INFO: task syz-executor.1:11879 can't die for more than 143 seconds. task:syz-executor.1 state:R running task stack:26552 pid:11879 ppid: 4827 flags:0x00004004 Call Trace: context_switch kernel/sched/core.c:4984 [inline] __schedule+0xa9a/0x4940 kernel/sched/core.c:6265 preempt_schedule_common+0x45/0xc0 kernel/sched/core.c:6431 __cond_resched+0x13/0x20 kernel/sched/core.c:8144 _cond_resched include/linux/sched.h:2025 [inline] vunmap_pmd_range mm/vmalloc.c:359 [inline] vunmap_pud_range mm/vmalloc.c:382 [inline] vunmap_p4d_range mm/vmalloc.c:405 [inline] vunmap_range_noflush+0x4ec/0x6d0 mm/vmalloc.c:436 free_unmap_vmap_area mm/vmalloc.c:1778 [inline] remove_vm_area+0x1c2/0x230 mm/vmalloc.c:2528 vm_remove_mappings mm/vmalloc.c:2557 [inline] __vunmap+0x392/0xb70 mm/vmalloc.c:2622 __vfree+0x3c/0xd0 mm/vmalloc.c:2680 __vmalloc_area_node mm/vmalloc.c:2981 [inline] __vmalloc_node_range+0x8b5/0xab0 mm/vmalloc.c:3065 __vmalloc_node mm/vmalloc.c:3114 [inline] __vmalloc+0x69/0x80 mm/vmalloc.c:3128 __snd_dma_alloc_pages+0x50/0x90 sound/core/memalloc.c:39 snd_dma_alloc_dir_pages+0x14d/0x240 sound/core/memalloc.c:73 do_alloc_pages+0xc2/0x180 sound/core/pcm_memory.c:48 snd_pcm_lib_malloc_pages+0x3e2/0x990 sound/core/pcm_memory.c:424 snd_pcm_hw_params+0x1408/0x1990 sound/core/pcm_native.c:719 snd_pcm_kernel_ioctl+0x164/0x310 sound/core/pcm_native.c:3372 snd_pcm_oss_change_params_locked+0x1936/0x3a60 sound/core/oss/pcm_oss.c:947 snd_pcm_oss_change_params sound/core/oss/pcm_oss.c:1091 [inline] snd_pcm_oss_make_ready+0xe7/0x1b0 sound/core/oss/pcm_oss.c:1150 snd_pcm_oss_sync+0x1de/0x800 sound/core/oss/pcm_oss.c:1717 snd_pcm_oss_release+0x276/0x300 sound/core/oss/pcm_oss.c:2571 __fput+0x286/0x9f0 fs/file_table.c:280 task_work_run+0xdd/0x1a0 kernel/task_work.c:164 tracehook_notify_resume include/linux/tracehook.h:189 [inline] exit_to_user_mode_loop kernel/entry/common.c:175 [inline] exit_to_user_mode_prepare+0x27e/0x290 kernel/entry/common.c:207 __syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline] syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:300 do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7f0fec97c72b RSP: 002b:00007ffc2d499470 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007f0fec97c72b RDX: 00007f0fecae23d0 RSI: ffffffff894fa651 RDI: 0000000000000004 RBP: 0000000000000001 R08: 0000000000000000 R09: 0000001b32f279fc R10: 0000000000001cf4 R11: 0000000000000293 R12: 0000000000132909 R13: 00000000000003e8 R14: 00007f0fecadcf60 R15: 0000000000132390 Showing all locks held in the system: 1 lock held by khungtaskd/27: #0: ffffffff8bb83a60 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6458 3 locks held by kworker/u4:3/54: #0: ffff8880b9c39a98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120 kernel/sched/core.c:478 #1: ffff8880b9c279c8 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x3a6/0x490 kernel/sched/psi.c:880 #2: ffff888034d39b98 (key#16){+...}-{2:2}, at: batadv_nc_process_nc_paths.part.0+0xb1/0x3c0 net/batman-adv/network-coding.c:688 1 lock held by in:imklog/6233: 2 locks held by agetty/6242: #0: ffff88801c43e098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:252 #1: ffffc900030c32e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230 drivers/tty/n_tty.c:2113 2 locks held by agetty/6254: #0: ffff88801edf9098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:252 #1: ffffc900030f32e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230 drivers/tty/n_tty.c:2113 2 locks held by kworker/u4:2/31338: #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: arch_atomic64_set arch/x86/include/asm/atomic64_64.h:34 [inline] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: arch_atomic_long_set include/linux/atomic/atomic-long.h:41 [inline] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: atomic_long_set include/linux/atomic/atomic-instrumented.h:1198 [inline] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_data kernel/workqueue.c:635 [inline] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: set_work_pool_and_clear_pending kernel/workqueue.c:662 [inline] #0: ffff888010c69138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x896/0x1690 kernel/workqueue.c:2269 #1: ffffc900050afdb0 ((kfence_timer).work){+.+.}-{0:0}, at: process_one_work+0x8ca/0x1690 kernel/workqueue.c:2273 1 lock held by syz-executor.1/11879: =============================================