program: r0 = socket(0x8000000010, 0x2, 0x0) write(r0, &(0x7f00000002c0)="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", 0xfc) syz_read_part_table(0x1064, &(0x7f0000003180)="$eJzsz7FNxEAUBNDZXRvWKQ24DUICJBJC6IBCQKIEKiAkogVackJoxOqk6+DugveikeZrpB/Oaqn95ju5ff/5SE/ymlz97vuelna8WmuSx5Jk/tx6Wmm5m0bTk7Uk1/+5JdPD9pR5NDVZknK/ZMzOh6n6tiZ5Gbk9f536XwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4RH8BAAD//8y2Dnc=") r1 = socket$inet6_tcp(0xa, 0x1, 0x0) connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x8000000, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c) r2 = socket(0x15, 0x5, 0x0) getsockopt(r2, 0x200000000114, 0x2714, 0x0, &(0x7f0000000000)) r3 = socket$inet_tcp(0x2, 0x1, 0x0) syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3200400, &(0x7f0000000140)=ANY=[], 0x3, 0xa73, &(0x7f0000003cc0)="$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") r4 = open(&(0x7f0000000280)='./bus\x00', 0x145142, 0x0) r5 = creat(&(0x7f0000000180)='./bus\x00', 0x0) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000000)=0x10) ftruncate(r4, 0x2007ffb) pwrite64(r3, &(0x7f0000000000)="d9d4eedc13dccba8db81c8d0aee3d1cc6bddc2b068a718a68da148ed97f4d1bfe8d5fe2784e0690f52cf1420c7f592a296e00a1f4bf158f1a0afd20f3ee2c69c77313db5216a1948cc90e54c01ea0ff0365a3133d7f51903c5d1c84c0b14f1d36906d4937992826025ef131a0f6da2a9817bd2fd238055591ce870493e60d2982bb2138ad51476713efa6859dda7a8549be3fd1d8dfbbc11bd4c06d5361d0f5be08f18e27dd7061eb2271d7b47d18a5b7835bb5e0a0061fb1ce315938147b67d305d849fde97c6f8fce4dd92fb8915a81763d03e50e91ff1", 0xd8, 0x5) r6 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, &(0x7f0000000540)=0x1, 0x4) getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, &(0x7f0000000400)={0x0}, &(0x7f0000000440)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r6, 0x84, 0x7c, &(0x7f0000000140)={r7}, 0xc) ioctl$sock_inet_SIOCSARP(r3, 0x8955, &(0x7f0000000180)={{0x2, 0x0, @remote}, {0x20000010304, @dev}, 0x4, {0x2, 0x0, @multicast1=0xe000cc02}}) [ 75.294161][ T4675] Bluetooth: hci0: command tx timeout [ 75.336476][ T5327] netlink: 'syz.0.0': attribute type 12 has an invalid length. [ 75.448284][ T5327] loop0: detected capacity change from 0 to 8192 [ 75.487011][ T5327] loop0: p1 p2[DM] p4 [ 75.488811][ T5327] loop0: partition table partially beyond EOD, truncated [ 75.498596][ T5327] loop0: p1 size 196608 extends beyond EOD, truncated [ 75.503036][ T5327] loop0: p2 size 150994946 extends beyond EOD, truncated [ 75.514919][ T5327] loop0: p4 start 25600 is beyond EOD, truncated [ 75.534568][ T4735] loop0: p1 p2[DM] p4 [ 75.536232][ T4735] loop0: partition table partially beyond EOD, truncated [ 75.539482][ T4735] loop0: p1 size 196608 extends beyond EOD, truncated [ 75.545113][ T4735] loop0: p2 size 150994946 extends beyond EOD, truncated [ 75.549063][ T4735] loop0: p4 start 25600 is beyond EOD, truncated [ 75.680379][ T5310] [ 75.681428][ T5310] ====================================================== [ 75.684122][ T5310] WARNING: possible circular locking dependency detected [ 75.686922][ T5310] 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 Not tainted [ 75.689729][ T5310] ------------------------------------------------------ [ 75.692560][ T5310] udevd/5310 is trying to acquire lock: [ 75.694810][ T5310] ffff888036cd9698 (kn->active#5){++++}-{0:0}, at: __kernfs_remove+0x336/0x570 [ 75.698538][ T5310] [ 75.698538][ T5310] but task is already holding lock: [ 75.701405][ T5310] ffff888032deb358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x17e/0x700 [ 75.704946][ T5310] [ 75.704946][ T5310] which lock already depends on the new lock. [ 75.704946][ T5310] [ 75.708989][ T5310] [ 75.708989][ T5310] the existing dependency chain (in reverse order) is: [ 75.712552][ T5310] [ 75.712552][ T5310] -> #2 (&disk->open_mutex){+.+.}-{4:4}: [ 75.715620][ T5310] lock_acquire+0x116/0x2f0 [ 75.717594][ T5310] __mutex_lock+0x1a5/0x10c0 [ 75.719695][ T5310] bdev_open+0xf7/0xcd0 [ 75.721518][ T5310] bdev_file_open_by_dev+0x1b2/0x230 [ 75.723778][ T5310] disk_scan_partitions+0x1be/0x2b0 [ 75.725872][ T5310] add_disk_fwnode+0xd26/0x1020 [ 75.727807][ T5310] pmem_attach_disk+0xd42/0x1020 [ 75.729771][ T5310] nvdimm_bus_probe+0x147/0x4e0 [ 75.731616][ T5310] really_probe+0x2b9/0xad0 [ 75.733425][ T5310] __driver_probe_device+0x1a2/0x390 [ 75.735509][ T5310] driver_probe_device+0x50/0x430 [ 75.737461][ T5310] __driver_attach+0x45f/0x710 [ 75.739503][ T5310] bus_for_each_dev+0x23e/0x2b0 [ 75.741755][ T5310] bus_add_driver+0x346/0x670 [ 75.743812][ T5310] driver_register+0x23a/0x320 [ 75.745907][ T5310] do_one_initcall+0x24a/0x940 [ 75.748069][ T5310] do_initcall_level+0x157/0x210 [ 75.750211][ T5310] do_initcalls+0x71/0xd0 [ 75.752228][ T5310] kernel_init_freeable+0x432/0x5d0 [ 75.754551][ T5310] kernel_init+0x1d/0x2b0 [ 75.756541][ T5310] ret_from_fork+0x4b/0x80 [ 75.758515][ T5310] ret_from_fork_asm+0x1a/0x30 [ 75.760504][ T5310] [ 75.760504][ T5310] -> #1 (&nvdimm_namespace_key){+.+.}-{4:4}: [ 75.763598][ T5310] lock_acquire+0x116/0x2f0 [ 75.765598][ T5310] __mutex_lock+0x1a5/0x10c0 [ 75.767646][ T5310] uevent_show+0x17d/0x340 [ 75.769655][ T5310] dev_attr_show+0x55/0xc0 [ 75.771623][ T5310] sysfs_kf_seq_show+0x32b/0x4a0 [ 75.773927][ T5310] seq_read_iter+0x461/0xda0 [ 75.776100][ T5310] vfs_read+0x9a0/0xb90 [ 75.777959][ T5310] ksys_read+0x19d/0x2d0 [ 75.779834][ T5310] do_syscall_64+0xf3/0x210 [ 75.781866][ T5310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.784370][ T5310] [ 75.784370][ T5310] -> #0 (kn->active#5){++++}-{0:0}: [ 75.787333][ T5310] validate_chain+0xa69/0x24e0 [ 75.789392][ T5310] __lock_acquire+0xad5/0xd80 [ 75.791532][ T5310] lock_acquire+0x116/0x2f0 [ 75.793562][ T5310] kernfs_drain+0x275/0x5e0 [ 75.795534][ T5310] __kernfs_remove+0x336/0x570 [ 75.797603][ T5310] kernfs_remove_by_name_ns+0xad/0x130 [ 75.800299][ T5310] device_del+0x56c/0x9b0 [ 75.802223][ T5310] drop_partition+0x11b/0x180 [ 75.804306][ T5310] bdev_disk_changed+0x2ca/0x14e0 [ 75.806382][ T5310] lo_release+0x540/0x850 [ 75.808366][ T5310] bdev_release+0x5dd/0x700 [ 75.810311][ T5310] blkdev_release+0x15/0x20 [ 75.812299][ T5310] __fput+0x3e9/0x9f0 [ 75.814073][ T5310] fput_close_sync+0x1ef/0x270 [ 75.816110][ T5310] __x64_sys_close+0x7f/0x110 [ 75.818132][ T5310] do_syscall_64+0xf3/0x210 [ 75.820094][ T5310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.822537][ T5310] [ 75.822537][ T5310] other info that might help us debug this: [ 75.822537][ T5310] [ 75.826528][ T5310] Chain exists of: [ 75.826528][ T5310] kn->active#5 --> &nvdimm_namespace_key --> &disk->open_mutex [ 75.826528][ T5310] [ 75.831794][ T5310] Possible unsafe locking scenario: [ 75.831794][ T5310] [ 75.834748][ T5310] CPU0 CPU1 [ 75.836819][ T5310] ---- ---- [ 75.839013][ T5310] lock(&disk->open_mutex); [ 75.840876][ T5310] lock(&nvdimm_namespace_key); [ 75.843794][ T5310] lock(&disk->open_mutex); [ 75.846584][ T5310] lock(kn->active#5); [ 75.848293][ T5310] [ 75.848293][ T5310] *** DEADLOCK *** [ 75.848293][ T5310] [ 75.851324][ T5310] 1 lock held by udevd/5310: [ 75.853097][ T5310] #0: ffff888032deb358 (&disk->open_mutex){+.+.}-{4:4}, at: bdev_release+0x17e/0x700 [ 75.856816][ T5310] [ 75.856816][ T5310] stack backtrace: [ 75.859318][ T5310] CPU: 0 UID: 0 PID: 5310 Comm: udevd Not tainted 6.15.0-rc2-syzkaller-00404-g8560697b23dc #0 PREEMPT(full) [ 75.859331][ T5310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 75.859336][ T5310] Call Trace: [ 75.859341][ T5310] [ 75.859346][ T5310] dump_stack_lvl+0x241/0x360 [ 75.859360][ T5310] ? __pfx_dump_stack_lvl+0x10/0x10 [ 75.859368][ T5310] ? __pfx__printk+0x10/0x10 [ 75.859378][ T5310] ? print_lock+0x171/0x1a0 [ 75.859388][ T5310] print_circular_bug+0x2e1/0x300 [ 75.859396][ T5310] check_noncircular+0x142/0x160 [ 75.859404][ T5310] validate_chain+0xa69/0x24e0 [ 75.859412][ T5310] ? lockdep_unlock+0x8d/0x120 [ 75.859420][ T5310] __lock_acquire+0xad5/0xd80 [ 75.859429][ T5310] ? up_write+0x1ab/0x590 [ 75.859435][ T5310] lock_acquire+0x116/0x2f0 [ 75.859443][ T5310] ? __kernfs_remove+0x336/0x570 [ 75.859457][ T5310] kernfs_drain+0x275/0x5e0 [ 75.859465][ T5310] ? __kernfs_remove+0x336/0x570 [ 75.859476][ T5310] ? __pfx_kernfs_drain+0x10/0x10 [ 75.859489][ T5310] __kernfs_remove+0x336/0x570 [ 75.859500][ T5310] kernfs_remove_by_name_ns+0xad/0x130 [ 75.859512][ T5310] device_del+0x56c/0x9b0 [ 75.859525][ T5310] ? __pfx_device_del+0x10/0x10 [ 75.859535][ T5310] ? kobject_put+0x446/0x480 [ 75.859548][ T5310] drop_partition+0x11b/0x180 [ 75.859563][ T5310] bdev_disk_changed+0x2ca/0x14e0 [ 75.859572][ T5310] ? kobject_uevent_env+0x54d/0x8e0 [ 75.859585][ T5310] ? __pfx_bdev_disk_changed+0x10/0x10 [ 75.859594][ T5310] ? kobject_uevent_env+0x54d/0x8e0 [ 75.859608][ T5310] lo_release+0x540/0x850 [ 75.859620][ T5310] ? __pfx_lo_release+0x10/0x10 [ 75.859636][ T5310] ? do_raw_spin_unlock+0x58/0x8b0 [ 75.859647][ T5310] ? __pfx_lo_release+0x10/0x10 [ 75.859653][ T5310] bdev_release+0x5dd/0x700 [ 75.859663][ T5310] blkdev_release+0x15/0x20 [ 75.859673][ T5310] ? __pfx_blkdev_release+0x10/0x10 [ 75.859683][ T5310] __fput+0x3e9/0x9f0 [ 75.859695][ T5310] fput_close_sync+0x1ef/0x270 [ 75.859706][ T5310] ? __pfx_fput_close_sync+0x10/0x10 [ 75.859716][ T5310] ? do_raw_spin_unlock+0x58/0x8b0 [ 75.859728][ T5310] ? filp_flush+0x116/0x190 [ 75.859739][ T5310] __x64_sys_close+0x7f/0x110 [ 75.859750][ T5310] do_syscall_64+0xf3/0x210 [ 75.859761][ T5310] ? clear_bhb_loop+0x45/0xa0 [ 75.859773][ T5310] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 75.859783][ T5310] RIP: 0033:0x7fee8ed670a8 [ 75.859794][ T5310] Code: 48 8b 05 83 9d 0d 00 64 c7 00 16 00 00 00 83 c8 ff 48 83 c4 20 5b c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 5b 48 8b 15 51 9d 0d 00 f7 d8 64 89 02 48 83 [ 75.859803][ T5310] RSP: 002b:00007ffe5414b2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 75.859815][ T5310] RAX: ffffffffffffffda RBX: 00007fee8ec930e0 RCX: 00007fee8ed670a8 [ 75.859822][ T5310] RDX: 00005630749cdbd2 RSI: 00007ffe5414aaf8 RDI: 0000000000000008 [ 75.859828][ T5310] RBP: 0000563517d00a10 R08: 0000000000000006 R09: c0cd6b209852373d [ 75.859834][ T5310] R10: 000000000000010f R11: 0000000000000246 R12: 0000000000000002 [ 75.859839][ T5310] R13: 0000563517cfb440 R14: 0000000000000008 R15: 0000563517cda910 [ 75.859849][ T5310] [ 76.008656][ T5310] udevd[5310]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory