INFO: task syz-executor.4:8635 blocked for more than 143 seconds.
      Not tainted 6.9.0-syzkaller-03117-gb850dc206a57 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4  state:D stack:26456 pid:8635  tgid:8624  ppid:7934   flags:0x00000006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5409 [inline]
 __schedule+0x1796/0x4a00 kernel/sched/core.c:6746
 __schedule_loop kernel/sched/core.c:6823 [inline]
 schedule+0x14b/0x320 kernel/sched/core.c:6838
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6895
 rwsem_down_write_slowpath+0xeeb/0x13b0 kernel/locking/rwsem.c:1178
 __down_write_common+0x1af/0x200 kernel/locking/rwsem.c:1306
 inode_lock_nested include/linux/fs.h:826 [inline]
 lock_rename fs/namei.c:3074 [inline]
 do_renameat2+0x62c/0x13f0 fs/namei.c:4979
 __do_sys_rename fs/namei.c:5091 [inline]
 __se_sys_rename fs/namei.c:5089 [inline]
 __x64_sys_rename+0x86/0xa0 fs/namei.c:5089
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f42c707dd69
RSP: 002b:00007f42c7dbe0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
RAX: ffffffffffffffda RBX: 00007f42c71ac050 RCX: 00007f42c707dd69
RDX: 0000000000000000 RSI: 0000000020000f40 RDI: 0000000020000600
RBP: 00007f42c70ca49e R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000006e R14: 00007f42c71ac050 R15: 00007ffcd92c8c58
 </TASK>
INFO: task syz-executor.2:8643 blocked for more than 144 seconds.
      Not tainted 6.9.0-syzkaller-03117-gb850dc206a57 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2  state:D stack:28216 pid:8643  tgid:8629  ppid:7681   flags:0x00000006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5409 [inline]
 __schedule+0x1796/0x4a00 kernel/sched/core.c:6746
 __schedule_loop kernel/sched/core.c:6823 [inline]
 schedule+0x14b/0x320 kernel/sched/core.c:6838
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6895
 rwsem_down_read_slowpath kernel/locking/rwsem.c:1086 [inline]
 __down_read_common kernel/locking/rwsem.c:1250 [inline]
 __down_read kernel/locking/rwsem.c:1263 [inline]
 down_read+0x705/0xa40 kernel/locking/rwsem.c:1528
 inode_lock_shared include/linux/fs.h:801 [inline]
 lookup_slow+0x45/0x70 fs/namei.c:1708
 walk_component+0x2e1/0x410 fs/namei.c:2004
 lookup_last fs/namei.c:2469 [inline]
 path_lookupat+0x16f/0x450 fs/namei.c:2493
 filename_lookup+0x256/0x610 fs/namei.c:2522
 user_path_at_empty+0x42/0x60 fs/namei.c:2929
 user_path_at include/linux/namei.h:58 [inline]
 do_mount fs/namespace.c:3689 [inline]
 __do_sys_mount fs/namespace.c:3898 [inline]
 __se_sys_mount+0x29a/0x3c0 fs/namespace.c:3875
 do_syscall_x64 arch/x86/entry/common.c:52 [inline]
 do_syscall_64+0xf5/0x240 arch/x86/entry/common.c:83
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fdf7b27dd69
RSP: 002b:00007fdf7bf070c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
RAX: ffffffffffffffda RBX: 00007fdf7b3ac050 RCX: 00007fdf7b27dd69
RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000000
RBP: 00007fdf7b2ca49e R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000006e R14: 00007fdf7b3ac050 R15: 00007ffdee3df108
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/30:
 #0: ffffffff8e3360e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire include/linux/rcupdate.h:329 [inline]
 #0: ffffffff8e3360e0 (rcu_read_lock){....}-{1:2}, at: rcu_read_lock include/linux/rcupdate.h:781 [inline]
 #0: ffffffff8e3360e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 kernel/locking/lockdep.c:6614
4 locks held by kworker/u8:2/35:
 #0: ffff88801bad7948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3242 [inline]
 #0: ffff88801bad7948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x17c0 kernel/workqueue.c:3348
 #1: ffffc90000ab7d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3243 [inline]
 #1: ffffc90000ab7d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x17c0 kernel/workqueue.c:3348
 #2: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_trylock_shared+0x22/0xf0 fs/super.c:561
 #3: ffff88806c50e0e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x69/0x120 fs/exfat/inode.c:105
3 locks held by kworker/u8:9/2490:
2 locks held by syslogd/4514:
3 locks held by klogd/4521:
2 locks held by udevd/4532:
2 locks held by getty/4835:
 #0: ffff88802b2e70a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 drivers/tty/tty_ldisc.c:243
 #1: ffffc90002f162f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10 drivers/tty/n_tty.c:2201
2 locks held by syz-fuzzer/5068:
2 locks held by syz-fuzzer/5070:
2 locks held by syz-fuzzer/5083:
3 locks held by syz-executor.4/8627:
2 locks held by syz-executor.4/8635:
 #0: ffff88802f350420 (sb_writers#13){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 fs/namespace.c:409
 #1: ffff888058549260 (&type->i_mutex_dir_key#9/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:826 [inline]
 #1: ffff888058549260 (&type->i_mutex_dir_key#9/1){+.+.}-{3:3}, at: lock_rename fs/namei.c:3074 [inline]
 #1: ffff888058549260 (&type->i_mutex_dir_key#9/1){+.+.}-{3:3}, at: do_renameat2+0x62c/0x13f0 fs/namei.c:4979
3 locks held by syz-executor.2/8630:
1 lock held by syz-executor.2/8643:
 #0: ffff888076f7b070 (&sb->s_type->i_mutex_key#28){++++}-{3:3}, at: inode_lock_shared include/linux/fs.h:801 [inline]
 #0: ffff888076f7b070 (&sb->s_type->i_mutex_key#28){++++}-{3:3}, at: lookup_slow+0x45/0x70 fs/namei.c:1708
4 locks held by kworker/u8:11/9608:
2 locks held by syz-executor.1/9670:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
1 lock held by kmmpd-loop1/9683:
 #0: ffff88818663a420 (sb_writers#4){.+.+}-{0:0}, at: kmmpd+0x424/0xaa0 fs/ext4/mmp.c:178
2 locks held by syz-executor.2/9768:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9769:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9770:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9771:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9772:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9773:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9774:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9775:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9776:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9777:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9778:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.2/9779:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9781:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9782:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9783:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9784:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9785:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9786:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9787:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9788:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9789:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9790:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9791:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #1: ffff8880208e47d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.3/9792:
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff88806c5080e0 (&type->s_umount_key#78){++++}-{3:3}, at: super_lock+0x27c/0x400 fs/super.c:120
 #1: 
ffff8880208e47d0
 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x274/0xb20 fs/fs-writeback.c:2790
2 locks held by syz-executor.1/9892:
 #0: ffff888054561b68 (&vma->vm_lock->lock){++++}-{3:3}, at: vma_start_read include/linux/mm.h:677 [inline]
 #0: ffff888054561b68 (&vma->vm_lock->lock){++++}-{3:3}, at: lock_vma_under_rcu+0x2f9/0x730 mm/memory.c:5762
 #1: ffffffff8e42a660 (fs_reclaim){+.+.}-{0:0}, at: __perform_reclaim mm/page_alloc.c:3771 [inline]
 #1: ffffffff8e42a660 (fs_reclaim){+.+.}-{0:0}, at: __alloc_pages_direct_reclaim mm/page_alloc.c:3796 [inline]
 #1: ffffffff8e42a660 (fs_reclaim){+.+.}-{0:0}, at: __alloc_pages_slowpath+0xd31/0x23d0 mm/page_alloc.c:4202
5 locks held by kworker/u9:0/9955:
 #0: ffff88806d0ba148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3242 [inline]
 #0: ffff88806d0ba148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_scheduled_works+0x8e0/0x17c0 kernel/workqueue.c:3348
 #1: ffffc900055dfd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work kernel/workqueue.c:3243 [inline]
 #1: ffffc900055dfd00 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_scheduled_works+0x91b/0x17c0 kernel/workqueue.c:3348