INFO: task syz.1.1108:9514 blocked for more than 144 seconds.
      Not tainted 6.1.131-syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.1.1108      state:D stack:0     pid:9514  ppid:4302   flags:0x00000009
Call trace:
 __switch_to+0x308/0x598 arch/arm64/kernel/process.c:553
 context_switch kernel/sched/core.c:5243 [inline]
 __schedule+0xef4/0x1d44 kernel/sched/core.c:6560
 schedule+0xc4/0x170 kernel/sched/core.c:6636
 schedule_preempt_disabled+0x18/0x2c kernel/sched/core.c:6695
 rwsem_down_read_slowpath+0x534/0x858 kernel/locking/rwsem.c:1094
 __down_read_common kernel/locking/rwsem.c:1261 [inline]
 __down_read kernel/locking/rwsem.c:1274 [inline]
 down_read_nested+0xb0/0x30c kernel/locking/rwsem.c:1646
 xfs_ilock+0x1e0/0x4e4 fs/xfs/xfs_inode.c:206
 xfs_ilock_for_write_fault fs/xfs/xfs_file.c:244 [inline]
 __xfs_filemap_fault+0x43c/0xe0c fs/xfs/xfs_file.c:1363
 xfs_filemap_page_mkwrite+0x28/0x38 fs/xfs/xfs_file.c:1420
 do_page_mkwrite+0x144/0x37c mm/memory.c:3011
 wp_page_shared+0x148/0x550 mm/memory.c:3360
 do_wp_page+0xcbc/0xf44 mm/memory.c:3510
 handle_pte_fault mm/memory.c:5049 [inline]
 __handle_mm_fault mm/memory.c:5173 [inline]
 handle_mm_fault+0x19a4/0x3d38 mm/memory.c:5294
 faultin_page mm/gup.c:1026 [inline]
 __get_user_pages+0x3b0/0x968 mm/gup.c:1250
 faultin_vma_page_range+0x1d8/0x274 mm/gup.c:1670
 madvise_populate mm/madvise.c:928 [inline]
 madvise_vma_behavior mm/madvise.c:1037 [inline]
 madvise_walk_vmas mm/madvise.c:1259 [inline]
 do_madvise+0x1234/0x2f78 mm/madvise.c:1438
 __do_sys_madvise mm/madvise.c:1451 [inline]
 __se_sys_madvise mm/madvise.c:1449 [inline]
 __arm64_sys_madvise+0xa4/0xc0 mm/madvise.c:1449
 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline]
 invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52
 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140
 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204
 el0_svc+0x58/0x168 arch/arm64/kernel/entry-common.c:637
 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655
 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585

Showing all locks held in the system:
1 lock held by rcu_tasks_kthre/12:
 #0: ffff800015cd79b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x44/0xcf4 kernel/rcu/tasks.h:517
1 lock held by rcu_tasks_trace/13:
 #0: 
ffff800015cd81b0
 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x44/0xcf4 kernel/rcu/tasks.h:517
1 lock held by khungtaskd/28:
 #0: ffff800015cd77e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0xc/0x44 include/linux/rcupdate.h:349
3 locks held by kworker/u4:5/1638:
 #0: 
ffff0000c2e4d938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x6bc/0x1484 kernel/workqueue.c:2265
 #1: ffff800025ce7c20 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x6fc/0x1484 kernel/workqueue.c:2267
 #2: ffff0001000b60e0 (&type->s_umount_key#52){++++}-{3:3}, at: trylock_super+0x28/0xf8 fs/super.c:415
2 locks held by getty/4055:
 #0: 
ffff0000d6186098 (&tty->ldisc_sem){++++}-{0:0}, at: ldsem_down_read+0x3c/0x4c drivers/tty/tty_ldsem.c:340
 #1: ffff80002125b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x414/0x1214 drivers/tty/n_tty.c:2198
2 locks held by kworker/1:3/4345:
3 locks held by kworker/u4:25/7686:
5 locks held by syz.1.1108/9503:
 #0: ffff0001000b6460 (sb_writers#14){.+.+}-{0:0}, at: file_start_write include/linux/fs.h:3015 [inline]
 #0: ffff0001000b6460 (sb_writers#14){.+.+}-{0:0}, at: vfs_fallocate+0x404/0x5b4 fs/open.c:322
 #1: ffff0000f4fc6fb8 (&sb->s_type->i_mutex_key#21){++++}-{3:3}, at: xfs_ilock+0x148/0x4e4 fs/xfs/xfs_inode.c:195
 #2: ffff0000f4fc7158 (mapping.invalidate_lock#3){++++}-{3:3}, at: xfs_ilock+0x1b0/0x4e4 fs/xfs/xfs_inode.c:203
 #3: ffff0001000b6650 (sb_internal#2){.+.+}-{0:0}, at: xfs_bmapi_convert_delalloc+0x21c/0x10d4 fs/xfs/libxfs/xfs_bmap.c:4507
 #4: ffff0000f4fc6d98 (&xfs_nondir_ilock_class){++++}-{3:3}, at: mrupdate_nested fs/xfs/mrlock.h:36 [inline]
 #4: ffff0000f4fc6d98 (&xfs_nondir_ilock_class){++++}-{3:3}, at: xfs_ilock+0x218/0x4e4 fs/xfs/xfs_inode.c:211
3 locks held by syz.1.1108/9514:
 #0: ffff0000c9340d48 (&mm->mmap_lock){++++}-{3:3}, at: mmap_read_lock+0x28/0x74 include/linux/mmap_lock.h:117
 #1: ffff0001000b6558 (sb_pagefaults
#3){.+.+}-{0:0}, at: xfs_filemap_page_mkwrite+0x28/0x38 fs/xfs/xfs_file.c:1420
 #2: ffff0000f4fc7158 (mapping.invalidate_lock#3){++++}-{3:3}, at: xfs_ilock+0x1e0/0x4e4 fs/xfs/xfs_inode.c:206
2 locks held by rm/11583:

=============================================