INFO: task syz-executor.4:3722 blocked for more than 143 seconds.
      Not tainted 5.15.129-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.4  state:D stack:22560 pid: 3722 ppid:  3572 flags:0x00004002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5026 [inline]
 __schedule+0x12c4/0x4590 kernel/sched/core.c:6372
 schedule+0x11b/0x1f0 kernel/sched/core.c:6455
 wb_wait_for_completion+0x164/0x290 fs/fs-writeback.c:191
 __writeback_inodes_sb_nr+0x2ce/0x370 fs/fs-writeback.c:2662
 try_to_writeback_inodes_sb+0x94/0xb0 fs/fs-writeback.c:2710
 ext4_nonda_switch fs/ext4/inode.c:2933 [inline]
 ext4_da_write_begin+0x228/0xb60 fs/ext4/inode.c:2960
 generic_perform_write+0x2bf/0x5b0 mm/filemap.c:3776
 ext4_buffered_write_iter+0x227/0x360 fs/ext4/file.c:268
 ext4_file_write_iter+0x87c/0x1990
 __kernel_write+0x5b1/0xa60 fs/read_write.c:539
 __dump_emit+0x264/0x3a0 fs/coredump.c:875
 dump_user_range+0x91/0x320 fs/coredump.c:949
 elf_core_dump+0x3c7d/0x4570 fs/binfmt_elf.c:2285
 do_coredump+0x1852/0x31e0 fs/coredump.c:826
 get_signal+0xc06/0x14e0 kernel/signal.c:2875
 arch_do_signal_or_restart+0xc3/0x1890 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:148 [inline]
 exit_to_user_mode_loop+0x97/0x130 kernel/entry/common.c:172
 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:208
 irqentry_exit_to_user_mode+0x5/0x40 kernel/entry/common.c:314
 exc_general_protection+0x358/0x4f0 arch/x86/kernel/traps.c:562
 asm_exc_general_protection+0x22/0x30 arch/x86/include/asm/idtentry.h:562
RIP: 0033:0x7f2293053af1
RSP: 002b:0000000020000320 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f2293172f80 RCX: 00007f2293053ae9
RDX: 0000000020000040 RSI: 0000000020000320 RDI: 0000000000008000
RBP: 00007f229309f47a R08: 0000000000000000 R09: 0000000000000000
R10: 00000000200001c0 R11: 0000000000000206 R12: 0000000000000000
R13: 000000000000000b R14: 00007f2293172f80 R15: 00007ffdce1adfd8
 </TASK>
INFO: task syz-executor.2:3865 blocked for more than 144 seconds.
      Not tainted 5.15.129-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2  state:D stack:23096 pid: 3865 ppid:  3570 flags:0x00004002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5026 [inline]
 __schedule+0x12c4/0x4590 kernel/sched/core.c:6372
 schedule+0x11b/0x1f0 kernel/sched/core.c:6455
 wb_wait_for_completion+0x164/0x290 fs/fs-writeback.c:191
 __writeback_inodes_sb_nr+0x2ce/0x370 fs/fs-writeback.c:2662
 try_to_writeback_inodes_sb+0x94/0xb0 fs/fs-writeback.c:2710
 ext4_nonda_switch fs/ext4/inode.c:2933 [inline]
 ext4_da_write_begin+0x228/0xb60 fs/ext4/inode.c:2960
 generic_perform_write+0x2bf/0x5b0 mm/filemap.c:3776
 ext4_buffered_write_iter+0x227/0x360 fs/ext4/file.c:268
 ext4_file_write_iter+0x87c/0x1990
 __kernel_write+0x5b1/0xa60 fs/read_write.c:539
 __dump_emit+0x264/0x3a0 fs/coredump.c:875
 dump_user_range+0x91/0x320 fs/coredump.c:949
 elf_core_dump+0x3c7d/0x4570 fs/binfmt_elf.c:2285
 do_coredump+0x1852/0x31e0 fs/coredump.c:826
 get_signal+0xc06/0x14e0 kernel/signal.c:2875
 arch_do_signal_or_restart+0xc3/0x1890 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:148 [inline]
 exit_to_user_mode_loop+0x97/0x130 kernel/entry/common.c:172
 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:208
 irqentry_exit_to_user_mode+0x5/0x40 kernel/entry/common.c:314
 exc_general_protection+0x358/0x4f0 arch/x86/kernel/traps.c:562
 asm_exc_general_protection+0x22/0x30 arch/x86/include/asm/idtentry.h:562
RIP: 0033:0x7f28d50c8af1
RSP: 002b:0000000020000320 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f28d51e7f80 RCX: 00007f28d50c8ae9
RDX: 0000000020000040 RSI: 0000000020000320 RDI: 0000000000008000
RBP: 00007f28d511447a R08: 0000000000000000 R09: 0000000000000000
R10: 00000000200001c0 R11: 0000000000000206 R12: 0000000000000000
R13: 000000000000000b R14: 00007f28d51e7f80 R15: 00007ffe054d9268
 </TASK>
INFO: task syz-executor.2:4044 blocked for more than 145 seconds.
      Not tainted 5.15.129-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz-executor.2  state:D stack:23200 pid: 4044 ppid:  3570 flags:0x00004002
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5026 [inline]
 __schedule+0x12c4/0x4590 kernel/sched/core.c:6372
 schedule+0x11b/0x1f0 kernel/sched/core.c:6455
 wb_wait_for_completion+0x164/0x290 fs/fs-writeback.c:191
 __writeback_inodes_sb_nr+0x2ce/0x370 fs/fs-writeback.c:2662
 try_to_writeback_inodes_sb+0x94/0xb0 fs/fs-writeback.c:2710
 ext4_nonda_switch fs/ext4/inode.c:2933 [inline]
 ext4_da_write_begin+0x228/0xb60 fs/ext4/inode.c:2960
 generic_perform_write+0x2bf/0x5b0 mm/filemap.c:3776
 ext4_buffered_write_iter+0x227/0x360 fs/ext4/file.c:268
 ext4_file_write_iter+0x87c/0x1990
 __kernel_write+0x5b1/0xa60 fs/read_write.c:539
 __dump_emit+0x264/0x3a0 fs/coredump.c:875
 dump_user_range+0x91/0x320 fs/coredump.c:949
 elf_core_dump+0x3c7d/0x4570 fs/binfmt_elf.c:2285
 do_coredump+0x1852/0x31e0 fs/coredump.c:826
 get_signal+0xc06/0x14e0 kernel/signal.c:2875
 arch_do_signal_or_restart+0xc3/0x1890 arch/x86/kernel/signal.c:867
 handle_signal_work kernel/entry/common.c:148 [inline]
 exit_to_user_mode_loop+0x97/0x130 kernel/entry/common.c:172
 exit_to_user_mode_prepare+0xb1/0x140 kernel/entry/common.c:208
 irqentry_exit_to_user_mode+0x5/0x40 kernel/entry/common.c:314
 exc_general_protection+0x358/0x4f0 arch/x86/kernel/traps.c:562
 asm_exc_general_protection+0x22/0x30 arch/x86/include/asm/idtentry.h:562
RIP: 0033:0x7f28d50c8af1
RSP: 002b:0000000020000320 EFLAGS: 00010217
RAX: 0000000000000000 RBX: 00007f28d51e8050 RCX: 00007f28d50c8ae9
RDX: 0000000020000040 RSI: 0000000020000320 RDI: 0000000000008000
RBP: 00007f28d511447a R08: 0000000000000000 R09: 0000000000000000
R10: 00000000200001c0 R11: 0000000000000206 R12: 0000000000000000
R13: 000000000000006e R14: 00007f28d51e8050 R15: 00007ffe054d9268
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/27:
 #0: ffffffff8c91f0e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30
2 locks held by getty/3257:
 #0: ffff88814b62b098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 drivers/tty/tty_ldisc.c:252
 #1: ffffc90002bb32e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6af/0x1db0 drivers/tty/n_tty.c:2158
3 locks held by kworker/u4:0/3531:
3 locks held by syz-executor.4/3722:
 #0: ffff88807ecfa460 (sb_writers#5){.+.+}-{0:0}, at: do_coredump+0x1825/0x31e0 fs/coredump.c:825
 #1: ffff88806521dda8 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: inode_lock include/linux/fs.h:787 [inline]
 #1: ffff88806521dda8 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_buffered_write_iter+0xa0/0x360 fs/ext4/file.c:262
 #2: ffff88807ecfa0e0 (&type->s_umount_key#32){++++}-{3:3}, at: try_to_writeback_inodes_sb+0x1d/0xb0 fs/fs-writeback.c:2707
3 locks held by syz-executor.2/3865:
 #0: ffff88807ecfa460 (sb_writers#5){.+.+}-{0:0}, at: do_coredump+0x1825/0x31e0 fs/coredump.c:825
 #1: ffff8880585f97e0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: inode_lock include/linux/fs.h:787 [inline]
 #1: ffff8880585f97e0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_buffered_write_iter+0xa0/0x360 fs/ext4/file.c:262
 #2: ffff88807ecfa0e0 (&type->s_umount_key#32){++++}-{3:3}, at: try_to_writeback_inodes_sb+0x1d/0xb0 fs/fs-writeback.c:2707
3 locks held by syz-executor.2/4044:
 #0: ffff88807ecfa460 (sb_writers#5){.+.+}-{0:0}, at: do_coredump+0x1825/0x31e0 fs/coredump.c:825
 #1: ffff888071abd3b0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: inode_lock include/linux/fs.h:787 [inline]
 #1: ffff888071abd3b0 (&sb->s_type->i_mutex_key#9){++++}-{3:3}, at: ext4_buffered_write_iter+0xa0/0x360 fs/ext4/file.c:262
 #2: ffff88807ecfa0e0 (&type->s_umount_key#32){++++}-{3:3}, at: try_to_writeback_inodes_sb+0x1d/0xb0 fs/fs-writeback.c:2707
2 locks held by syz-executor.2/4058:
1 lock held by syz-executor.2/4255:
1 lock held by syz-executor.1/7609:
1 lock held by syz-executor.1/7611:
1 lock held by syz-executor.1/7612:
1 lock held by syz-executor.1/7614:
1 lock held by syz-executor.1/7616:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
2 locks held by syz-executor.1/7619:
1 lock held by syz-executor.1/7620:
1 lock held by syz-executor.1/7621:
1 lock held by syz-executor.1/7622:
1 lock held by syz-executor.1/7623:
1 lock held by syz-executor.1/7624:
1 lock held by syz-executor.1/7625:
1 lock held by syz-executor.1/7626:
1 lock held by syz-executor.1/7633:
2 locks held by syz-executor.1/7634:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
 #1: ffff8880b9a39718 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 kernel/sched/core.c:475
1 lock held by syz-executor.4/7652:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.2/7658:
1 lock held by syz-executor.2/7659:
1 lock held by syz-executor.2/7660:
1 lock held by syz-executor.2/7661:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7663:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7664:
1 lock held by syz-executor.4/7665:
1 lock held by syz-executor.4/7666:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7667:
1 lock held by syz-executor.4/7669:
1 lock held by syz-executor.2/7670:
1 lock held by syz-executor.5/7672:
1 lock held by syz-executor.5/7673:
1 lock held by syz-executor.4/7674:
1 lock held by syz-executor.5/7675:
1 lock held by syz-executor.5/7676:
1 lock held by syz-executor.5/7677:
1 lock held by syz-executor.3/7678:
1 lock held by syz-executor.0/7680:
1 lock held by syz-executor.0/7681:
1 lock held by syz-executor.4/7682:
1 lock held by syz-executor.2/7683:
1 lock held by syz-executor.2/7684:
1 lock held by syz-executor.3/7686:
1 lock held by syz-executor.3/7687:
1 lock held by syz-executor.4/7689:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.2/7688:
2 locks held by syz-executor.0/7690:
1 lock held by syz-executor.4/7691:
1 lock held by syz-executor.3/7696:
3 locks held by syz-executor.4/7697:
1 lock held by syz-executor.4/7698:
1 lock held by syz-executor.2/7701:
1 lock held by syz-executor.3/7704:
2 locks held by syz-executor.5/7710:
1 lock held by syz-executor.5/7711:
1 lock held by syz-executor.1/7718:
1 lock held by syz-executor.1/7721:
1 lock held by syz-executor.1/7725:
1 lock held by syz-executor.1/7726:
1 lock held by syz-executor.3/7734:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7738:
1 lock held by syz-executor.5/7741:
1 lock held by syz-executor.5/7742:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
2 locks held by syz-executor.3/7743:
1 lock held by syz-executor.5/7746:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7750:
1 lock held by syz-executor.1/7758:
1 lock held by syz-executor.5/7759:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7760:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7762:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7764:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7769:
1 lock held by syz-executor.5/7770:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.1/7771:
1 lock held by syz-executor.1/7772:
1 lock held by syz-executor.1/7775:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7777:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7778:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.1/7783:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.2/7784:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.1/7785:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7790:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7794:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7797:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7803:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7805:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.0/7811:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7820:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.2/7823:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7825:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7832:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.1/7842:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7851:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7858:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7871:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7872:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7873:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7874:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7875:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7876:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7879:
1 lock held by syz-executor.4/7880:
1 lock held by syz-executor.4/7882:
1 lock held by syz-executor.4/7883:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.2/7884:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7886:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.1/7900:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.3/7914:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7947:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7948:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/7949:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7951:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.5/7952:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.0/7985:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/8188:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.4/8189:
1 lock held by syz-executor.2/8316:
1 lock held by syz-executor.2/8317:
1 lock held by syz-executor.0/8326:
1 lock held by syz-executor.2/8327:
1 lock held by syz-executor.3/8329:
1 lock held by syz-executor.3/8336:
 #0: ffff88807ecfcbd8 (&sbi->s_writepages_rwsem){.+.+}-{0:0}, at: ext4_writepages+0x1f6/0x3d10 fs/ext4/inode.c:2677
1 lock held by syz-executor.0/8338:
1 lock held by syz-executor.4/8349:
1 lock held by syz-executor.0/8360:
1 lock held by syz-executor.5/8500:
1 lock held by syz-executor.0/9888:
1 lock held by syz-executor.0/10008:
2 locks held by dhcpcd/10283:
 #0: ffff888078daa120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: lock_sock include/net/sock.h:1668 [inline]
 #0: ffff888078daa120 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x33/0xd50 net/packet/af_packet.c:3164
 #1: ffffffff8c923628 (rcu_state.exp_mutex){+.+.}-{3:3}, at: exp_funnel_lock kernel/rcu/tree_exp.h:290 [inline]
 #1: ffffffff8c923628 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x280/0x740 kernel/rcu/tree_exp.h:842

=============================================

NMI backtrace for cpu 1
CPU: 1 PID: 27 Comm: khungtaskd Not tainted 5.15.129-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:88 [inline]
 dump_stack_lvl+0x1e3/0x2cb lib/dump_stack.c:106
 nmi_cpu_backtrace+0x46a/0x4a0 lib/nmi_backtrace.c:111
 nmi_trigger_cpumask_backtrace+0x181/0x2a0 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:148 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:210 [inline]
 watchdog+0xe72/0xeb0 kernel/hung_task.c:295
 kthread+0x3f6/0x4f0 kernel/kthread.c:319
 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:298
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 PID: 10295 Comm: rm Not tainted 5.15.129-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
RIP: 0010:on_stack arch/x86/include/asm/stacktrace.h:55 [inline]
RIP: 0010:stack_access_ok arch/x86/kernel/unwind_orc.c:347 [inline]
RIP: 0010:deref_stack_reg arch/x86/kernel/unwind_orc.c:357 [inline]
RIP: 0010:unwind_next_frame+0xa6e/0x1fa0 arch/x86/kernel/unwind_orc.c:539
Code: c7 0e 00 00 0f b6 75 01 83 e6 03 83 fe 02 0f 84 83 01 00 00 83 fe 01 0f 84 ab 02 00 00 85 f6 0f 85 dc 03 00 00 4c 89 74 24 10 <49> 8d 7f 08 48 89 f8 48 c1 e8 03 80 3c 10 00 74 0f e8 dc 49 91 00
RSP: 0018:ffffc900033ef3c8 EFLAGS: 00000246
RAX: 0000000000000000 RBX: ffffffff8e599087 RCX: ffffffff8df252d0
RDX: dffffc0000000000 RSI: 0000000000000000 RDI: ffffffff8df252cc
RBP: ffffffff8e599086 R08: 0000000000000001 R09: ffffc900033ef570
R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffffffff1cb3210
R13: 1ffffffff1cb3210 R14: ffffffff8e599082 R15: ffffc900033ef480
FS:  0000000000000000(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007fccd3887440 CR3: 000000000c68e000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 arch_stack_walk+0x10d/0x140 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x113/0x1c0 kernel/stacktrace.c:122
 save_stack+0xf6/0x1e0 mm/page_owner.c:119
 __reset_page_owner+0x52/0x180 mm/page_owner.c:140
 reset_page_owner include/linux/page_owner.h:24 [inline]
 free_pages_prepare mm/page_alloc.c:1340 [inline]
 free_pcp_prepare mm/page_alloc.c:1391 [inline]
 free_unref_page_prepare+0xc34/0xcf0 mm/page_alloc.c:3317
 free_unref_page_list+0x1f7/0x8e0 mm/page_alloc.c:3433
 release_pages+0x1bb9/0x1f40 mm/swap.c:963
 tlb_batch_pages_flush mm/mmu_gather.c:49 [inline]
 tlb_flush_mmu_free mm/mmu_gather.c:240 [inline]
 tlb_flush_mmu mm/mmu_gather.c:247 [inline]
 tlb_finish_mmu+0x177/0x320 mm/mmu_gather.c:338
 exit_mmap+0x3cd/0x670 mm/mmap.c:3188
 __mmput+0x112/0x3b0 kernel/fork.c:1118
 exit_mm+0x688/0x7f0 kernel/exit.c:548
 do_exit+0x626/0x2480 kernel/exit.c:859
 do_group_exit+0x144/0x310 kernel/exit.c:994
 __do_sys_exit_group kernel/exit.c:1005 [inline]
 __se_sys_exit_group kernel/exit.c:1003 [inline]
 __x64_sys_exit_group+0x3b/0x40 kernel/exit.c:1003
 do_syscall_x64 arch/x86/entry/common.c:50 [inline]
 do_syscall_64+0x3d/0xb0 arch/x86/entry/common.c:80
 entry_SYSCALL_64_after_hwframe+0x61/0xcb
RIP: 0033:0x7fccd3945a90
Code: Unable to access opcode bytes at RIP 0x7fccd3945a66.
RSP: 002b:00007fff217dec18 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
RAX: ffffffffffffffda RBX: 00007fccd3a36860 RCX: 00007fccd3945a90
RDX: 00000000000000e7 RSI: 000000000000003c RDI: 0000000000000000
RBP: 00007fccd3a36860 R08: 00007fff217dea90 R09: 00007fff217deb70
R10: 00007fff217dead0 R11: 0000000000000246 R12: 0000000000000000
R13: 0000000000000000 R14: 00007fccd3a3a658 R15: 0000000000000001
 </TASK>