INFO: task syz-executor.2:30183 blocked for more than 143 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:24424 pid:30183 tgid:30183 ppid:5097 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
io_schedule+0x8c/0x100 kernel/sched/core.c:8998
folio_wait_bit_common+0x881/0x12a0 mm/filemap.c:1273
btrfs_page_mkwrite+0x4a4/0xd10 fs/btrfs/inode.c:8141
do_page_mkwrite+0x197/0x470 mm/memory.c:2943
wp_page_shared mm/memory.c:3338 [inline]
do_wp_page+0x1d10/0x4d10 mm/memory.c:3478
handle_pte_fault mm/memory.c:5054 [inline]
__handle_mm_fault mm/memory.c:5179 [inline]
handle_mm_fault+0x1b1a/0x6650 mm/memory.c:5344
do_user_addr_fault arch/x86/mm/fault.c:1364 [inline]
handle_page_fault arch/x86/mm/fault.c:1505 [inline]
exc_page_fault+0x455/0x860 arch/x86/mm/fault.c:1561
asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0033:0x7f899a45db5d
RSP: 002b:00007ffe104d02a8 EFLAGS: 00010202
RAX: 0000000020000040 RBX: 00007ffe104d03b8 RCX: 00007f899a00002e
RDX: 0000000000000002 RSI: 000000000000002e RDI: 0000000020000040
RBP: 0000000000000fd2 R08: 00007f899a400000 R09: 000000000000012e
R10: 000000008133dc96 R11: 0000000000000246 R12: 00007f899a0093f0
R13: fffffffffffffffe R14: 00007f899a000000 R15: 00007f899a0093f8
INFO: task syz-executor.2:30189 blocked for more than 144 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:20984 pid:30189 tgid:30183 ppid:5097 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
schedule_preempt_disabled+0x13/0x20 kernel/sched/core.c:6835
rwsem_down_write_slowpath+0xee6/0x13a0 kernel/locking/rwsem.c:1178
__down_write_common+0x1aa/0x200 kernel/locking/rwsem.c:1306
inode_lock include/linux/fs.h:802 [inline]
btrfs_inode_lock+0x4d/0xd0 fs/btrfs/inode.c:378
btrfs_sync_file+0x55d/0x1320 fs/btrfs/file.c:1821
generic_write_sync include/linux/fs.h:2653 [inline]
btrfs_do_write_iter+0xbc5/0x1190 fs/btrfs/file.c:1694
do_iter_write+0x7ac/0xcb0 fs/read_write.c:860
iter_file_splice_write+0x86d/0x1010 fs/splice.c:736
do_splice_from fs/splice.c:933 [inline]
direct_splice_actor+0xea/0x1c0 fs/splice.c:1142
splice_direct_to_actor+0x376/0x9e0 fs/splice.c:1088
do_splice_direct+0x2ac/0x3f0 fs/splice.c:1194
do_sendfile+0x62c/0x1000 fs/read_write.c:1254
__do_sys_sendfile64 fs/read_write.c:1322 [inline]
__se_sys_sendfile64+0x17c/0x1e0 fs/read_write.c:1308
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82
entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7f899a47cae9
RSP: 002b:00007f899b2b60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007f899a59bf80 RCX: 00007f899a47cae9
RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000a
RBP: 00007f899a4c847a R08: 0000000000000000 R09: 0000000000000000
R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007f899a59bf80 R15: 00007ffe104d01c8
INFO: task syz-executor.2:30268 blocked for more than 146 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:24248 pid:30268 tgid:30183 ppid:5097 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
wait_extent_bit fs/btrfs/extent-io-tree.c:799 [inline]
lock_extent+0x69d/0x850 fs/btrfs/extent-io-tree.c:1843
btrfs_page_mkwrite+0x5bd/0xd10 fs/btrfs/inode.c:8151
do_page_mkwrite+0x197/0x470 mm/memory.c:2943
wp_page_shared mm/memory.c:3338 [inline]
do_wp_page+0x1d10/0x4d10 mm/memory.c:3478
handle_pte_fault mm/memory.c:5054 [inline]
__handle_mm_fault mm/memory.c:5179 [inline]
handle_mm_fault+0x1b1a/0x6650 mm/memory.c:5344
do_user_addr_fault arch/x86/mm/fault.c:1413 [inline]
handle_page_fault arch/x86/mm/fault.c:1505 [inline]
exc_page_fault+0x2ac/0x860 arch/x86/mm/fault.c:1561
asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0010:rep_movs_alternative+0x33/0x70 arch/x86/lib/copy_user_64.S:58
Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
RSP: 0018:ffffc90003d7f550 EFLAGS: 00050206
RAX: 0000000000000000 RBX: 0000000020000358 RCX: 0000000000000038
RDX: 0000000000000000 RSI: ffffc90003d7f600 RDI: 0000000020000320
RBP: ffffc90003d7f6b0 R08: ffffc90003d7f637 R09: 1ffff920007afec6
R10: dffffc0000000000 R11: fffff520007afec7 R12: 0000000000000038
R13: ffffc90003d7f600 R14: 0000000020000320 R15: ffffc90003d7f600
copy_user_generic arch/x86/include/asm/uaccess_64.h:112 [inline]
raw_copy_to_user arch/x86/include/asm/uaccess_64.h:133 [inline]
_copy_to_user+0x86/0xa0 lib/usercopy.c:41
copy_to_user include/linux/uaccess.h:191 [inline]
fiemap_fill_next_extent+0x235/0x410 fs/ioctl.c:145
emit_last_fiemap_cache fs/btrfs/extent_io.c:2505 [inline]
extent_fiemap+0x1b9c/0x1fe0 fs/btrfs/extent_io.c:3032
btrfs_fiemap+0x178/0x1e0 fs/btrfs/inode.c:7823
ioctl_fiemap fs/ioctl.c:220 [inline]
do_vfs_ioctl+0x19ea/0x2b40 fs/ioctl.c:811
__do_sys_ioctl fs/ioctl.c:869 [inline]
__se_sys_ioctl+0x81/0x170 fs/ioctl.c:857
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82
entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7f899a47cae9
RSP: 002b:00007f899b2740c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f899a59c120 RCX: 00007f899a47cae9
RDX: 0000000020000300 RSI: 00000000c020660b RDI: 0000000000000008
RBP: 00007f899a4c847a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000006e R14: 00007f899a59c120 R15: 00007ffe104d01c8
INFO: task syz-executor.2:30275 blocked for more than 148 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2 state:D stack:23016 pid:30275 tgid:30183 ppid:5097 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
io_schedule+0x8c/0x100 kernel/sched/core.c:8998
folio_wait_bit_common+0x881/0x12a0 mm/filemap.c:1273
btrfs_page_mkwrite+0x4a4/0xd10 fs/btrfs/inode.c:8141
do_page_mkwrite+0x197/0x470 mm/memory.c:2943
wp_page_shared mm/memory.c:3338 [inline]
do_wp_page+0x1d10/0x4d10 mm/memory.c:3478
handle_pte_fault mm/memory.c:5054 [inline]
__handle_mm_fault mm/memory.c:5179 [inline]
handle_mm_fault+0x1b1a/0x6650 mm/memory.c:5344
do_user_addr_fault arch/x86/mm/fault.c:1413 [inline]
handle_page_fault arch/x86/mm/fault.c:1505 [inline]
exc_page_fault+0x2ac/0x860 arch/x86/mm/fault.c:1561
asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0010:rep_movs_alternative+0x4a/0x70 arch/x86/lib/copy_user_64.S:71
Code: 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 48 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb c9 a4 c3 48 89 c8 48 c1 e9 03 83 e0 07 f3 48 a5 89 c1 85 c9 75 b3
RSP: 0018:ffffc90004e9fe50 EFLAGS: 00050206
RAX: ffffffff84816601 RBX: 00000000200007c0 RCX: 0000000000000400
RDX: 0000000000000000 RSI: ffff888020096000 RDI: 00000000200003c0
RBP: 00000000200003c0 R08: ffff8880200963ff R09: 1ffff11004012c7f
R10: dffffc0000000000 R11: ffffed1004012c80 R12: 0000000000000400
R13: ffff88801c148000 R14: 00000000200003c0 R15: ffff888020096000
copy_user_generic arch/x86/include/asm/uaccess_64.h:112 [inline]
raw_copy_to_user arch/x86/include/asm/uaccess_64.h:133 [inline]
_copy_to_user+0x86/0xa0 lib/usercopy.c:41
copy_to_user include/linux/uaccess.h:191 [inline]
btrfs_ioctl_balance+0x5d9/0x7c0 fs/btrfs/ioctl.c:3618
vfs_ioctl fs/ioctl.c:51 [inline]
__do_sys_ioctl fs/ioctl.c:871 [inline]
__se_sys_ioctl+0xf8/0x170 fs/ioctl.c:857
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82
entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7f899a47cae9
RSP: 002b:00007f899b2530c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007f899a59c1f0 RCX: 00007f899a47cae9
RDX: 00000000200003c0 RSI: 00000000c4009420 RDI: 0000000000000005
RBP: 00007f899a4c847a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000006e R14: 00007f899a59c1f0 R15: 00007ffe104d01c8
INFO: task syz-executor.0:30263 blocked for more than 149 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0 state:D stack:22280 pid:30263 tgid:30262 ppid:5089 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
wait_extent_bit fs/btrfs/extent-io-tree.c:799 [inline]
lock_extent+0x69d/0x850 fs/btrfs/extent-io-tree.c:1843
find_lock_delalloc_range+0x4b5/0x970 fs/btrfs/extent_io.c:393
writepage_delalloc+0x17f/0x470 fs/btrfs/extent_io.c:1178
__extent_writepage fs/btrfs/extent_io.c:1435 [inline]
extent_write_cache_pages fs/btrfs/extent_io.c:2103 [inline]
extent_writepages+0x144b/0x2e50 fs/btrfs/extent_io.c:2225
do_writepages+0x3a6/0x670 mm/page-writeback.c:2553
filemap_fdatawrite_wbc+0x125/0x180 mm/filemap.c:387
__filemap_fdatawrite_range mm/filemap.c:420 [inline]
filemap_fdatawrite_range+0x16e/0x1e0 mm/filemap.c:438
btrfs_fdatawrite_range fs/btrfs/file.c:3863 [inline]
start_ordered_ops fs/btrfs/file.c:1742 [inline]
btrfs_sync_file+0x424/0x1320 fs/btrfs/file.c:1817
generic_write_sync include/linux/fs.h:2653 [inline]
btrfs_do_write_iter+0xbc5/0x1190 fs/btrfs/file.c:1694
do_iter_write+0x7ac/0xcb0 fs/read_write.c:860
iter_file_splice_write+0x86d/0x1010 fs/splice.c:736
do_splice_from fs/splice.c:933 [inline]
direct_splice_actor+0xea/0x1c0 fs/splice.c:1142
splice_direct_to_actor+0x376/0x9e0 fs/splice.c:1088
do_splice_direct+0x2ac/0x3f0 fs/splice.c:1194
do_sendfile+0x62c/0x1000 fs/read_write.c:1254
__do_sys_sendfile64 fs/read_write.c:1322 [inline]
__se_sys_sendfile64+0x17c/0x1e0 fs/read_write.c:1308
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82
entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7fb25ac7cae9
RSP: 002b:00007fb25b9c80c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007fb25ad9bf80 RCX: 00007fb25ac7cae9
RDX: 0000000000000000 RSI: 000000000000000b RDI: 000000000000000a
RBP: 00007fb25acc847a R08: 0000000000000000 R09: 0000000000000000
R10: 0001000000201005 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007fb25ad9bf80 R15: 00007fff4b5d3778
INFO: task syz-executor.0:30342 blocked for more than 151 seconds.
Not tainted 6.6.0-syzkaller-14263-gaea6bf908d73 #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.0 state:D stack:24360 pid:30342 tgid:30262 ppid:5089 flags:0x00004006
Call Trace:
context_switch kernel/sched/core.c:5376 [inline]
__schedule+0x1960/0x4a80 kernel/sched/core.c:6688
__schedule_loop kernel/sched/core.c:6763 [inline]
schedule+0x149/0x260 kernel/sched/core.c:6778
io_schedule+0x8c/0x100 kernel/sched/core.c:8998
folio_wait_bit_common+0x881/0x12a0 mm/filemap.c:1273
btrfs_page_mkwrite+0x4a4/0xd10 fs/btrfs/inode.c:8141
do_page_mkwrite+0x197/0x470 mm/memory.c:2943
wp_page_shared mm/memory.c:3338 [inline]
do_wp_page+0x1d10/0x4d10 mm/memory.c:3478
handle_pte_fault mm/memory.c:5054 [inline]
__handle_mm_fault mm/memory.c:5179 [inline]
handle_mm_fault+0x1b1a/0x6650 mm/memory.c:5344
do_user_addr_fault arch/x86/mm/fault.c:1413 [inline]
handle_page_fault arch/x86/mm/fault.c:1505 [inline]
exc_page_fault+0x2ac/0x860 arch/x86/mm/fault.c:1561
asm_exc_page_fault+0x26/0x30 arch/x86/include/asm/idtentry.h:570
RIP: 0010:rep_movs_alternative+0x33/0x70 arch/x86/lib/copy_user_64.S:58
Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
RSP: 0018:ffffc9000327f3b0 EFLAGS: 00050206
RAX: 0000000000000000 RBX: 0000000020000358 RCX: 0000000000000038
RDX: 0000000000000000 RSI: ffffc9000327f460 RDI: 0000000020000320
RBP: ffffc9000327f510 R08: ffffc9000327f497 R09: 1ffff9200064fe92
R10: dffffc0000000000 R11: fffff5200064fe93 R12: 0000000000000038
R13: ffffc9000327f460 R14: 0000000020000320 R15: ffffc9000327f460
copy_user_generic arch/x86/include/asm/uaccess_64.h:112 [inline]
raw_copy_to_user arch/x86/include/asm/uaccess_64.h:133 [inline]
_copy_to_user+0x86/0xa0 lib/usercopy.c:41
copy_to_user include/linux/uaccess.h:191 [inline]
fiemap_fill_next_extent+0x235/0x410 fs/ioctl.c:145
emit_fiemap_extent fs/btrfs/extent_io.c:2471 [inline]
fiemap_process_hole+0x5d2/0xaf0 fs/btrfs/extent_io.c:2690
extent_fiemap+0x1859/0x1fe0 fs/btrfs/extent_io.c:3003
btrfs_fiemap+0x178/0x1e0 fs/btrfs/inode.c:7823
ioctl_fiemap fs/ioctl.c:220 [inline]
do_vfs_ioctl+0x19ea/0x2b40 fs/ioctl.c:811
__do_sys_ioctl fs/ioctl.c:869 [inline]
__se_sys_ioctl+0x81/0x170 fs/ioctl.c:857
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x44/0x110 arch/x86/entry/common.c:82
entry_SYSCALL_64_after_hwframe+0x63/0x6b
RIP: 0033:0x7fb25ac7cae9
RSP: 002b:00007fb25b9860c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
RAX: ffffffffffffffda RBX: 00007fb25ad9c120 RCX: 00007fb25ac7cae9
RDX: 0000000020000300 RSI: 00000000c020660b RDI: 0000000000000008