BUG: MAX_LOCKDEP_CHAINS too low!
turning off the locking correctness validator.
CPU: 0 PID: 7844 Comm: syz-executor.1 Not tainted 4.14.230-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
Call Trace:
 __dump_stack lib/dump_stack.c:17 [inline]
 dump_stack+0x1b2/0x281 lib/dump_stack.c:58
 add_chain_cache kernel/locking/lockdep.c:2303 [inline]
 lookup_chain_cache_add kernel/locking/lockdep.c:2415 [inline]
 validate_chain kernel/locking/lockdep.c:2435 [inline]
 __lock_acquire.cold+0x19a/0x97c kernel/locking/lockdep.c:3491
 reacquire_held_locks+0xb5/0x3f0 kernel/locking/lockdep.c:3634
 __lock_release kernel/locking/lockdep.c:3797 [inline]
 lock_release+0x36b/0x870 kernel/locking/lockdep.c:4017
 rcu_lock_release include/linux/rcupdate.h:247 [inline]
 rcu_read_unlock include/linux/rcupdate.h:685 [inline]
 mntput_no_expire+0x635/0x910 fs/namespace.c:1234
 mntput+0x5c/0x80 fs/namespace.c:1272
 debugfs_remove_recursive fs/debugfs/inode.c:718 [inline]
 debugfs_remove_recursive+0x16b/0x3b0 fs/debugfs/inode.c:686
 blk_mq_debugfs_unregister_hctx block/blk-mq-debugfs.c:902 [inline]
 blk_mq_debugfs_unregister_hctxs+0xe0/0x1b0 block/blk-mq-debugfs.c:926
 blk_mq_queue_reinit block/blk-mq.c:2503 [inline]
 __blk_mq_update_nr_hw_queues block/blk-mq.c:2750 [inline]
 blk_mq_update_nr_hw_queues+0x236/0x3e0 block/blk-mq.c:2760
 nbd_start_device+0x1d7/0xca0 drivers/block/nbd.c:1201
 nbd_start_device_ioctl drivers/block/nbd.c:1252 [inline]
 __nbd_ioctl drivers/block/nbd.c:1334 [inline]
 nbd_ioctl+0x3a8/0xa80 drivers/block/nbd.c:1374
 __blkdev_driver_ioctl block/ioctl.c:297 [inline]
 blkdev_ioctl+0x540/0x1830 block/ioctl.c:594
 block_ioctl+0xd9/0x120 fs/block_dev.c:1893
 vfs_ioctl fs/ioctl.c:46 [inline]
 file_ioctl fs/ioctl.c:500 [inline]
 do_vfs_ioctl+0x75a/0xff0 fs/ioctl.c:684
 SYSC_ioctl fs/ioctl.c:701 [inline]
 SyS_ioctl+0x7f/0xb0 fs/ioctl.c:692
 do_syscall_64+0x1d5/0x640 arch/x86/entry/common.c:292
 entry_SYSCALL_64_after_hwframe+0x46/0xbb
RIP: 0033:0x466459
RSP: 002b:00007ff791658188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 000000000056bf60 RCX: 0000000000466459
RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000009
RBP: 00000000004bf9fb R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 000000000056bf60
R13: 00007ffe99cb9bef R14: 00007ff791658300 R15: 0000000000022000
block nbd1: shutting down sockets
block nbd1: Device being setup by another task
sg_write: data in/out 167162/136 bytes for SCSI command 0x67-- guessing data in;
   program syz-executor.4 not setting count and/or reply_len properly
sg_write: data in/out 167162/136 bytes for SCSI command 0x67-- guessing data in;
   program syz-executor.0 not setting count and/or reply_len properly
sg_write: data in/out 167162/136 bytes for SCSI command 0x67-- guessing data in;
   program syz-executor.4 not setting count and/or reply_len properly
sg_write: data in/out 167162/136 bytes for SCSI command 0x67-- guessing data in;
   program syz-executor.0 not setting count and/or reply_len properly
block nbd1: shutting down sockets
sg_write: data in/out 262577/104 bytes for SCSI command 0x13-- guessing data in;
   program syz-executor.5 not setting count and/or reply_len properly
sd 0:0:1:0: [sg0] tag#6406 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK
sd 0:0:1:0: [sg0] tag#6406 CDB: opcode=0xf0 (vendor)
block nbd1: shutting down sockets
sd 0:0:1:0: [sg0] tag#6406 CDB[00]: f0 44 07 ee 24 8a 40 94 b1 c5 45 71 7c 6e 12 28
sd 0:0:1:0: [sg0] tag#6406 CDB[10]: b6 31 af 2a fa 75 72 ae 5f e6 04 ad 1b a8 23 d2
sd 0:0:1:0: [sg0] tag#6406 CDB[20]: 0f ff 41 8c 8f 05 33 3d b2 a7 a3 3e 45 b0 39 17
sd 0:0:1:0: [sg0] tag#6406 CDB[30]: 05 d5 ab 04 87 04 96 8e a7 75 57 e1 54 8e 69 3c
sd 0:0:1:0: [sg0] tag#6406 CDB[40]: 0d b3 73 4c 98 57 d6 2c 09 2b 9a 13 7e 20 8e e2
sd 0:0:1:0: [sg0] tag#6406 CDB[50]: 4f 7d 3b 04 6f f1 30 1c fa d6 17 b3 cf 43 0a 81
sd 0:0:1:0: [sg0] tag#6406 CDB[60]: ce f5 f0 38 2f ec f9 87 92 96 d0 14 16 ae 06 41
sd 0:0:1:0: [sg0] tag#6406 CDB[70]: 9d
block nbd1: shutting down sockets
sg_write: data in/out 262577/104 bytes for SCSI command 0x13-- guessing data in;
   program syz-executor.1 not setting count and/or reply_len properly
batman_adv: Cannot find parent device
block nbd2: shutting down sockets
batman_adv: Cannot find parent device
sd 0:0:1:0: [sg0] tag#6494 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK
sd 0:0:1:0: [sg0] tag#6494 CDB: opcode=0xf0 (vendor)
sd 0:0:1:0: [sg0] tag#6494 CDB[00]: f0 44 07 ee 24 8a 40 94 b1 c5 45 71 7c 6e 12 28
sd 0:0:1:0: [sg0] tag#6494 CDB[10]: b6 31 af 2a fa 75 72 ae 5f e6 04 ad 1b a8 23 d2
sd 0:0:1:0: [sg0] tag#6494 CDB[20]: 0f ff 41 8c 8f 05 33 3d b2 a7 a3 3e 45 b0 39 17
sd 0:0:1:0: [sg0] tag#6494 CDB[30]: 05 d5 ab 04 87 04 96 8e a7 75 57 e1 54 8e 69 3c
sd 0:0:1:0: [sg0] tag#6494 CDB[40]: 0d b3 73 4c 98 57 d6 2c 09 2b 9a 13 7e 20 8e e2
sd 0:0:1:0: [sg0] tag#6494 CDB[50]: 4f 7d 3b 04 6f f1 30 1c fa d6 17 b3 cf 43 0a 81
sd 0:0:1:0: [sg0] tag#6494 CDB[60]: ce f5 f0 38 2f ec f9 87 92 96 d0 14 16 ae 06 41
sd 0:0:1:0: [sg0] tag#6494 CDB[70]: 9d
block nbd2: shutting down sockets
sg_write: data in/out 262577/104 bytes for SCSI command 0x13-- guessing data in;
   program syz-executor.1 not setting count and/or reply_len properly
batman_adv: Cannot find parent device
block nbd2: Device being setup by another task
block nbd2: shutting down sockets
ISO 9660 Extensions: Microsoft Joliet Level 3
sd 0:0:1:0: [sg0] tag#6468 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK
sd 0:0:1:0: [sg0] tag#6468 CDB: opcode=0xf0 (vendor)
sd 0:0:1:0: [sg0] tag#6468 CDB[00]: f0 44 07 ee 24 8a 40 94 b1 c5 45 71 7c 6e 12 28
sd 0:0:1:0: [sg0] tag#6468 CDB[10]: b6 31 af 2a fa 75 72 ae 5f e6 04 ad 1b a8 23 d2
sd 0:0:1:0: [sg0] tag#6468 CDB[20]: 0f ff 41 8c 8f 05 33 3d b2 a7 a3 3e 45 b0 39 17
sd 0:0:1:0: [sg0] tag#6468 CDB[30]: 05 d5 ab 04 87 04 96 8e a7 75 57 e1 54 8e 69 3c
sd 0:0:1:0: [sg0] tag#6468 CDB[40]: 0d b3 73 4c 98 57 d6 2c 09 2b 9a 13 7e 20 8e e2
sd 0:0:1:0: [sg0] tag#6468 CDB[50]: 4f 7d 3b 04 6f f1 30 1c fa d6 17 b3 cf 43 0a 81
sd 0:0:1:0: [sg0] tag#6468 CDB[60]: ce f5 f0 38 2f ec f9 87 92 96 d0 14 16 ae 06 41
sd 0:0:1:0: [sg0] tag#6468 CDB[70]: 9d
ISO 9660 Extensions: Microsoft Joliet Level 3
batman_adv: Cannot find parent device
ISO 9660 Extensions: Microsoft Joliet Level 3
sg_write: data in/out 262577/104 bytes for SCSI command 0x13-- guessing data in;
   program syz-executor.1 not setting count and/or reply_len properly
sd 0:0:1:0: [sg0] tag#6468 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK
sd 0:0:1:0: [sg0] tag#6468 CDB: opcode=0xf0 (vendor)
sd 0:0:1:0: [sg0] tag#6468 CDB[00]: f0 44 07 ee 24 8a 40 94 b1 c5 45 71 7c 6e 12 28
sd 0:0:1:0: [sg0] tag#6468 CDB[10]: b6 31 af 2a fa 75 72 ae 5f e6 04 ad 1b a8 23 d2
sd 0:0:1:0: [sg0] tag#6468 CDB[20]: 0f ff 41 8c 8f 05 33 3d b2 a7 a3 3e 45 b0 39 17
sd 0:0:1:0: [sg0] tag#6468 CDB[30]: 05 d5 ab 04 87 04 96 8e a7 75 57 e1 54 8e 69 3c
sd 0:0:1:0: [sg0] tag#6468 CDB[40]: 0d b3 73 4c 98 57 d6 2c 09 2b 9a 13 7e 20 8e e2
sd 0:0:1:0: [sg0] tag#6468 CDB[50]: 4f 7d 3b 04 6f f1 30 1c fa d6 17 b3 cf 43 0a 81
sd 0:0:1:0: [sg0] tag#6468 CDB[60]: ce f5 f0 38 2f ec f9 87 92 96 d0 14 16 ae 06 41
sd 0:0:1:0: [sg0] tag#6468 CDB[70]: 9d
ISO 9660 Extensions: Microsoft Joliet Level 3
EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs error (device loop5): ext4_empty_dir:2742: inode #12: comm syz-executor.5: Directory hole found for htree leaf block
EXT4-fs error (device loop5): ext4_free_inode:353: comm syz-executor.5: bit already cleared for inode 12
EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs error (device loop5): ext4_empty_dir:2742: inode #12: comm syz-executor.5: Directory hole found for htree leaf block
EXT4-fs error (device loop5): ext4_free_inode:353: comm syz-executor.5: bit already cleared for inode 12
EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs error (device loop4): ext4_empty_dir:2742: inode #12: comm syz-executor.4: Directory hole found for htree leaf block
EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs error (device loop4): ext4_free_inode:353: comm syz-executor.4: bit already cleared for inode 12
EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
EXT4-fs error (device loop4): ext4_empty_dir:2742: inode #12: comm syz-executor.4: Directory hole found for htree leaf block
EXT4-fs error (device loop4): ext4_free_inode:353: comm syz-executor.4: bit already cleared for inode 12
Protocol error: SET target dimension is over the limit!
Protocol error: SET target dimension is over the limit!
Protocol error: SET target dimension is over the limit!
Protocol error: SET target dimension is over the limit!
sctp: [Deprecated]: syz-executor.2 (pid 9101) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead
sctp: [Deprecated]: syz-executor.2 (pid 9104) Use of struct sctp_assoc_value in delayed_ack socket option.
Use struct sctp_sack_info instead