INFO: task kworker/0:1:10 blocked for more than 144 seconds.
      Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/0:1     state:D stack:0     pid:10    tgid:10    ppid:2      flags:0x00000008
Workqueue: xfs-sync/loop3 xfs_flush_inodes_worker
Call trace:
 __switch_to+0x420/0x6dc arch/arm64/kernel/process.c:603
 context_switch kernel/sched/core.c:5188 [inline]
 __schedule+0x13d4/0x2418 kernel/sched/core.c:6529
 __schedule_loop kernel/sched/core.c:6606 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6621
 wb_wait_for_completion+0x154/0x29c fs/fs-writeback.c:216
 sync_inodes_sb+0x220/0x944 fs/fs-writeback.c:2792
 xfs_flush_inodes_worker+0x6c/0x90 fs/xfs/xfs_super.c:618
 process_one_work+0x79c/0x15b8 kernel/workqueue.c:3231
 process_scheduled_works kernel/workqueue.c:3312 [inline]
 worker_thread+0x978/0xec4 kernel/workqueue.c:3389
 kthread+0x288/0x310 kernel/kthread.c:389
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:860
INFO: task syz-executor:6414 blocked for more than 144 seconds.
      Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor    state:D
 stack:0     pid:6414  tgid:6414  ppid:1      flags:0x00000009
Call trace:
 __switch_to+0x420/0x6dc arch/arm64/kernel/process.c:603
 context_switch kernel/sched/core.c:5188 [inline]
 __schedule+0x13d4/0x2418 kernel/sched/core.c:6529
 __schedule_loop kernel/sched/core.c:6606 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6621
 schedule_timeout+0xb8/0x33c kernel/time/timer.c:2557
 do_wait_for_common+0x30c/0x468 kernel/sched/completion.c:95
 __wait_for_common kernel/sched/completion.c:116 [inline]
 wait_for_common kernel/sched/completion.c:127 [inline]
 wait_for_completion+0x48/0x60 kernel/sched/completion.c:148
 kthread_stop+0x1b4/0x734 kernel/kthread.c:710
 bch2_copygc_stop+0x54/0xa4 fs/bcachefs/movinggc.c:405
 __bch2_fs_read_only+0x5c/0x3d0 fs/bcachefs/super.c:264
 bch2_fs_read_only+0x930/0xf14 fs/bcachefs/super.c:354
 __bch2_fs_stop+0x100/0x510 fs/bcachefs/super.c:618
 bch2_put_super+0x40/0x50 fs/bcachefs/fs.c:1826
 generic_shutdown_super+0x128/0x2b8 fs/super.c:642
 bch2_kill_sb+0x40/0x58 fs/bcachefs/fs.c:2054
 deactivate_locked_super+0xc4/0x12c fs/super.c:473
 deactivate_super+0xe0/0x100 fs/super.c:506
 cleanup_mnt+0x34c/0x3dc fs/namespace.c:1373
 __cleanup_mnt+0x20/0x30 fs/namespace.c:1380
 task_work_run+0x230/0x2e0 kernel/task_work.c:228
 resume_user_mode_work include/linux/resume_user_mode.h:50 [inline]
 do_notify_resume+0x178/0x1f4 arch/arm64/kernel/entry-common.c:151
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_svc+0xac/0x168 arch/arm64/kernel/entry-common.c:713
 el0t_64_sync_handler+0x84/0xfc arch/arm64/kernel/entry-common.c:730
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598
INFO: task syz.3.137:7145 blocked for more than 144 seconds.
      Not tainted 6.11.0-rc7-syzkaller-g5f5673607153 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.3.137       state:D stack:0     pid:7145  tgid:7145  ppid:6416   flags:0x0000000c
Call trace:
 __switch_to+0x420/0x6dc arch/arm64/kernel/process.c:603
 context_switch kernel/sched/core.c:5188 [inline]
 __schedule+0x13d4/0x2418 kernel/sched/core.c:6529
 __schedule_loop kernel/sched/core.c:6606 [inline]
 schedule+0xbc/0x238 kernel/sched/core.c:6621
 schedule_timeout+0xb8/0x33c kernel/time/timer.c:2557
 do_wait_for_common+0x30c/0x468 kernel/sched/completion.c:95
 __wait_for_common kernel/sched/completion.c:116 [inline]
 wait_for_common kernel/sched/completion.c:127 [inline]
 wait_for_completion+0x48/0x60 kernel/sched/completion.c:148
 __flush_work+0x794/0x954 kernel/workqueue.c:4212
 flush_work+0x34/0x48 kernel/workqueue.c:4233
 xfs_flush_inodes+0x6c/0x7c fs/xfs/xfs_super.c:641
 xfs_file_buffered_write+0x344/0xa74 fs/xfs/xfs_file.c:784
 xfs_file_write_iter+0x29c/0x5f8 fs/xfs/xfs_file.c:837
 __kernel_write_iter+0x328/0x77c fs/read_write.c:523
 dump_emit_page fs/coredump.c:893 [inline]
 dump_user_range+0x378/0x6b4 fs/coredump.c:954
 elf_core_dump+0x30a8/0x3854 fs/binfmt_elf.c:2116
 do_coredump+0x1440/0x2258 fs/coredump.c:767
 get_signal+0xf9c/0x1530 kernel/signal.c:2902
 do_signal+0x1c0/0x4364 arch/arm64/kernel/signal.c:1370
 do_notify_resume+0x74/0x1f4 arch/arm64/kernel/entry-common.c:148
 exit_to_user_mode_prepare arch/arm64/kernel/entry-common.c:169 [inline]
 exit_to_user_mode arch/arm64/kernel/entry-common.c:178 [inline]
 el0_da+0xbc/0x178 arch/arm64/kernel/entry-common.c:581
 el0t_64_sync_handler+0xcc/0xfc arch/arm64/kernel/entry-common.c:733
 el0t_64_sync+0x190/0x194 arch/arm64/kernel/entry.S:598

Showing all locks held in the system:
4 locks held by kworker/0:1/10:
 #0: ffff0000cfa85548 ((wq_completion)xfs-sync/loop3){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: ffff8000975a7c20 ((work_completion)(&mp->m_flush_inodes_work)){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff0000ca9d00e0 (&type->s_umount_key#62){++++}-{3:3}, at: xfs_flush_inodes_worker+0x4c/0x90 fs/xfs/xfs_super.c:617
 #3: ffff0000c9a407d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: bdi_down_write_wb_switch_rwsem fs/fs-writeback.c:388 [inline]
 #3: ffff0000c9a407d0 (&bdi->wb_switch_rwsem){+.+.}-{3:3}, at: sync_inodes_sb+0x208/0x944 fs/fs-writeback.c:2790
1 lock held by khungtaskd/31:
 #0: ffff80008f74dfa0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:325
4 locks held by kworker/u8:8/1992:
 #0: 
ffff0000c1869948 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: ffff80009f557c20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff80009242b950 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x13c/0x9b4 net/core/net_namespace.c:594
 #3: ffff800092437ee8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
4 locks held by kworker/u8:9/2046:
 #0: ffff0000c20e6148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: 
ffff80009fae7c20
 (
(work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff0000ca9d0610 (sb_internal#3){.+.+}-{0:0}, at: xfs_bmapi_convert_one_delalloc fs/xfs/libxfs/xfs_bmap.c:4670 [inline]
 #2: ffff0000ca9d0610 (sb_internal#3){.+.+}-{0:0}, at: xfs_bmapi_convert_delalloc+0x2fc/0x1528 fs/xfs/libxfs/xfs_bmap.c:4795
 #3: ffff0000ee621858 (&xfs_nondir_ilock_class#3){++++}-{3:3}, at: xfs_ilock+0x1f0/0x418 fs/xfs/xfs_inode.c:164
3 locks held by kworker/1:2/2251:
 #0: ffff0000c0028948 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: ffff8000a02b7c20 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff800092437ee8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
2 locks held by dhcpcd/6083:
 #0: ffff80009241d868 (vlan_ioctl_mutex){+.+.}-{3:3}, at: sock_ioctl+0x574/0x838 net/socket.c:1303
 #1: ffff800092437ee8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
2 locks held by getty/6192:
 #0: 
ffff0000d7c020a0 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c drivers/tty/tty_ldsem.c:340
 #1: ffff80009b50e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41c/0x1228 drivers/tty/n_tty.c:2211
2 locks held by syz-executor/6414:
 #0: ffff0000eb8b80e0 (&type->s_umount_key#66){++++}-{3:3}, at: __super_lock fs/super.c:56 [inline]
 #0: ffff0000eb8b80e0 (&type->s_umount_key#66){++++}-{3:3}, at: __super_lock_excl fs/super.c:71 [inline]
 #0: ffff0000eb8b80e0 (&type->s_umount_key#66){++++}-{3:3}, at: deactivate_super+0xd8/0x100 fs/super.c:505
 #1: ffff0000fb900278 (&c->state_lock){+.+.}-{3:3}, at: __bch2_fs_stop+0xf8/0x510 fs/bcachefs/super.c:617
3 locks held by kworker/u9:3/6423:
 #0: ffff0000f6417148 ((wq_completion)hci5){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: ffff80009bef7c20 ((work_completion)(&hdev->cmd_sync_work)){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff0000e9cccd80 (&hdev->req_lock){+.+.}-{3:3}, at: hci_cmd_sync_work+0x194/0x34c net/bluetooth/hci_sync.c:327
2 locks held by kworker/0:6/6545:
2 locks held by syz.3.137/7145:
 #0: 
ffff0000ca9d0420
 (
sb_writers#16){.+.+}-{0:0}, at: do_coredump+0x1420/0x2258 fs/coredump.c:766
 #1: ffff0000ee621a70 (&sb->s_type->i_mutex_key#22){++++}-{3:3}, at: xfs_ilock+0x120/0x418 fs/xfs/xfs_inode.c:148
1 lock held by syz.2.215/7642:
 #0: ffff0000eb8b80e0 (&type->s_umount_key#66){++++}-{3:3}, at: __super_lock fs/super.c:58 [inline]
 #0: ffff0000eb8b80e0 (&type->s_umount_key#66){++++}-{3:3}, at: super_lock+0x244/0x33c fs/super.c:120
3 locks held by kworker/u8:13/8082:
 #0: ffff0000c0031148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x624/0x15b8 kernel/workqueue.c:3205
 #1: ffff8000a2197c20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x6a0/0x15b8 kernel/workqueue.c:3205
 #2: ffff800092437ee8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
7 locks held by syz-executor/8818:
 #0: ffff0000d886e420 (sb_writers#7){.+.+}-{0:0}, at: file_start_write include/linux/fs.h:2882 [inline]
 #0: ffff0000d886e420 (sb_writers#7){.+.+}-{0:0}, at: vfs_write+0x368/0xc80 fs/read_write.c:586
 #1: ffff0000cc2c5088
 (
&of->mutex
){+.+.}-{3:3}
, at: kernfs_fop_write_iter+0x1c8/0x48c fs/kernfs/file.c:325
 #2: 
ffff0000cac42878
 (
kn->active
#45
){.+.+}-{0:0}
, at: kernfs_fop_write_iter+0x1e4/0x48c fs/kernfs/file.c:326
 #3: ffff800091592148
 (
nsim_bus_dev_list_lock
){+.+.}-{3:3}
, at: del_device_store+0xec/0x39c drivers/net/netdevsim/bus.c:216
 #4: 
ffff0000f16890e8
 (
&dev->mutex){....}-{3:3}
, at: device_lock include/linux/device.h:1009 [inline]
, at: __device_driver_lock drivers/base/dd.c:1094 [inline]
, at: device_release_driver_internal+0xbc/0x698 drivers/base/dd.c:1292
 #5: 
ffff0000f1688250
 (
&devlink->lock_key#9
){+.+.}-{3:3}
, at: devl_lock+0x24/0x34 net/devlink/core.c:276
 #6: 
ffff800092437ee8 (rtnl_mutex){+.+.}-{3:3}, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
1 lock held by syz.2.533/9037:
 #0: 
ffff800092437ee8
 (
rtnl_mutex
){+.+.}-{3:3}
, at: rtnl_lock net/core/rtnetlink.c:79 [inline]
, at: rtnetlink_rcv_msg+0x5e8/0xa9c net/core/rtnetlink.c:6644
2 locks held by syz.0.531/9034:
 #0: ffff0000ee66e208 (
&sb->s_type->i_mutex_key
#10){+.+.}-{3:3}
, at: inode_lock include/linux/fs.h:800 [inline]
, at: __sock_release net/socket.c:658 [inline]
, at: sock_close+0x80/0x1e8 net/socket.c:1421
 #1: 
ffff800092437ee8
 (
rtnl_mutex
){+.+.}-{3:3}
, at: rtnl_lock+0x20/0x2c net/core/rtnetlink.c:79
1 lock held by syz.1.534/9044:
 #0: ffff800090efb048
 (
reading_mutex){+.+.}-{3:3}
, at: rng_dev_read+0xe8/0x5f4 drivers/char/hw_random/core.c:218

=============================================