INFO: task kworker/u8:6:2971 blocked for more than 143 seconds.
      Not tainted 6.12.0-syzkaller-08446-g228a1157fb9f #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:6    state:D stack:23592 pid:2971  tgid:2971  ppid:2      flags:0x00004000
Workqueue: writeback wb_workfn (flush-8:0)
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5369 [inline]
 __schedule+0xe58/0x5ad0 kernel/sched/core.c:6756
 __schedule_loop kernel/sched/core.c:6833 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6848
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:6905
 rwsem_down_write_slowpath+0x539/0x12a0 kernel/locking/rwsem.c:1176
 __down_write_common kernel/locking/rwsem.c:1304 [inline]
 __down_write kernel/locking/rwsem.c:1313 [inline]
 down_write+0x1d8/0x200 kernel/locking/rwsem.c:1578
 ext4_map_blocks+0x352/0x1370 fs/ext4/inode.c:701
 mpage_map_one_extent fs/ext4/inode.c:2219 [inline]
 mpage_map_and_submit_extent fs/ext4/inode.c:2272 [inline]
 ext4_do_writepages+0x19a7/0x3320 fs/ext4/inode.c:2735
 ext4_writepages+0x303/0x730 fs/ext4/inode.c:2824
 do_writepages+0x1b3/0x820 mm/page-writeback.c:2683
 __writeback_single_inode+0x166/0xfa0 fs/fs-writeback.c:1680
 writeback_sb_inodes+0x603/0xfa0 fs/fs-writeback.c:1976
 __writeback_inodes_wb+0xff/0x2e0 fs/fs-writeback.c:2047
 wb_writeback+0x73e/0xb80 fs/fs-writeback.c:2158
 wb_check_old_data_flush fs/fs-writeback.c:2262 [inline]
 wb_do_writeback fs/fs-writeback.c:2315 [inline]
 wb_workfn+0x8c0/0xbc0 fs/fs-writeback.c:2343
 process_one_work+0x958/0x1b30 kernel/workqueue.c:3229
 process_scheduled_works kernel/workqueue.c:3310 [inline]
 worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
INFO: task kworker/u8:8:17368 blocked for more than 143 seconds.
      Not tainted 6.12.0-syzkaller-08446-g228a1157fb9f #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:8    state:D stack:24064 pid:17368 tgid:17368 ppid:2      flags:0x00004000
Workqueue: ext4-rsv-conversion ext4_end_io_rsv_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5369 [inline]
 __schedule+0xe58/0x5ad0 kernel/sched/core.c:6756
 __schedule_loop kernel/sched/core.c:6833 [inline]
 schedule+0xe7/0x350 kernel/sched/core.c:6848
 io_schedule+0xbf/0x130 kernel/sched/core.c:7681
 bit_wait_io+0x15/0xe0 kernel/sched/wait_bit.c:247
 __wait_on_bit_lock+0x112/0x1a0 kernel/sched/wait_bit.c:90
 out_of_line_wait_on_bit_lock+0xda/0x110 kernel/sched/wait_bit.c:117
 wait_on_bit_lock_io include/linux/wait_bit.h:221 [inline]
 __lock_buffer+0x67/0x70 fs/buffer.c:71
 lock_buffer include/linux/buffer_head.h:426 [inline]
 do_get_write_access+0x8c3/0x1270 fs/jbd2/transaction.c:972
 jbd2_journal_get_write_access+0x1d6/0x280 fs/jbd2/transaction.c:1245
 __ext4_journal_get_write_access+0x6a/0x390 fs/ext4/ext4_jbd2.c:239
 ext4_ext_get_access+0x87/0x120 fs/ext4/extents.c:168
 ext4_convert_unwritten_extents_endio fs/ext4/extents.c:3788 [inline]
 ext4_ext_handle_unwritten_extents fs/ext4/extents.c:3932 [inline]
 ext4_ext_map_blocks+0x252d/0x5ad0 fs/ext4/extents.c:4271
 ext4_map_create_blocks fs/ext4/inode.c:516 [inline]
 ext4_map_blocks+0x457/0x1370 fs/ext4/inode.c:702
 ext4_convert_unwritten_extents+0x2b7/0x4c0 fs/ext4/extents.c:4876
 ext4_convert_unwritten_io_end_vec+0x127/0x280 fs/ext4/extents.c:4915
 ext4_end_io_end fs/ext4/page-io.c:185 [inline]
 ext4_do_flush_completed_IO fs/ext4/page-io.c:258 [inline]
 ext4_end_io_rsv_work+0x2ca/0x690 fs/ext4/page-io.c:272
 process_one_work+0x958/0x1b30 kernel/workqueue.c:3229
 process_scheduled_works kernel/workqueue.c:3310 [inline]
 worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/30:
 #0: ffffffff8ddbaf80 (rcu_read_lock){....}-{1:3}, at: rcu_lock_acquire include/linux/rcupdate.h:337 [inline]
 #0: ffffffff8ddbaf80 (rcu_read_lock){....}-{1:3}, at: rcu_read_lock include/linux/rcupdate.h:849 [inline]
 #0: ffffffff8ddbaf80 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 kernel/locking/lockdep.c:6744
6 locks held by kworker/u8:6/2971:
 #0: ffff88801d683148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x126b/0x1b30 kernel/workqueue.c:3204
 #1: ffffc9000c03fd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3205
 #2: ffff88814ee280e0 (&type->s_umount_key#31){++++}-{4:4}, at: super_trylock_shared+0x1e/0xf0 fs/super.c:562
 #3: ffff88814ee2ab98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x1b3/0x820 mm/page-writeback.c:2683
 #4: ffff88814ee2c958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430 fs/jbd2/transaction.c:448
 #5: ffff88807faac7e0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x352/0x1370 fs/ext4/inode.c:701
2 locks held by klogd/5209:
 #0: ffff8880b873eb18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 kernel/sched/core.c:598
 #1: ffff8880b8742e30 (&c->lock){-.-.}-{3:3}, at: psi_task_switch+0x203/0x8e0 kernel/sched/psi.c:975
2 locks held by getty/5601:
 #0: ffff8880350120a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
 #1: ffffc900032f32f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480 drivers/tty/n_tty.c:2211
2 locks held by syz-executor/5832:
 #0: ffff888030e0bdf0 (&vma->vm_lock->lock){++++}-{4:4}, at: vma_start_read include/linux/mm.h:716 [inline]
 #0: ffff888030e0bdf0 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980 mm/memory.c:6243
 #1: ffff88814ee28518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380 mm/memory.c:3162
4 locks held by kworker/u8:8/17368:
 #0: ffff888034540148 ((wq_completion)ext4-rsv-conversion){+.+.}-{0:0}, at: process_one_work+0x126b/0x1b30 kernel/workqueue.c:3204
 #1: ffffc9000caefd80 ((work_completion)(&ei->i_rsv_conversion_work)){+.+.}-{0:0}, at: process_one_work+0x8bb/0x1b30 kernel/workqueue.c:3205
 #2: ffff88814ee2c958 (jbd2_handle){++++}-{0:0}, at: start_this_handle+0xf6c/0x1430 fs/jbd2/transaction.c:448
 #3: ffff88807faac7e0 (&ei->i_data_sem){++++}-{4:4}, at: ext4_map_blocks+0x352/0x1370 fs/ext4/inode.c:701
2 locks held by syz.6.4005/23126:
 #0: ffff88801e762220 (&vma->vm_lock->lock){++++}-{4:4}, at: vma_start_read include/linux/mm.h:716 [inline]
 #0: ffff88801e762220 (&vma->vm_lock->lock){++++}-{4:4}, at: lock_vma_under_rcu+0x13e/0x980 mm/memory.c:6243
 #1: ffff88814ee28518 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x177/0x380 mm/memory.c:3162

=============================================

NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-syzkaller-08446-g228a1157fb9f #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
 nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:162 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:223 [inline]
 watchdog+0xf0c/0x1240 kernel/hung_task.c:379
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>
Sending NMI from CPU 1 to CPUs 0:
NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 21769 Comm: kworker/u8:23 Not tainted 6.12.0-syzkaller-08446-g228a1157fb9f #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
Workqueue: events_unbound toggle_allocation_gate
RIP: 0010:flush_tlb_mm_range+0x8b/0x330 arch/x86/mm/tlb.c:1015
Code: 05 4a ef dd 0e 0f 82 6d 01 00 00 48 8d bb 60 06 00 00 be 08 00 00 00 e8 b3 15 b1 00 b8 01 00 00 00 f0 48 0f c1 83 60 06 00 00 <45> 0f b6 c6 44 89 e9 48 89 ea 4c 8d 48 01 4c 89 e6 48 89 df e8 4c
RSP: 0018:ffffc9000c74f948 EFLAGS: 00000006
RAX: 000000000009b717 RBX: ffff88801ac70000 RCX: ffffffff813ef00d
RDX: ffffed100358e0cd RSI: 0000000000000008 RDI: ffff88801ac70660
RBP: 00002aaaaaaac000 R08: 0000000000000001 R09: ffffed100358e0cc
R10: ffff88801ac70667 R11: 0000000000000006 R12: 00002aaaaaaab000
R13: 000000000000000c R14: 0000000000000000 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000056474396e600 CR3: 000000000db7e000 CR4: 00000000003526f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <NMI>
 </NMI>
 <TASK>
 __text_poke+0x5be/0xca0 arch/x86/kernel/alternative.c:1947
 text_poke_bp_batch+0x3e0/0x760 arch/x86/kernel/alternative.c:2317
 text_poke_flush arch/x86/kernel/alternative.c:2486 [inline]
 text_poke_flush arch/x86/kernel/alternative.c:2483 [inline]
 text_poke_finish+0x30/0x40 arch/x86/kernel/alternative.c:2493
 arch_jump_label_transform_apply+0x1c/0x30 arch/x86/kernel/jump_label.c:146
 jump_label_update+0x1d7/0x400 kernel/jump_label.c:920
 static_key_enable_cpuslocked+0x1b7/0x270 kernel/jump_label.c:210
 static_key_enable+0x1a/0x20 kernel/jump_label.c:223
 toggle_allocation_gate mm/kfence/core.c:849 [inline]
 toggle_allocation_gate+0xfc/0x260 mm/kfence/core.c:841
 process_one_work+0x958/0x1b30 kernel/workqueue.c:3229
 process_scheduled_works kernel/workqueue.c:3310 [inline]
 worker_thread+0x6c8/0xf00 kernel/workqueue.c:3391
 kthread+0x2c1/0x3a0 kernel/kthread.c:389
 ret_from_fork+0x45/0x80 arch/x86/kernel/process.c:147
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:244
 </TASK>