INFO: task syz-executor.5:7750 can't die for more than 143 seconds. task:syz-executor.5 state:R running task stack:25768 pid: 7750 ppid: 5821 flags:0x00004006 Call Trace: context_switch kernel/sched/core.c:4987 [inline] __schedule+0xab2/0x4db0 kernel/sched/core.c:6296 preempt_schedule_irq+0x4e/0x90 kernel/sched/core.c:6711 irqentry_exit+0x31/0x80 kernel/entry/common.c:425 asm_sysvec_reschedule_ipi+0x12/0x20 arch/x86/include/asm/idtentry.h:643 RIP: 0010:dump_stack_lvl+0x12c/0x134 lib/dump_stack.c:108 Code: 48 85 ed 74 0a e8 84 f4 4e f8 e8 bf 16 34 00 e8 7a f4 4e f8 31 ff 48 89 de e8 00 f7 4e f8 48 85 db 74 06 e8 66 f4 4e f8 fb 5b <5d> 41 5c e9 5c f4 4e f8 e8 57 f4 4e f8 48 c7 c7 c0 af 29 8a e9 bb RSP: 0018:ffffc9000440f568 EFLAGS: 00000246 RAX: 0000000000040000 RBX: 1ffff92000881eb4 RCX: ffffc90013129000 RDX: 0000000000040000 RSI: ffffffff8929ad3a RDI: 0000000000000003 RBP: 0000000000000000 R08: 0000000000000000 R09: ffffffff902039df R10: ffffffff8929ad30 R11: 0000000000000000 R12: ffffffff8a29afc0 R13: dffffc0000000000 R14: 0000000000000003 R15: ffff88802b641d40 warn_alloc.cold+0x9b/0x189 mm/page_alloc.c:4292 __vmalloc_area_node mm/vmalloc.c:2999 [inline] __vmalloc_node_range+0xeb5/0x1130 mm/vmalloc.c:3153 __vmalloc_node mm/vmalloc.c:3218 [inline] vzalloc+0x67/0x80 mm/vmalloc.c:3288 n_tty_open+0x16/0x170 drivers/tty/n_tty.c:1813 tty_ldisc_open+0x9b/0x110 drivers/tty/tty_ldisc.c:433 tty_ldisc_setup+0x43/0x100 drivers/tty/tty_ldisc.c:740 tty_init_dev.part.0+0x1f4/0x610 drivers/tty/tty_io.c:1443 tty_init_dev include/linux/err.h:36 [inline] tty_open_by_driver drivers/tty/tty_io.c:2086 [inline] tty_open+0xb16/0x1000 drivers/tty/tty_io.c:2133 chrdev_open+0x266/0x770 fs/char_dev.c:414 do_dentry_open+0x4b9/0x1240 fs/open.c:957 do_open fs/namei.c:3476 [inline] path_openat+0x1c9e/0x2940 fs/namei.c:3609 do_filp_open+0x1aa/0x400 fs/namei.c:3636 do_sys_openat2+0x16d/0x4d0 fs/open.c:1347 do_sys_open fs/open.c:1363 [inline] __do_sys_openat fs/open.c:1379 [inline] __se_sys_openat fs/open.c:1374 [inline] __x64_sys_openat+0x13f/0x1f0 fs/open.c:1374 do_syscall_x64 arch/x86/entry/common.c:50 [inline] do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80 entry_SYSCALL_64_after_hwframe+0x44/0xae RIP: 0033:0x7fbce02aef74 RSP: 002b:00007fbcdf270ca0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101 RAX: ffffffffffffffda RBX: 00007fbce040ef60 RCX: 00007fbce02aef74 RDX: 0000000000000002 RSI: 00007fbcdf270d40 RDI: 00000000ffffff9c RBP: 00007fbcdf270d40 R08: 0000000000000000 R09: 000000000000000e R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002 R13: 00007ffca254cccf R14: 00007fbcdf271300 R15: 0000000000022000 Showing all locks held in the system: 1 lock held by khungtaskd/26: #0: ffffffff8bd84820 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260 kernel/locking/lockdep.c:6463 2 locks held by getty/3284: #0: ffff88807f7c3098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x22/0x80 drivers/tty/tty_ldisc.c:244 #1: ffffc90002b632e8 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xcf0/0x1230 drivers/tty/n_tty.c:2077 2 locks held by kworker/u4:6/3753: #0: ffff8880b9c39e58 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2b/0x120 kernel/sched/core.c:490 #1: ffff8880b9c27948 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x3e7/0x4e0 kernel/sched/psi.c:891 3 locks held by syz-executor.5/7750: ============================================= ---------------- Code disassembly (best guess): 0: 48 85 ed test %rbp,%rbp 3: 74 0a je 0xf 5: e8 84 f4 4e f8 callq 0xf84ef48e a: e8 bf 16 34 00 callq 0x3416ce f: e8 7a f4 4e f8 callq 0xf84ef48e 14: 31 ff xor %edi,%edi 16: 48 89 de mov %rbx,%rsi 19: e8 00 f7 4e f8 callq 0xf84ef71e 1e: 48 85 db test %rbx,%rbx 21: 74 06 je 0x29 23: e8 66 f4 4e f8 callq 0xf84ef48e 28: fb sti 29: 5b pop %rbx * 2a: 5d pop %rbp <-- trapping instruction 2b: 41 5c pop %r12 2d: e9 5c f4 4e f8 jmpq 0xf84ef48e 32: e8 57 f4 4e f8 callq 0xf84ef48e 37: 48 c7 c7 c0 af 29 8a mov $0xffffffff8a29afc0,%rdi 3e: e9 .byte 0xe9 3f: bb .byte 0xbb