INFO: task kworker/1:17:4167 blocked for more than 143 seconds. Not tainted 5.15.173-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:kworker/1:17 state:D stack: 0 pid: 4167 ppid: 2 flags:0x00000008 Workqueue: events_long flush_old_commits Call trace: __switch_to+0x308/0x5e8 arch/arm64/kernel/process.c:518 context_switch kernel/sched/core.c:5027 [inline] __schedule+0xf10/0x1e48 kernel/sched/core.c:6373 schedule+0x11c/0x1c8 kernel/sched/core.c:6456 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6515 __mutex_lock_common+0xba0/0x2154 kernel/locking/mutex.c:669 __mutex_lock kernel/locking/mutex.c:729 [inline] mutex_lock_nested+0xa4/0xf8 kernel/locking/mutex.c:743 reiserfs_write_lock+0x7c/0xe8 fs/reiserfs/lock.c:27 reiserfs_sync_fs fs/reiserfs/super.c:76 [inline] flush_old_commits+0x1b0/0x2b8 fs/reiserfs/super.c:111 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310 worker_thread+0x910/0x1034 kernel/workqueue.c:2457 kthread+0x37c/0x45c kernel/kthread.c:334 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870 INFO: task syz.4.301:5720 blocked for more than 143 seconds. Not tainted 5.15.173-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.4.301 state:D stack: 0 pid: 5720 ppid: 4124 flags:0x00000001 Call trace: __switch_to+0x308/0x5e8 arch/arm64/kernel/process.c:518 context_switch kernel/sched/core.c:5027 [inline] __schedule+0xf10/0x1e48 kernel/sched/core.c:6373 schedule+0x11c/0x1c8 kernel/sched/core.c:6456 io_schedule+0x8c/0x194 kernel/sched/core.c:8481 wait_on_page_bit_common+0x6fc/0xc14 mm/filemap.c:1356 __lock_page mm/filemap.c:1648 [inline] lock_page include/linux/pagemap.h:625 [inline] pagecache_get_page+0x66c/0xd94 mm/filemap.c:1910 find_or_create_page include/linux/pagemap.h:420 [inline] grab_cache_page include/linux/pagemap.h:502 [inline] grab_tail_page fs/reiserfs/inode.c:2209 [inline] reiserfs_truncate_file+0x1bc/0x6f0 fs/reiserfs/inode.c:2277 reiserfs_file_release+0x710/0x884 fs/reiserfs/file.c:109 __fput+0x1c4/0x800 fs/file_table.c:280 ____fput+0x20/0x30 fs/file_table.c:308 task_work_run+0x130/0x1e4 kernel/task_work.c:188 tracehook_notify_resume include/linux/tracehook.h:189 [inline] do_notify_resume+0x262c/0x32b8 arch/arm64/kernel/signal.c:946 prepare_exit_to_user_mode arch/arm64/kernel/entry-common.c:133 [inline] exit_to_user_mode arch/arm64/kernel/entry-common.c:138 [inline] el0_svc+0xfc/0x1f0 arch/arm64/kernel/entry-common.c:609 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:626 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584 INFO: task syz.4.301:5730 blocked for more than 143 seconds. Not tainted 5.15.173-syzkaller #0 "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. task:syz.4.301 state:D stack: 0 pid: 5730 ppid: 4124 flags:0x00000009 Call trace: __switch_to+0x308/0x5e8 arch/arm64/kernel/process.c:518 context_switch kernel/sched/core.c:5027 [inline] __schedule+0xf10/0x1e48 kernel/sched/core.c:6373 schedule+0x11c/0x1c8 kernel/sched/core.c:6456 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6515 __mutex_lock_common+0xba0/0x2154 kernel/locking/mutex.c:669 __mutex_lock kernel/locking/mutex.c:729 [inline] mutex_lock_nested+0xa4/0xf8 kernel/locking/mutex.c:743 reiserfs_write_lock_nested+0x68/0xd8 fs/reiserfs/lock.c:78 reiserfs_cond_resched fs/reiserfs/reiserfs.h:849 [inline] reiserfs_update_sd_size+0x3ec/0xdb8 fs/reiserfs/inode.c:1498 reiserfs_update_sd fs/reiserfs/reiserfs.h:3099 [inline] reiserfs_dirty_inode+0x1ec/0x204 fs/reiserfs/super.c:714 __mark_inode_dirty+0x2b0/0x10f4 fs/fs-writeback.c:2464 mark_inode_dirty include/linux/fs.h:2469 [inline] reiserfs_write_end+0x4b8/0x6fc fs/reiserfs/inode.c:2950 pagecache_write_end+0xa0/0xc0 mm/filemap.c:3619 generic_cont_expand_simple+0x18c/0x208 fs/buffer.c:2367 reiserfs_setattr+0x37c/0xd94 fs/reiserfs/inode.c:3319 notify_change+0xa34/0xcf8 fs/attr.c:505 do_truncate+0x1c0/0x28c fs/open.c:65 vfs_truncate+0x2e0/0x388 fs/open.c:111 do_sys_truncate+0xec/0x1b4 fs/open.c:134 __do_sys_truncate fs/open.c:146 [inline] __se_sys_truncate fs/open.c:144 [inline] __arm64_sys_truncate+0x5c/0x70 fs/open.c:144 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2b8 arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:142 do_el0_svc+0x58/0x14c arch/arm64/kernel/syscall.c:181 el0_svc+0x7c/0x1f0 arch/arm64/kernel/entry-common.c:608 el0t_64_sync_handler+0x84/0xe4 arch/arm64/kernel/entry-common.c:626 el0t_64_sync+0x1a0/0x1a4 arch/arm64/kernel/entry.S:584 Showing all locks held in the system: 1 lock held by khungtaskd/27: #0: ffff800014c922e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:311 3 locks held by kworker/u4:2/148: #0: ffff0000c21d0138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff80001d6e7c00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 #2: ffff0000ecddc0e0 (&type->s_umount_key#49){++++}-{3:3}, at: trylock_super+0x28/0xf8 fs/super.c:418 1 lock held by udevd/3642: 2 locks held by getty/3788: #0: ffff0000d377b098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x40/0x50 drivers/tty/tty_ldsem.c:340 #1: ffff80001d61e2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x414/0x1204 drivers/tty/n_tty.c:2158 2 locks held by kworker/0:4/4098: #0: ffff0000c0020938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff8000203b7c00 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 1 lock held by udevd/4155: 4 locks held by kworker/1:17/4167: #0: ffff0000c0021138 ((wq_completion)events_long){+.+.}-{0:0}, at: process_one_work+0x66c/0x11b8 kernel/workqueue.c:2283 #1: ffff8000207c7c00 ((work_completion)(&(&sbi->old_work)->work)){+.+.}-{0:0}, at: process_one_work+0x6ac/0x11b8 kernel/workqueue.c:2285 #2: ffff0000ecddc0e0 (&type->s_umount_key#49){++++}-{3:3}, at: flush_old_commits+0xcc/0x2b8 fs/reiserfs/super.c:97 #3: ffff0000cb008090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock+0x7c/0xe8 fs/reiserfs/lock.c:27 2 locks held by udevd/4307: #0: ffff0000cbf36918 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0xe0/0x6b0 block/bdev.c:912 #1: ffff0000cbf8c468 (&lo->lo_mutex){+.+.}-{3:3}, at: __loop_clr_fd+0xa8/0x9b8 drivers/block/loop.c:1365 2 locks held by syz.4.301/5720: #0: ffff0000e1bc0df8 (&ei->tailpack){+.+.}-{3:3}, at: reiserfs_file_release+0xd0/0x884 fs/reiserfs/file.c:41 #1: ffff0000cb008090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock_nested+0x68/0xd8 fs/reiserfs/lock.c:78 3 locks held by syz.4.301/5730: #0: ffff0000ecddc460 (sb_writers#12){.+.+}-{0:0}, at: mnt_want_write+0x44/0x9c fs/namespace.c:377 #1: ffff0000e1bc1020 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: inode_lock include/linux/fs.h:789 [inline] #1: ffff0000e1bc1020 (&sb->s_type->i_mutex_key#20){+.+.}-{3:3}, at: do_truncate+0x1ac/0x28c fs/open.c:63 #2: ffff0000cb008090 (&sbi->lock){+.+.}-{3:3}, at: reiserfs_write_lock_nested+0x68/0xd8 fs/reiserfs/lock.c:78 3 locks held by kworker/u4:19/6230: 1 lock held by syz.1.589/7299: 2 locks held by syz.3.592/7288: #0: ffff0000cbf38d18 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0xe0/0x6b0 block/bdev.c:912 #1: ffff0000cbf8f468 (&lo->lo_mutex){+.+.}-{3:3}, at: lo_release+0x58/0x210 drivers/block/loop.c:2070 2 locks held by syz.5.593/7298: =============================================