526] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 30.823117][ T6526] blk_mq_dispatch_list+0xa00/0xaf8 [ 30.823974][ T6526] blk_mq_flush_plug_list+0x3a4/0x488 [ 30.824867][ T6526] __blk_flush_plug+0x330/0x408 [ 30.825619][ T6526] __submit_bio+0x3f4/0x4d8 [ 30.826339][ T6526] submit_bio_noacct_nocheck+0x390/0xaac [ 30.827268][ T6526] submit_bio_noacct+0xc94/0x177c [ 30.828093][ T6526] submit_bio+0x3b4/0x550 [ 30.828788][ T6526] submit_bh_wbc+0x3ec/0x4bc [ 30.829503][ T6526] block_read_full_folio+0x734/0x824 [ 30.830325][ T6526] blkdev_read_folio+0x28/0x38 [ 30.831127][ T6526] filemap_read_folio+0xec/0x2f8 [ 30.831922][ T6526] do_read_cache_folio+0x364/0x5bc [ 30.832755][ T6526] read_cache_folio+0x68/0x88 [ 30.833556][ T6526] read_part_sector+0xcc/0x6fc [ 30.834362][ T6526] adfspart_check_ICS+0xa0/0x83c [ 30.835176][ T6526] bdev_disk_changed+0x674/0x11fc [ 30.835950][ T6526] blkdev_get_whole+0x2b0/0x4a4 [ 30.836740][ T6526] bdev_open+0x3b0/0xc20 [ 30.837448][ T6526] blkdev_open+0x300/0x440 [ 30.838185][ T6526] do_dentry_open+0x7a4/0x10bc [ 30.838920][ T6526] vfs_open+0x44/0x2d4 [ 30.839598][ T6526] path_openat+0x2424/0x2c40 [ 30.840320][ T6526] do_filp_open+0x18c/0x36c [ 30.840997][ T6526] do_sys_openat2+0x11c/0x1b4 [ 30.841889][ T6526] __arm64_sys_openat+0x120/0x158 [ 30.842778][ T6526] invoke_syscall+0x98/0x2b8 [ 30.843550][ T6526] el0_svc_common+0x130/0x23c [ 30.844348][ T6526] do_el0_svc+0x48/0x58 [ 30.845103][ T6526] el0_svc+0x5c/0x254 [ 30.845830][ T6526] el0t_64_sync_handler+0x84/0x12c [ 30.846746][ T6526] el0t_64_sync+0x198/0x19c [ 30.847483][ T6526] [ 30.847483][ T6526] other info that might help us debug this: [ 30.847483][ T6526] [ 30.848993][ T6526] Chain exists of: [ 30.848993][ T6526] &nsock->tx_lock --> set->srcu --> &cmd->lock [ 30.848993][ T6526] [ 30.850733][ T6526] Possible unsafe locking scenario: [ 30.850733][ T6526] [ 30.851793][ T6526] CPU0 CPU1 [ 30.852508][ T6526] ---- ---- [ 30.853293][ T6526] lock(&cmd->lock); [ 30.853847][ T6526] lock(set->srcu); [ 30.854733][ T6526] lock(&cmd->lock); [ 30.855661][ T6526] lock(&nsock->tx_lock); [ 30.856309][ T6526] [ 30.856309][ T6526] *** DEADLOCK *** [ 30.856309][ T6526] [ 30.857485][ T6526] 3 locks held by udevd/6526: [ 30.858132][ T6526] #0: ffff0000cb222358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_open+0xcc/0xc20 [ 30.859468][ T6526] #1: ffff0000c9315610 (set->srcu){.+.+}-{0:0}, at: srcu_lock_acquire+0x18/0x54 [ 30.861019][ T6526] #2: ffff0000e270e178 (&cmd->lock){+.+.}-{4:4}, at: nbd_queue_rq+0xb4/0xc48 [ 30.862493][ T6526] [ 30.862493][ T6526] stack backtrace: [ 30.863471][ T6526] CPU: 1 UID: 0 PID: 6526 Comm: udevd Not tainted syzkaller #0 PREEMPT [ 30.864688][ T6526] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 30.866205][ T6526] Call trace: [ 30.866683][ T6526] show_stack+0x2c/0x3c (C) [ 30.867399][ T6526] __dump_stack+0x30/0x40 [ 30.868159][ T6526] dump_stack_lvl+0xd8/0x12c [ 30.868853][ T6526] dump_stack+0x1c/0x28 [ 30.869563][ T6526] print_circular_bug+0x324/0x32c [ 30.870386][ T6526] check_noncircular+0x154/0x174 [ 30.871113][ T6526] __lock_acquire+0x1774/0x30a4 [ 30.871821][ T6526] lock_acquire+0x14c/0x2e0 [ 30.872520][ T6526] __mutex_lock_common+0x1d0/0x2678 [ 30.873297][ T6526] mutex_lock_nested+0x2c/0x38 [ 30.873985][ T6526] nbd_queue_rq+0x20c/0xc48 [ 30.874636][ T6526] blk_mq_dispatch_rq_list+0x890/0x1548 [ 30.875469][ T6526] __blk_mq_sched_dispatch_requests+0xa7c/0x10e4 [ 30.876427][ T6526] blk_mq_sched_dispatch_requests+0xa4/0x154 [ 30.877385][ T6526] blk_mq_run_hw_queue+0x2d0/0x4a4 [ 30.878208][ T6526] blk_mq_dispatch_list+0xa00/0xaf8 [ 30.878997][ T6526] blk_mq_flush_plug_list+0x3a4/0x488 [ 30.879832][ T6526] __blk_flush_plug+0x330/0x408 [ 30.880561][ T6526] __submit_bio+0x3f4/0x4d8 [ 30.881240][ T6526] submit_bio_noacct_nocheck+0x390/0xaac [ 30.882108][ T6526] submit_bio_noacct+0xc94/0x177c [ 30.882853][ T6526] submit_bio+0x3b4/0x550 [ 30.883497][ T6526] submit_bh_wbc+0x3ec/0x4bc [ 30.884175][ T6526] block_read_full_folio+0x734/0x824 [ 30.884889][ T6526] blkdev_read_folio+0x28/0x38 [ 30.885560][ T6526] filemap_read_folio+0xec/0x2f8 [ 30.886344][ T6526] do_read_cache_folio+0x364/0x5bc [ 30.887119][ T6526] read_cache_folio+0x68/0x88 [ 30.887890][ T6526] read_part_sector+0xcc/0x6fc [ 30.888616][ T6526] adfspart_check_ICS+0xa0/0x83c [ 30.889332][ T6526] bdev_disk_changed+0x674/0x11fc [ 30.890077][ T6526] blkdev_get_whole+0x2b0/0x4a4 [ 30.890918][ T6526] bdev_open+0x3b0/0xc20 [ 30.891588][ T6526] blkdev_open+0x300/0x440 [ 30.892330][ T6526] do_dentry_open+0x7a4/0x10bc [ 30.893086][ T6526] vfs_open+0x44/0x2d4 [ 30.893801][ T6526] path_openat+0x2424/0x2c40 [ 30.894576][ T6526] do_filp_open+0x18c/0x36c [ 30.895380][ T6526] do_sys_openat2+0x11c/0x1b4 [ 30.896133][ T6526] __arm64_sys_openat+0x120/0x158 [ 30.896958][ T6526] invoke_syscall+0x98/0x2b8 [ 30.897742][ T6526] el0_svc_common+0x130/0x23c [ 30.898522][ T6526] do_el0_svc+0x48/0x58 [ 30.899177][ T6526] el0_svc+0x5c/0x254 [ 30.899776][ T6526] el0t_64_sync_handler+0x84/0x12c [ 30.900557][ T6526] el0t_64_sync+0x198/0x19c [ 30.902576][ T6526] block nbd0: Dead connection, failed to find a fallback [ 30.903830][ T6526] block nbd0: shutting down sockets [ 30.904680][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.906111][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.907422][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.908874][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.910128][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.911536][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.912955][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.914343][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.915543][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.916911][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.918198][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.919263][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.919341][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.919356][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.919395][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.919405][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.919423][ T6526] ldm_validate_partition_table(): Disk read failed. [ 30.919445][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.919452][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.919480][ T6526] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 30.919487][ T6526] Buffer I/O error on dev nbd0, logical block 0, async page read [ 30.919550][ T6526] Dev nbd0: unable to read RDB block 0 [ 30.919666][ T6526] nbd0: unable to read partition table [ 30.922532][ T6526] ldm_validate_partition_table(): Disk read failed. [ 30.923242][ T6526] Dev nbd0: unable to read RDB block 0 [ 30.923342][ T6526] nbd0: unable to read partition table