INFO: task kworker/u32:4:75 blocked for more than 143 seconds.
      Not tainted syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u32:4   state:D
 stack:21928 pid:75    tgid:75    ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: writeback wb_workfn (flush-7:0)
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5325 [inline]
 __schedule+0x1190/0x5de0 kernel/sched/core.c:6929
 __schedule_loop kernel/sched/core.c:7011 [inline]
 schedule+0xe7/0x3a0 kernel/sched/core.c:7026
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7083
 __mutex_lock_common kernel/locking/mutex.c:676 [inline]
 __mutex_lock+0x818/0x1060 kernel/locking/mutex.c:760
 hfsplus_find_init+0x186/0x2d0 fs/hfsplus/bfind.c:28
 hfsplus_cat_write_inode+0x255/0x7e0 fs/hfsplus/inode.c:592
 hfsplus_write_inode+0x9b/0x5a0 fs/hfsplus/super.c:174
 write_inode fs/fs-writeback.c:1564 [inline]
 __writeback_single_inode+0xb3e/0xfb0 fs/fs-writeback.c:1784
 writeback_sb_inodes+0x60d/0xfa0 fs/fs-writeback.c:2015
 __writeback_inodes_wb+0xf8/0x2d0 fs/fs-writeback.c:2086
 wb_writeback+0x7f3/0xb70 fs/fs-writeback.c:2197
 wb_check_old_data_flush fs/fs-writeback.c:2301 [inline]
 wb_do_writeback fs/fs-writeback.c:2354 [inline]
 wb_workfn+0x8ca/0xbe0 fs/fs-writeback.c:2382
 process_one_work+0x9cf/0x1b70 kernel/workqueue.c:3263
 process_scheduled_works kernel/workqueue.c:3346 [inline]
 worker_thread+0x6c8/0xf10 kernel/workqueue.c:3427
 kthread+0x3c5/0x780 kernel/kthread.c:463
 ret_from_fork+0x675/0x7d0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/41:
 #0: 
ffffffff8e3c4460
 (rcu_read_lock
){....}-{1:3}
, at: rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
, at: rcu_read_lock include/linux/rcupdate.h:867 [inline]
, at: debug_show_all_locks+0x36/0x1c0 kernel/locking/lockdep.c:6775
4 locks held by kworker/u32:4/75:
 #0: ffff888103aa8948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 kernel/workqueue.c:3238
 #1: ffffc9000162fd00
 ((work_completion)(&(&wb->dwork)->work)
){+.+.}-{0:0}
, at: process_one_work+0x929/0x1b70 kernel/workqueue.c:3239
 #2: 
ffff8880121040e0 (&type->s_umount_key#66){.+.+}-{4:4}, at: super_trylock_shared+0x1e/0xf0 fs/super.c:562
 #3: ffff888105b740b0
 (&tree->tree_lock
){+.+.}-{4:4}
, at: hfsplus_find_init+0x186/0x2d0 fs/hfsplus/bfind.c:28
2 locks held by getty/5740:
 #0: 
ffff88801d2fe0a0
 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 drivers/tty/tty_ldisc.c:243
 #1: 
ffffc900033f32f0
 (
&ldata->atomic_read_lock){+.+.}-{4:4}
, at: n_tty_read+0x41b/0x14f0 drivers/tty/n_tty.c:2222
8 locks held by syz-executor.0/6097:
1 lock held by syz-executor.0/6126:
 #0: ffff88806a73a398
 (
&rq->__lock){-.-.}-{2:2}, at: __wake_up_common_lock kernel/sched/wait.c:124 [inline]
&rq->__lock){-.-.}-{2:2}, at: __wake_up_sync_key+0x1c/0x50 kernel/sched/wait.c:192

=============================================

NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 41 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
Call Trace:
 <TASK>
 __dump_stack lib/dump_stack.c:94 [inline]
 dump_stack_lvl+0x116/0x1f0 lib/dump_stack.c:120
 nmi_cpu_backtrace+0x27b/0x390 lib/nmi_backtrace.c:113
 nmi_trigger_cpumask_backtrace+0x29c/0x300 lib/nmi_backtrace.c:62
 trigger_all_cpu_backtrace include/linux/nmi.h:160 [inline]
 check_hung_uninterruptible_tasks kernel/hung_task.c:332 [inline]
 watchdog+0xf3f/0x1170 kernel/hung_task.c:495
 kthread+0x3c5/0x780 kernel/kthread.c:463
 ret_from_fork+0x675/0x7d0 arch/x86/kernel/process.c:158
 ret_from_fork_asm+0x1a/0x30 arch/x86/entry/entry_64.S:245
 </TASK>
Sending NMI from CPU 0 to CPUs 1-3:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 6097 Comm: syz-executor.0 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:iterate_chain_key kernel/locking/lockdep.c:451 [inline]
RIP: 0010:__lock_acquire+0x67d/0x1c90 kernel/locking/lockdep.c:5225
Code: c6 01 c8 c1 c2 06 41 31 d6 44 89 f2 44 29 f1 41 01 c6 c1 c2 08 31 d1 89 ca 29 c8 44 01 f1 c1 c2 10 89 cf 31 d0 89 c6 41 29 c6 <01> c8 c1 ce 0d 44 31 f6 89 f2 29 f7 01 f0 c1 c2 04 89 c0 31 fa 48
RSP: 0018:ffffc900039cf318 EFLAGS: 00000016
RAX: 00000000fd866406 RBX: 0000000000000009 RCX: 000000005125e7ad
RDX: 0000000084cc5215 RSI: 00000000fd866406 RDI: 000000005125e7ad
RBP: ffff888030088000 R08: 0000000000080000 R09: 0000000000000001
R10: 0000000000000000 R11: 0000000000000001 R12: ffff888030088b30
R13: ffff888030088c98 R14: 000000000189fedb R15: 0000000000000000
FS:  00007fc245b426c0(0000) GS:ffff8880d6ad1000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f643a1ad988 CR3: 0000000034ec9000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 lock_acquire kernel/locking/lockdep.c:5868 [inline]
 lock_acquire+0x179/0x350 kernel/locking/lockdep.c:5825
 printk_legacy_allow_spinlock_enter kernel/printk/printk.c:3023 [inline]
 console_emit_next_record kernel/printk/printk.c:3110 [inline]
 console_flush_all+0x7d0/0xc60 kernel/printk/printk.c:3199
 __console_flush_and_unlock kernel/printk/printk.c:3258 [inline]
 console_unlock+0xd8/0x210 kernel/printk/printk.c:3298
 vprintk_emit+0x3d7/0x680 kernel/printk/printk.c:2423
 _printk+0xc7/0x100 kernel/printk/printk.c:2448
 is_bnode_offset_valid fs/hfsplus/hfsplus_fs.h:557 [inline]
 hfsplus_bnode_read+0x4b9/0x690 fs/hfsplus/bnode.c:28
 hfsplus_bnode_read_u16 fs/hfsplus/bnode.c:60 [inline]
 hfsplus_bnode_dump+0x162/0x800 fs/hfsplus/bnode.c:362
 hfsplus_brec_remove+0x4ad/0x610 fs/hfsplus/brec.c:229
 __hfsplus_delete_attr+0x2a0/0x3b0 fs/hfsplus/attributes.c:299
 hfsplus_delete_all_attrs+0x15e/0x310 fs/hfsplus/attributes.c:378
 hfsplus_delete_cat+0x93b/0xf40 fs/hfsplus/catalog.c:425
 hfsplus_unlink+0x212/0x7f0 fs/hfsplus/dir.c:385
 vfs_unlink+0x2fe/0x9b0 fs/namei.c:4673
 do_unlinkat+0x4c5/0x6a0 fs/namei.c:4737
 __do_sys_unlink fs/namei.c:4783 [inline]
 __se_sys_unlink fs/namei.c:4781 [inline]
 __x64_sys_unlink+0xc5/0x110 fs/namei.c:4781
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fc244e7dda9
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fc245b420c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
RAX: ffffffffffffffda RBX: 00007fc244fabf80 RCX: 00007fc244e7dda9
RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
RBP: 00007fc244eca47a R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 000000000000000b R14: 00007fc244fabf80 R15: 00007ffe051485e8
 </TASK>
NMI backtrace for cpu 3
CPU: 3 UID: 0 PID: 6126 Comm: syz-executor.0 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:lock_acquire+0x2b/0x350 kernel/locking/lockdep.c:5828
Code: 0f 1e fa 41 57 4d 89 cf 41 56 41 89 f6 41 55 41 89 d5 41 54 45 89 c4 55 89 cd 53 48 89 fb 48 83 ec 38 65 48 8b 05 8d c5 0b 12 <48> 89 44 24 30 31 c0 66 90 65 8b 05 a9 c5 0b 12 83 f8 07 0f 87 bc
RSP: 0018:ffffc90003e4ee48 EFLAGS: 00000296
RAX: 7a7abc3b4921ec00 RBX: ffffffff8e3c4460 RCX: 0000000000000002
RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8e3c4460
RBP: 0000000000000002 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 000000000000a845 R12: 0000000000000000
R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
FS:  000055555609b480(0000) GS:ffff8880d6cd1000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f643a179198 CR3: 0000000031a37000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 rcu_lock_acquire include/linux/rcupdate.h:331 [inline]
 rcu_read_lock include/linux/rcupdate.h:867 [inline]
 class_rcu_constructor include/linux/rcupdate.h:1195 [inline]
 unwind_next_frame+0xd1/0x20a0 arch/x86/kernel/unwind_orc.c:479
 arch_stack_walk+0x94/0x100 arch/x86/kernel/stacktrace.c:25
 stack_trace_save+0x8e/0xc0 kernel/stacktrace.c:122
 save_stack+0x160/0x1f0 mm/page_owner.c:156
 __set_page_owner+0x91/0x550 mm/page_owner.c:329
 set_page_owner include/linux/page_owner.h:32 [inline]
 post_alloc_hook+0x1c0/0x230 mm/page_alloc.c:1850
 prep_new_page mm/page_alloc.c:1858 [inline]
 get_page_from_freelist+0x10a3/0x3a30 mm/page_alloc.c:3884
 __alloc_frozen_pages_noprof+0x25f/0x2470 mm/page_alloc.c:5183
 __alloc_pages_noprof mm/page_alloc.c:5217 [inline]
 alloc_pages_bulk_noprof+0x71c/0x1410 mm/page_alloc.c:5137
 ___alloc_pages_bulk mm/kasan/shadow.c:345 [inline]
 __kasan_populate_vmalloc mm/kasan/shadow.c:370 [inline]
 kasan_populate_vmalloc+0x112/0x2d0 mm/kasan/shadow.c:435
 alloc_vmap_area+0x960/0x29e0 mm/vmalloc.c:2098
 __get_vm_area_node+0x1ca/0x330 mm/vmalloc.c:3193
 __vmalloc_node_range_noprof+0x271/0x1480 mm/vmalloc.c:3857
 __vmalloc_node_noprof+0xad/0xf0 mm/vmalloc.c:3960
 alloc_counters net/ipv4/netfilter/ip_tables.c:799 [inline]
 copy_entries_to_user net/ipv4/netfilter/ip_tables.c:821 [inline]
 get_entries net/ipv4/netfilter/ip_tables.c:1022 [inline]
 do_ipt_get_ctl+0x6b6/0xaa0 net/ipv4/netfilter/ip_tables.c:1668
 nf_getsockopt+0x7c/0xe0 net/netfilter/nf_sockopt.c:116
 ip_getsockopt+0x18c/0x1e0 net/ipv4/ip_sockglue.c:1777
 tcp_getsockopt+0xa1/0x100 net/ipv4/tcp.c:4810
 do_sock_getsockopt+0x34d/0x440 net/socket.c:2421
 __sys_getsockopt+0x12f/0x260 net/socket.c:2450
 __do_sys_getsockopt net/socket.c:2457 [inline]
 __se_sys_getsockopt net/socket.c:2454 [inline]
 __x64_sys_getsockopt+0xbd/0x160 net/socket.c:2454
 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline]
 do_syscall_64+0xcd/0xfa0 arch/x86/entry/syscall_64.c:94
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7f643a07f94a
Code: c4 c1 e0 1a 0d 00 00 04 00 89 01 e9 e0 fe ff ff e8 3b 05 00 00 66 2e 0f 1f 84 00 00 00 00 00 90 49 89 ca b8 37 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 06 c3 0f 1f 44 00 00 48 c7 c2 b0 ff ff ff f7
RSP: 002b:00007fff4ba24d78 EFLAGS: 00000202 ORIG_RAX: 0000000000000037
RAX: ffffffffffffffda RBX: 00007fff4ba24e00 RCX: 00007f643a07f94a
RDX: 0000000000000041 RSI: 0000000000000000 RDI: 0000000000000003
RBP: 0000000000000003 R08: 00007fff4ba24d9c R09: 00007fff4ba251b7
R10: 00007fff4ba24e00 R11: 0000000000000202 R12: 00007f643a17d3c0
R13: 00007fff4ba24d9c R14: 0000000000000000 R15: 00007f643a17eec0
 </TASK>
NMI backtrace for cpu 2
CPU: 2 UID: 0 PID: 0 Comm: swapper/2 Not tainted syzkaller #0 PREEMPT(full) 
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
RIP: 0010:pv_native_safe_halt+0xf/0x20 arch/x86/kernel/paravirt.c:82
Code: 57 73 02 c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa eb 07 0f 00 2d 43 35 22 00 fb f4 <e9> 3c 0a 03 00 66 2e 0f 1f 84 00 00 00 00 00 66 90 90 90 90 90 90
RSP: 0018:ffffc90000187de8 EFLAGS: 00000286
RAX: 0000000000129ffb RBX: 0000000000000002 RCX: ffffffff8b67f2a9
RDX: 0000000000000000 RSI: ffffffff8db06380 RDI: ffffffff8bf1de40
RBP: ffffed1003bd4920 R08: 0000000000000001 R09: ffffed100d4c6655
R10: ffff88806a6332ab R11: 0000000000000001 R12: 0000000000000002
R13: ffff88801dea4900 R14: ffffffff90833ad0 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8880d6bd1000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f643a1a8000 CR3: 000000002abdb000 CR4: 0000000000352ef0
Call Trace:
 <TASK>
 arch_safe_halt arch/x86/include/asm/paravirt.h:107 [inline]
 default_idle+0x13/0x20 arch/x86/kernel/process.c:767
 default_idle_call+0x6c/0xb0 kernel/sched/idle.c:122
 cpuidle_idle_call kernel/sched/idle.c:190 [inline]
 do_idle+0x38d/0x500 kernel/sched/idle.c:330
 cpu_startup_entry+0x4f/0x60 kernel/sched/idle.c:428
 start_secondary+0x21d/0x2b0 arch/x86/kernel/smpboot.c:315
 common_startup_64+0x13e/0x148
 </TASK>