INFO: task syz.4.20072:22447 blocked in I/O wait for more than 143 seconds.
      Tainted: G             L      syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:syz.4.20072     state:D stack:22008 pid:22447 tgid:22445 ppid:17255  task_flags:0x400140 flags:0x00080002
Call Trace:
 <TASK>
 __schedule+0x1821/0x5740
 schedule+0x164/0x360
 io_schedule+0x7f/0xd0
 txBegin+0x27d/0xc00
 jfs_commit_inode+0x1b3/0x530
 jfs_fsync+0x197/0x210
 generic_file_write_iter+0x37e/0x680
 iter_file_splice_write+0x9a1/0x10f0
 direct_splice_actor+0x101/0x160
 splice_direct_to_actor+0x53a/0xc70
 do_splice_direct+0x195/0x290
 do_sendfile+0x535/0x7d0
 __se_sys_sendfile64+0x144/0x1a0
 do_syscall_64+0x15f/0xf80
 entry_SYSCALL_64_after_hwframe+0x77/0x7f
RIP: 0033:0x7fca4e99cdd9
RSP: 002b:00007fca4f7ca028 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
RAX: ffffffffffffffda RBX: 00007fca4ec15fa0 RCX: 00007fca4e99cdd9
RDX: 0000000000000000 RSI: 0000000000000007 RDI: 0000000000000004
RBP: 00007fca4ea32d69 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000fffe82 R11: 0000000000000246 R12: 0000000000000000
R13: 00007fca4ec16038 R14: 00007fca4ec15fa0 R15: 00007ffd3dc62a68
 </TASK>

Showing all locks held in the system:
1 lock held by khungtaskd/34:
 #0: ffffffff8e95cd60 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
2 locks held by getty/5441:
 #0: ffff888176a9e0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
 #1: ffffc900034762e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x45c/0x13a0
2 locks held by kworker/1:9/14023:
3 locks held by kworker/u8:5/17048:
2 locks held by syz.4.20072/22447:
 #0: ffff88811fa96410 (sb_writers#23){.+.+}-{0:0}, at: direct_splice_actor+0x49/0x160
 #1: ffff88811d17b1b8 (&sb->s_type->i_mutex_key#43){+.+.}-{4:4}, at: jfs_fsync+0x97/0x210
1 lock held by syz-executor/22822:
 #0: ffffffff8e963068 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x38d/0x770
1 lock held by udevd/28063:

=============================================

NMI backtrace for cpu 0
CPU: 0 UID: 0 PID: 34 Comm: khungtaskd Tainted: G             L      syzkaller #0 PREEMPT(full) 
Tainted: [L]=SOFTLOCKUP
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
Call Trace:
 <TASK>
 dump_stack_lvl+0xe8/0x150
 nmi_cpu_backtrace+0x274/0x2d0
 nmi_trigger_cpumask_backtrace+0x17a/0x300
 sys_info+0x135/0x170
 watchdog+0xfd3/0x1030
 kthread+0x388/0x470
 ret_from_fork+0x514/0xb70
 ret_from_fork_asm+0x1a/0x30
 </TASK>
Sending NMI from CPU 0 to CPUs 1:
NMI backtrace for cpu 1
CPU: 1 UID: 0 PID: 124 Comm: jfsCommit Tainted: G             L      syzkaller #0 PREEMPT(full) 
Tainted: [L]=SOFTLOCKUP
Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
RIP: 0010:io_serial_in+0x77/0xc0
Code: e8 7e dd 80 fc 44 89 f9 d3 e3 49 83 c6 40 4c 89 f0 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 f7 e8 8f 26 ec fc 41 03 1e 89 da ec <0f> b6 c0 5b 41 5c 41 5e 41 5f e9 1a e4 66 06 cc 44 89 f9 80 e1 07
RSP: 0018:ffffc900030bf498 EFLAGS: 00000006
RAX: 1ffffffff34f470d RBX: 00000000000003f9 RCX: 0000000000000000
RDX: 00000000000003f9 RSI: 0000000000000000 RDI: 0000000000000020
RBP: ffffc900030bf630 R08: 0000000000000003 R09: 0000000000000004
R10: dffffc0000000000 R11: ffffffff8544e400 R12: dffffc0000000000
R13: dffffc0000000000 R14: ffffffff9a7a3880 R15: 0000000000000000
FS:  0000000000000000(0000) GS:ffff8882a928c000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 00007f3c43bea2f8 CR3: 000000018b524000 CR4: 00000000000006f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000ffff0ff0 DR7: 0000000000000600
Call Trace:
 <TASK>
 serial8250_console_write+0x540/0x1ba0
 console_flush_all+0x718/0xb20
 console_unlock+0xd1/0x1c0
 vprintk_emit+0x485/0x560
 _printk+0xdd/0x130
 jfs_error+0x130/0x2c0
 dbUpdatePMap+0xe66/0xed0
 txAllocPMap+0x57d/0x6b0
 txUpdateMap+0x81e/0x9c0
 jfs_lazycommit+0x43d/0xaa0
 kthread+0x388/0x470
 ret_from_fork+0x514/0xb70
 ret_from_fork_asm+0x1a/0x30
 </TASK>
