program:
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
r1 = socket(0x2b, 0x1, 0x0)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x29}}, 0x10)
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x1001f0)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCBRDELBR(r2, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x19, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000000000000000000000000000730118000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r4, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x15, 0x3, 'sed\x00', 0x1, 0x4, 0x72}, 0x2c)
syz_read_part_table(0x105a, &(0x7f0000000000)="$eJzsz8FNwzAABdDvOAnkBCMwBjtwZh7IOqzAsbdO0u5QyVUqtyO0Pbx38v/+kuXwUEtJUsfPci3eX/rha7vI67RkSLL734/lN5nbT1rbNlPfrccpaW81teckQzm0Om/p1NbWhyWX5uP2VOr3352+CQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABP7RwAAP//EWQQvw==")
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000000)={0x84, @remote, 0x4e20, 0x4000003, 'wrr\x00', 0x8, 0x5, 0x26}, 0x2c)
r6 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$IPVS_CMD_FLUSH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r6, @ANYBLOB="010028bd05000000251100000000"], 0x14}, 0x1, 0x0, 0x0, 0x10040}, 0x10000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000280)={[{@i_version}, {@nobh}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000940)="$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")
r7 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
r8 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file2\x00', 0x6042, 0x0)
sendfile(r8, r7, 0x0, 0x80000002)
rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00')
r9 = syz_open_dev$loop(&(0x7f0000000140), 0x0, 0x0)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r8, &(0x7f0000001140)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000001100)={&(0x7f00000010c0)={0x28, 0x0, 0x10, 0x70bd2b, 0x25dfdbfe, {{}, {}, {0xc, 0x14, 'syz0\x00'}}, ["", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x4010)
ioctl$LOOP_SET_BLOCK_SIZE(r9, 0x4c09, 0x800)
syz_init_net_socket$ax25(0x3, 0x3, 0xcf)
creat(&(0x7f0000000240)='./file1\x00', 0xd)
ioctl$NBD_CLEAR_SOCK(r0, 0xab04)

[   68.384108][ T5308] Bluetooth: hci0: command tx timeout
[   68.443342][    T9] IPVS: starting estimator thread 0...
[   68.515332][ T5323] loop0: detected capacity change from 0 to 8192
[   68.544282][ T5325] IPVS: using max 64 ests per chain, 153600 per kthread
[   68.548929][ T5304]  loop0: p1 p2 p3 p4
[   68.548929][ T5304]  p3: <minix: p5 p6 p7 >
[   68.553132][ T5304] loop0: partition table partially beyond EOD, truncated
[   68.559321][ T5304] loop0: p1 start 51379968 is beyond EOD, truncated
[   68.561933][ T5304] loop0: p2 start 4293394690 is beyond EOD, truncated
[   68.565885][ T5304] loop0: p3 size 100663552 extends beyond EOD, truncated
[   68.572015][ T5304] loop0: p4 size 50331648 extends beyond EOD, truncated
[   68.577083][ T5304] loop0: p5 start 51379968 is beyond EOD, truncated
[   68.579732][ T5304] loop0: p6 start 4293394690 is beyond EOD, truncated
[   68.582467][ T5304] loop0: p7 size 100663552 extends beyond EOD, truncated
[   68.601317][ T5323]  loop0: p1 p2 p3 p4
[   68.601317][ T5323]  p3: <minix: p5 p6 p7 >
[   68.605259][ T5323] loop0: partition table partially beyond EOD, truncated
[   68.609019][ T5323] loop0: p1 start 51379968 is beyond EOD, truncated
[   68.611518][ T5323] loop0: p2 start 4293394690 is beyond EOD, truncated
[   68.617283][ T5323] loop0: p3 size 100663552 extends beyond EOD, truncated
[   68.621410][ T5323] loop0: p4 size 50331648 extends beyond EOD, truncated
[   68.626760][ T5323] loop0: p5 start 51379968 is beyond EOD, truncated
[   68.629347][ T5323] loop0: p6 start 4293394690 is beyond EOD, truncated
[   68.631895][ T5323] loop0: p7 size 100663552 extends beyond EOD, truncated
[   68.770093][ T5324] block nbd0: shutting down sockets
[   68.875149][ T5322] 
[   68.876173][ T5322] ======================================================
[   68.878868][ T5322] WARNING: possible circular locking dependency detected
[   68.881566][ T5322] 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 Not tainted
[   68.884226][ T5322] ------------------------------------------------------
[   68.886902][ T5322] syz.0.0/5322 is trying to acquire lock:
[   68.889038][ T5322] ffff888040ec7a58 (kn->active#5){++++}-{0:0}, at: __kernfs_remove+0x336/0x570
[   68.892589][ T5322] 
[   68.892589][ T5322] but task is already holding lock:
[   68.895442][ T5322] ffff888032d0f358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x17e/0x700
[   68.898970][ T5322] 
[   68.898970][ T5322] which lock already depends on the new lock.
[   68.898970][ T5322] 
[   68.902803][ T5322] 
[   68.902803][ T5322] the existing dependency chain (in reverse order) is:
[   68.906369][ T5322] 
[   68.906369][ T5322] -> #2 (&disk->open_mutex){+.+.}-{4:4}:
[   68.909806][ T5322]        lock_acquire+0x116/0x2f0
[   68.912352][ T5322]        __mutex_lock+0x1a5/0x10c0
[   68.914655][ T5322]        bdev_open+0xf7/0xcd0
[   68.916575][ T5322]        bdev_file_open_by_dev+0x1b2/0x230
[   68.918828][ T5322]        disk_scan_partitions+0x1be/0x2b0
[   68.921035][ T5322]        add_disk_fwnode+0xd26/0x1020
[   68.923255][ T5322]        pmem_attach_disk+0xd42/0x1020
[   68.925230][ T5322]        nvdimm_bus_probe+0x147/0x4e0
[   68.927233][ T5322]        really_probe+0x2b9/0xad0
[   68.929114][ T5322]        __driver_probe_device+0x1a2/0x390
[   68.931487][ T5322]        driver_probe_device+0x50/0x430
[   68.933827][ T5322]        __driver_attach+0x45f/0x710
[   68.935880][ T5322]        bus_for_each_dev+0x23e/0x2b0
[   68.938043][ T5322]        bus_add_driver+0x346/0x670
[   68.940157][ T5322]        driver_register+0x23a/0x320
[   68.942009][ T5322]        do_one_initcall+0x24a/0x940
[   68.944592][ T5322]        do_initcall_level+0x157/0x210
[   68.946805][ T5322]        do_initcalls+0x71/0xd0
[   68.948841][ T5322]        kernel_init_freeable+0x432/0x5d0
[   68.950962][ T5322]        kernel_init+0x1d/0x2b0
[   68.952950][ T5322]        ret_from_fork+0x4b/0x80
[   68.955133][ T5322]        ret_from_fork_asm+0x1a/0x30
[   68.957418][ T5322] 
[   68.957418][ T5322] -> #1 (&nvdimm_namespace_key){+.+.}-{4:4}:
[   68.960588][ T5322]        lock_acquire+0x116/0x2f0
[   68.962600][ T5322]        __mutex_lock+0x1a5/0x10c0
[   68.964652][ T5322]        uevent_show+0x17d/0x340
[   68.966711][ T5322]        dev_attr_show+0x55/0xc0
[   68.968653][ T5322]        sysfs_kf_seq_show+0x32b/0x4a0
[   68.970778][ T5322]        seq_read_iter+0x461/0xda0
[   68.972795][ T5322]        vfs_read+0x9a0/0xb90
[   68.974832][ T5322]        ksys_read+0x19d/0x2d0
[   68.976840][ T5322]        do_syscall_64+0xf3/0x210
[   68.978963][ T5322]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.981572][ T5322] 
[   68.981572][ T5322] -> #0 (kn->active#5){++++}-{0:0}:
[   68.984414][ T5322]        validate_chain+0xa69/0x24e0
[   68.986586][ T5322]        __lock_acquire+0xad5/0xd80
[   68.988677][ T5322]        lock_acquire+0x116/0x2f0
[   68.990803][ T5322]        kernfs_drain+0x275/0x5e0
[   68.992898][ T5322]        __kernfs_remove+0x336/0x570
[   68.995052][ T5322]        kernfs_remove_by_name_ns+0xad/0x130
[   68.997400][ T5322]        device_del+0x56c/0x9b0
[   68.999313][ T5322]        drop_partition+0x11b/0x180
[   69.001402][ T5322]        bdev_disk_changed+0x2ca/0x14e0
[   69.003645][ T5322]        lo_release+0x540/0x850
[   69.005576][ T5322]        bdev_release+0x5dd/0x700
[   69.007540][ T5322]        blkdev_release+0x15/0x20
[   69.009555][ T5322]        __fput+0x3e9/0x9f0
[   69.011385][ T5322]        task_work_run+0x251/0x310
[   69.013457][ T5322]        syscall_exit_to_user_mode+0x13f/0x340
[   69.015921][ T5322]        do_syscall_64+0x100/0x210
[   69.017855][ T5322]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.020198][ T5322] 
[   69.020198][ T5322] other info that might help us debug this:
[   69.020198][ T5322] 
[   69.023951][ T5322] Chain exists of:
[   69.023951][ T5322]   kn->active#5 --> &nvdimm_namespace_key --> &disk->open_mutex
[   69.023951][ T5322] 
[   69.030082][ T5322]  Possible unsafe locking scenario:
[   69.030082][ T5322] 
[   69.033861][ T5322]        CPU0                    CPU1
[   69.036526][ T5322]        ----                    ----
[   69.038851][ T5322]   lock(&disk->open_mutex);
[   69.040621][ T5322]                                lock(&nvdimm_namespace_key);
[   69.043502][ T5322]                                lock(&disk->open_mutex);
[   69.046268][ T5322]   lock(kn->active#5);
[   69.047875][ T5322] 
[   69.047875][ T5322]  *** DEADLOCK ***
[   69.047875][ T5322] 
[   69.050876][ T5322] 1 lock held by syz.0.0/5322:
[   69.052755][ T5322]  #0: ffff888032d0f358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x17e/0x700
[   69.056448][ T5322] 
[   69.056448][ T5322] stack backtrace:
[   69.058856][ T5322] CPU: 0 UID: 0 PID: 5322 Comm: syz.0.0 Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) 
[   69.058869][ T5322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.058876][ T5322] Call Trace:
[   69.058883][ T5322]  <TASK>
[   69.058889][ T5322]  dump_stack_lvl+0x241/0x360
[   69.058908][ T5322]  ? __pfx_dump_stack_lvl+0x10/0x10
[   69.058921][ T5322]  ? __pfx__printk+0x10/0x10
[   69.058935][ T5322]  ? print_lock+0x171/0x1a0
[   69.058951][ T5322]  print_circular_bug+0x2e1/0x300
[   69.058962][ T5322]  check_noncircular+0x142/0x160
[   69.058974][ T5322]  validate_chain+0xa69/0x24e0
[   69.058988][ T5322]  ? lockdep_unlock+0x8d/0x120
[   69.059001][ T5322]  __lock_acquire+0xad5/0xd80
[   69.059013][ T5322]  ? up_write+0x1ab/0x590
[   69.059023][ T5322]  lock_acquire+0x116/0x2f0
[   69.059034][ T5322]  ? __kernfs_remove+0x336/0x570
[   69.059048][ T5322]  kernfs_drain+0x275/0x5e0
[   69.059058][ T5322]  ? __kernfs_remove+0x336/0x570
[   69.059069][ T5322]  ? __pfx_kernfs_drain+0x10/0x10
[   69.059083][ T5322]  __kernfs_remove+0x336/0x570
[   69.059093][ T5322]  kernfs_remove_by_name_ns+0xad/0x130
[   69.059104][ T5322]  device_del+0x56c/0x9b0
[   69.059117][ T5322]  ? __pfx_device_del+0x10/0x10
[   69.059128][ T5322]  ? kobject_put+0x446/0x480
[   69.059139][ T5322]  drop_partition+0x11b/0x180
[   69.059153][ T5322]  bdev_disk_changed+0x2ca/0x14e0
[   69.059162][ T5322]  ? kobject_uevent_env+0x54d/0x8e0
[   69.059176][ T5322]  ? __pfx_bdev_disk_changed+0x10/0x10
[   69.059184][ T5322]  ? kobject_uevent_env+0x54d/0x8e0
[   69.059196][ T5322]  lo_release+0x540/0x850
[   69.059209][ T5322]  ? __pfx_lo_release+0x10/0x10
[   69.059223][ T5322]  ? do_raw_spin_unlock+0x58/0x8b0
[   69.059235][ T5322]  ? __pfx_lo_release+0x10/0x10
[   69.059244][ T5322]  bdev_release+0x5dd/0x700
[   69.059259][ T5322]  blkdev_release+0x15/0x20
[   69.059270][ T5322]  ? __pfx_blkdev_release+0x10/0x10
[   69.059282][ T5322]  __fput+0x3e9/0x9f0
[   69.059295][ T5322]  task_work_run+0x251/0x310
[   69.059307][ T5322]  ? _raw_spin_unlock+0x28/0x50
[   69.059320][ T5322]  ? __pfx_task_work_run+0x10/0x10
[   69.059333][ T5322]  ? syscall_exit_to_user_mode+0xa3/0x340
[   69.059343][ T5322]  syscall_exit_to_user_mode+0x13f/0x340
[   69.059353][ T5322]  do_syscall_64+0x100/0x210
[   69.059364][ T5322]  ? clear_bhb_loop+0x45/0xa0
[   69.059375][ T5322]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   69.059386][ T5322] RIP: 0033:0x7fe5d5b8e169
[   69.059397][ T5322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   69.059405][ T5322] RSP: 002b:00007ffeae202f48 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[   69.059417][ T5322] RAX: 0000000000000000 RBX: 00007fe5d5db7ba0 RCX: 00007fe5d5b8e169
[   69.059424][ T5322] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[   69.059430][ T5322] RBP: 00007fe5d5db7ba0 R08: 000000000002709c R09: 0000001bae20323f
[   69.059437][ T5322] R10: 0000000000dd8d30 R11: 0000000000000246 R12: 0000000000010ddd
[   69.059444][ T5322] R13: 00007fe5d5db6080 R14: ffffffffffffffff R15: 00007ffeae203060
[   69.059454][ T5322]  </TASK>
[   69.190496][ T5302] udevd[5302]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   69.196368][ T5326] udevd[5326]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   69.201953][ T5304] udevd[5304]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   69.217724][ T5326] udevd[5326]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[   69.245548][ T5304] udevd[5304]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory