INFO: task syz-executor.1:26442 can't die for more than 143 seconds.
task:syz-executor.1 state:R running task stack:26552 pid:26442 ppid: 9493 flags:0x00004004
Call Trace:
<TASK>
context_switch kernel/sched/core.c:4986 [inline]
__schedule+0xab2/0x4d90 kernel/sched/core.c:6296
preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6711
irqentry_exit+0x31/0x80 kernel/entry/common.c:425
asm_sysvec_call_function_single+0x12/0x20 arch/x86/include/asm/idtentry.h:646
RIP: 0010:dump_stack_lvl+0x12c/0x134 lib/dump_stack.c:108
Code: 48 85 ed 74 0a e8 76 59 57 f8 e8 91 25 33 00 e8 6c 59 57 f8 31 ff 48 89 de e8 f2 5b 57 f8 48 85 db 74 06 e8 58 59 57 f8 fb 5b <5d> 41 5c e9 4e 59 57 f8 e8 49 59 57 f8 48 c7 c7 e0 d4 08 8a e9 bb
RSP: 0000:ffffc90004bf7718 EFLAGS: 00000293
RAX: 0000000000000000 RBX: 1ffff9200097eee8 RCX: 0000000000000000
RDX: ffff88803413d7c0 RSI: ffffffff892089f8 RDI: 0000000000000003
RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff8ff9ea77
R10: ffffffff892089ee R11: 0000000000000000 R12: ffffffff8a08d4e0
R13: ffff88803413d7c0 R14: ffffffff89b763c0 R15: 0000000000000000
warn_alloc.cold+0x87/0x17a mm/page_alloc.c:4235
__vmalloc_area_node mm/vmalloc.c:2969 [inline]
__vmalloc_node_range+0xc44/0xe50 mm/vmalloc.c:3097
__vmalloc_node mm/vmalloc.c:3147 [inline]
__vmalloc+0x69/0x80 mm/vmalloc.c:3161
__snd_dma_alloc_pages+0x50/0x90 sound/core/memalloc.c:39
snd_dma_alloc_dir_pages+0x14d/0x240 sound/core/memalloc.c:73
do_alloc_pages+0xc2/0x180 sound/core/pcm_memory.c:48
snd_pcm_lib_malloc_pages+0x3e2/0x990 sound/core/pcm_memory.c:424
snd_pcm_hw_params+0x1408/0x1990 sound/core/pcm_native.c:719
snd_pcm_kernel_ioctl+0x164/0x310 sound/core/pcm_native.c:3372
snd_pcm_oss_change_params_locked+0x13c8/0x3bf0 sound/core/oss/pcm_oss.c:960
snd_pcm_oss_change_params sound/core/oss/pcm_oss.c:1104 [inline]
snd_pcm_oss_make_ready+0xe7/0x1b0 sound/core/oss/pcm_oss.c:1163
snd_pcm_oss_sync+0x1de/0x800 sound/core/oss/pcm_oss.c:1730
snd_pcm_oss_release+0x276/0x300 sound/core/oss/pcm_oss.c:2584
__fput+0x286/0x9f0 fs/file_table.c:311
task_work_run+0xdd/0x1a0 kernel/task_work.c:164
tracehook_notify_resume include/linux/tracehook.h:189 [inline]
exit_to_user_mode_loop kernel/entry/common.c:175 [inline]
exit_to_user_mode_prepare+0x27e/0x290 kernel/entry/common.c:207
__syscall_exit_to_user_mode_work kernel/entry/common.c:289 [inline]
syscall_exit_to_user_mode+0x19/0x60 kernel/entry/common.c:300
do_syscall_64+0x42/0xb0 arch/x86/entry/common.c:86
entry_SYSCALL_64_after_hwframe+0x44/0xae
RIP: 0033:0x7f2f64742adb
RSP: 002b:00007fffe179cbb0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
RAX: 0000000000000000 RBX: 0000000000000005 RCX: 00007f2f64742adb
RDX: 00007f2f648a86a0 RSI: ffffffffffffffff RDI: 0000000000000004
RBP: 00007f2f648a4960 R08: 0000000000000000 R09: 00007f2f648a86a8
R10: 00007fffe179ccb0 R11: 0000000000000293 R12: 00000000002920ca
R13: 00007fffe179ccb0 R14: 00007f2f648a2f60 R15: 0000000000000032
</TASK>
Showing all locks held in the system:
1 lock held by khungtaskd/27:
#0: ffffffff8bb828a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6460
1 lock held by in:imklog/6222:
#0: ffff888019e099f0 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xe9/0x100 fs/file.c:994
2 locks held by agetty/6334:
#0: ffff888012be1098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:244
#1: ffffc90001b0c2e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230 drivers/tty/n_tty.c:2077
1 lock held by agetty/13047:
3 locks held by kworker/u4:2/15421:
1 lock held by syz-executor.1/26442:
=============================================
----------------
Code disassembly (best guess):
0: 48 85 ed test %rbp,%rbp
3: 74 0a je 0xf
5: e8 76 59 57 f8 callq 0xf8575980
a: e8 91 25 33 00 callq 0x3325a0
f: e8 6c 59 57 f8 callq 0xf8575980
14: 31 ff xor %edi,%edi
16: 48 89 de mov %rbx,%rsi
19: e8 f2 5b 57 f8 callq 0xf8575c10
1e: 48 85 db test %rbx,%rbx
21: 74 06 je 0x29
23: e8 58 59 57 f8 callq 0xf8575980
28: fb sti
29: 5b pop %rbx
* 2a: 5d pop %rbp <-- trapping instruction
2b: 41 5c pop %r12
2d: e9 4e 59 57 f8 jmpq 0xf8575980
32: e8 49 59 57 f8 callq 0xf8575980
37: 48 c7 c7 e0 d4 08 8a mov $0xffffffff8a08d4e0,%rdi
3e: e9 .byte 0xe9
3f: bb .byte 0xbb