INFO: task syz-executor.2:8609 blocked for more than 143 seconds.
      Not tainted 6.5.0-rc6-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2  state:D stack:24800 pid:8609  ppid:898    flags:0x00004006
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5381 [inline]
 __schedule+0xee1/0x59f0 kernel/sched/core.c:6710
 schedule+0xe7/0x1b0 kernel/sched/core.c:6786
 wb_wait_for_completion+0x1ae/0x270 fs/fs-writeback.c:192
 __writeback_inodes_sb_nr+0x1d8/0x270 fs/fs-writeback.c:2650
 try_to_writeback_inodes_sb+0x97/0xc0 fs/fs-writeback.c:2698
 ext4_nonda_switch+0x1a9/0x1f0 fs/ext4/inode.c:2838
 ext4_da_write_begin+0x16e/0x8c0 fs/ext4/inode.c:2865
 generic_perform_write+0x278/0x600 mm/filemap.c:3923
 ext4_buffered_write_iter+0x11f/0x3c0 fs/ext4/file.c:299
 ext4_file_write_iter+0x7ee/0x1950 fs/ext4/file.c:722
 __kernel_write_iter+0x261/0x7e0 fs/read_write.c:517
 dump_emit_page fs/coredump.c:888 [inline]
 dump_user_range+0x299/0x790 fs/coredump.c:915
 elf_core_dump+0x2721/0x38e0 fs/binfmt_elf.c:2142
 do_coredump+0x2c96/0x3fc0 fs/coredump.c:764
 get_signal+0x2464/0x2770 kernel/signal.c:2867
 arch_do_signal_or_restart+0x89/0x5f0 arch/x86/kernel/signal.c:308
 exit_to_user_mode_loop kernel/entry/common.c:168 [inline]
 exit_to_user_mode_prepare+0x11f/0x240 kernel/entry/common.c:204
 irqentry_exit_to_user_mode+0x9/0x40 kernel/entry/common.c:310
 asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0033:0xecde78abaf
RSP: 002b:00000000200000b8 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f8ee079bf80 RCX: 00007f8ee067cae9
RDX: 00000000200000c0 RSI: 00000000200000b0 RDI: 0000000001000400
RBP: 00007f8ee06c847a R08: 0000000020000140 R09: 0000000020000140
R10: 0000000020000100 R11: 0000000000000206 R12: 0000000000000000
R13: 000000000000000b R14: 00007f8ee079bf80 R15: 00007ffc330cac18
 </TASK>

Showing all locks held in the system:
1 lock held by rcu_tasks_kthre/13:
 #0: ffffffff8c9a67f0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x2c/0xe20 kernel/rcu/tasks.h:522
1 lock held by rcu_tasks_trace/14:
 #0: ffffffff8c9a64f0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x2c/0xe20 kernel/rcu/tasks.h:522
1 lock held by khungtaskd/28:
 #0: ffffffff8c9a7400 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x340 kernel/locking/lockdep.c:6615
3 locks held by kworker/u4:4/57:
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:20 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: raw_atomic64_set include/linux/atomic/atomic-arch-fallback.h:2608 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: raw_atomic_long_set include/linux/atomic/atomic-long.h:79 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: atomic_long_set include/linux/atomic/atomic-instrumented.h:3196 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:678 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:705 [inline]
 #0: ffff88801524d138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0 kernel/workqueue.c:2570
 #1: ffffc90001597d80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0 kernel/workqueue.c:2574
 #2: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by getty/4775:
 #0: ffff88802d12a098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
 #1: ffffc900015b02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfcb/0x1480 drivers/tty/n_tty.c:2187
2 locks held by kworker/u4:3/21845:
 #0: ffff8880b983c3d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 kernel/sched/core.c:558
 #1: ffff8880b9828848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2d9/0x900 kernel/sched/psi.c:999
3 locks held by syz-executor.3/32277:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff888050179800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888050179800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888042e9c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888042e9c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.1/3988:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff888037bf7200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888037bf7200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff88804a311800 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff88804a311800 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.5/4426:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff888086c34a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888086c34a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888086c30400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888086c30400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.4/5386:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88803fd53600 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88803fd53600 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888042e9b600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888042e9b600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.0/5920:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88803fd54a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88803fd54a00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888042e9d400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888042e9d400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
1 lock held by syz-executor.5/8573:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
3 locks held by syz-executor.2/8609:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042e94a00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042e94a00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc020e0 (&type->s_umount_key#31){++++}-{3:3}, at: try_to_writeback_inodes_sb+0x21/0xc0 fs/fs-writeback.c:2695
1 lock held by syz-executor.4/8772:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/8932:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/8967:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/8999:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9184:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9300:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.3/9323:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9327:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by syz-executor.3/9362:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
 #1: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
2 locks held by syz-executor.0/9366:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
 #1: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
1 lock held by syz-executor.4/9367:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9375:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9377:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.0/9385:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.3/9388:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9389:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9394:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9399:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
3 locks held by syz-executor.2/9410:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff888042e9e800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888042e9e800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888081458e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888081458e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
1 lock held by syz-executor.2/9424:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by syz-executor.2/9426:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
 #1: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
1 lock held by syz-executor.1/9431:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9438:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9439:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.2/9440:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9447:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9450:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9464:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.5/9469:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.2/9471:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.0/9476:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9477:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.3/9482:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9485:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9500:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.0/9502:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.3/9507:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9543:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.0/9546:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.3/9550:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9558:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.4/9567:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.0/9569:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
1 lock held by syz-executor.1/9575:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by syz-executor.4/9602:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88803e11f200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803e11f200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.0/9603:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88803e11c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803e11c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.3/9612:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888032583600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888032583600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.1/9614:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88807585b600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88807585b600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.4/9619:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888032582c00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888032582c00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.3/9622:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888032580e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888032580e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.0/9627:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88803fd54000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803fd54000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.1/9633:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88804a314a00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88804a314a00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
2 locks held by syz-executor.2/9647:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042e95e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042e95e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
1 lock held by syz-executor.0/9652:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by syz-executor.3/9655:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042e9a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042e9a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
1 lock held by syz-executor.4/9656:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
2 locks held by syz-executor.5/9662:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042e98e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042e98e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
3 locks held by syz-executor.3/9664:
 #0: ffff88814bc04bd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: do_writepages+0x1b4/0x690 mm/page-writeback.c:2553
 #1: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
 #2: ffff888042e9be88 (&ei->i_data_sem){++++}-{3:3}, at: ext4_map_blocks+0x5a7/0x1770 fs/ext4/inode.c:614
2 locks held by syz-executor.2/9672:
 #0: ffff88814bc02600 (sb_internal){.+.+}-{0:0}, at: evict+0x2ed/0x6b0 fs/inode.c:664
 #1: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.5/9679:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88808145c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88808145c000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.5/9689:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88803e2bb600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803e2bb600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.1/9693:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88803a1d5e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803a1d5e00 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.5/9701:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042d83600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042d83600 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.1/9703:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff88804a311800 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88804a311800 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.5/9707:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888086c30400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888086c30400 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.2/9713:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888042d84000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888042d84000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.0/9720:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888086e2a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888086e2a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.4/9722:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: get_signal+0x2464/0x2770 kernel/signal.c:2867
 #1: ffff888075852200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff888075852200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: ext4_buffered_write_iter+0xb0/0x3c0 fs/ext4/file.c:294
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.1/9724:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: filename_create+0x10d/0x530 fs/namei.c:3879
 #1: ffff888086e2ac00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888086e2ac00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: filename_create+0x1c2/0x530 fs/namei.c:3886
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.3/9725:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: open_last_lookups fs/namei.c:3549 [inline]
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: path_openat+0x197e/0x29c0 fs/namei.c:3790
 #1: ffff88803e3ef200 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #1: ffff88803e3ef200 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: open_last_lookups fs/namei.c:3557 [inline]
 #1: ffff88803e3ef200 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: path_openat+0x8c9/0x29c0 fs/namei.c:3790
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461
3 locks held by syz-executor.2/9727:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88803e3ee800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88803e3ee800 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888042d84000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888042d84000 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.4/9729:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88807876f200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88807876f200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888075852200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888075852200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
2 locks held by syz-executor.3/9731:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88803e3ef200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88803e3ef200 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
3 locks held by syz-executor.0/9733:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: do_unlinkat+0x1ca/0x6d0 fs/namei.c:4376
 #1: ffff88807876de00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff88807876de00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: do_unlinkat+0x27c/0x6d0 fs/namei.c:4380
 #2: ffff888086e2a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: inode_lock include/linux/fs.h:771 [inline]
 #2: ffff888086e2a200 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_unlink+0xd3/0x900 fs/namei.c:4318
3 locks held by syz-executor.5/9734:
 #0: ffff88814bc02410 (sb_writers#4){.+.+}-{0:0}, at: filename_create+0x10d/0x530 fs/namei.c:3879
 #1: ffff888042d82c00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: inode_lock_nested include/linux/fs.h:806 [inline]
 #1: ffff888042d82c00 (&type->i_mutex_dir_key#3/1){+.+.}-{3:3}, at: filename_create+0x1c2/0x530 fs/namei.c:3886
 #2: ffff88814bc06988 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0x10e7/0x1600 fs/jbd2/transaction.c:461

=============================================

NMI backtrace for cpu 1
CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.5.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0xd9/0x1b0 lib/dump_stack.c:106
 nmi_cpu_backtrace+0x277/0x380 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x2ac/0x310 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:222 [inline]
 watchdog+0xf29/0x11b0 kernel/hung_task.c:379
 kthread+0x33a/0x430 kernel/kthread.c:389
 ret_from_fork+0x2c/0x70 arch/x86/kernel/process.c:145
 ret_from_fork_asm+0x11/0x20 arch/x86/entry/entry_64.S:304
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 4458 Comm: syslogd Not tainted 6.5.0-rc6-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
RIP: 0010:ksys_write+0x27/0x250 fs/read_write.c:627
Code: 00 00 90 f3 0f 1e fa 41 57 49 89 d7 41 56 49 be 00 00 00 00 00 fc ff df 41 55 49 89 f5 41 54 55 53 89 fb 48 83 ec 60 49 89 e4 <48> c7 04 24 b3 8a b5 41 48 c7 44 24 08 e6 33 2a 8c 49 c1 ec 03 48
RSP: 0018:ffffc9000310fea8 EFLAGS: 00000282
RAX: dffffc0000000000 RBX: 0000000000000003 RCX: 1ffff92000621ff9
RDX: 0000000000000065 RSI: 0000563e3a164c50 RDI: 0000000000000003
RBP: ffffc9000310ff48 R08: 0000000000000001 R09: 0000000000000001
R10: ffffffff8eaba1d7 R11: 0000000000000000 R12: ffffc9000310fea8
R13: 0000563e3a164c50 R14: dffffc0000000000 R15: 0000000000000065
FS:  00007fb85206e380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 0000555555e37938 CR3: 000000002ce5a000 CR4: 0000000000350ef0
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x38/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x63/0xcd
RIP: 0033:0x7fb8521c2bf2
Code: 89 c7 48 89 44 24 08 e8 7b 34 fa ff 48 8b 44 24 08 48 83 c4 28 c3 c3 64 8b 04 25 18 00 00 00 85 c0 75 20 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 6f 48 8b 15 07 a2 0d 00 f7 d8 64 89 02 48 83
RSP: 002b:00007ffe088f09d8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fb8521c2bf2
RDX: 0000000000000065 RSI: 0000563e3a164c50 RDI: 0000000000000003
RBP: 0000563e3a164c50 R08: 0000000000000001 R09: 0000000000000000
R10: 00007fb8523613a3 R11: 0000000000000246 R12: 0000000000000065
R13: 00007fb85206e300 R14: 0000000000000004 R15: 0000563e3a164a60
 </TASK>