./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1609684922 <...> Warning: Permanently added '10.128.0.133' (ED25519) to the list of known hosts. execve("./syz-executor1609684922", ["./syz-executor1609684922"], 0x7ffd605e7310 /* 10 vars */) = 0 brk(NULL) = 0x55555b590000 brk(0x55555b590d00) = 0x55555b590d00 arch_prctl(ARCH_SET_FS, 0x55555b590380) = 0 set_tid_address(0x55555b590650) = 5242 set_robust_list(0x55555b590660, 24) = 0 rseq(0x55555b590ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1609684922", 4096) = 28 getrandom("\x7e\x1d\xfe\x9e\xbf\xc7\xfa\xb1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555b590d00 brk(0x55555b5b1d00) = 0x55555b5b1d00 brk(0x55555b5b2000) = 0x55555b5b2000 mprotect(0x7f6c93388000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5243 ./strace-static-x86_64: Process 5243 attached [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] set_robust_list(0x55555b590660, 24) = 0 ./strace-static-x86_64: Process 5244 attached [pid 5242] <... clone resumed>, child_tidptr=0x55555b590650) = 5244 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] set_robust_list(0x55555b590660, 24 [pid 5243] mkdir("./syzkaller.vusMqz", 0700./strace-static-x86_64: Process 5245 attached [pid 5244] <... set_robust_list resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5242] <... clone resumed>, child_tidptr=0x55555b590650) = 5245 [pid 5245] set_robust_list(0x55555b590660, 24 [pid 5244] mkdir("./syzkaller.NlOva9", 0700 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] chmod("./syzkaller.vusMqz", 0777 [pid 5245] <... set_robust_list resumed>) = 0 [pid 5243] <... chmod resumed>) = 0 [pid 5243] chdir("./syzkaller.vusMqz"./strace-static-x86_64: Process 5246 attached [pid 5245] mkdir("./syzkaller.eIj5LU", 0700 [pid 5244] <... mkdir resumed>) = 0 [pid 5243] <... chdir resumed>) = 0 [pid 5242] <... clone resumed>, child_tidptr=0x55555b590650) = 5246 [pid 5246] set_robust_list(0x55555b590660, 24 [pid 5243] mkdir("./0", 0777 [pid 5242] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... mkdir resumed>) = 0 [pid 5246] <... set_robust_list resumed>) = 0 [pid 5246] mkdir("./syzkaller.OYnVTr", 0700 [pid 5245] chmod("./syzkaller.eIj5LU", 0777 [pid 5244] chmod("./syzkaller.NlOva9", 0777 [pid 5243] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5247 attached [pid 5247] set_robust_list(0x55555b590660, 24) = 0 [pid 5247] getrandom( [pid 5246] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5242] <... clone resumed>, child_tidptr=0x55555b590650) = 5247 [pid 5246] chmod("./syzkaller.OYnVTr", 0777 [pid 5245] <... chmod resumed>) = 0 [pid 5244] <... chmod resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5247] <... getrandom resumed>"\x3e\x8f\x03\x3f\x6c\xac\x70\x47", 8, GRND_NONBLOCK) = 8 [pid 5244] chdir("./syzkaller.NlOva9" [pid 5247] mkdir("./syzkaller.sGb9nA", 0700 [pid 5246] <... chmod resumed>) = 0 [pid 5244] <... chdir resumed>) = 0 [pid 5245] chdir("./syzkaller.eIj5LU" [pid 5244] mkdir("./0", 0777 [pid 5245] <... chdir resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] <... mkdir resumed>) = 0 [pid 5246] chdir("./syzkaller.OYnVTr" [pid 5245] mkdir("./0", 0777 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] chmod("./syzkaller.sGb9nA", 0777 [pid 5246] <... chdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5243] close(3 [pid 5247] <... chmod resumed>) = 0 [pid 5246] mkdir("./0", 0777 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] chdir("./syzkaller.sGb9nA" [pid 5246] <... mkdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5249 attached [pid 5245] <... openat resumed>) = 3 [pid 5247] <... chdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] mkdir("./0", 0777 [pid 5246] <... openat resumed>) = 3 [pid 5249] set_robust_list(0x55555b590660, 24 [pid 5247] <... mkdir resumed>) = 0 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5249] <... set_robust_list resumed>) = 0 [pid 5249] chdir("./0" [pid 5246] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5245] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5244] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5249 [pid 5245] close(3 [pid 5244] close(3 [pid 5249] <... chdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5249] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... close resumed>) = 0 [pid 5249] <... prctl resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5249] setpgid(0, 0 [pid 5247] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5250 attached [pid 5249] <... setpgid resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5249] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5247] close(3 [pid 5249] <... openat resumed>) = 3 [pid 5247] <... close resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5250 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5252 attached ./strace-static-x86_64: Process 5251 attached [pid 5249] write(3, "1000", 4./strace-static-x86_64: Process 5253 attached [pid 5252] set_robust_list(0x55555b590660, 24 [pid 5251] set_robust_list(0x55555b590660, 24 [pid 5250] set_robust_list(0x55555b590660, 24 [pid 5249] <... write resumed>) = 4 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5251 [pid 5253] set_robust_list(0x55555b590660, 24 [pid 5251] <... set_robust_list resumed>) = 0 [pid 5250] <... set_robust_list resumed>) = 0 [pid 5249] close(3 [pid 5253] <... set_robust_list resumed>) = 0 [pid 5252] <... set_robust_list resumed>) = 0 [pid 5251] chdir("./0" [pid 5250] chdir("./0" [pid 5249] <... close resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5252 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5253 [pid 5253] chdir("./0" [pid 5252] chdir("./0" [pid 5251] <... chdir resumed>) = 0 [pid 5250] <... chdir resumed>) = 0 [pid 5249] symlink("/dev/binderfs", "./binderfs" [pid 5253] <... chdir resumed>) = 0 [pid 5252] <... chdir resumed>) = 0 [pid 5251] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5250] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5249] <... symlink resumed>) = 0 [pid 5253] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5252] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5250] <... prctl resumed>) = 0 [pid 5253] <... prctl resumed>) = 0 [pid 5253] setpgid(0, 0 [pid 5251] <... prctl resumed>) = 0 [pid 5250] setpgid(0, 0 [pid 5253] <... setpgid resumed>) = 0 [pid 5252] <... prctl resumed>) = 0 [pid 5251] setpgid(0, 0executing program [pid 5250] <... setpgid resumed>) = 0 [pid 5253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5252] setpgid(0, 0 [pid 5251] <... setpgid resumed>) = 0 [pid 5249] write(1, "executing program\n", 18 [pid 5253] <... openat resumed>) = 3 [pid 5252] <... setpgid resumed>) = 0 [pid 5251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5250] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5249] <... write resumed>) = 18 [pid 5253] write(3, "1000", 4 [pid 5252] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5253] <... write resumed>) = 4 [pid 5251] <... openat resumed>) = 3 [pid 5250] <... openat resumed>) = 3 [pid 5249] memfd_create("syzkaller", 0 [pid 5253] close(3 [pid 5250] write(3, "1000", 4 [pid 5253] <... close resumed>) = 0 [pid 5250] <... write resumed>) = 4 [pid 5253] symlink("/dev/binderfs", "./binderfs" [pid 5250] close(3 [pid 5252] <... openat resumed>) = 3 [pid 5251] write(3, "1000", 4 [pid 5250] <... close resumed>) = 0 [pid 5249] <... memfd_create resumed>) = 3 [pid 5253] <... symlink resumed>) = 0 [pid 5252] write(3, "1000", 4 [pid 5251] <... write resumed>) = 4 [pid 5250] symlink("/dev/binderfs", "./binderfs" [pid 5249] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program [pid 5253] write(1, "executing program\n", 18 [pid 5252] <... write resumed>) = 4 [pid 5251] close(3 [pid 5253] <... write resumed>) = 18 [pid 5252] close(3 [pid 5251] <... close resumed>) = 0 [pid 5250] <... symlink resumed>) = 0 [pid 5249] <... mmap resumed>) = 0x7f6c8ae00000 executing program [pid 5253] memfd_create("syzkaller", 0 [pid 5252] <... close resumed>) = 0 [pid 5251] symlink("/dev/binderfs", "./binderfs" [pid 5250] write(1, "executing program\n", 18) = 18 [pid 5252] symlink("/dev/binderfs", "./binderfs" [pid 5250] memfd_create("syzkaller", 0 [pid 5252] <... symlink resumed>) = 0 [pid 5252] write(1, "executing program\n", 18executing program ) = 18 [pid 5252] memfd_create("syzkaller", 0 [pid 5251] <... symlink resumed>) = 0 executing program [pid 5252] <... memfd_create resumed>) = 3 [pid 5251] write(1, "executing program\n", 18 [pid 5252] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5251] <... write resumed>) = 18 [pid 5252] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5251] memfd_create("syzkaller", 0 [pid 5253] <... memfd_create resumed>) = 3 [pid 5251] <... memfd_create resumed>) = 3 [pid 5250] <... memfd_create resumed>) = 3 [pid 5253] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5250] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5251] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5250] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5253] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5251] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5250] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5253] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5252] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5251] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5249] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5250] <... write resumed>) = 16777216 [pid 5250] munmap(0x7f6c8ae00000, 138412032 [pid 5253] <... write resumed>) = 16777216 [pid 5252] <... write resumed>) = 16777216 [pid 5253] munmap(0x7f6c8ae00000, 138412032 [pid 5249] <... write resumed>) = 16777216 [pid 5253] <... munmap resumed>) = 0 [pid 5252] munmap(0x7f6c8ae00000, 138412032 [pid 5251] <... write resumed>) = 16777216 [pid 5250] <... munmap resumed>) = 0 [pid 5249] munmap(0x7f6c8ae00000, 138412032 [pid 5251] munmap(0x7f6c8ae00000, 138412032 [pid 5250] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5253] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5253] ioctl(4, LOOP_SET_FD, 3 [pid 5250] <... openat resumed>) = 4 [pid 5250] ioctl(4, LOOP_SET_FD, 3 [pid 5253] <... ioctl resumed>) = 0 [pid 5249] <... munmap resumed>) = 0 [pid 5253] close(3 [pid 5252] <... munmap resumed>) = 0 [pid 5251] <... munmap resumed>) = 0 [pid 5250] <... ioctl resumed>) = 0 [pid 5253] <... close resumed>) = 0 [pid 5252] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5250] close(3 [pid 5253] close(4 [pid 5252] <... openat resumed>) = 4 [pid 5250] <... close resumed>) = 0 [pid 5252] ioctl(4, LOOP_SET_FD, 3 [pid 5250] close(4 [pid 5253] <... close resumed>) = 0 [pid 5251] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5249] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5253] mkdir("./file0", 0777 [pid 5251] <... openat resumed>) = 4 [pid 5250] <... close resumed>) = 0 [pid 5253] <... mkdir resumed>) = 0 [pid 5251] ioctl(4, LOOP_SET_FD, 3 [pid 5249] <... openat resumed>) = 4 [pid 5253] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 312.512496][ T5253] loop2: detected capacity change from 0 to 32768 [ 312.521361][ T5250] loop3: detected capacity change from 0 to 32768 [ 312.546399][ T5252] loop4: detected capacity change from 0 to 32768 [ 312.546913][ T5251] loop1: detected capacity change from 0 to 32768 [pid 5250] mkdir("./file0", 0777 [pid 5249] ioctl(4, LOOP_SET_FD, 3 [pid 5252] <... ioctl resumed>) = 0 [pid 5250] <... mkdir resumed>) = 0 [pid 5250] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5249] <... ioctl resumed>) = 0 [pid 5252] close(3) = 0 [pid 5249] close(3 [pid 5252] close(4 [pid 5249] <... close resumed>) = 0 [pid 5252] <... close resumed>) = 0 [pid 5249] close(4 [pid 5252] mkdir("./file0", 0777 [pid 5249] <... close resumed>) = 0 [pid 5249] mkdir("./file0", 0777 [pid 5252] <... mkdir resumed>) = 0 [pid 5249] <... mkdir resumed>) = 0 [pid 5249] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5253] <... mount resumed>) = 0 [pid 5252] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5253] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5250] <... mount resumed>) = 0 [pid 5251] <... ioctl resumed>) = 0 [pid 5251] close(3) = 0 [pid 5253] <... openat resumed>) = 3 [pid 5251] close(4 [pid 5250] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5251] <... close resumed>) = 0 [pid 5251] mkdir("./file0", 0777 [pid 5253] chdir("./file0" [pid 5251] <... mkdir resumed>) = 0 [pid 5250] <... openat resumed>) = 3 [pid 5249] <... mount resumed>) = 0 [pid 5253] <... chdir resumed>) = 0 [pid 5251] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5250] chdir("./file0" [pid 5249] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5253] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5252] <... mount resumed>) = 0 [pid 5250] <... chdir resumed>) = 0 [pid 5249] <... openat resumed>) = 3 [pid 5253] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5252] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5250] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5249] chdir("./file0" [pid 5253] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5252] <... openat resumed>) = 3 [pid 5250] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5249] <... chdir resumed>) = 0 [pid 5249] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5253] <... openat resumed>) = 4 [pid 5252] chdir("./file0" [pid 5250] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5249] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5252] <... chdir resumed>) = 0 [pid 5249] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5252] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5250] <... openat resumed>) = 4 [pid 5249] <... openat resumed>) = 4 [ 312.566014][ T5249] loop0: detected capacity change from 0 to 32768 [pid 5251] <... mount resumed>) = 0 [pid 5249] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5252] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5249] <... openat resumed>) = 5 [pid 5252] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5250] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5249] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5252] <... openat resumed>) = 4 [pid 5250] <... openat resumed>) = 5 [pid 5250] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5252] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5253] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5251] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5251] chdir("./file0") = 0 [pid 5251] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5251] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5253] <... openat resumed>) = 5 [pid 5252] <... openat resumed>) = 5 [pid 5251] <... openat resumed>) = 4 [pid 5252] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5251] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5251] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5253] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5252] <... write resumed>) = 4243456 [pid 5252] exit_group(0 [pid 5249] <... write resumed>) = 4243456 [pid 5252] <... exit_group resumed>) = ? [pid 5249] exit_group(0) = ? [pid 5249] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5249, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5252] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5252, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=40 /* 0.40 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5251] <... write resumed>) = 4243456 [pid 5250] <... write resumed>) = 4243456 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5251] exit_group(0 [pid 5250] exit_group(0 [pid 5243] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5253] <... write resumed>) = 4243456 [pid 5251] <... exit_group resumed>) = ? [pid 5250] <... exit_group resumed>) = ? [pid 5247] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5253] exit_group(0 [pid 5243] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./0/binderfs" [pid 5253] <... exit_group resumed>) = ? [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5251] +++ exited with 0 +++ [pid 5247] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5251, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5244] <... restart_syscall resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5250] +++ exited with 0 +++ [pid 5247] getdents64(3, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5253] +++ exited with 0 +++ [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... openat resumed>) = 3 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5250, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=29 /* 0.29 s */} --- [pid 5247] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5244] newfstatat(3, "", [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5253, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=29 /* 0.29 s */} --- [pid 5247] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] getdents64(3, [pid 5247] unlink("./0/binderfs") = 0 [pid 5246] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... restart_syscall resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... openat resumed>) = 3 [pid 5247] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(3, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, [pid 5245] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5245] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] unlink("./0/binderfs" [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./0/binderfs" [pid 5245] <... openat resumed>) = 3 [pid 5244] <... unlink resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5245] newfstatat(3, "", [pid 5246] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./0/binderfs") = 0 [pid 5245] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5243] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(AT_FDCWD, "./0/file0", [pid 5247] newfstatat(4, "", [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./0/file0", [pid 5245] newfstatat(AT_FDCWD, "./0/file0", [pid 5247] getdents64(4, [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] newfstatat(AT_FDCWD, "./0/file0", [pid 5247] getdents64(4, [pid 5246] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] newfstatat(4, "", [pid 5244] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] close(4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... close resumed>) = 0 [pid 5246] getdents64(4, [pid 5244] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] rmdir("./0/file0" [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(4, [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(4, "", [pid 5243] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] getdents64(3, [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5245] <... openat resumed>) = 4 [pid 5244] getdents64(4, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] close(3 [pid 5246] <... close resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5246] rmdir("./0/file0" [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5243] <... openat resumed>) = 4 [pid 5247] rmdir("./0" [pid 5246] <... rmdir resumed>) = 0 [pid 5245] getdents64(4, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] close(4 [pid 5243] newfstatat(4, "", [pid 5247] mkdir("./1", 0777 [pid 5246] getdents64(3, [pid 5245] getdents64(4, [pid 5244] <... close resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5244] rmdir("./0/file0" [pid 5243] getdents64(4, [pid 5245] <... close resumed>) = 0 [pid 5246] close(3 [pid 5245] rmdir("./0/file0" [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... close resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... openat resumed>) = 3 [pid 5246] rmdir("./0" [pid 5245] <... rmdir resumed>) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] getdents64(3, [pid 5243] getdents64(4, [pid 5247] <... ioctl resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5244] close(3 [pid 5243] close(4 [pid 5246] mkdir("./1", 0777 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./0") = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] mkdir("./1", 0777 [pid 5244] rmdir("./0" [pid 5243] rmdir("./0/file0" [pid 5245] <... mkdir resumed>) = 0 [pid 5246] close(3 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] getdents64(3, [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] mkdir("./1", 0777 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5243] close(3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5243] rmdir("./0" [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] <... rmdir resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5243] mkdir("./1", 0777 [pid 5244] close(3 [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5245] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5257 attached ./strace-static-x86_64: Process 5256 attached [pid 5257] set_robust_list(0x55555b590660, 24 [pid 5256] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5256 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5257 [pid 5257] <... set_robust_list resumed>) = 0 [pid 5256] <... set_robust_list resumed>) = 0 [pid 5257] chdir("./1") = 0 [pid 5257] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5257] setpgid(0, 0 [pid 5256] chdir("./1" [pid 5257] <... setpgid resumed>) = 0 [pid 5257] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5256] <... chdir resumed>) = 0 [pid 5257] <... openat resumed>) = 3 [pid 5256] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5257] write(3, "1000", 4 [pid 5256] <... prctl resumed>) = 0 [pid 5257] <... write resumed>) = 4 [pid 5257] close(3executing program [pid 5256] setpgid(0, 0 [pid 5257] <... close resumed>) = 0 [pid 5256] <... setpgid resumed>) = 0 [pid 5257] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5256] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5257] write(1, "executing program\n", 18) = 18 [pid 5257] memfd_create("syzkaller", 0) = 3 [pid 5256] <... openat resumed>) = 3 [pid 5257] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5256] write(3, "1000", 4) = 4 [pid 5256] close(3) = 0 [pid 5246] <... close resumed>) = 0 [pid 5256] symlink("/dev/binderfs", "./binderfs" [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5258 attached , child_tidptr=0x55555b590650) = 5258 [pid 5258] set_robust_list(0x55555b590660, 24) = 0 [pid 5256] <... symlink resumed>) = 0 [pid 5258] chdir("./1" [pid 5256] write(1, "executing program\n", 18executing program [pid 5244] <... close resumed>) = 0 [pid 5258] <... chdir resumed>) = 0 [pid 5256] <... write resumed>) = 18 [pid 5256] memfd_create("syzkaller", 0 [pid 5258] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5256] <... memfd_create resumed>) = 3 [pid 5258] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5259 attached [pid 5258] setpgid(0, 0 [pid 5256] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5259] set_robust_list(0x55555b590660, 24 [pid 5258] <... setpgid resumed>) = 0 [pid 5256] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5259] <... set_robust_list resumed>) = 0 [pid 5258] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5259] chdir("./1") = 0 [pid 5259] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5258] <... openat resumed>) = 3 [pid 5259] <... prctl resumed>) = 0 [pid 5258] write(3, "1000", 4 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5259 [pid 5258] <... write resumed>) = 4 [pid 5259] setpgid(0, 0) = 0 [pid 5259] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5259] write(3, "1000", 4) = 4 [pid 5259] close(3) = 0 [pid 5259] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5259] write(1, "executing program\n", 18) = 18 [pid 5259] memfd_create("syzkaller", 0 [pid 5258] close(3 [pid 5243] <... close resumed>) = 0 [pid 5258] <... close resumed>) = 0 [pid 5259] <... memfd_create resumed>) = 3 [pid 5259] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5258] symlink("/dev/binderfs", "./binderfs" [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5260 attached [pid 5258] <... symlink resumed>) = 0 executing program [pid 5260] set_robust_list(0x55555b590660, 24 [pid 5258] write(1, "executing program\n", 18 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5260 [pid 5260] <... set_robust_list resumed>) = 0 [pid 5258] <... write resumed>) = 18 [pid 5260] chdir("./1" [pid 5258] memfd_create("syzkaller", 0 [pid 5260] <... chdir resumed>) = 0 [pid 5260] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5258] <... memfd_create resumed>) = 3 [pid 5260] <... prctl resumed>) = 0 [pid 5258] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5260] setpgid(0, 0 [pid 5258] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5260] <... setpgid resumed>) = 0 [pid 5260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5260] write(3, "1000", 4) = 4 [pid 5260] close(3) = 0 [pid 5260] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5260] write(1, "executing program\n", 18executing program ) = 18 [pid 5260] memfd_create("syzkaller", 0) = 3 [pid 5260] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5257] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5256] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5259] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5258] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5260] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5257] <... write resumed>) = 16777216 [pid 5257] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5257] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5257] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5257] close(3) = 0 [pid 5257] close(4) = 0 [pid 5257] mkdir("./file0", 0777) = 0 [ 314.179922][ T5257] loop2: detected capacity change from 0 to 32768 [pid 5257] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5256] <... write resumed>) = 16777216 [pid 5259] <... write resumed>) = 16777216 [pid 5257] <... mount resumed>) = 0 [pid 5259] munmap(0x7f6c8ae00000, 138412032 [pid 5257] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5256] munmap(0x7f6c8ae00000, 138412032 [pid 5257] <... openat resumed>) = 3 [pid 5259] <... munmap resumed>) = 0 [pid 5257] chdir("./file0") = 0 [pid 5257] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5259] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5257] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5256] <... munmap resumed>) = 0 [pid 5257] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5259] <... openat resumed>) = 4 [pid 5257] <... openat resumed>) = 4 [pid 5256] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5259] ioctl(4, LOOP_SET_FD, 3 [pid 5257] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5256] <... openat resumed>) = 4 [pid 5256] ioctl(4, LOOP_SET_FD, 3 [pid 5260] <... write resumed>) = 16777216 [pid 5259] <... ioctl resumed>) = 0 [pid 5257] <... openat resumed>) = 5 [pid 5257] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5260] munmap(0x7f6c8ae00000, 138412032 [pid 5256] <... ioctl resumed>) = 0 [pid 5259] close(3) = 0 [pid 5259] close(4 [pid 5256] close(3) = 0 [pid 5256] close(4 [pid 5259] <... close resumed>) = 0 [pid 5256] <... close resumed>) = 0 [pid 5256] mkdir("./file0", 0777) = 0 [pid 5259] mkdir("./file0", 0777 [pid 5256] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5259] <... mkdir resumed>) = 0 [pid 5259] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5260] <... munmap resumed>) = 0 [pid 5260] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 314.290545][ T5259] loop1: detected capacity change from 0 to 32768 [ 314.291319][ T5256] loop4: detected capacity change from 0 to 32768 [pid 5260] ioctl(4, LOOP_SET_FD, 3 [pid 5256] <... mount resumed>) = 0 [pid 5260] <... ioctl resumed>) = 0 [pid 5260] close(3) = 0 [pid 5256] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5260] close(4 [pid 5256] <... openat resumed>) = 3 [pid 5256] chdir("./file0" [pid 5260] <... close resumed>) = 0 [pid 5260] mkdir("./file0", 0777) = 0 [pid 5258] <... write resumed>) = 16777216 [pid 5256] <... chdir resumed>) = 0 [pid 5258] munmap(0x7f6c8ae00000, 138412032 [pid 5256] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5256] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5260] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5256] <... openat resumed>) = 4 [pid 5256] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5256] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5259] <... mount resumed>) = 0 [ 314.343981][ T5260] loop0: detected capacity change from 0 to 32768 [pid 5259] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5259] chdir("./file0") = 0 [pid 5259] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5259] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5259] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5259] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5260] <... mount resumed>) = 0 [pid 5260] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5258] <... munmap resumed>) = 0 [pid 5260] <... openat resumed>) = 3 [pid 5258] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5260] chdir("./file0" [pid 5258] <... openat resumed>) = 4 [pid 5260] <... chdir resumed>) = 0 [pid 5258] ioctl(4, LOOP_SET_FD, 3 [pid 5260] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5258] <... ioctl resumed>) = 0 [pid 5258] close(3 [pid 5260] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5258] <... close resumed>) = 0 [pid 5258] close(4) = 0 [pid 5258] mkdir("./file0", 0777) = 0 [pid 5258] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5260] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5258] <... mount resumed>) = 0 [pid 5260] <... openat resumed>) = 5 [ 314.440289][ T5258] loop3: detected capacity change from 0 to 32768 [pid 5260] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5258] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5258] chdir("./file0") = 0 [pid 5258] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5258] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5258] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5258] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5257] <... write resumed>) = 4243456 [pid 5257] exit_group(0) = ? [pid 5257] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5257, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./1/binderfs") = 0 [pid 5245] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5256] <... write resumed>) = 4243456 [pid 5256] exit_group(0) = ? [pid 5245] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5259] <... write resumed>) = 4243456 [pid 5256] +++ exited with 0 +++ [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5256, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=36 /* 0.36 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./1/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5259] exit_group(0 [pid 5245] close(3 [pid 5259] <... exit_group resumed>) = ? [pid 5245] <... close resumed>) = 0 [pid 5259] +++ exited with 0 +++ [pid 5245] rmdir("./1" [pid 5247] <... restart_syscall resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5259, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] mkdir("./2", 0777 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... mkdir resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(3, "", [pid 5244] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... openat resumed>) = 3 [pid 5247] getdents64(3, [pid 5245] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] getdents64(3, [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... ioctl resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5245] close(3 [pid 5244] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./1/binderfs" [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... unlink resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5247] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./1/binderfs") = 0 [pid 5244] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5247] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5258] <... write resumed>) = 4243456 [pid 5247] <... openat resumed>) = 4 [pid 5258] exit_group(0 [pid 5247] newfstatat(4, "", [pid 5258] <... exit_group resumed>) = ? [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5260] <... write resumed>) = 4243456 [pid 5247] getdents64(4, [pid 5260] exit_group(0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5260] <... exit_group resumed>) = ? [pid 5247] getdents64(4, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] newfstatat(AT_FDCWD, "./1/file0", [pid 5247] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5258] +++ exited with 0 +++ [pid 5247] <... close resumed>) = 0 [pid 5244] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5258, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] rmdir("./1/file0" [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... rmdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5244] getdents64(4, [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] close(3 [pid 5244] getdents64(4, [pid 5247] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] rmdir("./1" [pid 5244] close(4 [pid 5247] <... rmdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./1/file0" [pid 5247] mkdir("./2", 0777 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./1") = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] mkdir("./2", 0777 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5260] +++ exited with 0 +++ [pid 5246] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5260, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(3, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(3, "", [pid 5246] newfstatat(AT_FDCWD, "./1/binderfs", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(3, [pid 5246] unlink("./1/binderfs" [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... unlink resumed>) = 0 [pid 5243] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./1/binderfs") = 0 [pid 5243] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./1/file0", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(4, [pid 5246] umount2("./1/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] getdents64(4, [pid 5246] openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5243] close(4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] getdents64(4, [pid 5243] rmdir("./1/file0" [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... rmdir resumed>) = 0 [pid 5246] getdents64(4, [pid 5243] getdents64(3, [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5243] close(3 [pid 5246] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] rmdir("./1/file0" [pid 5243] rmdir("./1" [pid 5246] <... rmdir resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, [pid 5243] mkdir("./2", 0777 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5246] close(3 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... close resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5246] rmdir("./1" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] <... rmdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5246] mkdir("./2", 0777 [pid 5243] close(3 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5261 ./strace-static-x86_64: Process 5261 attached [pid 5261] set_robust_list(0x55555b590660, 24) = 0 [pid 5261] chdir("./2") = 0 [pid 5261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5261] setpgid(0, 0) = 0 [pid 5261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5261] write(3, "1000", 4) = 4 [pid 5261] close(3) = 0 [pid 5261] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5261] write(1, "executing program\n", 18) = 18 [pid 5261] memfd_create("syzkaller", 0) = 3 [pid 5261] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5262 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5262 attached [pid 5262] set_robust_list(0x55555b590660, 24) = 0 [pid 5262] chdir("./2" [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5263 [pid 5262] <... chdir resumed>) = 0 [pid 5262] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5262] setpgid(0, 0) = 0 [pid 5262] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5262] write(3, "1000", 4) = 4 [pid 5262] close(3) = 0 ./strace-static-x86_64: Process 5263 attached [pid 5262] symlink("/dev/binderfs", "./binderfs" [pid 5263] set_robust_list(0x55555b590660, 24executing program [pid 5262] <... symlink resumed>) = 0 [pid 5262] write(1, "executing program\n", 18) = 18 [pid 5263] <... set_robust_list resumed>) = 0 [pid 5262] memfd_create("syzkaller", 0) = 3 [pid 5263] chdir("./2") = 0 [pid 5262] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5263] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5263] setpgid(0, 0) = 0 [pid 5263] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5263] write(3, "1000", 4) = 4 [pid 5263] close(3) = 0 [pid 5263] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5243] <... close resumed>) = 0 [pid 5263] write(1, "executing program\n", 18 [pid 5246] <... close resumed>) = 0 executing program [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5263] <... write resumed>) = 18 [pid 5263] memfd_create("syzkaller", 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5263] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 5264 attached ./strace-static-x86_64: Process 5265 attached [pid 5263] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5264 [pid 5263] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5264] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5265 [pid 5265] set_robust_list(0x55555b590660, 24 [pid 5264] <... set_robust_list resumed>) = 0 [pid 5264] chdir("./2" [pid 5265] <... set_robust_list resumed>) = 0 [pid 5265] chdir("./2" [pid 5264] <... chdir resumed>) = 0 [pid 5264] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5265] <... chdir resumed>) = 0 [pid 5264] <... prctl resumed>) = 0 [pid 5265] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5264] setpgid(0, 0 [pid 5265] <... prctl resumed>) = 0 [pid 5264] <... setpgid resumed>) = 0 [pid 5265] setpgid(0, 0 [pid 5264] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5265] <... setpgid resumed>) = 0 [pid 5265] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5264] <... openat resumed>) = 3 executing program executing program [pid 5265] <... openat resumed>) = 3 [pid 5264] write(3, "1000", 4 [pid 5265] write(3, "1000", 4 [pid 5264] <... write resumed>) = 4 [pid 5265] <... write resumed>) = 4 [pid 5264] close(3) = 0 [pid 5264] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5265] close(3 [pid 5264] write(1, "executing program\n", 18 [pid 5265] <... close resumed>) = 0 [pid 5264] <... write resumed>) = 18 [pid 5265] symlink("/dev/binderfs", "./binderfs" [pid 5264] memfd_create("syzkaller", 0 [pid 5265] <... symlink resumed>) = 0 [pid 5265] write(1, "executing program\n", 18 [pid 5264] <... memfd_create resumed>) = 3 [pid 5265] <... write resumed>) = 18 [pid 5264] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5265] memfd_create("syzkaller", 0 [pid 5264] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5265] <... memfd_create resumed>) = 3 [pid 5265] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5261] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5263] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5262] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5265] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5264] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5261] <... write resumed>) = 16777216 [pid 5261] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5261] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5261] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5261] close(3) = 0 [pid 5261] close(4) = 0 [pid 5261] mkdir("./file0", 0777) = 0 [pid 5261] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5261] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5261] chdir("./file0") = 0 [pid 5261] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5261] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5261] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5263] <... write resumed>) = 16777216 [pid 5261] <... openat resumed>) = 5 [pid 5261] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [ 315.862102][ T5261] loop2: detected capacity change from 0 to 32768 [pid 5263] munmap(0x7f6c8ae00000, 138412032 [pid 5262] <... write resumed>) = 16777216 [pid 5262] munmap(0x7f6c8ae00000, 138412032 [pid 5264] <... write resumed>) = 16777216 [pid 5263] <... munmap resumed>) = 0 [pid 5264] munmap(0x7f6c8ae00000, 138412032 [pid 5263] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5263] ioctl(4, LOOP_SET_FD, 3 [pid 5262] <... munmap resumed>) = 0 [pid 5264] <... munmap resumed>) = 0 [pid 5263] <... ioctl resumed>) = 0 [pid 5264] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5262] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5264] ioctl(4, LOOP_SET_FD, 3 [pid 5262] ioctl(4, LOOP_SET_FD, 3 [pid 5263] close(3 [pid 5262] <... ioctl resumed>) = 0 [pid 5264] <... ioctl resumed>) = 0 [pid 5263] <... close resumed>) = 0 [pid 5262] close(3 [pid 5263] close(4) = 0 [pid 5263] mkdir("./file0", 0777 [pid 5262] <... close resumed>) = 0 [pid 5262] close(4) = 0 [pid 5262] mkdir("./file0", 0777) = 0 [pid 5263] <... mkdir resumed>) = 0 [pid 5264] close(3) = 0 [pid 5263] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5264] close(4) = 0 [pid 5264] mkdir("./file0", 0777) = 0 [pid 5262] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5264] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5263] <... mount resumed>) = 0 [pid 5263] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5263] chdir("./file0") = 0 [pid 5263] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5262] <... mount resumed>) = 0 [pid 5262] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5262] chdir("./file0" [pid 5263] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5262] <... chdir resumed>) = 0 [pid 5262] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5262] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5262] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5263] <... openat resumed>) = 4 [pid 5263] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5263] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5264] <... mount resumed>) = 0 [pid 5264] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5264] chdir("./file0") = 0 [pid 5264] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5264] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5264] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 316.000137][ T5263] loop1: detected capacity change from 0 to 32768 [ 316.013096][ T5264] loop0: detected capacity change from 0 to 32768 [ 316.020954][ T5262] loop4: detected capacity change from 0 to 32768 [pid 5264] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5262] <... openat resumed>) = 5 [pid 5262] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5261] <... write resumed>) = 4243456 [pid 5261] exit_group(0) = ? [pid 5265] <... write resumed>) = 16777216 [pid 5261] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5261, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=28 /* 0.28 s */} --- [pid 5265] munmap(0x7f6c8ae00000, 138412032 [pid 5245] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./2/binderfs" [pid 5265] <... munmap resumed>) = 0 [pid 5265] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5265] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5265] <... ioctl resumed>) = 0 [pid 5265] close(3) = 0 [pid 5265] close(4) = 0 [pid 5265] mkdir("./file0", 0777) = 0 [ 316.200096][ T5265] loop3: detected capacity change from 0 to 32768 [pid 5265] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5265] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5265] chdir("./file0") = 0 [pid 5265] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5265] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5265] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5265] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./2/file0" [pid 5263] <... write resumed>) = 4243456 [pid 5263] exit_group(0) = ? [pid 5263] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5263, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=37 /* 0.37 s */} --- [pid 5264] <... write resumed>) = 4243456 [pid 5244] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5264] exit_group(0) = ? [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] close(3 [pid 5244] newfstatat(3, "", [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./2" [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5264] +++ exited with 0 +++ [pid 5245] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5264, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] mkdir("./3", 0777 [pid 5244] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5243] newfstatat(3, "", [pid 5245] <... mkdir resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5262] <... write resumed>) = 4243456 [pid 5243] getdents64(3, [pid 5244] unlink("./2/binderfs" [pid 5262] exit_group(0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5262] <... exit_group resumed>) = ? [pid 5244] <... unlink resumed>) = 0 [pid 5243] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./2/binderfs") = 0 [pid 5243] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5244] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5262] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5262, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=31 /* 0.31 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5247] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(4, "", [pid 5244] newfstatat(AT_FDCWD, "./2/file0", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(4, [pid 5247] <... openat resumed>) = 3 [pid 5244] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] newfstatat(3, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] getdents64(4, [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(3, [pid 5243] close(4) = 0 [pid 5243] rmdir("./2/file0" [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] getdents64(3, [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5244] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5243] close(3 [pid 5247] unlink("./2/binderfs" [pid 5243] <... close resumed>) = 0 [pid 5244] newfstatat(4, "", [pid 5243] rmdir("./2" [pid 5247] <... unlink resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] mkdir("./3", 0777 [pid 5244] getdents64(4, [pid 5243] <... mkdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./2/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5244] <... close resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5244] rmdir("./2" [pid 5243] <... ioctl resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] mkdir("./3", 0777 [pid 5247] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... mkdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] newfstatat(AT_FDCWD, "./2/file0", [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5247] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] close(3 [pid 5247] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5265] <... write resumed>) = 4243456 [pid 5265] exit_group(0) = ? [pid 5265] +++ exited with 0 +++ [pid 5247] close(4) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5265, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=28 /* 0.28 s */} --- [pid 5247] rmdir("./2/file0" [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5247] rmdir("./2" [pid 5246] newfstatat(3, "", [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] mkdir("./3", 0777) = 0 [pid 5246] getdents64(3, [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] <... openat resumed>) = 3 [pid 5246] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... ioctl resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./2/binderfs", [pid 5247] close(3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./2/binderfs") = 0 [pid 5246] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./2/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... openat resumed>) = 4 ./strace-static-x86_64: Process 5266 attached [pid 5246] newfstatat(4, "", [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5266 [pid 5266] set_robust_list(0x55555b590660, 24) = 0 [pid 5266] chdir("./3") = 0 [pid 5266] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5266] setpgid(0, 0) = 0 [pid 5266] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] getdents64(4, [pid 5266] <... openat resumed>) = 3 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5266] write(3, "1000", 4) = 4 [pid 5266] close(3) = 0 [pid 5266] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5246] getdents64(4, [pid 5266] write(1, "executing program\n", 18) = 18 [pid 5266] memfd_create("syzkaller", 0) = 3 [pid 5266] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./2/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./2"./strace-static-x86_64: Process 5267 attached [pid 5267] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5267 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] mkdir("./3", 0777 [pid 5267] <... set_robust_list resumed>) = 0 [pid 5267] chdir("./3") = 0 [pid 5267] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... mkdir resumed>) = 0 [pid 5267] <... prctl resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5267] setpgid(0, 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5267] <... setpgid resumed>) = 0 [pid 5267] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... ioctl resumed>) = 0 [pid 5267] write(3, "1000", 4) = 4 executing program [pid 5267] close(3 [pid 5246] close(3 [pid 5267] <... close resumed>) = 0 [pid 5267] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5267] write(1, "executing program\n", 18) = 18 [pid 5267] memfd_create("syzkaller", 0) = 3 [pid 5244] <... close resumed>) = 0 [pid 5267] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5268 attached [pid 5267] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5268] set_robust_list(0x55555b590660, 24) = 0 [pid 5268] chdir("./3" [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5268 [pid 5268] <... chdir resumed>) = 0 [pid 5268] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5268] setpgid(0, 0) = 0 [pid 5268] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5268] write(3, "1000", 4) = 4 [pid 5268] close(3) = 0 [pid 5268] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5268] write(1, "executing program\n", 18) = 18 [pid 5268] memfd_create("syzkaller", 0) = 3 [pid 5268] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5269 attached , child_tidptr=0x55555b590650) = 5269 [pid 5269] set_robust_list(0x55555b590660, 24) = 0 [pid 5269] chdir("./3") = 0 [pid 5269] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5269] setpgid(0, 0) = 0 [pid 5269] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5269] write(3, "1000", 4) = 4 [pid 5269] close(3) = 0 [pid 5269] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5269] write(1, "executing program\n", 18) = 18 [pid 5269] memfd_create("syzkaller", 0) = 3 [pid 5269] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5270 ./strace-static-x86_64: Process 5270 attached [pid 5270] set_robust_list(0x55555b590660, 24) = 0 [pid 5270] chdir("./3") = 0 [pid 5270] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5270] setpgid(0, 0) = 0 [pid 5270] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5270] write(3, "1000", 4) = 4 [pid 5270] close(3) = 0 [pid 5270] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5270] write(1, "executing program\n", 18) = 18 [pid 5270] memfd_create("syzkaller", 0) = 3 [pid 5270] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5266] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5267] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5268] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5269] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5270] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5267] <... write resumed>) = 16777216 [pid 5267] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5267] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5267] ioctl(4, LOOP_SET_FD, 3 [pid 5266] <... write resumed>) = 16777216 [pid 5267] <... ioctl resumed>) = 0 [pid 5267] close(3) = 0 [pid 5267] close(4) = 0 [pid 5267] mkdir("./file0", 0777) = 0 [pid 5266] munmap(0x7f6c8ae00000, 138412032 [pid 5267] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5267] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5267] chdir("./file0") = 0 [pid 5267] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5267] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5267] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 317.741134][ T5267] loop0: detected capacity change from 0 to 32768 [pid 5267] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5266] <... munmap resumed>) = 0 [pid 5266] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5266] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5266] close(3) = 0 [pid 5268] <... write resumed>) = 16777216 [pid 5266] close(4 [pid 5268] munmap(0x7f6c8ae00000, 138412032 [pid 5266] <... close resumed>) = 0 [pid 5266] mkdir("./file0", 0777) = 0 [ 317.809000][ T5266] loop2: detected capacity change from 0 to 32768 [pid 5266] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5268] <... munmap resumed>) = 0 [pid 5268] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5268] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5268] close(3) = 0 [pid 5268] close(4) = 0 [pid 5268] mkdir("./file0", 0777) = 0 [pid 5268] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5266] <... mount resumed>) = 0 [pid 5266] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5266] chdir("./file0" [pid 5268] <... mount resumed>) = 0 [pid 5266] <... chdir resumed>) = 0 [pid 5269] <... write resumed>) = 16777216 [pid 5268] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5266] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5268] <... openat resumed>) = 3 [pid 5266] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5268] chdir("./file0" [pid 5266] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5268] <... chdir resumed>) = 0 [pid 5266] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5268] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5266] <... openat resumed>) = 5 [pid 5268] <... openat resumed>) = -1 EBUSY (Device or resource busy) [ 317.909795][ T5268] loop1: detected capacity change from 0 to 32768 [pid 5266] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5269] munmap(0x7f6c8ae00000, 138412032 [pid 5268] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5268] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5268] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5269] <... munmap resumed>) = 0 [pid 5267] <... write resumed>) = 4243456 [pid 5269] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5269] ioctl(4, LOOP_SET_FD, 3 [pid 5267] exit_group(0 [pid 5269] <... ioctl resumed>) = 0 [pid 5267] <... exit_group resumed>) = ? [pid 5267] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5267, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", [pid 5269] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5269] <... close resumed>) = 0 [pid 5243] getdents64(3, [pid 5269] close(4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5269] <... close resumed>) = 0 [pid 5243] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5269] mkdir("./file0", 0777 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5270] <... write resumed>) = 16777216 [pid 5269] <... mkdir resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./3/binderfs", [pid 5269] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 318.039335][ T5269] loop4: detected capacity change from 0 to 32768 [pid 5269] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5243] unlink("./3/binderfs" [pid 5270] munmap(0x7f6c8ae00000, 138412032 [pid 5269] chdir("./file0") = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5269] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5269] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5269] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5269] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5269] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5270] <... munmap resumed>) = 0 [pid 5243] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", [pid 5270] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5270] <... openat resumed>) = 4 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./3/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5270] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./3") = 0 [pid 5243] mkdir("./4", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5270] <... ioctl resumed>) = 0 [pid 5270] close(3) = 0 [pid 5270] close(4 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5270] <... close resumed>) = 0 [pid 5270] mkdir("./file0", 0777) = 0 [ 318.156991][ T5270] loop3: detected capacity change from 0 to 32768 [pid 5270] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5268] <... write resumed>) = 4243456 [pid 5268] exit_group(0) = ? [pid 5268] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5268, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5266] <... write resumed>) = 4243456 [pid 5266] exit_group(0) = ? [pid 5270] <... mount resumed>) = 0 [pid 5270] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5270] <... openat resumed>) = 3 [pid 5244] <... openat resumed>) = 3 [pid 5270] chdir("./file0") = 0 [pid 5244] newfstatat(3, "", [pid 5270] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5270] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5270] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5270] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5270] <... openat resumed>) = 5 [pid 5244] unlink("./3/binderfs" [pid 5270] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5266] +++ exited with 0 +++ [pid 5244] <... unlink resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5266, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5245] unlink("./3/binderfs") = 0 [pid 5245] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./3/file0") = 0 [pid 5244] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5269] <... write resumed>) = 4243456 [pid 5245] getdents64(3, [pid 5244] <... openat resumed>) = 4 [pid 5269] exit_group(0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./3") = 0 [pid 5244] newfstatat(4, "", [pid 5245] mkdir("./4", 0777 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5269] <... exit_group resumed>) = ? [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./3/file0") = 0 [pid 5244] getdents64(3, [pid 5269] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5269, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] unlink("./3/binderfs") = 0 [pid 5247] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] close(3) = 0 [pid 5244] rmdir("./3") = 0 [pid 5244] mkdir("./4", 0777 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... ioctl resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] close(3 [pid 5247] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./3/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./3") = 0 [pid 5247] mkdir("./4", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5271 attached , child_tidptr=0x55555b590650) = 5271 [pid 5271] set_robust_list(0x55555b590660, 24) = 0 [pid 5271] chdir("./4" [pid 5270] <... write resumed>) = 4243456 [pid 5271] <... chdir resumed>) = 0 [pid 5270] exit_group(0) = ? [pid 5271] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5270] +++ exited with 0 +++ [pid 5271] <... prctl resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5270, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=26 /* 0.26 s */} --- [pid 5271] setpgid(0, 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5271] <... setpgid resumed>) = 0 [pid 5271] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./3/binderfs") = 0 [pid 5246] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5271] <... openat resumed>) = 3 [pid 5271] write(3, "1000", 4) = 4 [pid 5271] close(3) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5271] symlink("/dev/binderfs", "./binderfs" [pid 5246] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./3/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5271] <... symlink resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", [pid 5271] write(1, "executing program\n", 18executing program ) = 18 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5271] memfd_create("syzkaller", 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./3/file0" [pid 5271] <... memfd_create resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./3") = 0 [pid 5271] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] mkdir("./4", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5271] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... close resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5272 ./strace-static-x86_64: Process 5272 attached [pid 5272] set_robust_list(0x55555b590660, 24) = 0 [pid 5272] chdir("./4") = 0 [pid 5272] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5272] setpgid(0, 0) = 0 [pid 5272] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5272] write(3, "1000", 4 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5273 attached [pid 5272] <... write resumed>) = 4 [pid 5272] close(3 [pid 5273] set_robust_list(0x55555b590660, 24) = 0 [pid 5272] <... close resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5273 [pid 5272] symlink("/dev/binderfs", "./binderfs" [pid 5273] chdir("./4" [pid 5272] <... symlink resumed>) = 0 [pid 5273] <... chdir resumed>) = 0 [pid 5272] write(1, "executing program\n", 18executing program ) = 18 [pid 5272] memfd_create("syzkaller", 0) = 3 [pid 5273] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5272] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5273] <... prctl resumed>) = 0 [pid 5272] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5273] setpgid(0, 0) = 0 [pid 5273] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5273] write(3, "1000", 4) = 4 [pid 5273] close(3) = 0 executing program [pid 5273] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5273] write(1, "executing program\n", 18) = 18 [pid 5273] memfd_create("syzkaller", 0) = 3 [pid 5273] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5274 ./strace-static-x86_64: Process 5274 attached [pid 5274] set_robust_list(0x55555b590660, 24) = 0 [pid 5274] chdir("./4") = 0 [pid 5274] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5274] setpgid(0, 0) = 0 [pid 5274] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5274] write(3, "1000", 4) = 4 [pid 5274] close(3) = 0 executing program [pid 5274] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5274] write(1, "executing program\n", 18) = 18 [pid 5274] memfd_create("syzkaller", 0) = 3 [pid 5274] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5275 attached , child_tidptr=0x55555b590650) = 5275 [pid 5275] set_robust_list(0x55555b590660, 24) = 0 [pid 5275] chdir("./4") = 0 [pid 5275] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5275] setpgid(0, 0) = 0 [pid 5275] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5275] write(3, "1000", 4) = 4 [pid 5275] close(3) = 0 [pid 5275] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5275] write(1, "executing program\n", 18) = 18 [pid 5275] memfd_create("syzkaller", 0) = 3 [pid 5275] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5271] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5272] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5273] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5274] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5275] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5272] <... write resumed>) = 16777216 [pid 5272] munmap(0x7f6c8ae00000, 138412032 [pid 5271] <... write resumed>) = 16777216 [pid 5271] munmap(0x7f6c8ae00000, 138412032 [pid 5272] <... munmap resumed>) = 0 [pid 5272] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5272] ioctl(4, LOOP_SET_FD, 3 [pid 5271] <... munmap resumed>) = 0 [pid 5271] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5273] <... write resumed>) = 16777216 [pid 5271] ioctl(4, LOOP_SET_FD, 3 [pid 5272] <... ioctl resumed>) = 0 [pid 5273] munmap(0x7f6c8ae00000, 138412032 [pid 5272] close(3) = 0 [pid 5272] close(4) = 0 [pid 5272] mkdir("./file0", 0777) = 0 [pid 5272] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5271] <... ioctl resumed>) = 0 [pid 5271] close(3) = 0 [pid 5271] close(4 [pid 5272] <... mount resumed>) = 0 [pid 5271] <... close resumed>) = 0 [pid 5272] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5272] chdir("./file0" [pid 5273] <... munmap resumed>) = 0 [pid 5271] mkdir("./file0", 0777 [pid 5273] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5272] <... chdir resumed>) = 0 [pid 5273] <... openat resumed>) = 4 [pid 5272] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5271] <... mkdir resumed>) = 0 [ 319.493298][ T5272] loop2: detected capacity change from 0 to 32768 [ 319.507745][ T5271] loop0: detected capacity change from 0 to 32768 [pid 5273] ioctl(4, LOOP_SET_FD, 3 [pid 5272] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5271] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5272] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5272] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5273] <... ioctl resumed>) = 0 [pid 5273] close(3) = 0 [pid 5273] close(4) = 0 [pid 5272] <... openat resumed>) = 5 [pid 5273] mkdir("./file0", 0777 [pid 5272] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5273] <... mkdir resumed>) = 0 [pid 5271] <... mount resumed>) = 0 [pid 5273] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5271] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5271] chdir("./file0") = 0 [pid 5271] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5271] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5271] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5271] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5273] <... mount resumed>) = 0 [pid 5273] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5273] chdir("./file0") = 0 [ 319.553583][ T5273] loop1: detected capacity change from 0 to 32768 [pid 5273] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5273] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5273] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5273] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5274] <... write resumed>) = 16777216 [pid 5274] munmap(0x7f6c8ae00000, 138412032 [pid 5275] <... write resumed>) = 16777216 [pid 5275] munmap(0x7f6c8ae00000, 138412032 [pid 5274] <... munmap resumed>) = 0 [pid 5274] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5274] ioctl(4, LOOP_SET_FD, 3 [pid 5275] <... munmap resumed>) = 0 [pid 5274] <... ioctl resumed>) = 0 [pid 5274] close(3) = 0 [pid 5274] close(4) = 0 [pid 5274] mkdir("./file0", 0777) = 0 [pid 5274] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5274] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5275] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5274] <... openat resumed>) = 3 [pid 5274] chdir("./file0" [pid 5275] <... openat resumed>) = 4 [pid 5274] <... chdir resumed>) = 0 [pid 5275] ioctl(4, LOOP_SET_FD, 3 [pid 5274] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [ 319.720882][ T5274] loop4: detected capacity change from 0 to 32768 [pid 5274] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5274] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5274] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5275] <... ioctl resumed>) = 0 [pid 5275] close(3) = 0 [pid 5275] close(4) = 0 [pid 5275] mkdir("./file0", 0777 [pid 5272] <... write resumed>) = 4243456 [ 319.777529][ T5275] loop3: detected capacity change from 0 to 32768 [pid 5272] exit_group(0 [pid 5275] <... mkdir resumed>) = 0 [pid 5272] <... exit_group resumed>) = ? [pid 5275] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5272] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5272, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./4/binderfs") = 0 [pid 5245] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5271] <... write resumed>) = 4243456 [pid 5275] <... mount resumed>) = 0 [pid 5275] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... umount2 resumed>) = 0 [pid 5275] <... openat resumed>) = 3 [pid 5245] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5275] chdir("./file0" [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5275] <... chdir resumed>) = 0 [pid 5245] newfstatat(AT_FDCWD, "./4/file0", [pid 5275] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5271] exit_group(0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5275] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5275] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5271] <... exit_group resumed>) = ? [pid 5245] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5275] <... openat resumed>) = 5 [pid 5271] +++ exited with 0 +++ [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5275] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5271, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=24 /* 0.24 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... openat resumed>) = 4 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] getdents64(4, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] getdents64(4, [pid 5243] <... openat resumed>) = 3 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] newfstatat(3, "", [pid 5245] close(4) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] rmdir("./4/file0" [pid 5243] getdents64(3, [pid 5245] <... rmdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] getdents64(3, [pid 5243] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] newfstatat(AT_FDCWD, "./4/binderfs", [pid 5245] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... close resumed>) = 0 [pid 5243] unlink("./4/binderfs" [pid 5245] rmdir("./4" [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5273] <... write resumed>) = 4243456 [pid 5273] exit_group(0 [pid 5245] <... rmdir resumed>) = 0 [pid 5273] <... exit_group resumed>) = ? [pid 5273] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5273, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] mkdir("./5", 0777 [pid 5243] <... umount2 resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] <... ioctl resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./4/binderfs", [pid 5243] newfstatat(AT_FDCWD, "./4/file0", [pid 5245] close(3 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./4/binderfs") = 0 [pid 5244] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./4/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./4") = 0 [pid 5243] mkdir("./5", 0777) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5244] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] close(3 [pid 5244] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./4/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./4") = 0 [pid 5244] mkdir("./5", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5274] <... write resumed>) = 4243456 [pid 5274] exit_group(0) = ? [pid 5274] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5274, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5247] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./4/binderfs") = 0 [pid 5247] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./4/file0") = 0 [pid 5247] getdents64(3, [pid 5275] <... write resumed>) = 4243456 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5275] exit_group(0 [pid 5247] close(3 [pid 5275] <... exit_group resumed>) = ? [pid 5247] <... close resumed>) = 0 [pid 5275] +++ exited with 0 +++ [pid 5247] rmdir("./4" [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5275, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] <... rmdir resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5247] mkdir("./5", 0777 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... mkdir resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] getdents64(3, [pid 5247] close(3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./4/binderfs") = 0 [pid 5246] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./4/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", [pid 5245] <... close resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... close resumed>) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] close(4) = 0 [pid 5246] rmdir("./4/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./4") = 0 [pid 5246] mkdir("./5", 0777) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5276 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3./strace-static-x86_64: Process 5277 attached ./strace-static-x86_64: Process 5276 attached [pid 5276] set_robust_list(0x55555b590660, 24) = 0 [pid 5276] chdir("./5") = 0 [pid 5276] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5276] setpgid(0, 0) = 0 [pid 5276] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5276] write(3, "1000", 4) = 4 [pid 5276] close(3 [pid 5277] set_robust_list(0x55555b590660, 24 [pid 5276] <... close resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5277 [pid 5276] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5276] write(1, "executing program\n", 18) = 18 [pid 5277] <... set_robust_list resumed>) = 0 [pid 5277] chdir("./5" [pid 5276] memfd_create("syzkaller", 0 [pid 5277] <... chdir resumed>) = 0 [pid 5277] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5244] <... close resumed>) = 0 [pid 5276] <... memfd_create resumed>) = 3 [pid 5276] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5277] setpgid(0, 0) = 0 [pid 5277] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5277] write(3, "1000", 4 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5277] <... write resumed>) = 4 [pid 5277] close(3) = 0 [pid 5277] symlink("/dev/binderfs", "./binderfs" [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5278 ./strace-static-x86_64: Process 5278 attached [pid 5278] set_robust_list(0x55555b590660, 24 [pid 5277] <... symlink resumed>) = 0 [pid 5278] <... set_robust_list resumed>) = 0 executing program [pid 5278] chdir("./5" [pid 5277] write(1, "executing program\n", 18 [pid 5278] <... chdir resumed>) = 0 [pid 5277] <... write resumed>) = 18 [pid 5278] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5278] setpgid(0, 0 [pid 5277] memfd_create("syzkaller", 0 [pid 5278] <... setpgid resumed>) = 0 [pid 5277] <... memfd_create resumed>) = 3 [pid 5278] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5277] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5278] <... openat resumed>) = 3 [pid 5278] write(3, "1000", 4) = 4 [pid 5278] close(3) = 0 [pid 5278] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5278] write(1, "executing program\n", 18) = 18 [pid 5278] memfd_create("syzkaller", 0) = 3 [pid 5278] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5279 attached , child_tidptr=0x55555b590650) = 5279 [pid 5279] set_robust_list(0x55555b590660, 24) = 0 [pid 5279] chdir("./5") = 0 [pid 5279] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5279] setpgid(0, 0) = 0 [pid 5279] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5279] write(3, "1000", 4) = 4 [pid 5279] close(3) = 0 [pid 5279] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5279] write(1, "executing program\n", 18executing program ) = 18 [pid 5279] memfd_create("syzkaller", 0) = 3 [pid 5279] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5280 ./strace-static-x86_64: Process 5280 attached [pid 5280] set_robust_list(0x55555b590660, 24) = 0 [pid 5280] chdir("./5") = 0 [pid 5280] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5280] setpgid(0, 0) = 0 executing program [pid 5280] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5280] write(3, "1000", 4) = 4 [pid 5280] close(3) = 0 [pid 5280] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5280] write(1, "executing program\n", 18) = 18 [pid 5280] memfd_create("syzkaller", 0) = 3 [pid 5280] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5277] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5276] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5278] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5279] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5277] <... write resumed>) = 16777216 [pid 5277] munmap(0x7f6c8ae00000, 138412032 [pid 5280] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5277] <... munmap resumed>) = 0 [pid 5277] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5277] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5277] close(3) = 0 [pid 5277] close(4) = 0 [pid 5277] mkdir("./file0", 0777) = 0 [pid 5277] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5276] <... write resumed>) = 16777216 [pid 5277] <... mount resumed>) = 0 [pid 5276] munmap(0x7f6c8ae00000, 138412032 [pid 5277] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5277] chdir("./file0") = 0 [pid 5277] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5277] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5277] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5277] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5278] <... write resumed>) = 16777216 [ 321.110296][ T5277] loop0: detected capacity change from 0 to 32768 [pid 5278] munmap(0x7f6c8ae00000, 138412032 [pid 5276] <... munmap resumed>) = 0 [pid 5276] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5276] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5278] <... munmap resumed>) = 0 [pid 5278] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5276] close(3 [pid 5278] ioctl(4, LOOP_SET_FD, 3 [pid 5276] <... close resumed>) = 0 [pid 5276] close(4) = 0 [pid 5276] mkdir("./file0", 0777) = 0 [pid 5276] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5278] <... ioctl resumed>) = 0 [pid 5278] close(3) = 0 [pid 5278] close(4) = 0 [pid 5278] mkdir("./file0", 0777) = 0 [pid 5278] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5276] <... mount resumed>) = 0 [pid 5276] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 321.198345][ T5276] loop2: detected capacity change from 0 to 32768 [ 321.236146][ T5278] loop1: detected capacity change from 0 to 32768 [pid 5276] chdir("./file0" [pid 5279] <... write resumed>) = 16777216 [pid 5276] <... chdir resumed>) = 0 [pid 5276] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5279] munmap(0x7f6c8ae00000, 138412032 [pid 5278] <... mount resumed>) = 0 [pid 5276] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5278] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5278] chdir("./file0" [pid 5276] <... openat resumed>) = 4 [pid 5278] <... chdir resumed>) = 0 [pid 5278] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5276] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5278] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5276] <... openat resumed>) = 5 [pid 5278] <... openat resumed>) = 4 [pid 5276] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5278] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5278] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5279] <... munmap resumed>) = 0 [pid 5279] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5279] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5279] close(3) = 0 [pid 5279] close(4) = 0 [ 321.360936][ T5279] loop4: detected capacity change from 0 to 32768 [pid 5279] mkdir("./file0", 0777) = 0 [pid 5277] <... write resumed>) = 4243456 [pid 5279] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5277] exit_group(0 [pid 5279] <... mount resumed>) = 0 [pid 5277] <... exit_group resumed>) = ? [pid 5279] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5277] +++ exited with 0 +++ [pid 5279] <... openat resumed>) = 3 [pid 5279] chdir("./file0" [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5277, si_uid=0, si_status=0, si_utime=16 /* 0.16 s */, si_stime=27 /* 0.27 s */} --- [pid 5279] <... chdir resumed>) = 0 [pid 5279] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5279] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5279] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5279] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5279] <... openat resumed>) = 5 [pid 5243] unlink("./5/binderfs" [pid 5279] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5276] <... write resumed>) = 4243456 [pid 5276] exit_group(0) = ? [pid 5276] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5276, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... openat resumed>) = 3 [pid 5243] newfstatat(AT_FDCWD, "./5/file0", [pid 5245] newfstatat(3, "", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] getdents64(3, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(4, "", [pid 5245] newfstatat(AT_FDCWD, "./5/binderfs", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(4, [pid 5245] unlink("./5/binderfs" [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... unlink resumed>) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5245] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] rmdir("./5/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./5") = 0 [pid 5243] mkdir("./6", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5278] <... write resumed>) = 4243456 [pid 5278] exit_group(0) = ? [pid 5245] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5278] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5278, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5280] <... write resumed>) = 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5244] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] close(4 [pid 5244] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... close resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5280] munmap(0x7f6c8ae00000, 138412032 [pid 5245] rmdir("./5/file0" [pid 5244] newfstatat(3, "", [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./5/binderfs" [pid 5245] getdents64(3, [pid 5244] <... unlink resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] close(3) = 0 [pid 5245] rmdir("./5") = 0 [pid 5245] mkdir("./6", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5280] <... munmap resumed>) = 0 [pid 5280] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... umount2 resumed>) = 0 [pid 5280] <... openat resumed>) = 4 [pid 5280] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5280] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5280] close(3 [pid 5244] newfstatat(AT_FDCWD, "./5/file0", [pid 5280] <... close resumed>) = 0 [pid 5280] close(4) = 0 [pid 5280] mkdir("./file0", 0777) = 0 [pid 5280] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./5/file0") = 0 [ 321.687500][ T5280] loop3: detected capacity change from 0 to 32768 [pid 5280] <... mount resumed>) = 0 [pid 5244] getdents64(3, [pid 5280] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5280] <... openat resumed>) = 3 [pid 5244] close(3 [pid 5280] chdir("./file0") = 0 [pid 5244] <... close resumed>) = 0 [pid 5280] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] rmdir("./5" [pid 5280] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5244] <... rmdir resumed>) = 0 [pid 5280] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] mkdir("./6", 0777) = 0 [pid 5280] <... openat resumed>) = 5 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5279] <... write resumed>) = 4243456 [pid 5244] <... openat resumed>) = 3 [pid 5279] exit_group(0 [pid 5280] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5279] <... exit_group resumed>) = ? [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5279] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5279, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] <... ioctl resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5244] close(3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./5/binderfs") = 0 [pid 5247] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./5/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./5") = 0 [pid 5247] mkdir("./6", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3executing program [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5281 ./strace-static-x86_64: Process 5281 attached [pid 5281] set_robust_list(0x55555b590660, 24) = 0 [pid 5281] chdir("./6") = 0 [pid 5281] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5281] setpgid(0, 0) = 0 [pid 5281] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5281] write(3, "1000", 4) = 4 [pid 5281] close(3) = 0 [pid 5281] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5281] write(1, "executing program\n", 18) = 18 [pid 5281] memfd_create("syzkaller", 0) = 3 [pid 5281] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5282 ./strace-static-x86_64: Process 5282 attached [pid 5282] set_robust_list(0x55555b590660, 24) = 0 [pid 5282] chdir("./6") = 0 [pid 5282] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5282] setpgid(0, 0) = 0 [pid 5282] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5282] write(3, "1000", 4) = 4 [pid 5282] close(3) = 0 [pid 5282] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5282] write(1, "executing program\n", 18executing program ) = 18 [pid 5282] memfd_create("syzkaller", 0) = 3 [pid 5280] <... write resumed>) = 4243456 [pid 5244] <... close resumed>) = 0 [pid 5282] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5280] exit_group(0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5280] <... exit_group resumed>) = ? ./strace-static-x86_64: Process 5283 attached [pid 5280] +++ exited with 0 +++ [pid 5283] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5283 [pid 5283] <... set_robust_list resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5280, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} --- [pid 5283] chdir("./6" [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5283] <... chdir resumed>) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5283] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5283] setpgid(0, 0 [pid 5246] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5283] <... setpgid resumed>) = 0 [pid 5283] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5283] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5283] write(3, "1000", 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5283] <... write resumed>) = 4 [pid 5246] getdents64(3, [pid 5283] close(3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5283] <... close resumed>) = 0 [pid 5246] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5283] symlink("/dev/binderfs", "./binderfs" [pid 5246] unlink("./5/binderfs"executing program [pid 5283] <... symlink resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5283] write(1, "executing program\n", 18) = 18 [pid 5283] memfd_create("syzkaller", 0) = 3 [pid 5283] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... close resumed>) = 0 [pid 5283] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5284 attached [pid 5246] <... umount2 resumed>) = 0 [pid 5284] set_robust_list(0x55555b590660, 24) = 0 [pid 5284] chdir("./6") = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5284 [pid 5246] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5284] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5284] setpgid(0, 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5284] <... setpgid resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5284] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./5/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5284] <... openat resumed>) = 3 [pid 5246] openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5284] write(3, "1000", 4executing program ) = 4 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", [pid 5284] close(3) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5284] symlink("/dev/binderfs", "./binderfs" [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5284] <... symlink resumed>) = 0 [pid 5246] close(4 [pid 5284] write(1, "executing program\n", 18) = 18 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./5/file0" [pid 5284] memfd_create("syzkaller", 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5284] <... memfd_create resumed>) = 3 [pid 5284] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./5") = 0 [pid 5246] mkdir("./6", 0777) = 0 [pid 5284] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5281] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5285 attached [pid 5285] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5285 [pid 5285] <... set_robust_list resumed>) = 0 [pid 5285] chdir("./6") = 0 [pid 5285] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5285] setpgid(0, 0) = 0 [pid 5285] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5285] write(3, "1000", 4) = 4 [pid 5285] close(3) = 0 [pid 5285] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5285] write(1, "executing program\n", 18) = 18 [pid 5285] memfd_create("syzkaller", 0) = 3 [pid 5285] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5282] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5283] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5284] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5281] <... write resumed>) = 16777216 [pid 5281] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5281] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5281] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5281] close(3) = 0 [pid 5281] close(4) = 0 [pid 5281] mkdir("./file0", 0777) = 0 [pid 5281] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5281] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5281] chdir("./file0") = 0 [pid 5281] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [ 322.799902][ T5281] loop0: detected capacity change from 0 to 32768 [pid 5281] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5281] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5281] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5285] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5283] <... write resumed>) = 16777216 [pid 5283] munmap(0x7f6c8ae00000, 138412032 [pid 5282] <... write resumed>) = 16777216 [pid 5282] munmap(0x7f6c8ae00000, 138412032 [pid 5283] <... munmap resumed>) = 0 [pid 5283] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5283] ioctl(4, LOOP_SET_FD, 3 [pid 5282] <... munmap resumed>) = 0 [pid 5282] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5282] ioctl(4, LOOP_SET_FD, 3 [pid 5284] <... write resumed>) = 16777216 [pid 5283] <... ioctl resumed>) = 0 [pid 5282] <... ioctl resumed>) = 0 [pid 5284] munmap(0x7f6c8ae00000, 138412032 [pid 5282] close(3) = 0 [pid 5282] close(4) = 0 [pid 5282] mkdir("./file0", 0777) = 0 [pid 5283] close(3) = 0 [pid 5283] close(4) = 0 [pid 5282] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5283] mkdir("./file0", 0777) = 0 [pid 5282] <... mount resumed>) = 0 [pid 5282] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5283] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5282] <... openat resumed>) = 3 [pid 5282] chdir("./file0") = 0 [pid 5282] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 323.034731][ T5283] loop1: detected capacity change from 0 to 32768 [ 323.046668][ T5282] loop2: detected capacity change from 0 to 32768 [pid 5282] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5283] <... mount resumed>) = 0 [pid 5282] <... openat resumed>) = 4 [pid 5283] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5282] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5281] <... write resumed>) = 4243456 [pid 5281] exit_group(0) = ? [pid 5284] <... munmap resumed>) = 0 [pid 5283] <... openat resumed>) = 3 [pid 5282] <... openat resumed>) = 5 [pid 5281] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5281, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5283] chdir("./file0" [pid 5282] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5283] <... chdir resumed>) = 0 [pid 5284] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5283] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5284] <... openat resumed>) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5283] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5283] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5284] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... openat resumed>) = 3 [pid 5284] <... ioctl resumed>) = 0 [pid 5283] <... openat resumed>) = 4 [pid 5243] newfstatat(3, "", [pid 5283] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5283] <... openat resumed>) = 5 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5284] close(3 [pid 5243] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5283] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5284] <... close resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./6/binderfs" [pid 5284] close(4) = 0 [pid 5284] mkdir("./file0", 0777 [pid 5243] <... unlink resumed>) = 0 [pid 5284] <... mkdir resumed>) = 0 [pid 5243] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [ 323.122208][ T5284] loop4: detected capacity change from 0 to 32768 [pid 5284] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... umount2 resumed>) = 0 [pid 5284] <... mount resumed>) = 0 [pid 5284] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5284] chdir("./file0") = 0 [pid 5284] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5284] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5243] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5284] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5284] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./6/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./6") = 0 [pid 5243] mkdir("./7", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5282] <... write resumed>) = 4243456 [pid 5282] exit_group(0) = ? [pid 5285] <... write resumed>) = 16777216 [pid 5285] munmap(0x7f6c8ae00000, 138412032 [pid 5282] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5282, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=40 /* 0.40 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5285] <... munmap resumed>) = 0 [pid 5245] unlink("./6/binderfs") = 0 [pid 5245] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5285] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5285] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... umount2 resumed>) = 0 [pid 5285] <... ioctl resumed>) = 0 [pid 5283] <... write resumed>) = 4243456 [pid 5245] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5283] exit_group(0 [pid 5245] newfstatat(AT_FDCWD, "./6/file0", [pid 5283] <... exit_group resumed>) = ? [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5285] close(3 [pid 5284] <... write resumed>) = 4243456 [pid 5283] +++ exited with 0 +++ [pid 5245] getdents64(4, [pid 5285] <... close resumed>) = 0 [pid 5284] exit_group(0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5285] close(4 [pid 5245] getdents64(4, [pid 5285] <... close resumed>) = 0 [pid 5285] mkdir("./file0", 0777 [pid 5284] <... exit_group resumed>) = ? [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5283, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5285] <... mkdir resumed>) = 0 [pid 5284] +++ exited with 0 +++ [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5285] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] close(4 [pid 5244] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5284, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] <... close resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5245] rmdir("./6/file0" [pid 5244] <... openat resumed>) = 3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [ 323.444143][ T5285] loop3: detected capacity change from 0 to 32768 [pid 5244] newfstatat(3, "", [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] close(3 [pid 5243] <... close resumed>) = 0 [pid 5285] <... mount resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... close resumed>) = 0 [pid 5244] getdents64(3, [pid 5285] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] rmdir("./6" [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5285] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] newfstatat(3, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5286 attached [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5247] getdents64(3, [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./6/binderfs") = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5286 [pid 5244] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] mkdir("./7", 0777 [pid 5247] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5286] set_robust_list(0x55555b590660, 24 [pid 5285] chdir("./file0" [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = 0 [pid 5286] <... set_robust_list resumed>) = 0 [pid 5285] <... chdir resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./6/binderfs", [pid 5245] <... mkdir resumed>) = 0 [pid 5244] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5285] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] unlink("./6/binderfs" [pid 5286] chdir("./7" [pid 5285] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5286] <... chdir resumed>) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./6/file0", [pid 5286] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5285] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5286] <... prctl resumed>) = 0 [pid 5285] <... openat resumed>) = 4 [pid 5244] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5286] setpgid(0, 0 [pid 5285] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5286] <... setpgid resumed>) = 0 [pid 5285] <... openat resumed>) = 5 [pid 5245] close(3 [pid 5286] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5285] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5286] <... openat resumed>) = 3 [pid 5244] <... openat resumed>) = 4 executing program [pid 5286] write(3, "1000", 4 [pid 5244] newfstatat(4, "", [pid 5286] <... write resumed>) = 4 [pid 5286] close(3) = 0 [pid 5286] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5286] write(1, "executing program\n", 18) = 18 [pid 5286] memfd_create("syzkaller", 0) = 3 [pid 5247] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5286] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] newfstatat(AT_FDCWD, "./6/file0", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] getdents64(4, [pid 5247] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5286] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] getdents64(4, [pid 5247] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5247] <... openat resumed>) = 4 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./6/file0") = 0 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5244] getdents64(3, [pid 5247] rmdir("./6/file0" [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./6") = 0 [pid 5244] mkdir("./7", 0777) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./6") = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5247] mkdir("./7", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5287 ./strace-static-x86_64: Process 5287 attached [pid 5287] set_robust_list(0x55555b590660, 24 [pid 5285] <... write resumed>) = 4243456 [pid 5287] <... set_robust_list resumed>) = 0 [pid 5287] chdir("./7" [pid 5285] exit_group(0 [pid 5287] <... chdir resumed>) = 0 [pid 5287] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5287] setpgid(0, 0 [pid 5285] <... exit_group resumed>) = ? [pid 5287] <... setpgid resumed>) = 0 [pid 5287] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5287] write(3, "1000", 4) = 4 [pid 5287] close(3executing program ) = 0 [pid 5287] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5287] write(1, "executing program\n", 18) = 18 [pid 5287] memfd_create("syzkaller", 0) = 3 [pid 5287] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5285] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5285, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./6", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./6/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./6/binderfs") = 0 [pid 5246] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./6/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./6/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./6") = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] mkdir("./7", 0777 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5288 attached [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5288 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5288] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5288] chdir("./7" [pid 5246] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5289 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5289 [pid 5289] set_robust_list(0x55555b590660, 24 [pid 5246] <... ioctl resumed>) = 0 [pid 5289] <... set_robust_list resumed>) = 0 [pid 5246] close(3 [pid 5288] <... chdir resumed>) = 0 [pid 5289] chdir("./7") = 0 [pid 5289] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5289] setpgid(0, 0 [pid 5288] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5288] setpgid(0, 0executing program [pid 5289] <... setpgid resumed>) = 0 [pid 5288] <... setpgid resumed>) = 0 [pid 5289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5289] write(3, "1000", 4 [pid 5286] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5289] <... write resumed>) = 4 [pid 5288] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5289] close(3) = 0 [pid 5289] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5289] write(1, "executing program\n", 18) = 18 [pid 5289] memfd_create("syzkaller", 0) = 3 [pid 5289] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5288] <... openat resumed>) = 3 [pid 5288] write(3, "1000", 4) = 4 [pid 5288] close(3executing program ) = 0 [pid 5288] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5288] write(1, "executing program\n", 18) = 18 [pid 5288] memfd_create("syzkaller", 0) = 3 [pid 5288] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5290 ./strace-static-x86_64: Process 5290 attached [pid 5290] set_robust_list(0x55555b590660, 24) = 0 [pid 5290] chdir("./7") = 0 [pid 5290] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5290] setpgid(0, 0) = 0 [pid 5290] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5290] write(3, "1000", 4) = 4 [pid 5290] close(3) = 0 [pid 5290] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5290] write(1, "executing program\n", 18executing program ) = 18 [pid 5290] memfd_create("syzkaller", 0) = 3 [pid 5290] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5287] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5286] <... write resumed>) = 16777216 [pid 5286] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5286] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5286] ioctl(4, LOOP_SET_FD, 3 [pid 5289] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5286] <... ioctl resumed>) = 0 [pid 5286] close(3) = 0 [pid 5286] close(4) = 0 [pid 5286] mkdir("./file0", 0777) = 0 [pid 5286] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5286] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 324.371896][ T5286] loop0: detected capacity change from 0 to 32768 [pid 5286] chdir("./file0") = 0 [pid 5286] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5286] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5286] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5286] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5288] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5290] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5286] <... write resumed>) = 4243456 [pid 5286] exit_group(0) = ? [pid 5286] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5286, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./7/binderfs") = 0 [pid 5243] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./7/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./7") = 0 [pid 5243] mkdir("./8", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5287] <... write resumed>) = 16777216 [pid 5287] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5287] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5287] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5287] close(3) = 0 [pid 5287] close(4 [pid 5289] <... write resumed>) = 16777216 [pid 5289] munmap(0x7f6c8ae00000, 138412032 [pid 5287] <... close resumed>) = 0 [pid 5287] mkdir("./file0", 0777) = 0 [pid 5287] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5289] <... munmap resumed>) = 0 [ 324.812995][ T5287] loop2: detected capacity change from 0 to 32768 [pid 5289] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5288] <... write resumed>) = 16777216 [pid 5289] ioctl(4, LOOP_SET_FD, 3 [pid 5288] munmap(0x7f6c8ae00000, 138412032 [pid 5287] <... mount resumed>) = 0 [pid 5287] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5287] chdir("./file0") = 0 [pid 5287] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5287] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5287] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5287] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5289] <... ioctl resumed>) = 0 [pid 5289] close(3) = 0 [pid 5289] close(4) = 0 [pid 5289] mkdir("./file0", 0777) = 0 [pid 5289] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5288] <... munmap resumed>) = 0 [pid 5288] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 324.877532][ T5289] loop4: detected capacity change from 0 to 32768 [pid 5288] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5291 attached , child_tidptr=0x55555b590650) = 5291 [pid 5291] set_robust_list(0x55555b590660, 24) = 0 [pid 5291] chdir("./8" [pid 5288] <... ioctl resumed>) = 0 [pid 5291] <... chdir resumed>) = 0 [pid 5291] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5288] close(3 [pid 5291] <... prctl resumed>) = 0 [pid 5288] <... close resumed>) = 0 [pid 5289] <... mount resumed>) = 0 [pid 5291] setpgid(0, 0 [pid 5289] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5288] close(4 [pid 5291] <... setpgid resumed>) = 0 [pid 5289] <... openat resumed>) = 3 [pid 5288] <... close resumed>) = 0 [pid 5291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5289] chdir("./file0" [pid 5288] mkdir("./file0", 0777 [pid 5289] <... chdir resumed>) = 0 [pid 5288] <... mkdir resumed>) = 0 [pid 5291] <... openat resumed>) = 3 [pid 5289] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5288] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5291] write(3, "1000", 4) = 4 [pid 5289] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5291] close(3 [pid 5289] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5291] <... close resumed>) = 0 [pid 5291] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5289] <... openat resumed>) = 4 [pid 5291] write(1, "executing program\n", 18 [pid 5289] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5291] <... write resumed>) = 18 [pid 5289] <... openat resumed>) = 5 [pid 5291] memfd_create("syzkaller", 0 [pid 5289] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5291] <... memfd_create resumed>) = 3 [pid 5291] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 324.927700][ T5288] loop1: detected capacity change from 0 to 32768 [pid 5288] <... mount resumed>) = 0 [pid 5288] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5288] chdir("./file0") = 0 [pid 5288] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5288] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5288] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5288] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5287] <... write resumed>) = 4243456 [pid 5287] exit_group(0) = ? [pid 5287] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5287, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./7/binderfs") = 0 [pid 5290] <... write resumed>) = 16777216 [pid 5245] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./7/file0") = 0 [pid 5245] getdents64(3, [pid 5289] <... write resumed>) = 4243456 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5289] exit_group(0) = ? [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./7") = 0 [pid 5245] mkdir("./8", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5289] +++ exited with 0 +++ [pid 5288] <... write resumed>) = 4243456 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5289, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5290] <... munmap resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5288] exit_group(0) = ? [pid 5247] <... restart_syscall resumed>) = 0 [pid 5288] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5288, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=38 /* 0.38 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5290] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... restart_syscall resumed>) = 0 [pid 5290] <... openat resumed>) = 4 [pid 5247] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5244] newfstatat(3, "", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5290] ioctl(4, LOOP_SET_FD, 3 [pid 5247] getdents64(3, [pid 5244] getdents64(3, [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] <... ioctl resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5290] close(3 [pid 5247] newfstatat(AT_FDCWD, "./7/binderfs", [pid 5244] newfstatat(AT_FDCWD, "./7/binderfs", [pid 5290] <... close resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5290] close(4 [pid 5247] unlink("./7/binderfs" [pid 5244] unlink("./7/binderfs" [pid 5290] <... close resumed>) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5290] mkdir("./file0", 0777 [pid 5247] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] <... mkdir resumed>) = 0 [pid 5290] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 325.303392][ T5290] loop3: detected capacity change from 0 to 32768 [pid 5247] <... umount2 resumed>) = 0 [pid 5290] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5290] <... openat resumed>) = 3 [pid 5247] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] chdir("./file0") = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5290] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./7/file0", [pid 5290] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5290] <... openat resumed>) = 4 [pid 5247] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5291] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5290] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] newfstatat(4, "", [pid 5244] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5290] <... openat resumed>) = 5 [pid 5247] getdents64(4, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5290] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5244] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4 [pid 5244] <... openat resumed>) = 4 [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./7/file0" [pid 5244] newfstatat(4, "", [pid 5247] <... rmdir resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./7" [pid 5244] getdents64(4, [pid 5247] <... rmdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] mkdir("./8", 0777 [pid 5244] close(4 [pid 5247] <... mkdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./7/file0" [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./7") = 0 [pid 5244] mkdir("./8", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5292 ./strace-static-x86_64: Process 5292 attached [pid 5292] set_robust_list(0x55555b590660, 24) = 0 [pid 5292] chdir("./8") = 0 [pid 5292] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5292] setpgid(0, 0) = 0 [pid 5292] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5292] write(3, "1000", 4) = 4 [pid 5292] close(3) = 0 [pid 5292] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5292] write(1, "executing program\n", 18) = 18 [pid 5292] memfd_create("syzkaller", 0) = 3 [pid 5292] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5290] <... write resumed>) = 4243456 [pid 5290] exit_group(0) = ? [pid 5290] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5290, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./7", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./7/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./7/binderfs") = 0 [pid 5246] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./7/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./7/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./7") = 0 [pid 5246] mkdir("./8", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] close(3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5293 attached [pid 5244] <... close resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5293 [pid 5293] set_robust_list(0x55555b590660, 24 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5293] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5294 attached [pid 5293] chdir("./8") = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5294 [pid 5293] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5293] setpgid(0, 0 [pid 5294] set_robust_list(0x55555b590660, 24 [pid 5293] <... setpgid resumed>) = 0 [pid 5294] <... set_robust_list resumed>) = 0 [pid 5293] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5294] chdir("./8" [pid 5293] <... openat resumed>) = 3 [pid 5294] <... chdir resumed>) = 0 [pid 5294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5293] write(3, "1000", 4 [pid 5294] setpgid(0, 0 [pid 5293] <... write resumed>) = 4 [pid 5294] <... setpgid resumed>) = 0 [pid 5293] close(3 [pid 5294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5293] <... close resumed>) = 0 [pid 5294] <... openat resumed>) = 3 [pid 5293] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5293] write(1, "executing program\n", 18executing program ) = 18 [pid 5294] write(3, "1000", 4 [pid 5293] memfd_create("syzkaller", 0 [pid 5294] <... write resumed>) = 4 [pid 5294] close(3) = 0 [pid 5294] symlink("/dev/binderfs", "./binderfs" [pid 5293] <... memfd_create resumed>) = 3 [pid 5294] <... symlink resumed>) = 0 [pid 5294] write(1, "executing program\n", 18 [pid 5293] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program [pid 5294] <... write resumed>) = 18 [pid 5293] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5294] memfd_create("syzkaller", 0) = 3 [pid 5294] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5291] <... write resumed>) = 16777216 [pid 5291] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5292] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5291] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5291] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5291] close(3) = 0 [pid 5291] close(4) = 0 [pid 5291] mkdir("./file0", 0777) = 0 [pid 5291] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5291] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5291] chdir("./file0") = 0 [pid 5291] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5291] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5291] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 325.910680][ T5291] loop0: detected capacity change from 0 to 32768 [pid 5291] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5295 attached [pid 5295] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5295 [pid 5295] <... set_robust_list resumed>) = 0 [pid 5295] chdir("./8") = 0 [pid 5295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5295] setpgid(0, 0) = 0 [pid 5295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5295] write(3, "1000", 4) = 4 [pid 5295] close(3) = 0 [pid 5295] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5295] write(1, "executing program\n", 18) = 18 [pid 5295] memfd_create("syzkaller", 0) = 3 [pid 5295] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5293] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5291] <... write resumed>) = 4243456 [pid 5291] exit_group(0) = ? [pid 5291] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5291, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./8/binderfs") = 0 [pid 5243] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5294] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./8/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5292] <... write resumed>) = 16777216 [pid 5243] rmdir("./8") = 0 [pid 5292] munmap(0x7f6c8ae00000, 138412032 [pid 5243] mkdir("./9", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5292] <... munmap resumed>) = 0 [pid 5292] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5292] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5292] close(3) = 0 [pid 5292] close(4) = 0 [pid 5292] mkdir("./file0", 0777) = 0 [pid 5292] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5292] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5292] chdir("./file0") = 0 [ 326.389257][ T5292] loop2: detected capacity change from 0 to 32768 [pid 5292] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5292] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5292] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5292] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5295] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5296 ./strace-static-x86_64: Process 5296 attached [pid 5296] set_robust_list(0x55555b590660, 24 [pid 5293] <... write resumed>) = 16777216 [pid 5296] <... set_robust_list resumed>) = 0 [pid 5293] munmap(0x7f6c8ae00000, 138412032 [pid 5296] chdir("./9") = 0 [pid 5296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5296] setpgid(0, 0) = 0 [pid 5296] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5296] write(3, "1000", 4) = 4 [pid 5296] close(3) = 0 [pid 5296] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5294] <... write resumed>) = 16777216 [pid 5293] <... munmap resumed>) = 0 [pid 5296] write(1, "executing program\n", 18executing program [pid 5294] munmap(0x7f6c8ae00000, 138412032 [pid 5293] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5296] <... write resumed>) = 18 [pid 5296] memfd_create("syzkaller", 0) = 3 [pid 5293] <... openat resumed>) = 4 [pid 5292] <... write resumed>) = 4243456 [pid 5296] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5293] ioctl(4, LOOP_SET_FD, 3 [pid 5292] exit_group(0 [pid 5294] <... munmap resumed>) = 0 [pid 5292] <... exit_group resumed>) = ? [pid 5294] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5294] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5293] <... ioctl resumed>) = 0 [pid 5292] +++ exited with 0 +++ [pid 5293] close(3 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5292, si_uid=0, si_status=0, si_utime=15 /* 0.15 s */, si_stime=24 /* 0.24 s */} --- [pid 5293] <... close resumed>) = 0 [pid 5293] close(4) = 0 [pid 5245] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5293] mkdir("./file0", 0777 [pid 5245] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5293] <... mkdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5293] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./8/binderfs") = 0 [pid 5245] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5294] close(3) = 0 [pid 5294] close(4) = 0 [pid 5294] mkdir("./file0", 0777) = 0 [ 326.703349][ T5293] loop4: detected capacity change from 0 to 32768 [ 326.721761][ T5294] loop1: detected capacity change from 0 to 32768 [pid 5294] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5293] <... mount resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5293] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] newfstatat(AT_FDCWD, "./8/file0", [pid 5293] <... openat resumed>) = 3 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5293] chdir("./file0" [pid 5245] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5293] <... chdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5293] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5294] <... mount resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5294] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5293] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", [pid 5293] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5293] <... openat resumed>) = 4 [pid 5245] getdents64(4, [pid 5294] <... openat resumed>) = 3 [pid 5294] chdir("./file0") = 0 [pid 5294] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5294] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5293] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5294] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5293] <... openat resumed>) = 5 [pid 5245] getdents64(4, [pid 5294] <... openat resumed>) = 5 [pid 5293] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5294] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] close(4) = 0 [pid 5245] rmdir("./8/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./8") = 0 [pid 5245] mkdir("./9", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5295] <... write resumed>) = 16777216 [pid 5295] munmap(0x7f6c8ae00000, 138412032 [pid 5294] <... write resumed>) = 4243456 [pid 5294] exit_group(0) = ? [pid 5294] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5294, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./8/binderfs") = 0 [pid 5244] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5295] <... munmap resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5295] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5295] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./8/file0", [pid 5295] <... ioctl resumed>) = 0 [pid 5295] close(3 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5295] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5244] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5295] close(4 [pid 5293] <... write resumed>) = 4243456 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5295] <... close resumed>) = 0 [pid 5293] exit_group(0 [pid 5244] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5295] mkdir("./file0", 0777 [pid 5293] <... exit_group resumed>) = ? [pid 5244] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./8/file0" [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5297 [pid 5244] <... rmdir resumed>) = 0 ./strace-static-x86_64: Process 5297 attached [pid 5295] <... mkdir resumed>) = 0 [pid 5293] +++ exited with 0 +++ [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5295] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5293, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... close resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] rmdir("./8" [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./9", 0777 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5297] set_robust_list(0x55555b590660, 24 [pid 5247] unlink("./8/binderfs" [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5244] close(3 [pid 5297] <... set_robust_list resumed>) = 0 [pid 5297] chdir("./9" [pid 5296] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5295] <... mount resumed>) = 0 [ 327.075748][ T5295] loop3: detected capacity change from 0 to 32768 [pid 5247] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5297] <... chdir resumed>) = 0 [pid 5295] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5297] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5297] setpgid(0, 0 [pid 5295] <... openat resumed>) = 3 [pid 5295] chdir("./file0" [pid 5297] <... setpgid resumed>) = 0 [pid 5295] <... chdir resumed>) = 0 [pid 5295] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5295] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5295] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5295] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5297] <... openat resumed>) = 3 [pid 5295] <... openat resumed>) = 5 [pid 5297] write(3, "1000", 4 [pid 5295] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5297] <... write resumed>) = 4 [pid 5297] close(3) = 0 [pid 5297] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5297] write(1, "executing program\n", 18executing program ) = 18 [pid 5297] memfd_create("syzkaller", 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5297] <... memfd_create resumed>) = 3 [pid 5297] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5297] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./8/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./8") = 0 [pid 5247] mkdir("./9", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5295] <... write resumed>) = 4243456 [pid 5295] exit_group(0) = ? [pid 5295] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5295, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5246] umount2("./8", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./8/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./8/binderfs") = 0 [pid 5246] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5298 attached [pid 5298] set_robust_list(0x55555b590660, 24) = 0 [pid 5298] chdir("./9" [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5298 [pid 5298] <... chdir resumed>) = 0 [pid 5298] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5298] setpgid(0, 0) = 0 [pid 5298] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... umount2 resumed>) = 0 [pid 5298] write(3, "1000", 4) = 4 [pid 5298] close(3) = 0 [pid 5298] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5298] write(1, "executing program\n", 18) = 18 [pid 5298] memfd_create("syzkaller", 0) = 3 [pid 5298] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./8/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./8/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./8") = 0 [pid 5246] mkdir("./9", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5299 ./strace-static-x86_64: Process 5299 attached [pid 5299] set_robust_list(0x55555b590660, 24) = 0 [pid 5299] chdir("./9") = 0 [pid 5299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5299] setpgid(0, 0) = 0 [pid 5299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5299] write(3, "1000", 4) = 4 [pid 5299] close(3) = 0 [pid 5299] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5299] write(1, "executing program\n", 18) = 18 [pid 5299] memfd_create("syzkaller", 0) = 3 [pid 5299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5297] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5296] <... write resumed>) = 16777216 [pid 5296] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... close resumed>) = 0 [pid 5298] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5300 attached , child_tidptr=0x55555b590650) = 5300 [pid 5300] set_robust_list(0x55555b590660, 24 [pid 5296] <... munmap resumed>) = 0 [pid 5300] <... set_robust_list resumed>) = 0 [pid 5296] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5300] chdir("./9" [pid 5296] <... openat resumed>) = 4 [pid 5300] <... chdir resumed>) = 0 [pid 5296] ioctl(4, LOOP_SET_FD, 3 [pid 5300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5300] setpgid(0, 0) = 0 [pid 5300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5300] write(3, "1000", 4) = 4 [pid 5300] close(3) = 0 [pid 5296] <... ioctl resumed>) = 0 [pid 5300] symlink("/dev/binderfs", "./binderfs" [pid 5296] close(3 [pid 5300] <... symlink resumed>) = 0 [pid 5296] <... close resumed>) = 0 [ 327.806516][ T5296] loop0: detected capacity change from 0 to 32768 executing program [pid 5300] write(1, "executing program\n", 18 [pid 5296] close(4 [pid 5300] <... write resumed>) = 18 [pid 5300] memfd_create("syzkaller", 0 [pid 5296] <... close resumed>) = 0 [pid 5300] <... memfd_create resumed>) = 3 [pid 5296] mkdir("./file0", 0777) = 0 [pid 5300] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5296] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5300] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5296] <... mount resumed>) = 0 [pid 5296] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5296] chdir("./file0") = 0 [pid 5296] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5296] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5296] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5296] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5296] <... write resumed>) = 4243456 [pid 5296] exit_group(0) = ? [pid 5296] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5296, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./9/binderfs") = 0 [pid 5243] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5298] <... write resumed>) = 16777216 [pid 5297] <... write resumed>) = 16777216 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./9/file0" [pid 5298] munmap(0x7f6c8ae00000, 138412032 [pid 5297] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./9") = 0 [pid 5243] mkdir("./10", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5297] <... munmap resumed>) = 0 [pid 5298] <... munmap resumed>) = 0 [pid 5298] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5297] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5300] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5298] <... openat resumed>) = 4 [pid 5297] ioctl(4, LOOP_SET_FD, 3 [pid 5298] ioctl(4, LOOP_SET_FD, 3 [pid 5297] <... ioctl resumed>) = 0 [pid 5297] close(3) = 0 [pid 5297] close(4) = 0 [pid 5297] mkdir("./file0", 0777) = 0 [pid 5297] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5297] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5298] <... ioctl resumed>) = 0 [pid 5297] <... openat resumed>) = 3 [ 328.302001][ T5297] loop2: detected capacity change from 0 to 32768 [ 328.313976][ T5298] loop1: detected capacity change from 0 to 32768 [pid 5298] close(3) = 0 [pid 5297] chdir("./file0" [pid 5298] close(4 [pid 5297] <... chdir resumed>) = 0 [pid 5298] <... close resumed>) = 0 [pid 5297] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5298] mkdir("./file0", 0777) = 0 [pid 5297] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5298] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5297] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5297] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5297] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5298] <... mount resumed>) = 0 [pid 5298] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5298] chdir("./file0") = 0 [pid 5298] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5298] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5298] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5298] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5301 ./strace-static-x86_64: Process 5301 attached [pid 5301] set_robust_list(0x55555b590660, 24) = 0 [pid 5301] chdir("./10") = 0 [pid 5301] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5297] <... write resumed>) = 4243456 [pid 5297] exit_group(0 [pid 5301] setpgid(0, 0 [pid 5297] <... exit_group resumed>) = ? [pid 5297] +++ exited with 0 +++ [pid 5301] <... setpgid resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5297, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5301] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5299] <... write resumed>) = 16777216 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5301] <... openat resumed>) = 3 [pid 5245] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5301] write(3, "1000", 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5301] <... write resumed>) = 4 [pid 5245] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5301] close(3) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5301] symlink("/dev/binderfs", "./binderfs" [pid 5245] newfstatat(3, "", [pid 5299] munmap(0x7f6c8ae00000, 138412032 [pid 5301] <... symlink resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5301] write(1, "executing program\n", 18executing program [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./9/binderfs" [pid 5301] <... write resumed>) = 18 [pid 5245] <... unlink resumed>) = 0 [pid 5301] memfd_create("syzkaller", 0 [pid 5245] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5301] <... memfd_create resumed>) = 3 [pid 5301] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... umount2 resumed>) = 0 [pid 5299] <... munmap resumed>) = 0 [pid 5245] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./9/file0", [pid 5299] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5299] <... openat resumed>) = 4 [pid 5299] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5298] <... write resumed>) = 4243456 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5298] exit_group(0 [pid 5245] getdents64(4, [pid 5298] <... exit_group resumed>) = ? [pid 5298] +++ exited with 0 +++ [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5298, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] close(4 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... close resumed>) = 0 [pid 5299] <... ioctl resumed>) = 0 [pid 5245] rmdir("./9/file0" [pid 5299] close(3) = 0 [pid 5299] close(4) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5299] mkdir("./file0", 0777 [pid 5245] getdents64(3, [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5244] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] rmdir("./9" [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5299] <... mkdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./9/binderfs") = 0 [pid 5244] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5299] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] mkdir("./10", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [ 328.709733][ T5299] loop4: detected capacity change from 0 to 32768 [pid 5245] close(3 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5300] <... write resumed>) = 16777216 [pid 5299] <... mount resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5299] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5244] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5299] chdir("./file0" [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5299] <... chdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5299] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] <... openat resumed>) = 4 [pid 5299] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] newfstatat(4, "", [pid 5299] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5299] <... openat resumed>) = 4 [pid 5244] getdents64(4, [pid 5299] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5299] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5300] munmap(0x7f6c8ae00000, 138412032 [pid 5244] rmdir("./9/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./9") = 0 [pid 5244] mkdir("./10", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5300] <... munmap resumed>) = 0 [pid 5300] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5300] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5300] close(3) = 0 [pid 5300] close(4) = 0 [pid 5300] mkdir("./file0", 0777) = 0 [ 328.931085][ T5300] loop3: detected capacity change from 0 to 32768 [pid 5300] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5300] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5300] chdir("./file0") = 0 [pid 5300] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5300] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5300] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5300] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5302 attached , child_tidptr=0x55555b590650) = 5302 [pid 5302] set_robust_list(0x55555b590660, 24 [pid 5299] <... write resumed>) = 4243456 [pid 5299] exit_group(0 [pid 5302] <... set_robust_list resumed>) = 0 [pid 5302] chdir("./10" [pid 5299] <... exit_group resumed>) = ? [pid 5302] <... chdir resumed>) = 0 [pid 5302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5302] setpgid(0, 0 [pid 5299] +++ exited with 0 +++ [pid 5302] <... setpgid resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5299, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=38 /* 0.38 s */} --- [pid 5302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5302] <... openat resumed>) = 3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5302] write(3, "1000", 4 [pid 5247] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5302] <... write resumed>) = 4 [pid 5302] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5302] <... close resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5302] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] newfstatat(3, "", executing program [pid 5302] write(1, "executing program\n", 18) = 18 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5302] memfd_create("syzkaller", 0 [pid 5247] getdents64(3, [pid 5302] <... memfd_create resumed>) = 3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5302] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5301] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] unlink("./9/binderfs" [pid 5244] <... close resumed>) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5303 ./strace-static-x86_64: Process 5303 attached [pid 5303] set_robust_list(0x55555b590660, 24) = 0 [pid 5303] chdir("./10") = 0 [pid 5303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5303] setpgid(0, 0) = 0 [pid 5303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5303] write(3, "1000", 4) = 4 [pid 5303] close(3) = 0 [pid 5303] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5303] write(1, "executing program\n", 18) = 18 [pid 5303] memfd_create("syzkaller", 0) = 3 [pid 5303] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./9/file0") = 0 [pid 5300] <... write resumed>) = 4243456 [pid 5300] exit_group(0) = ? [pid 5300] +++ exited with 0 +++ [pid 5247] getdents64(3, [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5300, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] umount2("./9", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./9/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] close(3 [pid 5246] newfstatat(AT_FDCWD, "./9/binderfs", [pid 5247] <... close resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] rmdir("./9" [pid 5246] unlink("./9/binderfs" [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] mkdir("./10", 0777) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./9/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./9/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./9") = 0 [pid 5246] mkdir("./10", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5301] <... write resumed>) = 16777216 [pid 5247] <... close resumed>) = 0 [pid 5301] munmap(0x7f6c8ae00000, 138412032 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5304 attached , child_tidptr=0x55555b590650) = 5304 [pid 5304] set_robust_list(0x55555b590660, 24) = 0 [pid 5304] chdir("./10" [pid 5303] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5304] <... chdir resumed>) = 0 [pid 5302] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5301] <... munmap resumed>) = 0 [pid 5304] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... close resumed>) = 0 [pid 5304] <... prctl resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5304] setpgid(0, 0./strace-static-x86_64: Process 5305 attached ) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5305 [pid 5305] set_robust_list(0x55555b590660, 24 [pid 5304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5305] <... set_robust_list resumed>) = 0 [pid 5304] <... openat resumed>) = 3 [pid 5301] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5305] chdir("./10" [pid 5304] write(3, "1000", 4 [pid 5305] <... chdir resumed>) = 0 [pid 5304] <... write resumed>) = 4 [pid 5301] <... openat resumed>) = 4 [pid 5305] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5304] close(3 [pid 5301] ioctl(4, LOOP_SET_FD, 3 [pid 5305] <... prctl resumed>) = 0 [pid 5304] <... close resumed>) = 0 [pid 5305] setpgid(0, 0 [pid 5304] symlink("/dev/binderfs", "./binderfs" [pid 5305] <... setpgid resumed>) = 0 [pid 5305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5305] write(3, "1000", 4) = 4 [pid 5305] close(3) = 0 [pid 5305] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5305] write(1, "executing program\n", 18) = 18 [pid 5305] memfd_create("syzkaller", 0) = 3 [pid 5305] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5304] <... symlink resumed>) = 0 executing program [pid 5304] write(1, "executing program\n", 18) = 18 [pid 5301] <... ioctl resumed>) = 0 [pid 5304] memfd_create("syzkaller", 0 [pid 5301] close(3) = 0 [pid 5304] <... memfd_create resumed>) = 3 [pid 5301] close(4 [pid 5304] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5301] <... close resumed>) = 0 [pid 5304] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5301] mkdir("./file0", 0777) = 0 [ 329.632941][ T5301] loop0: detected capacity change from 0 to 32768 [pid 5301] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5301] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5301] chdir("./file0") = 0 [pid 5301] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5301] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5301] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5301] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5301] exit_group(0) = ? [pid 5301] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5301, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./10/binderfs") = 0 [pid 5243] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5303] <... write resumed>) = 16777216 [pid 5243] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./10/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./10") = 0 [pid 5243] mkdir("./11", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5303] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5303] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5303] ioctl(4, LOOP_SET_FD, 3 [pid 5305] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5304] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5303] <... ioctl resumed>) = 0 [pid 5303] close(3) = 0 [pid 5303] close(4) = 0 [pid 5303] mkdir("./file0", 0777) = 0 [pid 5302] <... write resumed>) = 16777216 [pid 5302] munmap(0x7f6c8ae00000, 138412032 [ 330.059162][ T5303] loop1: detected capacity change from 0 to 32768 [pid 5303] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5302] <... munmap resumed>) = 0 [pid 5303] <... mount resumed>) = 0 [pid 5303] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5302] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5302] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5303] <... openat resumed>) = 3 [pid 5302] close(3 [pid 5303] chdir("./file0" [pid 5302] <... close resumed>) = 0 [pid 5302] close(4 [pid 5303] <... chdir resumed>) = 0 [pid 5302] <... close resumed>) = 0 [pid 5303] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5302] mkdir("./file0", 0777 [pid 5303] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5302] <... mkdir resumed>) = 0 [pid 5303] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5302] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5303] <... openat resumed>) = 4 [pid 5303] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5303] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5302] <... mount resumed>) = 0 [pid 5302] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5302] chdir("./file0") = 0 [pid 5302] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5302] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5302] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 330.159622][ T5302] loop2: detected capacity change from 0 to 32768 [pid 5302] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5306 ./strace-static-x86_64: Process 5306 attached [pid 5306] set_robust_list(0x55555b590660, 24) = 0 [pid 5306] chdir("./11") = 0 [pid 5306] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5306] setpgid(0, 0) = 0 [pid 5306] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5306] write(3, "1000", 4) = 4 [pid 5306] close(3) = 0 [pid 5306] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5306] write(1, "executing program\n", 18) = 18 [pid 5306] memfd_create("syzkaller", 0) = 3 [pid 5306] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5303] <... write resumed>) = 4243456 [pid 5303] exit_group(0) = ? [pid 5302] <... write resumed>) = 4243456 [pid 5303] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5303, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5302] exit_group(0 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./10/binderfs") = 0 [pid 5244] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5302] <... exit_group resumed>) = ? [pid 5302] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5302, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... umount2 resumed>) = 0 [pid 5245] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./10/binderfs") = 0 [pid 5245] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5305] <... write resumed>) = 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5305] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./10/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./10" [pid 5245] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] mkdir("./11", 0777 [pid 5305] <... munmap resumed>) = 0 [pid 5304] <... write resumed>) = 16777216 [pid 5245] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./10/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5304] munmap(0x7f6c8ae00000, 138412032 [pid 5245] close(3 [pid 5244] <... mkdir resumed>) = 0 [pid 5305] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5305] <... openat resumed>) = 4 [pid 5244] <... openat resumed>) = 3 [pid 5305] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... close resumed>) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] rmdir("./10" [pid 5244] close(3 [pid 5245] <... rmdir resumed>) = 0 [pid 5305] <... ioctl resumed>) = 0 [pid 5245] mkdir("./11", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5305] close(3 [pid 5245] close(3 [pid 5305] <... close resumed>) = 0 [pid 5305] close(4) = 0 [pid 5305] mkdir("./file0", 0777) = 0 [pid 5304] <... munmap resumed>) = 0 [pid 5305] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5304] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 330.560051][ T5305] loop3: detected capacity change from 0 to 32768 [pid 5304] ioctl(4, LOOP_SET_FD, 3 [pid 5305] <... mount resumed>) = 0 [pid 5305] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5305] chdir("./file0") = 0 [pid 5305] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5305] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5304] <... ioctl resumed>) = 0 [pid 5305] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5304] close(3 [pid 5305] <... openat resumed>) = 5 [pid 5304] <... close resumed>) = 0 [pid 5305] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5304] close(4) = 0 [pid 5304] mkdir("./file0", 0777) = 0 [pid 5304] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5304] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5304] chdir("./file0") = 0 [pid 5304] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5304] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5304] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 330.606574][ T5304] loop4: detected capacity change from 0 to 32768 [pid 5304] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5306] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5308 attached [pid 5244] <... close resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5308 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5308] set_robust_list(0x55555b590660, 24) = 0 [pid 5308] chdir("./11"./strace-static-x86_64: Process 5309 attached ) = 0 [pid 5308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5308] setpgid(0, 0) = 0 [pid 5308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5308] write(3, "1000", 4 [pid 5309] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5309 [pid 5309] <... set_robust_list resumed>) = 0 [pid 5305] <... write resumed>) = 4243456 [pid 5309] chdir("./11" [pid 5305] exit_group(0 [pid 5309] <... chdir resumed>) = 0 [pid 5305] <... exit_group resumed>) = ? [pid 5309] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5308] <... write resumed>) = 4 [pid 5305] +++ exited with 0 +++ [pid 5309] <... prctl resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5305, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} --- [pid 5309] setpgid(0, 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5304] <... write resumed>) = 4243456 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5308] close(3 [pid 5304] exit_group(0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5309] <... setpgid resumed>) = 0 [pid 5308] <... close resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5308] symlink("/dev/binderfs", "./binderfs" [pid 5304] <... exit_group resumed>) = ? [pid 5309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5308] <... symlink resumed>) = 0 [pid 5304] +++ exited with 0 +++ [pid 5246] <... openat resumed>) = 3 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5304, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=35 /* 0.35 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5309] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5309] write(3, "1000", 4 [pid 5246] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5309] <... write resumed>) = 4 executing program [pid 5308] write(1, "executing program\n", 18 [pid 5309] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./10/binderfs", [pid 5309] <... close resumed>) = 0 [pid 5308] <... write resumed>) = 18 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5309] symlink("/dev/binderfs", "./binderfs" [pid 5308] memfd_create("syzkaller", 0 [pid 5246] unlink("./10/binderfs" [pid 5309] <... symlink resumed>) = 0 [pid 5308] <... memfd_create resumed>) = 3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 executing program [pid 5309] write(1, "executing program\n", 18 [pid 5308] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5309] <... write resumed>) = 18 [pid 5308] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5309] memfd_create("syzkaller", 0 [pid 5247] umount2("./10", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5309] <... memfd_create resumed>) = 3 [pid 5247] openat(AT_FDCWD, "./10", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5309] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... openat resumed>) = 3 [pid 5309] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./10/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./10/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5247] unlink("./10/binderfs" [pid 5246] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... unlink resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] close(4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... close resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./10/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./10/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./10/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] rmdir("./10/file0" [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, [pid 5247] close(4) = 0 [pid 5247] rmdir("./10/file0") = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(3, [pid 5246] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... close resumed>) = 0 [pid 5247] close(3 [pid 5246] rmdir("./10" [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./10" [pid 5246] <... rmdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] mkdir("./11", 0777 [pid 5247] mkdir("./11", 0777) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5247] <... ioctl resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5247] close(3 [pid 5306] <... write resumed>) = 16777216 [pid 5306] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5306] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5306] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5306] close(3) = 0 [pid 5306] close(4) = 0 [pid 5306] mkdir("./file0", 0777) = 0 [pid 5306] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5306] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 331.202126][ T5306] loop0: detected capacity change from 0 to 32768 [pid 5306] chdir("./file0") = 0 [pid 5306] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5306] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5306] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5306] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5310 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5310 [pid 5310] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5311 ./strace-static-x86_64: Process 5311 attached [pid 5310] chdir("./11" [pid 5311] set_robust_list(0x55555b590660, 24) = 0 [pid 5311] chdir("./11") = 0 [pid 5311] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5311] setpgid(0, 0 [pid 5310] <... chdir resumed>) = 0 [pid 5311] <... setpgid resumed>) = 0 [pid 5311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5310] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5311] <... openat resumed>) = 3 [pid 5310] <... prctl resumed>) = 0 [pid 5310] setpgid(0, 0) = 0 [pid 5311] write(3, "1000", 4 [pid 5310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5311] <... write resumed>) = 4 [pid 5311] close(3 [pid 5310] <... openat resumed>) = 3 [pid 5311] <... close resumed>) = 0 [pid 5311] symlink("/dev/binderfs", "./binderfs" [pid 5310] write(3, "1000", 4 [pid 5311] <... symlink resumed>) = 0 [pid 5310] <... write resumed>) = 4 [pid 5311] write(1, "executing program\n", 18executing program [pid 5310] close(3 [pid 5311] <... write resumed>) = 18 [pid 5310] <... close resumed>) = 0 [pid 5309] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5311] memfd_create("syzkaller", 0 [pid 5310] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5310] write(1, "executing program\n", 18 [pid 5311] <... memfd_create resumed>) = 3 [pid 5311] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program ) = 0x7f6c8ae00000 [pid 5310] <... write resumed>) = 18 [pid 5310] memfd_create("syzkaller", 0 [pid 5308] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5310] <... memfd_create resumed>) = 3 [pid 5310] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5306] <... write resumed>) = 4243456 [pid 5306] exit_group(0) = ? [pid 5306] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5306, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5243] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./11/binderfs") = 0 [pid 5243] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./11/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./11") = 0 [pid 5243] mkdir("./12", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5311] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5309] <... write resumed>) = 16777216 [pid 5310] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5309] munmap(0x7f6c8ae00000, 138412032 [pid 5308] <... write resumed>) = 16777216 [pid 5308] munmap(0x7f6c8ae00000, 138412032 [pid 5309] <... munmap resumed>) = 0 [pid 5309] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5309] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5308] <... munmap resumed>) = 0 [pid 5309] close(3) = 0 [pid 5309] close(4) = 0 [pid 5309] mkdir("./file0", 0777) = 0 [pid 5309] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5312 attached [pid 5308] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5312 [pid 5312] set_robust_list(0x55555b590660, 24) = 0 [pid 5308] <... openat resumed>) = 4 [pid 5312] chdir("./12" [pid 5308] ioctl(4, LOOP_SET_FD, 3 [pid 5309] <... mount resumed>) = 0 [pid 5309] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5309] chdir("./file0") = 0 [pid 5309] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5309] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5309] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5309] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5312] <... chdir resumed>) = 0 [pid 5312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5312] setpgid(0, 0 [pid 5308] <... ioctl resumed>) = 0 [pid 5312] <... setpgid resumed>) = 0 [pid 5308] close(3 [pid 5312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5308] <... close resumed>) = 0 [pid 5308] close(4 [pid 5312] <... openat resumed>) = 3 [pid 5308] <... close resumed>) = 0 [pid 5312] write(3, "1000", 4 [pid 5308] mkdir("./file0", 0777 [pid 5312] <... write resumed>) = 4 [pid 5312] close(3 [pid 5308] <... mkdir resumed>) = 0 [pid 5312] <... close resumed>) = 0 [pid 5308] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 331.837563][ T5309] loop1: detected capacity change from 0 to 32768 [ 331.872970][ T5308] loop2: detected capacity change from 0 to 32768 [pid 5312] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5312] write(1, "executing program\n", 18executing program ) = 18 [pid 5312] memfd_create("syzkaller", 0) = 3 [pid 5312] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5308] <... mount resumed>) = 0 [pid 5308] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5308] chdir("./file0") = 0 [pid 5308] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5308] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5308] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5308] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5309] <... write resumed>) = 4243456 [pid 5309] exit_group(0) = ? [pid 5309] +++ exited with 0 +++ [pid 5311] <... write resumed>) = 16777216 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5309, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=41 /* 0.41 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5311] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./11/binderfs") = 0 [pid 5244] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5311] <... munmap resumed>) = 0 [pid 5244] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5311] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5308] <... write resumed>) = 4243456 [pid 5244] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5311] <... openat resumed>) = 4 [pid 5308] exit_group(0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5311] ioctl(4, LOOP_SET_FD, 3 [pid 5244] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5308] <... exit_group resumed>) = ? [pid 5244] getdents64(4, [pid 5308] +++ exited with 0 +++ [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5308, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./11/file0" [pid 5245] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] getdents64(3, [pid 5245] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5244] close(3 [pid 5245] newfstatat(3, "", [pid 5244] <... close resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] rmdir("./11" [pid 5245] getdents64(3, [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] mkdir("./12", 0777 [pid 5245] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... mkdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] newfstatat(AT_FDCWD, "./11/binderfs", [pid 5244] <... openat resumed>) = 3 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5245] unlink("./11/binderfs" [pid 5244] <... ioctl resumed>) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5244] close(3 [pid 5310] <... write resumed>) = 16777216 [pid 5310] munmap(0x7f6c8ae00000, 138412032 [pid 5245] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5311] <... ioctl resumed>) = 0 [pid 5311] close(3) = 0 [pid 5311] close(4) = 0 [pid 5311] mkdir("./file0", 0777) = 0 [ 332.232033][ T5311] loop3: detected capacity change from 0 to 32768 [pid 5311] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5312] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5310] <... munmap resumed>) = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5310] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5310] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5310] <... ioctl resumed>) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./11/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./11") = 0 [pid 5245] mkdir("./12", 0777 [pid 5310] close(3 [pid 5245] <... mkdir resumed>) = 0 [pid 5311] <... mount resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5311] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... openat resumed>) = 3 [pid 5311] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5310] <... close resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5311] chdir("./file0" [pid 5310] close(4 [pid 5311] <... chdir resumed>) = 0 [pid 5310] <... close resumed>) = 0 [ 332.300236][ T5310] loop4: detected capacity change from 0 to 32768 [pid 5310] mkdir("./file0", 0777 [pid 5311] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5311] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5310] <... mkdir resumed>) = 0 [pid 5311] <... openat resumed>) = 4 [pid 5311] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5311] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5310] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5310] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5310] chdir("./file0") = 0 [pid 5310] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5310] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5310] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5310] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5313 attached , child_tidptr=0x55555b590650) = 5313 [pid 5313] set_robust_list(0x55555b590660, 24) = 0 [pid 5313] chdir("./12") = 0 [pid 5313] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5313] setpgid(0, 0) = 0 [pid 5313] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5313] write(3, "1000", 4) = 4 [pid 5313] close(3) = 0 [pid 5313] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5313] write(1, "executing program\n", 18) = 18 [pid 5313] memfd_create("syzkaller", 0 [pid 5311] <... write resumed>) = 4243456 [pid 5313] <... memfd_create resumed>) = 3 [pid 5313] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5311] exit_group(0) = ? [pid 5310] <... write resumed>) = 4243456 [pid 5245] <... close resumed>) = 0 [pid 5311] +++ exited with 0 +++ [pid 5310] exit_group(0) = ? [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5311, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=38 /* 0.38 s */} --- [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5314 attached , child_tidptr=0x55555b590650) = 5314 [pid 5314] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5314] chdir("./12" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5314] <... chdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5314] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... openat resumed>) = 3 [pid 5314] <... prctl resumed>) = 0 [pid 5314] setpgid(0, 0 [pid 5246] newfstatat(3, "", [pid 5314] <... setpgid resumed>) = 0 [pid 5314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5310] +++ exited with 0 +++ [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5310, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5246] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5314] <... openat resumed>) = 3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5314] write(3, "1000", 4 [pid 5246] newfstatat(AT_FDCWD, "./11/binderfs", [pid 5314] <... write resumed>) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5314] close(3 [pid 5247] umount2("./11", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] unlink("./11/binderfs" [pid 5314] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./11", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5314] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... openat resumed>) = 3 executing program [pid 5314] <... symlink resumed>) = 0 [pid 5247] newfstatat(3, "", [pid 5314] write(1, "executing program\n", 18 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5314] <... write resumed>) = 18 [pid 5247] getdents64(3, [pid 5314] memfd_create("syzkaller", 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... unlink resumed>) = 0 [pid 5314] <... memfd_create resumed>) = 3 [pid 5247] umount2("./11/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5314] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5314] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] newfstatat(AT_FDCWD, "./11/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./11/binderfs") = 0 [pid 5247] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5312] <... write resumed>) = 16777216 [pid 5312] munmap(0x7f6c8ae00000, 138412032 [pid 5246] newfstatat(AT_FDCWD, "./11/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] close(4) = 0 [pid 5247] newfstatat(AT_FDCWD, "./11/file0", [pid 5246] rmdir("./11/file0") = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] getdents64(3, [pid 5247] umount2("./11/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5312] <... munmap resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] close(3 [pid 5247] openat(AT_FDCWD, "./11/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5312] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... openat resumed>) = 4 [pid 5246] <... close resumed>) = 0 [pid 5312] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", [pid 5246] rmdir("./11" [pid 5312] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] mkdir("./12", 0777 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... mkdir resumed>) = 0 [pid 5247] getdents64(4, [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5247] close(4 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5247] <... close resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5247] rmdir("./11/file0" [pid 5246] close(3 [pid 5247] <... rmdir resumed>) = 0 [pid 5312] <... ioctl resumed>) = 0 [pid 5312] close(3 [pid 5247] getdents64(3, [pid 5312] <... close resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5312] close(4 [pid 5247] close(3 [pid 5312] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5312] mkdir("./file0", 0777 [ 332.764949][ T5312] loop0: detected capacity change from 0 to 32768 [pid 5247] rmdir("./11" [pid 5312] <... mkdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5312] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] mkdir("./12", 0777 [pid 5312] <... mount resumed>) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5312] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5312] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5312] chdir("./file0" [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5312] <... chdir resumed>) = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5312] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] close(3 [pid 5312] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5312] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5312] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5312] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5313] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5315 attached , child_tidptr=0x55555b590650) = 5315 [pid 5315] set_robust_list(0x55555b590660, 24) = 0 [pid 5315] chdir("./12") = 0 [pid 5315] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5315] setpgid(0, 0) = 0 [pid 5315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5315] write(3, "1000", 4) = 4 [pid 5315] close(3) = 0 [pid 5315] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5315] write(1, "executing program\n", 18) = 18 [pid 5315] memfd_create("syzkaller", 0) = 3 [pid 5315] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5316 attached [pid 5314] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5316 [pid 5316] set_robust_list(0x55555b590660, 24) = 0 [pid 5316] chdir("./12") = 0 [pid 5316] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5316] setpgid(0, 0 [pid 5312] <... write resumed>) = 4243456 [pid 5316] <... setpgid resumed>) = 0 [pid 5312] exit_group(0 [pid 5316] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5312] <... exit_group resumed>) = ? [pid 5312] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5312, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5316] <... openat resumed>) = 3 [pid 5316] write(3, "1000", 4 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5316] <... write resumed>) = 4 [pid 5243] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./12/binderfs") = 0 [pid 5243] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5316] close(3) = 0 [pid 5316] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5316] write(1, "executing program\n", 18) = 18 [pid 5316] memfd_create("syzkaller", 0 [pid 5243] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5316] <... memfd_create resumed>) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5316] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./12/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./12") = 0 [pid 5243] mkdir("./13", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5313] <... write resumed>) = 16777216 [pid 5313] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5313] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5313] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5313] close(3) = 0 [pid 5313] close(4) = 0 [pid 5313] mkdir("./file0", 0777) = 0 [pid 5313] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5313] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5313] chdir("./file0") = 0 [pid 5313] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5313] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5313] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 333.383546][ T5313] loop1: detected capacity change from 0 to 32768 [pid 5313] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5315] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5317 attached , child_tidptr=0x55555b590650) = 5317 [pid 5317] set_robust_list(0x55555b590660, 24) = 0 [pid 5317] chdir("./13") = 0 [pid 5317] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5317] setpgid(0, 0) = 0 [pid 5317] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5317] write(3, "1000", 4) = 4 [pid 5317] close(3 [pid 5314] <... write resumed>) = 16777216 [pid 5317] <... close resumed>) = 0 [pid 5317] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5317] write(1, "executing program\n", 18) = 18 [pid 5317] memfd_create("syzkaller", 0 [pid 5314] munmap(0x7f6c8ae00000, 138412032 [pid 5317] <... memfd_create resumed>) = 3 [pid 5317] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5316] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5314] <... munmap resumed>) = 0 [pid 5314] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5314] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5314] close(3) = 0 [pid 5313] <... write resumed>) = 4243456 [pid 5313] exit_group(0 [pid 5314] close(4 [pid 5313] <... exit_group resumed>) = ? [pid 5314] <... close resumed>) = 0 [pid 5314] mkdir("./file0", 0777 [pid 5313] +++ exited with 0 +++ [pid 5314] <... mkdir resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5313, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=29 /* 0.29 s */} --- [ 333.633284][ T5314] loop2: detected capacity change from 0 to 32768 [pid 5314] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./12/binderfs") = 0 [pid 5244] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5314] <... mount resumed>) = 0 [pid 5314] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5314] chdir("./file0") = 0 [pid 5314] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... umount2 resumed>) = 0 [pid 5314] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5314] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5314] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] newfstatat(AT_FDCWD, "./12/file0", [pid 5314] <... openat resumed>) = 5 [pid 5314] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./12/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./12") = 0 [pid 5244] mkdir("./13", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5315] <... write resumed>) = 16777216 [pid 5315] munmap(0x7f6c8ae00000, 138412032 [pid 5314] <... write resumed>) = 4243456 [pid 5314] exit_group(0) = ? [pid 5314] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5314, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5315] <... munmap resumed>) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", [pid 5315] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5315] <... openat resumed>) = 4 [pid 5245] getdents64(3, [pid 5315] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./12/binderfs") = 0 [pid 5245] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5317] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5315] <... ioctl resumed>) = 0 [pid 5315] close(3) = 0 [pid 5315] close(4 [pid 5245] <... umount2 resumed>) = 0 [pid 5315] <... close resumed>) = 0 [pid 5245] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5315] mkdir("./file0", 0777) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5315] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] <... close resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./12/file0") = 0 ./strace-static-x86_64: Process 5318 attached [pid 5318] set_robust_list(0x55555b590660, 24) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5318 [ 333.994441][ T5315] loop3: detected capacity change from 0 to 32768 [pid 5318] chdir("./13" [pid 5245] getdents64(3, [pid 5318] <... chdir resumed>) = 0 [pid 5318] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5318] <... prctl resumed>) = 0 [pid 5318] setpgid(0, 0 [pid 5245] close(3 [pid 5318] <... setpgid resumed>) = 0 [pid 5315] <... mount resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./12" [pid 5318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5315] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... rmdir resumed>) = 0 [pid 5318] <... openat resumed>) = 3 [pid 5315] <... openat resumed>) = 3 [pid 5245] mkdir("./13", 0777 [pid 5318] write(3, "1000", 4 [pid 5315] chdir("./file0" [pid 5318] <... write resumed>) = 4 [pid 5315] <... chdir resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5318] close(3 [pid 5315] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5318] <... close resumed>) = 0 [pid 5315] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5318] symlink("/dev/binderfs", "./binderfs" [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5315] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5318] <... symlink resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FDexecuting program [pid 5318] write(1, "executing program\n", 18 [pid 5315] <... openat resumed>) = 4 [pid 5245] <... ioctl resumed>) = 0 [pid 5318] <... write resumed>) = 18 [pid 5245] close(3 [pid 5318] memfd_create("syzkaller", 0 [pid 5315] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5318] <... memfd_create resumed>) = 3 [pid 5318] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5315] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5316] <... write resumed>) = 16777216 [pid 5316] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5316] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5316] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5316] close(3) = 0 [pid 5316] close(4) = 0 [pid 5316] mkdir("./file0", 0777) = 0 [pid 5316] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5316] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5316] chdir("./file0") = 0 [pid 5316] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5316] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5316] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 334.183277][ T5316] loop4: detected capacity change from 0 to 32768 [pid 5316] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5315] <... write resumed>) = 4243456 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5315] exit_group(0./strace-static-x86_64: Process 5319 attached ) = ? [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5319 [pid 5319] set_robust_list(0x55555b590660, 24) = 0 [pid 5319] chdir("./13") = 0 [pid 5319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5319] setpgid(0, 0) = 0 [pid 5315] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5315, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=40 /* 0.40 s */} --- [pid 5319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5319] write(3, "1000", 4) = 4 [pid 5319] close(3) = 0 [pid 5319] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5319] write(1, "executing program\n", 18) = 18 executing program [pid 5319] memfd_create("syzkaller", 0 [pid 5246] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5319] <... memfd_create resumed>) = 3 [pid 5319] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5319] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./12/binderfs") = 0 [pid 5246] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5316] <... write resumed>) = 4243456 [pid 5316] exit_group(0) = ? [pid 5316] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5316, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... restart_syscall resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] umount2("./12", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(4, "", [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] openat(AT_FDCWD, "./12", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] getdents64(4, [pid 5247] <... openat resumed>) = 3 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5247] getdents64(3, [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] close(4 [pid 5247] umount2("./12/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] rmdir("./12/file0" [pid 5247] newfstatat(AT_FDCWD, "./12/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5247] unlink("./12/binderfs") = 0 [pid 5247] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./12") = 0 [pid 5246] mkdir("./13", 0777 [pid 5317] <... write resumed>) = 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5317] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5318] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5247] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./12/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./12/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./12/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./12/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5317] <... munmap resumed>) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./12") = 0 [pid 5247] mkdir("./13", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5317] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5317] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5317] close(3) = 0 [pid 5317] close(4) = 0 [pid 5317] mkdir("./file0", 0777) = 0 [ 334.550212][ T5317] loop0: detected capacity change from 0 to 32768 [pid 5317] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5317] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5317] chdir("./file0") = 0 [pid 5317] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5317] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5317] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5317] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5320 ./strace-static-x86_64: Process 5320 attached [pid 5320] set_robust_list(0x55555b590660, 24 [pid 5246] <... close resumed>) = 0 [pid 5320] <... set_robust_list resumed>) = 0 [pid 5320] chdir("./13") = 0 [pid 5320] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5320] setpgid(0, 0) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5321 attached [pid 5320] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5320] write(3, "1000", 4) = 4 [pid 5320] close(3) = 0 [pid 5321] set_robust_list(0x55555b590660, 24) = 0 [pid 5321] chdir("./13") = 0 [pid 5321] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5321 [pid 5321] <... prctl resumed>) = 0 [pid 5321] setpgid(0, 0) = 0 [pid 5321] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5321] write(3, "1000", 4) = 4 [pid 5321] close(3) = 0 [pid 5321] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5321] write(1, "executing program\n", 18executing program [pid 5320] symlink("/dev/binderfs", "./binderfs" [pid 5319] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5321] <... write resumed>) = 18 [pid 5321] memfd_create("syzkaller", 0) = 3 [pid 5320] <... symlink resumed>) = 0 [pid 5321] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 executing program [pid 5320] write(1, "executing program\n", 18 [pid 5317] <... write resumed>) = 4243456 [pid 5320] <... write resumed>) = 18 [pid 5320] memfd_create("syzkaller", 0 [pid 5317] exit_group(0 [pid 5320] <... memfd_create resumed>) = 3 [pid 5320] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5317] <... exit_group resumed>) = ? [pid 5317] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5317, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} --- [pid 5320] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./13/binderfs") = 0 [pid 5243] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./13/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./13") = 0 [pid 5243] mkdir("./14", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5318] <... write resumed>) = 16777216 [pid 5318] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5318] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5318] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5318] close(3) = 0 [pid 5318] close(4) = 0 [pid 5318] mkdir("./file0", 0777) = 0 [pid 5318] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5318] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5318] chdir("./file0") = 0 [pid 5318] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5318] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5318] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 335.069958][ T5318] loop1: detected capacity change from 0 to 32768 [pid 5318] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5322 ./strace-static-x86_64: Process 5322 attached [pid 5322] set_robust_list(0x55555b590660, 24) = 0 [pid 5322] chdir("./14") = 0 [pid 5322] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5322] setpgid(0, 0) = 0 [pid 5322] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5322] write(3, "1000", 4) = 4 [pid 5322] close(3) = 0 [pid 5322] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5322] write(1, "executing program\n", 18) = 18 [pid 5322] memfd_create("syzkaller", 0) = 3 [pid 5322] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5320] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5319] <... write resumed>) = 16777216 [pid 5321] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5319] munmap(0x7f6c8ae00000, 138412032 [pid 5318] <... write resumed>) = 4243456 [pid 5318] exit_group(0) = ? [pid 5318] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5318, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5319] <... munmap resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./13/binderfs") = 0 [pid 5244] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5319] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... umount2 resumed>) = 0 [pid 5319] <... openat resumed>) = 4 [pid 5244] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5319] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./13/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./13") = 0 [pid 5244] mkdir("./14", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5319] <... ioctl resumed>) = 0 [pid 5319] close(3) = 0 [pid 5319] close(4) = 0 [pid 5319] mkdir("./file0", 0777) = 0 [ 335.344128][ T5319] loop2: detected capacity change from 0 to 32768 [pid 5319] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5319] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5319] chdir("./file0") = 0 [pid 5319] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5319] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5319] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5319] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5323 attached [pid 5323] set_robust_list(0x55555b590660, 24) = 0 [pid 5323] chdir("./14") = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5323 [pid 5323] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5323] setpgid(0, 0) = 0 [pid 5323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5322] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5323] write(3, "1000", 4) = 4 [pid 5323] close(3) = 0 [pid 5323] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5323] write(1, "executing program\n", 18) = 18 [pid 5323] memfd_create("syzkaller", 0) = 3 [pid 5323] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5319] <... write resumed>) = 4243456 [pid 5319] exit_group(0) = ? [pid 5319] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5319, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5320] <... write resumed>) = 16777216 [pid 5320] munmap(0x7f6c8ae00000, 138412032 [pid 5245] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./13/binderfs") = 0 [pid 5245] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5321] <... write resumed>) = 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5321] munmap(0x7f6c8ae00000, 138412032 [pid 5320] <... munmap resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5320] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] newfstatat(AT_FDCWD, "./13/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5320] <... openat resumed>) = 4 [pid 5245] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5320] ioctl(4, LOOP_SET_FD, 3 [pid 5321] <... munmap resumed>) = 0 [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", [pid 5321] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5320] <... ioctl resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5321] <... openat resumed>) = 4 [pid 5320] close(3 [pid 5245] getdents64(4, [pid 5320] <... close resumed>) = 0 [pid 5321] ioctl(4, LOOP_SET_FD, 3 [pid 5320] close(4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5320] <... close resumed>) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./13/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./13") = 0 [pid 5245] mkdir("./14", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5321] <... ioctl resumed>) = 0 [pid 5320] mkdir("./file0", 0777) = 0 [pid 5321] close(3 [pid 5320] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5321] <... close resumed>) = 0 [pid 5321] close(4) = 0 [pid 5321] mkdir("./file0", 0777) = 0 [pid 5321] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5320] <... mount resumed>) = 0 [pid 5320] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5320] chdir("./file0") = 0 [pid 5320] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5320] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [ 335.797075][ T5320] loop4: detected capacity change from 0 to 32768 [ 335.819296][ T5321] loop3: detected capacity change from 0 to 32768 [pid 5320] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5320] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5321] <... mount resumed>) = 0 [pid 5321] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5321] chdir("./file0") = 0 [pid 5321] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5321] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5321] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5321] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5320] <... write resumed>) = 4243456 [pid 5320] exit_group(0) = ? [pid 5320] +++ exited with 0 +++ [pid 5322] <... write resumed>) = 16777216 [pid 5323] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5320, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5322] munmap(0x7f6c8ae00000, 138412032 [pid 5247] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5324 attached ) = -1 EINVAL (Invalid argument) [pid 5324] set_robust_list(0x55555b590660, 24 [pid 5247] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5324 [pid 5324] <... set_robust_list resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5324] chdir("./14" [pid 5247] newfstatat(3, "", [pid 5324] <... chdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5247] getdents64(3, [pid 5324] setpgid(0, 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5324] <... setpgid resumed>) = 0 [pid 5247] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./13/binderfs", [pid 5324] <... openat resumed>) = 3 [pid 5324] write(3, "1000", 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5324] <... write resumed>) = 4 [pid 5247] unlink("./13/binderfs" [pid 5324] close(3) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5324] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5322] <... munmap resumed>) = 0 [pid 5321] <... write resumed>) = 4243456 [pid 5247] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5321] exit_group(0 [pid 5324] write(1, "executing program\n", 18 [pid 5322] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5321] <... exit_group resumed>) = ? [pid 5247] <... umount2 resumed>) = 0 executing program [pid 5324] <... write resumed>) = 18 [pid 5322] <... openat resumed>) = 4 [pid 5322] ioctl(4, LOOP_SET_FD, 3 [pid 5324] memfd_create("syzkaller", 0 [pid 5247] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./13/file0", [pid 5321] +++ exited with 0 +++ [pid 5324] <... memfd_create resumed>) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5324] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5321, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./13/file0") = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./13", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./13", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./13/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./13/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./13/binderfs") = 0 [pid 5246] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./13") = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5322] <... ioctl resumed>) = 0 [pid 5322] close(3) = 0 [pid 5322] close(4 [pid 5247] mkdir("./14", 0777 [pid 5322] <... close resumed>) = 0 [pid 5322] mkdir("./file0", 0777) = 0 [pid 5246] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... mkdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./13/file0", [pid 5322] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5246] umount2("./13/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... ioctl resumed>) = 0 [ 336.178397][ T5322] loop0: detected capacity change from 0 to 32768 [pid 5246] openat(AT_FDCWD, "./13/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] close(3 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./13/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./13") = 0 [pid 5246] mkdir("./14", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5322] <... mount resumed>) = 0 [pid 5322] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5322] chdir("./file0") = 0 [pid 5322] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5322] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5322] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5322] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5323] <... write resumed>) = 16777216 [pid 5246] <... close resumed>) = 0 [pid 5323] munmap(0x7f6c8ae00000, 138412032 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5325 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5325 attached [pid 5325] set_robust_list(0x55555b590660, 24) = 0 [pid 5325] chdir("./14") = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5326 ./strace-static-x86_64: Process 5326 attached [pid 5326] set_robust_list(0x55555b590660, 24) = 0 [pid 5326] chdir("./14") = 0 [pid 5325] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5326] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5325] <... prctl resumed>) = 0 [pid 5326] <... prctl resumed>) = 0 [pid 5326] setpgid(0, 0 [pid 5325] setpgid(0, 0 [pid 5326] <... setpgid resumed>) = 0 [pid 5326] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5325] <... setpgid resumed>) = 0 [pid 5323] <... munmap resumed>) = 0 [pid 5322] <... write resumed>) = 4243456 [pid 5326] write(3, "1000", 4 [pid 5325] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5323] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5322] exit_group(0 [pid 5326] <... write resumed>) = 4 [pid 5325] <... openat resumed>) = 3 [pid 5323] <... openat resumed>) = 4 [pid 5326] close(3 [pid 5325] write(3, "1000", 4 [pid 5323] ioctl(4, LOOP_SET_FD, 3 [pid 5322] <... exit_group resumed>) = ? [pid 5326] <... close resumed>) = 0 [pid 5325] <... write resumed>) = 4 [pid 5324] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5322] +++ exited with 0 +++ [pid 5325] close(3 [pid 5323] <... ioctl resumed>) = 0 [pid 5326] symlink("/dev/binderfs", "./binderfs" [pid 5325] <... close resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5322, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} --- [pid 5326] <... symlink resumed>) = 0 [pid 5325] symlink("/dev/binderfs", "./binderfs" [pid 5323] close(3executing program [pid 5326] write(1, "executing program\n", 18 [pid 5325] <... symlink resumed>) = 0 [pid 5323] <... close resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5326] <... write resumed>) = 18 [pid 5323] close(4) = 0 [pid 5243] <... restart_syscall resumed>) = 0 executing program [pid 5326] memfd_create("syzkaller", 0 [pid 5325] write(1, "executing program\n", 18 [pid 5323] mkdir("./file0", 0777 [pid 5325] <... write resumed>) = 18 [pid 5323] <... mkdir resumed>) = 0 [pid 5325] memfd_create("syzkaller", 0 [pid 5243] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5325] <... memfd_create resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5323] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... openat resumed>) = 3 [pid 5326] <... memfd_create resumed>) = 3 [pid 5325] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5326] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5325] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5326] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 336.566991][ T5323] loop1: detected capacity change from 0 to 32768 [pid 5243] unlink("./14/binderfs" [pid 5323] <... mount resumed>) = 0 [pid 5323] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5323] chdir("./file0") = 0 [pid 5323] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5323] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5323] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... unlink resumed>) = 0 [pid 5323] <... openat resumed>) = 5 [pid 5323] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./14/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./14") = 0 [pid 5243] mkdir("./15", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5324] <... write resumed>) = 16777216 [pid 5324] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5324] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5324] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5323] <... write resumed>) = 4243456 [pid 5323] exit_group(0) = ? [pid 5324] close(3 [pid 5323] +++ exited with 0 +++ [pid 5324] <... close resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5323, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5324] close(4 [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5324] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5324] mkdir("./file0", 0777 [pid 5244] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5324] <... mkdir resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./14/binderfs") = 0 [pid 5324] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5324] <... mount resumed>) = 0 [ 336.900602][ T5324] loop2: detected capacity change from 0 to 32768 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5324] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] newfstatat(4, "", [pid 5324] <... openat resumed>) = 3 [pid 5324] chdir("./file0" [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5324] <... chdir resumed>) = 0 [pid 5324] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] getdents64(4, [pid 5324] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5324] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] getdents64(4, [pid 5324] <... openat resumed>) = 4 [pid 5324] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5324] <... openat resumed>) = 5 [pid 5244] close(4 [pid 5324] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./14/file0") = 0 [pid 5244] getdents64(3, [pid 5243] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./14") = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] mkdir("./15", 0777./strace-static-x86_64: Process 5327 attached ) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5327 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5327] set_robust_list(0x55555b590660, 24 [pid 5244] close(3 [pid 5327] <... set_robust_list resumed>) = 0 [pid 5327] chdir("./15") = 0 [pid 5327] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5327] setpgid(0, 0) = 0 [pid 5327] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5327] write(3, "1000", 4) = 4 [pid 5327] close(3) = 0 [pid 5327] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5327] write(1, "executing program\n", 18) = 18 [pid 5327] memfd_create("syzkaller", 0) = 3 [pid 5327] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5326] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5325] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5324] <... write resumed>) = 4243456 [pid 5324] exit_group(0) = ? [pid 5324] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5324, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./14/binderfs") = 0 [pid 5245] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./14/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] rmdir("./14") = 0 [pid 5245] mkdir("./15", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5328 attached , child_tidptr=0x55555b590650) = 5328 [pid 5328] set_robust_list(0x55555b590660, 24) = 0 [pid 5328] chdir("./15") = 0 [pid 5328] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5328] setpgid(0, 0) = 0 [pid 5328] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5328] write(3, "1000", 4) = 4 [pid 5328] close(3) = 0 [pid 5328] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5328] write(1, "executing program\n", 18) = 18 [pid 5328] memfd_create("syzkaller", 0) = 3 [pid 5328] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5326] <... write resumed>) = 16777216 [pid 5326] munmap(0x7f6c8ae00000, 138412032 [pid 5327] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5326] <... munmap resumed>) = 0 [pid 5326] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5326] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5326] close(3) = 0 [pid 5326] close(4) = 0 [pid 5326] mkdir("./file0", 0777) = 0 [ 337.507181][ T5326] loop3: detected capacity change from 0 to 32768 [pid 5326] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5325] <... write resumed>) = 16777216 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5326] <... mount resumed>) = 0 [pid 5326] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5329 [pid 5326] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5329 attached [pid 5326] chdir("./file0" [pid 5329] set_robust_list(0x55555b590660, 24 [pid 5326] <... chdir resumed>) = 0 [pid 5329] <... set_robust_list resumed>) = 0 [pid 5326] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5329] chdir("./15" [pid 5326] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5329] <... chdir resumed>) = 0 [pid 5326] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5329] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5326] <... openat resumed>) = 4 [pid 5329] setpgid(0, 0 [pid 5326] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5329] <... setpgid resumed>) = 0 [pid 5326] <... openat resumed>) = 5 [pid 5329] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5326] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5329] <... openat resumed>) = 3 [pid 5329] write(3, "1000", 4) = 4 [pid 5329] close(3) = 0 executing program [pid 5329] symlink("/dev/binderfs", "./binderfs" [pid 5325] munmap(0x7f6c8ae00000, 138412032 [pid 5329] <... symlink resumed>) = 0 [pid 5329] write(1, "executing program\n", 18) = 18 [pid 5329] memfd_create("syzkaller", 0) = 3 [pid 5329] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5325] <... munmap resumed>) = 0 [pid 5325] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5325] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5325] close(3) = 0 [pid 5325] close(4) = 0 [pid 5325] mkdir("./file0", 0777) = 0 [ 337.663889][ T5325] loop4: detected capacity change from 0 to 32768 [pid 5325] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5325] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5325] chdir("./file0") = 0 [pid 5325] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5325] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5325] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5325] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5328] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5326] <... write resumed>) = 4243456 [pid 5326] exit_group(0) = ? [pid 5326] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5326, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5327] <... write resumed>) = 16777216 [pid 5246] getdents64(3, [pid 5327] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./14/binderfs") = 0 [pid 5246] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5327] <... munmap resumed>) = 0 [pid 5327] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... umount2 resumed>) = 0 [pid 5327] <... openat resumed>) = 4 [pid 5246] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5327] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5325] <... write resumed>) = 4243456 [pid 5246] newfstatat(AT_FDCWD, "./14/file0", [pid 5325] exit_group(0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5325] <... exit_group resumed>) = ? [pid 5246] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5325] +++ exited with 0 +++ [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./14/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./14") = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5325, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=27 /* 0.27 s */} --- [pid 5246] mkdir("./15", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5327] <... ioctl resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5327] close(3) = 0 [pid 5329] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5327] close(4) = 0 [pid 5327] mkdir("./file0", 0777 [pid 5247] umount2("./14", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5327] <... mkdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./14", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5327] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... openat resumed>) = 3 [ 337.964069][ T5327] loop0: detected capacity change from 0 to 32768 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5327] <... mount resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5327] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] umount2("./14/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5327] <... openat resumed>) = 3 [pid 5327] chdir("./file0") = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./14/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5327] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5327] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5247] unlink("./14/binderfs" [pid 5327] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... unlink resumed>) = 0 [pid 5327] <... openat resumed>) = 5 [pid 5327] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./14/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./14/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./14/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./14/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./14") = 0 [pid 5247] mkdir("./15", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5328] <... write resumed>) = 16777216 [pid 5328] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5328] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5328] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5327] <... write resumed>) = 4243456 [pid 5327] exit_group(0) = ? [pid 5328] close(3) = 0 [pid 5328] close(4) = 0 [pid 5328] mkdir("./file0", 0777 [pid 5327] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5327, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5328] <... mkdir resumed>) = 0 [pid 5328] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5328] <... mount resumed>) = 0 [pid 5243] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5328] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5328] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5328] chdir("./file0" [pid 5243] <... openat resumed>) = 3 [pid 5328] <... chdir resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5328] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5328] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] getdents64(3, ./strace-static-x86_64: Process 5330 attached [pid 5330] set_robust_list(0x55555b590660, 24 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5328] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5330 [pid 5243] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5330] <... set_robust_list resumed>) = 0 [pid 5330] chdir("./15" [pid 5328] <... openat resumed>) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5328] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5330] <... chdir resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5330] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5328] <... openat resumed>) = 5 [pid 5243] unlink("./15/binderfs" [pid 5330] <... prctl resumed>) = 0 [pid 5330] setpgid(0, 0) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5328] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [ 338.289839][ T5328] loop1: detected capacity change from 0 to 32768 [pid 5243] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5330] <... openat resumed>) = 3 [pid 5243] <... umount2 resumed>) = 0 [pid 5330] write(3, "1000", 4) = 4 [pid 5330] close(3) = 0 [pid 5330] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5330] write(1, "executing program\n", 18) = 18 [pid 5330] memfd_create("syzkaller", 0) = 3 [pid 5243] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./15/file0", [pid 5330] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] newfstatat(4, "", [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5331 ./strace-static-x86_64: Process 5331 attached [pid 5331] set_robust_list(0x55555b590660, 24) = 0 [pid 5331] chdir("./15") = 0 [pid 5331] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5331] setpgid(0, 0) = 0 [pid 5331] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5331] write(3, "1000", 4) = 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5331] close(3) = 0 [pid 5331] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5331] write(1, "executing program\n", 18) = 18 [pid 5331] memfd_create("syzkaller", 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5331] <... memfd_create resumed>) = 3 [pid 5329] <... write resumed>) = 16777216 [pid 5243] getdents64(4, [pid 5331] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5329] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5331] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] close(4) = 0 [pid 5243] rmdir("./15/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./15") = 0 [pid 5243] mkdir("./16", 0777 [pid 5329] <... munmap resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5329] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5329] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5329] <... ioctl resumed>) = 0 [pid 5329] close(3) = 0 [pid 5329] close(4) = 0 [pid 5329] mkdir("./file0", 0777) = 0 [ 338.479679][ T5329] loop2: detected capacity change from 0 to 32768 [pid 5329] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5328] <... write resumed>) = 4243456 [pid 5328] exit_group(0) = ? [pid 5328] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5328, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5329] <... mount resumed>) = 0 [pid 5244] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5329] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5329] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5329] chdir("./file0") = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5329] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] unlink("./15/binderfs") = 0 [pid 5244] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5329] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5329] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5329] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5329] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./15/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./15") = 0 [pid 5244] mkdir("./16", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5332 attached , child_tidptr=0x55555b590650) = 5332 [pid 5332] set_robust_list(0x55555b590660, 24) = 0 [pid 5332] chdir("./16") = 0 [pid 5332] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5332] setpgid(0, 0) = 0 [pid 5332] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5332] write(3, "1000", 4) = 4 [pid 5329] <... write resumed>) = 4243456 [pid 5329] exit_group(0 [pid 5332] close(3 [pid 5330] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5329] <... exit_group resumed>) = ? [pid 5329] +++ exited with 0 +++ [pid 5332] <... close resumed>) = 0 [pid 5332] symlink("/dev/binderfs", "./binderfs" [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5329, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=39 /* 0.39 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5332] <... symlink resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 executing program [pid 5245] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5332] write(1, "executing program\n", 18 [pid 5245] newfstatat(AT_FDCWD, "./15/binderfs", [pid 5332] <... write resumed>) = 18 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5332] memfd_create("syzkaller", 0 [pid 5245] unlink("./15/binderfs") = 0 [pid 5332] <... memfd_create resumed>) = 3 [pid 5245] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5332] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5331] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./15/file0") = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... close resumed>) = 0 ./strace-static-x86_64: Process 5333 attached [pid 5245] rmdir("./15" [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5333 [pid 5333] set_robust_list(0x55555b590660, 24) = 0 [pid 5333] chdir("./16"executing program ) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5333] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5333] setpgid(0, 0) = 0 [pid 5333] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5333] write(3, "1000", 4) = 4 [pid 5333] close(3) = 0 [pid 5333] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5333] write(1, "executing program\n", 18) = 18 [pid 5333] memfd_create("syzkaller", 0) = 3 [pid 5333] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] mkdir("./16", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5330] <... write resumed>) = 16777216 [pid 5330] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5245] <... close resumed>) = 0 [pid 5330] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5330] ioctl(4, LOOP_SET_FD, 3 [pid 5332] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5334 attached [pid 5334] set_robust_list(0x55555b590660, 24) = 0 [pid 5334] chdir("./16" [pid 5330] <... ioctl resumed>) = 0 [pid 5330] close(3) = 0 [pid 5330] close(4) = 0 [pid 5334] <... chdir resumed>) = 0 [pid 5334] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5334] setpgid(0, 0) = 0 [pid 5334] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5330] mkdir("./file0", 0777 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5334 [pid 5334] <... openat resumed>) = 3 [pid 5330] <... mkdir resumed>) = 0 [pid 5334] write(3, "1000", 4 [pid 5330] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5334] <... write resumed>) = 4 [pid 5330] <... mount resumed>) = 0 [pid 5334] close(3 [pid 5330] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5334] <... close resumed>) = 0 [pid 5330] <... openat resumed>) = 3 [pid 5334] symlink("/dev/binderfs", "./binderfs" [pid 5330] chdir("./file0" [pid 5334] <... symlink resumed>) = 0 [pid 5331] <... write resumed>) = 16777216 [pid 5330] <... chdir resumed>) = 0 executing program [pid 5334] write(1, "executing program\n", 18 [pid 5330] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5334] <... write resumed>) = 18 [pid 5330] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5334] memfd_create("syzkaller", 0 [pid 5330] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5330] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5330] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5334] <... memfd_create resumed>) = 3 [pid 5331] munmap(0x7f6c8ae00000, 138412032 [ 339.242706][ T5330] loop3: detected capacity change from 0 to 32768 [pid 5334] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5333] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5331] <... munmap resumed>) = 0 [pid 5331] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5331] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5331] close(3) = 0 [pid 5331] close(4) = 0 [pid 5331] mkdir("./file0", 0777) = 0 [ 339.340795][ T5331] loop4: detected capacity change from 0 to 32768 [pid 5331] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5331] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5331] chdir("./file0") = 0 [pid 5331] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5331] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5331] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5331] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5330] <... write resumed>) = 4243456 [pid 5330] exit_group(0) = ? [pid 5330] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5330, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./15/binderfs") = 0 [pid 5246] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./15/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./15/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./15") = 0 [pid 5246] mkdir("./16", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5332] <... write resumed>) = 16777216 [pid 5332] munmap(0x7f6c8ae00000, 138412032 [pid 5331] <... write resumed>) = 4243456 [pid 5331] exit_group(0) = ? [pid 5331] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5331, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] umount2("./15", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./15", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./15/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./15/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./15/binderfs") = 0 [pid 5247] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5332] <... munmap resumed>) = 0 [pid 5332] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5247] <... umount2 resumed>) = 0 [pid 5332] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5247] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5332] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5332] <... close resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./15/file0", [pid 5332] close(4) = 0 [pid 5332] mkdir("./file0", 0777) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5332] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] umount2("./15/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./15/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5332] <... mount resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5332] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] close(4 [pid 5332] <... openat resumed>) = 3 [pid 5332] chdir("./file0") = 0 [pid 5247] <... close resumed>) = 0 [pid 5332] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] rmdir("./15/file0" [pid 5332] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... rmdir resumed>) = 0 [pid 5334] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5332] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [ 339.731595][ T5332] loop0: detected capacity change from 0 to 32768 [pid 5247] getdents64(3, [pid 5332] <... openat resumed>) = 4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5332] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./15" [pid 5332] <... openat resumed>) = 5 [pid 5332] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] mkdir("./16", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5333] <... write resumed>) = 16777216 [pid 5333] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5335 attached [pid 5335] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5335 [pid 5335] <... set_robust_list resumed>) = 0 [pid 5335] chdir("./16" [pid 5333] <... munmap resumed>) = 0 [pid 5335] <... chdir resumed>) = 0 [pid 5333] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5333] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5335] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5335] setpgid(0, 0) = 0 [pid 5333] close(3 [pid 5335] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5333] <... close resumed>) = 0 [pid 5333] close(4 [pid 5335] <... openat resumed>) = 3 [pid 5333] <... close resumed>) = 0 [pid 5335] write(3, "1000", 4) = 4 [pid 5333] mkdir("./file0", 0777 [pid 5335] close(3 [pid 5333] <... mkdir resumed>) = 0 [pid 5335] <... close resumed>) = 0 [pid 5335] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5333] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5335] write(1, "executing program\n", 18) = 18 [pid 5335] memfd_create("syzkaller", 0) = 3 [pid 5332] <... write resumed>) = 4243456 [pid 5335] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 339.940760][ T5333] loop1: detected capacity change from 0 to 32768 [pid 5332] exit_group(0) = ? [pid 5332] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5332, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5333] <... mount resumed>) = 0 [pid 5243] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5333] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5333] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5333] chdir("./file0" [pid 5243] <... openat resumed>) = 3 [pid 5333] <... chdir resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5333] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5333] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5333] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5333] <... openat resumed>) = 4 [pid 5243] newfstatat(AT_FDCWD, "./16/binderfs", [pid 5333] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5333] <... openat resumed>) = 5 [pid 5243] unlink("./16/binderfs" [pid 5333] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5336 attached [pid 5243] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5336 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5336] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5336] chdir("./16" [pid 5243] <... openat resumed>) = 4 [pid 5336] <... chdir resumed>) = 0 [pid 5243] newfstatat(4, "", [pid 5336] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5336] <... prctl resumed>) = 0 [pid 5243] getdents64(4, [pid 5336] setpgid(0, 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5336] <... setpgid resumed>) = 0 [pid 5243] getdents64(4, [pid 5336] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5336] <... openat resumed>) = 3 [pid 5243] rmdir("./16/file0") = 0 [pid 5336] write(3, "1000", 4 [pid 5243] getdents64(3, [pid 5336] <... write resumed>) = 4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5336] close(3 [pid 5243] close(3 [pid 5336] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5336] symlink("/dev/binderfs", "./binderfs" [pid 5243] rmdir("./16" [pid 5336] <... symlink resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 executing program [pid 5336] write(1, "executing program\n", 18 [pid 5243] mkdir("./17", 0777) = 0 [pid 5336] <... write resumed>) = 18 [pid 5336] memfd_create("syzkaller", 0) = 3 [pid 5336] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5333] <... write resumed>) = 4243456 [pid 5333] exit_group(0) = ? [pid 5333] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5333, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5335] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5334] <... write resumed>) = 16777216 [pid 5244] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5334] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", [pid 5334] <... munmap resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5334] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5334] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5334] ioctl(4, LOOP_SET_FD, 3 [pid 5244] newfstatat(AT_FDCWD, "./16/binderfs", [pid 5334] <... ioctl resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./16/binderfs" [pid 5334] close(3) = 0 [pid 5334] close(4 [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5334] <... close resumed>) = 0 [pid 5334] mkdir("./file0", 0777) = 0 [pid 5334] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = 0 [pid 5334] <... mount resumed>) = 0 [pid 5244] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5334] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5334] <... openat resumed>) = 3 [pid 5334] chdir("./file0") = 0 [pid 5334] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 340.325009][ T5334] loop2: detected capacity change from 0 to 32768 [pid 5334] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5334] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5334] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5243] <... close resumed>) = 0 [pid 5244] rmdir("./16/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./16") = 0 [pid 5244] mkdir("./17", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5337 [pid 5244] close(3./strace-static-x86_64: Process 5337 attached [pid 5337] set_robust_list(0x55555b590660, 24) = 0 [pid 5337] chdir("./17") = 0 [pid 5337] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5337] setpgid(0, 0) = 0 [pid 5337] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5337] write(3, "1000", 4) = 4 [pid 5337] close(3) = 0 [pid 5337] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5337] write(1, "executing program\n", 18executing program ) = 18 [pid 5337] memfd_create("syzkaller", 0) = 3 [pid 5337] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5336] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5335] <... write resumed>) = 16777216 [pid 5335] munmap(0x7f6c8ae00000, 138412032 [pid 5334] <... write resumed>) = 4243456 [pid 5334] exit_group(0) = ? [pid 5334] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5334, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5335] <... munmap resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5335] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] getdents64(3, [pid 5335] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5335] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... close resumed>) = 0 [pid 5335] <... ioctl resumed>) = 0 [pid 5245] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] newfstatat(AT_FDCWD, "./16/binderfs", [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5338 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./16/binderfs"./strace-static-x86_64: Process 5338 attached [pid 5338] set_robust_list(0x55555b590660, 24 [pid 5245] <... unlink resumed>) = 0 [pid 5338] <... set_robust_list resumed>) = 0 [pid 5245] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5338] chdir("./17") = 0 [pid 5338] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5338] setpgid(0, 0) = 0 executing program [pid 5338] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5338] write(3, "1000", 4) = 4 [pid 5338] close(3) = 0 [pid 5338] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5338] write(1, "executing program\n", 18) = 18 [pid 5338] memfd_create("syzkaller", 0) = 3 [pid 5338] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5335] close(3 [pid 5245] <... umount2 resumed>) = 0 [pid 5335] <... close resumed>) = 0 [pid 5245] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5335] close(4) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./16/file0", [pid 5335] mkdir("./file0", 0777 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 340.702244][ T5335] loop3: detected capacity change from 0 to 32768 [pid 5335] <... mkdir resumed>) = 0 [pid 5245] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5335] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./16/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./16") = 0 [pid 5245] mkdir("./17", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5335] <... mount resumed>) = 0 [pid 5335] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5335] chdir("./file0") = 0 [pid 5335] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5335] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5337] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5335] <... openat resumed>) = 4 [pid 5335] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5335] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5336] <... write resumed>) = 16777216 [pid 5336] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5336] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5336] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5336] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5336] <... close resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5339 [pid 5336] close(4./strace-static-x86_64: Process 5339 attached ) = 0 [pid 5336] mkdir("./file0", 0777 [pid 5339] set_robust_list(0x55555b590660, 24) = 0 [pid 5336] <... mkdir resumed>) = 0 [pid 5339] chdir("./17") = 0 [pid 5339] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5339] setpgid(0, 0) = 0 [pid 5339] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5336] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5339] <... openat resumed>) = 3 [pid 5336] <... mount resumed>) = 0 [pid 5336] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5336] chdir("./file0") = 0 [pid 5336] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5339] write(3, "1000", 4 [pid 5336] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5339] <... write resumed>) = 4 [pid 5339] close(3 [pid 5336] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5339] <... close resumed>) = 0 [pid 5339] symlink("/dev/binderfs", "./binderfs" [pid 5336] <... openat resumed>) = 4 [pid 5339] <... symlink resumed>) = 0 [pid 5339] write(1, "executing program\n", 18executing program ) = 18 [ 341.031512][ T5336] loop4: detected capacity change from 0 to 32768 [pid 5339] memfd_create("syzkaller", 0 [pid 5336] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5339] <... memfd_create resumed>) = 3 [pid 5336] <... openat resumed>) = 5 [pid 5339] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5336] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5339] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5335] <... write resumed>) = 4243456 [pid 5335] exit_group(0) = ? [pid 5335] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5335, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=25 /* 0.25 s */} --- [pid 5246] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5338] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./16/binderfs") = 0 [pid 5246] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./16/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./16") = 0 [pid 5246] mkdir("./17", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5337] <... write resumed>) = 16777216 [pid 5337] munmap(0x7f6c8ae00000, 138412032 [pid 5336] <... write resumed>) = 4243456 [pid 5336] exit_group(0) = ? [pid 5336] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5336, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./16", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./16", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./16/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./16/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./16/binderfs") = 0 [pid 5247] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5337] <... munmap resumed>) = 0 [pid 5247] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./16/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5337] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] umount2("./16/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5337] <... openat resumed>) = 4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./16/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5337] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5337] <... ioctl resumed>) = 0 [pid 5247] rmdir("./16/file0" [pid 5337] close(3) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5337] close(4 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5337] <... close resumed>) = 0 [pid 5337] mkdir("./file0", 0777 [pid 5247] close(3) = 0 [pid 5337] <... mkdir resumed>) = 0 [pid 5247] rmdir("./16") = 0 [pid 5246] <... close resumed>) = 0 [ 341.402000][ T5337] loop0: detected capacity change from 0 to 32768 [pid 5337] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] mkdir("./17", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5340 attached [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5340 [pid 5247] <... ioctl resumed>) = 0 [pid 5339] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] close(3 [pid 5340] set_robust_list(0x55555b590660, 24 [pid 5337] <... mount resumed>) = 0 [pid 5340] <... set_robust_list resumed>) = 0 [pid 5337] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5340] chdir("./17" [pid 5337] <... openat resumed>) = 3 [pid 5340] <... chdir resumed>) = 0 [pid 5337] chdir("./file0" [pid 5340] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5337] <... chdir resumed>) = 0 [pid 5340] <... prctl resumed>) = 0 [pid 5337] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5340] setpgid(0, 0 [pid 5337] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5340] <... setpgid resumed>) = 0 [pid 5337] <... openat resumed>) = 4 [pid 5340] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5337] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5337] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5340] <... openat resumed>) = 3 [pid 5340] write(3, "1000", 4) = 4 [pid 5340] close(3executing program ) = 0 [pid 5340] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5340] write(1, "executing program\n", 18) = 18 [pid 5340] memfd_create("syzkaller", 0) = 3 [pid 5340] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5338] <... write resumed>) = 16777216 [pid 5338] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5338] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5338] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5338] close(3) = 0 [pid 5338] close(4) = 0 [pid 5338] mkdir("./file0", 0777) = 0 [pid 5338] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5337] <... write resumed>) = 4243456 [ 341.652398][ T5338] loop1: detected capacity change from 0 to 32768 [pid 5337] exit_group(0) = ? [pid 5337] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5337, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5338] <... mount resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./17/binderfs" [pid 5338] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5338] <... openat resumed>) = 3 [pid 5338] chdir("./file0") = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5338] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5243] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5338] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5338] <... openat resumed>) = 4 [pid 5338] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] newfstatat(AT_FDCWD, "./17/file0", [pid 5338] <... openat resumed>) = 5 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5338] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./17/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./17") = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] mkdir("./18", 0777./strace-static-x86_64: Process 5341 attached ) = 0 [pid 5341] set_robust_list(0x55555b590660, 24 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5341] <... set_robust_list resumed>) = 0 [pid 5341] chdir("./17" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5341] <... chdir resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5341 [pid 5243] <... ioctl resumed>) = 0 [pid 5341] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] close(3 [pid 5341] <... prctl resumed>) = 0 [pid 5341] setpgid(0, 0) = 0 [pid 5341] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5341] write(3, "1000", 4) = 4 [pid 5341] close(3) = 0 [pid 5341] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5341] write(1, "executing program\n", 18) = 18 [pid 5341] memfd_create("syzkaller", 0) = 3 [pid 5341] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5340] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5338] <... write resumed>) = 4243456 [pid 5339] <... write resumed>) = 16777216 [pid 5338] exit_group(0) = ? [pid 5339] munmap(0x7f6c8ae00000, 138412032 [pid 5338] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5338, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5339] <... munmap resumed>) = 0 [pid 5244] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5339] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5339] <... openat resumed>) = 4 [pid 5339] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./17/binderfs", [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5342 attached [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5342] set_robust_list(0x55555b590660, 24 [pid 5244] unlink("./17/binderfs" [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5342 [pid 5244] <... unlink resumed>) = 0 [pid 5342] <... set_robust_list resumed>) = 0 [pid 5244] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5342] chdir("./18") = 0 [pid 5342] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5342] setpgid(0, 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5342] <... setpgid resumed>) = 0 [pid 5342] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5244] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5342] write(3, "1000", 4) = 4 [pid 5339] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5342] close(3 [pid 5339] close(3 [pid 5244] newfstatat(AT_FDCWD, "./17/file0", [pid 5342] <... close resumed>) = 0 [pid 5339] <... close resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5342] symlink("/dev/binderfs", "./binderfs" [pid 5339] close(4 [pid 5342] <... symlink resumed>) = 0 [pid 5339] <... close resumed>) = 0 [pid 5342] write(1, "executing program\n", 18 [pid 5339] mkdir("./file0", 0777 [pid 5342] <... write resumed>) = 18 [pid 5339] <... mkdir resumed>) = 0 [pid 5342] memfd_create("syzkaller", 0 executing program [pid 5339] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5342] <... memfd_create resumed>) = 3 [pid 5342] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 342.051957][ T5339] loop2: detected capacity change from 0 to 32768 [pid 5244] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./17/file0" [pid 5339] <... mount resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./17") = 0 [pid 5244] mkdir("./18", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5339] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5339] chdir("./file0") = 0 [pid 5341] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5339] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5339] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5339] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5339] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5340] <... write resumed>) = 16777216 [pid 5342] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5339] <... write resumed>) = 4243456 [pid 5244] <... close resumed>) = 0 [pid 5339] exit_group(0 [pid 5340] munmap(0x7f6c8ae00000, 138412032 [pid 5339] <... exit_group resumed>) = ? [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5343 attached [pid 5343] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5343 [pid 5343] <... set_robust_list resumed>) = 0 [pid 5343] chdir("./18" [pid 5339] +++ exited with 0 +++ [pid 5343] <... chdir resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5339, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5343] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5343] <... prctl resumed>) = 0 [pid 5343] setpgid(0, 0) = 0 [pid 5343] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] <... restart_syscall resumed>) = 0 [pid 5343] <... openat resumed>) = 3 [pid 5343] write(3, "1000", 4 [pid 5245] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5343] <... write resumed>) = 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5343] close(3 [pid 5245] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5343] <... close resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5343] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5343] write(1, "executing program\n", 18) = 18 [pid 5343] memfd_create("syzkaller", 0 [pid 5245] newfstatat(3, "", [pid 5343] <... memfd_create resumed>) = 3 [pid 5340] <... munmap resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5340] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] getdents64(3, [pid 5343] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5340] <... openat resumed>) = 4 [pid 5343] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5340] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./17/binderfs") = 0 [pid 5245] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5340] <... ioctl resumed>) = 0 [pid 5340] close(3) = 0 [pid 5340] close(4) = 0 [pid 5340] mkdir("./file0", 0777) = 0 [pid 5340] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = 0 [pid 5340] <... mount resumed>) = 0 [pid 5340] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5340] chdir("./file0") = 0 [pid 5340] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5245] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5340] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] newfstatat(AT_FDCWD, "./17/file0", [pid 5340] <... openat resumed>) = 4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 342.459615][ T5340] loop3: detected capacity change from 0 to 32768 [pid 5245] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5340] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] newfstatat(4, "", [pid 5340] <... openat resumed>) = 5 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5340] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./17/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./17") = 0 [pid 5245] mkdir("./18", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5341] <... write resumed>) = 16777216 [pid 5341] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5341] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5341] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5341] close(3) = 0 [pid 5341] close(4) = 0 [pid 5341] mkdir("./file0", 0777) = 0 [ 342.677344][ T5341] loop4: detected capacity change from 0 to 32768 [pid 5341] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5340] <... write resumed>) = 4243456 [pid 5340] exit_group(0) = ? [pid 5340] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5340, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5341] <... mount resumed>) = 0 [pid 5341] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5341] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5341] chdir("./file0" [pid 5246] newfstatat(3, "", [pid 5341] <... chdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5341] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] getdents64(3, [pid 5341] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5341] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5246] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5341] <... openat resumed>) = 4 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5341] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5246] newfstatat(AT_FDCWD, "./17/binderfs", [pid 5341] <... openat resumed>) = 5 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5341] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] unlink("./17/binderfs") = 0 [pid 5246] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5245] <... close resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./17/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./17") = 0 [pid 5246] mkdir("./18", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5343] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5342] <... write resumed>) = 16777216 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5342] munmap(0x7f6c8ae00000, 138412032 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3./strace-static-x86_64: Process 5344 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5344 [pid 5344] set_robust_list(0x55555b590660, 24 [pid 5342] <... munmap resumed>) = 0 [pid 5344] <... set_robust_list resumed>) = 0 [pid 5344] chdir("./18") = 0 [pid 5344] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5342] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5344] <... prctl resumed>) = 0 [pid 5342] <... openat resumed>) = 4 [pid 5344] setpgid(0, 0 [pid 5342] ioctl(4, LOOP_SET_FD, 3 [pid 5344] <... setpgid resumed>) = 0 [pid 5344] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5344] write(3, "1000", 4 [pid 5342] <... ioctl resumed>) = 0 [pid 5344] <... write resumed>) = 4 [pid 5342] close(3 [pid 5344] close(3 [pid 5342] <... close resumed>) = 0 [pid 5344] <... close resumed>) = 0 [pid 5342] close(4 [pid 5344] symlink("/dev/binderfs", "./binderfs" [pid 5342] <... close resumed>) = 0 [pid 5342] mkdir("./file0", 0777 [pid 5344] <... symlink resumed>) = 0 executing program [pid 5344] write(1, "executing program\n", 18 [pid 5342] <... mkdir resumed>) = 0 [pid 5344] <... write resumed>) = 18 [pid 5342] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5344] memfd_create("syzkaller", 0 [pid 5342] <... mount resumed>) = 0 [pid 5344] <... memfd_create resumed>) = 3 [pid 5342] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5342] chdir("./file0") = 0 [ 342.906682][ T5342] loop0: detected capacity change from 0 to 32768 [pid 5342] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5344] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5342] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5342] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5342] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5341] <... write resumed>) = 4243456 [pid 5342] <... openat resumed>) = 5 [pid 5341] exit_group(0) = ? [pid 5342] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5341] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5341, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./17", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./17", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./17/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./17/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./17/binderfs") = 0 [pid 5247] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./17/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./17/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./17/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./17/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./17") = 0 [pid 5247] mkdir("./18", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5345 ./strace-static-x86_64: Process 5345 attached [pid 5345] set_robust_list(0x55555b590660, 24) = 0 [pid 5345] chdir("./18"executing program ) = 0 [pid 5345] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5345] setpgid(0, 0) = 0 [pid 5345] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5345] write(3, "1000", 4) = 4 [pid 5345] close(3) = 0 [pid 5345] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5345] write(1, "executing program\n", 18) = 18 [pid 5345] memfd_create("syzkaller", 0) = 3 [pid 5342] <... write resumed>) = 4243456 [pid 5345] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5342] exit_group(0) = ? [pid 5345] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5342] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5342, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=38 /* 0.38 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./18/binderfs"./strace-static-x86_64: Process 5346 attached ) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5346 [pid 5243] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5346] set_robust_list(0x55555b590660, 24) = 0 [pid 5346] chdir("./18") = 0 [pid 5346] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] <... umount2 resumed>) = 0 [pid 5346] <... prctl resumed>) = 0 [pid 5346] setpgid(0, 0) = 0 [pid 5346] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./18/file0") = 0 [pid 5243] getdents64(3, [pid 5346] <... openat resumed>) = 3 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./18") = 0 [pid 5243] mkdir("./19", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5346] write(3, "1000", 4) = 4 [pid 5346] close(3) = 0 [pid 5343] <... write resumed>) = 16777216 [pid 5346] symlink("/dev/binderfs", "./binderfs" [pid 5343] munmap(0x7f6c8ae00000, 138412032 [pid 5346] <... symlink resumed>) = 0 [pid 5346] write(1, "executing program\n", 18executing program ) = 18 [pid 5346] memfd_create("syzkaller", 0) = 3 [pid 5344] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5346] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5343] <... munmap resumed>) = 0 [pid 5346] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5343] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5343] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5343] close(3) = 0 [pid 5343] close(4) = 0 [pid 5343] mkdir("./file0", 0777) = 0 [ 343.402717][ T5343] loop1: detected capacity change from 0 to 32768 [pid 5343] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5343] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5343] chdir("./file0") = 0 [pid 5343] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5343] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5343] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5343] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5347 attached , child_tidptr=0x55555b590650) = 5347 [pid 5347] set_robust_list(0x55555b590660, 24) = 0 [pid 5347] chdir("./19") = 0 [pid 5347] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5347] setpgid(0, 0) = 0 [pid 5347] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5347] write(3, "1000", 4) = 4 [pid 5347] close(3) = 0 [pid 5347] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5347] write(1, "executing program\n", 18) = 18 [pid 5347] memfd_create("syzkaller", 0) = 3 [pid 5347] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5345] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5343] <... write resumed>) = 4243456 [pid 5343] exit_group(0) = ? [pid 5343] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5343, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5344] <... write resumed>) = 16777216 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./18/binderfs") = 0 [pid 5244] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5344] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./18/file0", [pid 5346] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./18/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./18" [pid 5344] <... munmap resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./19", 0777 [pid 5344] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5344] <... openat resumed>) = 4 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5344] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5344] <... ioctl resumed>) = 0 [pid 5344] close(3) = 0 [pid 5344] close(4) = 0 [pid 5344] mkdir("./file0", 0777) = 0 [ 343.836306][ T5344] loop2: detected capacity change from 0 to 32768 [pid 5344] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5344] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5344] chdir("./file0") = 0 [pid 5344] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5344] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5344] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5344] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5347] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5344] <... write resumed>) = 4243456 [pid 5344] exit_group(0) = ? [pid 5345] <... write resumed>) = 16777216 [pid 5344] +++ exited with 0 +++ [pid 5345] munmap(0x7f6c8ae00000, 138412032 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5344, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./18/binderfs") = 0 [pid 5245] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5345] <... munmap resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5348 attached [pid 5245] <... umount2 resumed>) = 0 [pid 5348] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5348 [pid 5348] <... set_robust_list resumed>) = 0 [pid 5348] chdir("./19") = 0 [pid 5348] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5348] setpgid(0, 0) = 0 [pid 5245] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5348] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5345] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] newfstatat(AT_FDCWD, "./18/file0", [pid 5345] <... openat resumed>) = 4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5345] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5348] <... openat resumed>) = 3 [pid 5348] write(3, "1000", 4) = 4 [pid 5348] close(3) = 0 [pid 5348] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5348] write(1, "executing program\n", 18) = 18 [pid 5348] memfd_create("syzkaller", 0 [pid 5245] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5348] <... memfd_create resumed>) = 3 [pid 5348] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5345] <... ioctl resumed>) = 0 [pid 5345] close(3 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5345] <... close resumed>) = 0 [pid 5245] getdents64(4, [pid 5345] close(4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5345] <... close resumed>) = 0 [pid 5245] close(4 [pid 5345] mkdir("./file0", 0777 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./18/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./18" [pid 5345] <... mkdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./19", 0777) = 0 [pid 5345] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [ 344.155016][ T5345] loop3: detected capacity change from 0 to 32768 [pid 5245] close(3 [pid 5345] <... mount resumed>) = 0 [pid 5345] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5345] chdir("./file0") = 0 [pid 5345] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5345] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5345] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5345] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5346] <... write resumed>) = 16777216 [pid 5346] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5346] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5346] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5346] close(3) = 0 [pid 5346] close(4) = 0 [pid 5346] mkdir("./file0", 0777) = 0 [ 344.327586][ T5346] loop4: detected capacity change from 0 to 32768 [pid 5346] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5346] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5346] chdir("./file0") = 0 [pid 5346] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5346] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5346] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5346] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5349 ./strace-static-x86_64: Process 5349 attached [pid 5349] set_robust_list(0x55555b590660, 24) = 0 [pid 5349] chdir("./19") = 0 [pid 5349] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5349] setpgid(0, 0) = 0 [pid 5349] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5349] write(3, "1000", 4) = 4 [pid 5349] close(3) = 0 [pid 5349] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5349] write(1, "executing program\n", 18 [pid 5347] <... write resumed>) = 16777216 [pid 5349] <... write resumed>) = 18 [pid 5347] munmap(0x7f6c8ae00000, 138412032 [pid 5349] memfd_create("syzkaller", 0 [pid 5345] <... write resumed>) = 4243456 [pid 5349] <... memfd_create resumed>) = 3 [pid 5349] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5345] exit_group(0 [pid 5349] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5345] <... exit_group resumed>) = ? [pid 5345] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5345, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./18/binderfs") = 0 [pid 5246] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5347] <... munmap resumed>) = 0 [pid 5347] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5347] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... umount2 resumed>) = 0 [pid 5347] <... ioctl resumed>) = 0 [pid 5347] close(3) = 0 [pid 5347] close(4) = 0 [pid 5347] mkdir("./file0", 0777) = 0 [pid 5347] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./18/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5348] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] rmdir("./18") = 0 [pid 5347] <... mount resumed>) = 0 [pid 5347] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5347] chdir("./file0") = 0 [pid 5347] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5347] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5246] mkdir("./19", 0777) = 0 [ 344.547125][ T5347] loop0: detected capacity change from 0 to 32768 [pid 5347] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5347] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5346] <... write resumed>) = 4243456 [pid 5346] exit_group(0) = ? [pid 5346] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5346, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=36 /* 0.36 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./18", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./18", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./18/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./18/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./18/binderfs") = 0 [pid 5247] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./18/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./18/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./18/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./18/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./18") = 0 [pid 5247] mkdir("./19", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5350 ./strace-static-x86_64: Process 5350 attached [pid 5350] set_robust_list(0x55555b590660, 24) = 0 [pid 5350] chdir("./19") = 0 [pid 5350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5350] setpgid(0, 0) = 0 [pid 5350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5350] write(3, "1000", 4) = 4 [pid 5350] close(3) = 0 [pid 5350] symlink("/dev/binderfs", "./binderfs" [pid 5347] <... write resumed>) = 4243456 [pid 5350] <... symlink resumed>) = 0 executing program [pid 5350] write(1, "executing program\n", 18) = 18 [pid 5347] exit_group(0) = ? [pid 5350] memfd_create("syzkaller", 0) = 3 [pid 5350] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5347] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5347, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./19/binderfs") = 0 [pid 5243] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5349] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./19/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./19") = 0 [pid 5243] mkdir("./20", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5351 ./strace-static-x86_64: Process 5351 attached [pid 5351] set_robust_list(0x55555b590660, 24) = 0 [pid 5348] <... write resumed>) = 16777216 [pid 5351] chdir("./19") = 0 [pid 5351] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5348] munmap(0x7f6c8ae00000, 138412032 [pid 5351] setpgid(0, 0) = 0 [pid 5351] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5348] <... munmap resumed>) = 0 [pid 5351] write(3, "1000", 4) = 4 [pid 5351] close(3 [pid 5348] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5351] <... close resumed>) = 0 [pid 5351] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5351] write(1, "executing program\n", 18 [pid 5348] ioctl(4, LOOP_SET_FD, 3 [pid 5351] <... write resumed>) = 18 [pid 5351] memfd_create("syzkaller", 0) = 3 [pid 5351] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0executing program ) = 0x7f6c8ae00000 [pid 5348] <... ioctl resumed>) = 0 [pid 5348] close(3) = 0 [ 345.096391][ T5348] loop1: detected capacity change from 0 to 32768 [pid 5348] close(4) = 0 [pid 5348] mkdir("./file0", 0777) = 0 [pid 5348] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5348] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5348] chdir("./file0") = 0 [pid 5348] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5348] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5348] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5348] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5350] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5349] <... write resumed>) = 16777216 ./strace-static-x86_64: Process 5352 attached [pid 5352] set_robust_list(0x55555b590660, 24 [pid 5349] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5352 [pid 5352] <... set_robust_list resumed>) = 0 [pid 5349] <... munmap resumed>) = 0 [pid 5352] chdir("./20") = 0 [pid 5352] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5352] setpgid(0, 0) = 0 [pid 5352] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5352] write(3, "1000", 4) = 4 [pid 5352] close(3) = 0 [pid 5352] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5352] write(1, "executing program\n", 18) = 18 [pid 5352] memfd_create("syzkaller", 0) = 3 [pid 5352] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5349] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5349] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5349] close(3) = 0 [pid 5349] close(4) = 0 [pid 5349] mkdir("./file0", 0777) = 0 [pid 5349] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5349] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5349] chdir("./file0") = 0 [pid 5349] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5349] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5349] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 345.355329][ T5349] loop2: detected capacity change from 0 to 32768 [pid 5349] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5348] <... write resumed>) = 4243456 [pid 5348] exit_group(0) = ? [pid 5348] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5348, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5351] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] unlink("./19/binderfs") = 0 [pid 5244] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./19/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./19") = 0 [pid 5349] <... write resumed>) = 4243456 [pid 5349] exit_group(0) = ? [pid 5244] mkdir("./20", 0777 [pid 5349] +++ exited with 0 +++ [pid 5244] <... mkdir resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5349, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./19/binderfs") = 0 [pid 5245] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./19/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./19") = 0 [pid 5245] mkdir("./20", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5352] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5350] <... write resumed>) = 16777216 [pid 5350] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5350] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5350] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5350] close(3) = 0 [pid 5350] close(4) = 0 [pid 5350] mkdir("./file0", 0777) = 0 [ 345.791264][ T5350] loop3: detected capacity change from 0 to 32768 [pid 5350] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5350] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5350] chdir("./file0") = 0 [pid 5350] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5350] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5350] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5350] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5353 ./strace-static-x86_64: Process 5353 attached [pid 5353] set_robust_list(0x55555b590660, 24) = 0 [pid 5353] chdir("./20") = 0 [pid 5353] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5353] setpgid(0, 0) = 0 [pid 5353] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5353] write(3, "1000", 4) = 4 [pid 5353] close(3) = 0 [pid 5353] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5353] write(1, "executing program\n", 18executing program ) = 18 [pid 5353] memfd_create("syzkaller", 0) = 3 [pid 5353] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5354 attached , child_tidptr=0x55555b590650) = 5354 [pid 5354] set_robust_list(0x55555b590660, 24) = 0 [pid 5354] chdir("./20") = 0 [pid 5354] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5354] setpgid(0, 0) = 0 [pid 5354] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5354] write(3, "1000", 4) = 4 [pid 5354] close(3) = 0 [pid 5354] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5354] write(1, "executing program\n", 18) = 18 [pid 5354] memfd_create("syzkaller", 0) = 3 [pid 5354] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5351] <... write resumed>) = 16777216 [pid 5351] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5351] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5351] ioctl(4, LOOP_SET_FD, 3 [pid 5350] <... write resumed>) = 4243456 [pid 5350] exit_group(0) = ? [pid 5351] <... ioctl resumed>) = 0 [pid 5350] +++ exited with 0 +++ [pid 5351] close(3) = 0 [pid 5351] close(4) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5350, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5351] mkdir("./file0", 0777) = 0 [pid 5351] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5352] <... write resumed>) = 16777216 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./19/binderfs") = 0 [pid 5246] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5351] <... mount resumed>) = 0 [pid 5351] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5351] chdir("./file0") = 0 [pid 5351] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5352] munmap(0x7f6c8ae00000, 138412032 [ 346.088335][ T5351] loop4: detected capacity change from 0 to 32768 [pid 5351] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5351] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5351] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5352] <... munmap resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./19/file0") = 0 [pid 5352] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5352] <... openat resumed>) = 4 [pid 5352] ioctl(4, LOOP_SET_FD, 3 [pid 5246] close(3) = 0 [pid 5246] rmdir("./19") = 0 [pid 5352] <... ioctl resumed>) = 0 [pid 5246] mkdir("./20", 0777) = 0 [pid 5352] close(3) = 0 [pid 5352] close(4) = 0 [pid 5352] mkdir("./file0", 0777) = 0 [pid 5352] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [ 346.223438][ T5352] loop0: detected capacity change from 0 to 32768 [pid 5246] close(3 [pid 5352] <... mount resumed>) = 0 [pid 5352] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5352] chdir("./file0") = 0 [pid 5352] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5352] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5352] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5352] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5353] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5351] <... write resumed>) = 4243456 [pid 5351] exit_group(0) = ? [pid 5351] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5351, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./19", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./19", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./19/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./19/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./19/binderfs") = 0 [pid 5247] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5354] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./19/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./19/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./19/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./19/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./19") = 0 [pid 5247] mkdir("./20", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5352] <... write resumed>) = 4243456 [pid 5352] exit_group(0) = ? [pid 5352] +++ exited with 0 +++ [pid 5246] <... close resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5352, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} --- [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5355 attached , child_tidptr=0x55555b590650) = 5355 [pid 5355] set_robust_list(0x55555b590660, 24) = 0 [pid 5355] chdir("./20") = 0 [pid 5355] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5355] setpgid(0, 0) = 0 [pid 5355] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5355] <... openat resumed>) = 3 [pid 5355] write(3, "1000", 4 [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", [pid 5355] <... write resumed>) = 4 [pid 5355] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5355] <... close resumed>) = 0 [pid 5355] symlink("/dev/binderfs", "./binderfs" [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5355] <... symlink resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5355] write(1, "executing program\n", 18) = 18 [pid 5243] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./20/binderfs"executing program [pid 5355] memfd_create("syzkaller", 0 [pid 5243] <... unlink resumed>) = 0 [pid 5355] <... memfd_create resumed>) = 3 [pid 5243] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5355] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./20/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./20") = 0 [pid 5243] mkdir("./21", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5356 attached , child_tidptr=0x55555b590650) = 5356 [pid 5356] set_robust_list(0x55555b590660, 24) = 0 [pid 5356] chdir("./20") = 0 [pid 5354] <... write resumed>) = 16777216 [pid 5356] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5356] setpgid(0, 0 [pid 5354] munmap(0x7f6c8ae00000, 138412032 [pid 5356] <... setpgid resumed>) = 0 [pid 5356] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5354] <... munmap resumed>) = 0 [pid 5356] write(3, "1000", 4) = 4 [pid 5356] close(3) = 0 [pid 5356] symlink("/dev/binderfs", "./binderfs" [pid 5354] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5356] <... symlink resumed>) = 0 [pid 5354] <... openat resumed>) = 4 [pid 5356] write(1, "executing program\n", 18 [pid 5354] ioctl(4, LOOP_SET_FD, 3executing program ) = 0 [pid 5356] <... write resumed>) = 18 [pid 5354] close(3) = 0 [pid 5354] close(4 [pid 5356] memfd_create("syzkaller", 0 [pid 5354] <... close resumed>) = 0 [pid 5354] mkdir("./file0", 0777) = 0 [pid 5354] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5356] <... memfd_create resumed>) = 3 [pid 5353] <... write resumed>) = 16777216 [pid 5356] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5353] munmap(0x7f6c8ae00000, 138412032 [pid 5356] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5354] <... mount resumed>) = 0 [pid 5354] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5354] chdir("./file0") = 0 [pid 5354] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5354] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5354] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... close resumed>) = 0 [pid 5354] <... openat resumed>) = 5 [pid 5354] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [ 346.857086][ T5354] loop2: detected capacity change from 0 to 32768 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5357 attached [pid 5353] <... munmap resumed>) = 0 [pid 5357] set_robust_list(0x55555b590660, 24 [pid 5353] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5357] <... set_robust_list resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5357 [pid 5357] chdir("./21") = 0 [pid 5353] <... openat resumed>) = 4 [pid 5357] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5353] ioctl(4, LOOP_SET_FD, 3 [pid 5357] setpgid(0, 0) = 0 [pid 5353] <... ioctl resumed>) = 0 [pid 5357] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5353] close(3 [pid 5357] <... openat resumed>) = 3 [pid 5353] <... close resumed>) = 0 [pid 5357] write(3, "1000", 4 [pid 5353] close(4 [pid 5357] <... write resumed>) = 4 [pid 5353] <... close resumed>) = 0 [pid 5357] close(3 [pid 5353] mkdir("./file0", 0777 [pid 5357] <... close resumed>) = 0 [pid 5355] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5353] <... mkdir resumed>) = 0 [pid 5357] symlink("/dev/binderfs", "./binderfs" [pid 5353] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"executing program [pid 5357] <... symlink resumed>) = 0 [pid 5357] write(1, "executing program\n", 18) = 18 [pid 5357] memfd_create("syzkaller", 0) = 3 [pid 5357] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 346.939358][ T5353] loop1: detected capacity change from 0 to 32768 [pid 5353] <... mount resumed>) = 0 [pid 5353] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5353] chdir("./file0") = 0 [pid 5353] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5353] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5353] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5353] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5354] <... write resumed>) = 4243456 [pid 5354] exit_group(0) = ? [pid 5354] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5354, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=35 /* 0.35 s */} --- [pid 5245] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./20/binderfs" [pid 5353] <... write resumed>) = 4243456 [pid 5353] exit_group(0) = ? [pid 5353] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5353, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=25 /* 0.25 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./20/binderfs") = 0 [pid 5244] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = 0 [pid 5356] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] newfstatat(AT_FDCWD, "./20/file0", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./20/file0", [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(4, "", [pid 5244] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5245] getdents64(4, [pid 5244] newfstatat(4, "", [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5244] getdents64(4, [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] close(4 [pid 5244] getdents64(4, [pid 5245] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] rmdir("./20/file0" [pid 5244] close(4 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] getdents64(3, [pid 5244] rmdir("./20/file0" [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5245] close(3 [pid 5244] getdents64(3, [pid 5245] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] rmdir("./20" [pid 5244] close(3 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./20" [pid 5245] mkdir("./21", 0777 [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] mkdir("./21", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5355] <... write resumed>) = 16777216 [pid 5355] munmap(0x7f6c8ae00000, 138412032 [pid 5357] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5355] <... munmap resumed>) = 0 [pid 5355] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5355] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5355] close(3) = 0 [pid 5355] close(4) = 0 [pid 5355] mkdir("./file0", 0777) = 0 [pid 5355] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5355] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5355] chdir("./file0") = 0 [pid 5355] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5355] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5355] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 347.451715][ T5355] loop3: detected capacity change from 0 to 32768 [pid 5355] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5358 attached [pid 5358] set_robust_list(0x55555b590660, 24) = 0 [pid 5358] chdir("./21") = 0 [pid 5358] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5358] setpgid(0, 0) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5358 [pid 5358] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5358] write(3, "1000", 4) = 4 [pid 5358] close(3) = 0 [pid 5358] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5358] write(1, "executing program\n", 18) = 18 [pid 5358] memfd_create("syzkaller", 0) = 3 [pid 5358] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5359 attached , child_tidptr=0x55555b590650) = 5359 [pid 5359] set_robust_list(0x55555b590660, 24) = 0 [pid 5359] chdir("./21") = 0 [pid 5359] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5359] setpgid(0, 0) = 0 [pid 5359] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5359] write(3, "1000", 4) = 4 [pid 5359] close(3) = 0 [pid 5359] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5359] write(1, "executing program\n", 18executing program ) = 18 [pid 5359] memfd_create("syzkaller", 0) = 3 [pid 5359] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5355] <... write resumed>) = 4243456 [pid 5355] exit_group(0) = ? [pid 5355] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5355, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./20/binderfs") = 0 [pid 5246] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5356] <... write resumed>) = 16777216 [pid 5246] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./20/file0", [pid 5356] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./20/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./20") = 0 [pid 5246] mkdir("./21", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5356] <... munmap resumed>) = 0 [pid 5356] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5356] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5356] close(3) = 0 [pid 5356] close(4) = 0 [pid 5356] mkdir("./file0", 0777 [pid 5357] <... write resumed>) = 16777216 [pid 5357] munmap(0x7f6c8ae00000, 138412032 [pid 5356] <... mkdir resumed>) = 0 [pid 5356] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5356] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 347.851104][ T5356] loop4: detected capacity change from 0 to 32768 [pid 5356] chdir("./file0") = 0 [pid 5356] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5356] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5356] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5357] <... munmap resumed>) = 0 [pid 5356] <... openat resumed>) = 5 [pid 5356] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5357] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5357] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5357] close(3) = 0 [pid 5357] close(4) = 0 [pid 5357] mkdir("./file0", 0777) = 0 [pid 5357] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5357] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5357] chdir("./file0") = 0 [pid 5357] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5357] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5357] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 347.964068][ T5357] loop0: detected capacity change from 0 to 32768 [pid 5357] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5358] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5360 attached [pid 5360] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5360 [pid 5360] <... set_robust_list resumed>) = 0 [pid 5360] chdir("./21") = 0 [pid 5360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5360] setpgid(0, 0) = 0 [pid 5360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5360] write(3, "1000", 4) = 4 [pid 5360] close(3) = 0 [pid 5360] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5360] write(1, "executing program\n", 18executing program ) = 18 [pid 5360] memfd_create("syzkaller", 0) = 3 [pid 5360] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5359] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5356] <... write resumed>) = 4243456 [pid 5356] exit_group(0) = ? [pid 5356] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5356, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=26 /* 0.26 s */} --- [pid 5247] umount2("./20", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./20", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./20/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./20/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./20/binderfs") = 0 [pid 5247] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./20/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./20/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./20/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./20/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5357] <... write resumed>) = 4243456 [pid 5247] rmdir("./20") = 0 [pid 5357] exit_group(0) = ? [pid 5247] mkdir("./21", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5357] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5357, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5243] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./21/binderfs") = 0 [pid 5243] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./21/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./21") = 0 [pid 5243] mkdir("./22", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5360] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5361 attached , child_tidptr=0x55555b590650) = 5361 [pid 5361] set_robust_list(0x55555b590660, 24) = 0 [pid 5361] chdir("./21"executing program ) = 0 [pid 5361] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5361] setpgid(0, 0) = 0 [pid 5361] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5361] write(3, "1000", 4) = 4 [pid 5361] close(3) = 0 [pid 5358] <... write resumed>) = 16777216 [pid 5361] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5358] munmap(0x7f6c8ae00000, 138412032 [pid 5361] write(1, "executing program\n", 18) = 18 [pid 5361] memfd_create("syzkaller", 0) = 3 [pid 5361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5358] <... munmap resumed>) = 0 [pid 5358] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5358] <... openat resumed>) = 4 [pid 5358] ioctl(4, LOOP_SET_FD, 3 [pid 5359] <... write resumed>) = 16777216 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5358] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5362 attached [pid 5359] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5362 [pid 5362] set_robust_list(0x55555b590660, 24) = 0 [pid 5362] chdir("./22" [pid 5358] close(3 [pid 5362] <... chdir resumed>) = 0 [pid 5358] <... close resumed>) = 0 [pid 5358] close(4 [pid 5362] prctl(PR_SET_PDEATHSIG, SIGKILLexecuting program ) = 0 [pid 5358] <... close resumed>) = 0 [pid 5362] setpgid(0, 0) = 0 [pid 5362] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5358] mkdir("./file0", 0777 [pid 5362] write(3, "1000", 4 [pid 5358] <... mkdir resumed>) = 0 [pid 5362] <... write resumed>) = 4 [pid 5358] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5362] close(3) = 0 [pid 5362] symlink("/dev/binderfs", "./binderfs" [pid 5358] <... mount resumed>) = 0 [pid 5362] <... symlink resumed>) = 0 [pid 5358] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5358] chdir("./file0" [pid 5362] write(1, "executing program\n", 18 [pid 5358] <... chdir resumed>) = 0 [pid 5362] <... write resumed>) = 18 [pid 5358] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5362] memfd_create("syzkaller", 0 [pid 5358] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5358] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5358] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5358] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5362] <... memfd_create resumed>) = 3 [pid 5359] <... munmap resumed>) = 0 [pid 5362] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5359] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5362] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5359] <... openat resumed>) = 4 [ 348.598283][ T5358] loop1: detected capacity change from 0 to 32768 [pid 5359] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5359] close(3) = 0 [pid 5359] close(4) = 0 [pid 5359] mkdir("./file0", 0777) = 0 [ 348.659955][ T5359] loop2: detected capacity change from 0 to 32768 [pid 5359] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5359] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5359] chdir("./file0") = 0 [pid 5359] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5359] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5359] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5359] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5360] <... write resumed>) = 16777216 [pid 5358] <... write resumed>) = 4243456 [pid 5358] exit_group(0) = ? [pid 5360] munmap(0x7f6c8ae00000, 138412032 [pid 5358] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5358, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5359] <... write resumed>) = 4243456 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5359] exit_group(0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./21/binderfs" [pid 5359] <... exit_group resumed>) = ? [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5359] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5359, si_uid=0, si_status=0, si_utime=15 /* 0.15 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5360] <... munmap resumed>) = 0 [pid 5245] getdents64(3, [pid 5360] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5361] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5360] <... openat resumed>) = 4 [pid 5245] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5360] ioctl(4, LOOP_SET_FD, 3 [pid 5245] newfstatat(AT_FDCWD, "./21/binderfs", [pid 5244] newfstatat(AT_FDCWD, "./21/file0", [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5245] unlink("./21/binderfs" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... unlink resumed>) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./21/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./21") = 0 [pid 5244] mkdir("./22", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5360] <... ioctl resumed>) = 0 [pid 5360] close(3) = 0 [pid 5360] close(4 [pid 5245] <... umount2 resumed>) = 0 [pid 5360] <... close resumed>) = 0 [pid 5360] mkdir("./file0", 0777 [pid 5245] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5360] <... mkdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 348.990278][ T5360] loop3: detected capacity change from 0 to 32768 [pid 5360] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5360] <... mount resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5360] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5360] <... openat resumed>) = 3 [pid 5245] close(4) = 0 [pid 5245] rmdir("./21/file0" [pid 5360] chdir("./file0" [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5360] <... chdir resumed>) = 0 [pid 5245] close(3 [pid 5360] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... close resumed>) = 0 [pid 5360] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] rmdir("./21" [pid 5362] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5360] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... rmdir resumed>) = 0 [pid 5360] <... openat resumed>) = 4 [pid 5360] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] mkdir("./22", 0777 [pid 5360] <... openat resumed>) = 5 [pid 5360] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... mkdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5363 attached , child_tidptr=0x55555b590650) = 5363 [pid 5363] set_robust_list(0x55555b590660, 24) = 0 [pid 5363] chdir("./22") = 0 [pid 5363] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5363] setpgid(0, 0) = 0 [pid 5363] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5363] write(3, "1000", 4) = 4 [pid 5363] close(3) = 0 [pid 5363] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5363] write(1, "executing program\n", 18) = 18 [pid 5363] memfd_create("syzkaller", 0) = 3 [pid 5360] <... write resumed>) = 4243456 [pid 5360] exit_group(0) = ? [pid 5363] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5360] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5360, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./21/binderfs") = 0 [pid 5246] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] <... close resumed>) = 0 [pid 5246] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./21/file0", ./strace-static-x86_64: Process 5364 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5364] set_robust_list(0x55555b590660, 24 [pid 5246] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5364 [pid 5364] <... set_robust_list resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5364] chdir("./22" [pid 5246] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5364] <... chdir resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5364] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5364] <... prctl resumed>) = 0 [pid 5246] getdents64(4, [pid 5364] setpgid(0, 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5364] <... setpgid resumed>) = 0 [pid 5246] close(4) = 0 [pid 5364] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] rmdir("./21/file0" [pid 5364] <... openat resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5364] write(3, "1000", 4 [pid 5246] getdents64(3, [pid 5364] <... write resumed>) = 4 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5364] close(3 [pid 5246] close(3 [pid 5364] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5364] symlink("/dev/binderfs", "./binderfs" [pid 5246] rmdir("./21" [pid 5364] <... symlink resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] mkdir("./22", 0777executing program [pid 5364] write(1, "executing program\n", 18) = 18 [pid 5364] memfd_create("syzkaller", 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5364] <... memfd_create resumed>) = 3 [pid 5364] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5364] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5361] <... write resumed>) = 16777216 [pid 5362] <... write resumed>) = 16777216 [pid 5362] munmap(0x7f6c8ae00000, 138412032 [pid 5361] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5361] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5361] ioctl(4, LOOP_SET_FD, 3 [pid 5362] <... munmap resumed>) = 0 [pid 5362] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5362] ioctl(4, LOOP_SET_FD, 3 [pid 5361] <... ioctl resumed>) = 0 [pid 5361] close(3) = 0 [pid 5361] close(4) = 0 [pid 5361] mkdir("./file0", 0777) = 0 [pid 5361] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5361] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5361] chdir("./file0" [pid 5362] <... ioctl resumed>) = 0 [pid 5361] <... chdir resumed>) = 0 [pid 5362] close(3 [pid 5361] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5362] <... close resumed>) = 0 [pid 5361] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5362] close(4 [pid 5361] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5361] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5361] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5362] <... close resumed>) = 0 [ 349.534226][ T5361] loop4: detected capacity change from 0 to 32768 [ 349.543116][ T5362] loop0: detected capacity change from 0 to 32768 [pid 5362] mkdir("./file0", 0777) = 0 [pid 5362] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5362] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5362] chdir("./file0" [pid 5246] <... close resumed>) = 0 [pid 5362] <... chdir resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5362] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 5365 attached ) = -1 EBUSY (Device or resource busy) [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5365 [pid 5365] set_robust_list(0x55555b590660, 24 [pid 5362] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5365] <... set_robust_list resumed>) = 0 [pid 5362] <... openat resumed>) = 4 [pid 5365] chdir("./22" [pid 5362] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5365] <... chdir resumed>) = 0 [pid 5365] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5362] <... openat resumed>) = 5 [pid 5365] <... prctl resumed>) = 0 [pid 5365] setpgid(0, 0 [pid 5362] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5365] <... setpgid resumed>) = 0 [pid 5365] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5365] write(3, "1000", 4) = 4 [pid 5365] close(3) = 0 [pid 5365] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5365] write(1, "executing program\n", 18) = 18 [pid 5365] memfd_create("syzkaller", 0) = 3 [pid 5365] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5364] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5361] <... write resumed>) = 4243456 [pid 5361] exit_group(0) = ? [pid 5361] +++ exited with 0 +++ [pid 5363] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5361, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] umount2("./21", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./21", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./21/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./21/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./21/binderfs") = 0 [pid 5247] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5362] <... write resumed>) = 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5362] exit_group(0 [pid 5247] newfstatat(AT_FDCWD, "./21/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./21/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./21/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./21/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./21") = 0 [pid 5247] mkdir("./22", 0777 [pid 5362] <... exit_group resumed>) = ? [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5362] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5362, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./22/binderfs") = 0 [pid 5243] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./22/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./22") = 0 [pid 5243] mkdir("./23", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5365] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5366 ./strace-static-x86_64: Process 5366 attached [pid 5366] set_robust_list(0x55555b590660, 24) = 0 [pid 5366] chdir("./22") = 0 [pid 5366] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5366] setpgid(0, 0) = 0 [pid 5366] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5366] write(3, "1000", 4) = 4 [pid 5366] close(3executing program ) = 0 [pid 5366] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5366] write(1, "executing program\n", 18) = 18 [pid 5366] memfd_create("syzkaller", 0) = 3 [pid 5366] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5363] <... write resumed>) = 16777216 [pid 5363] munmap(0x7f6c8ae00000, 138412032 [pid 5364] <... write resumed>) = 16777216 [pid 5364] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... close resumed>) = 0 [pid 5364] <... munmap resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5367 ./strace-static-x86_64: Process 5367 attached [pid 5364] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5363] <... munmap resumed>) = 0 [pid 5364] <... openat resumed>) = 4 [pid 5364] ioctl(4, LOOP_SET_FD, 3 [pid 5367] set_robust_list(0x55555b590660, 24) = 0 [pid 5367] chdir("./23") = 0 [pid 5367] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5367] setpgid(0, 0) = 0 [pid 5367] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5364] <... ioctl resumed>) = 0 [pid 5363] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5367] <... openat resumed>) = 3 [pid 5363] ioctl(4, LOOP_SET_FD, 3 [pid 5367] write(3, "1000", 4 [pid 5364] close(3 [pid 5363] <... ioctl resumed>) = 0 [pid 5367] <... write resumed>) = 4 [pid 5367] close(3) = 0 [pid 5367] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5367] write(1, "executing program\n", 18) = 18 [pid 5367] memfd_create("syzkaller", 0 [pid 5364] <... close resumed>) = 0 [pid 5367] <... memfd_create resumed>) = 3 [pid 5364] close(4) = 0 [pid 5367] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5363] close(3 [pid 5367] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5363] <... close resumed>) = 0 [pid 5364] mkdir("./file0", 0777 [pid 5363] close(4) = 0 [pid 5363] mkdir("./file0", 0777 [pid 5364] <... mkdir resumed>) = 0 [pid 5363] <... mkdir resumed>) = 0 [pid 5363] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 350.300687][ T5364] loop2: detected capacity change from 0 to 32768 [ 350.319391][ T5363] loop1: detected capacity change from 0 to 32768 [pid 5364] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5363] <... mount resumed>) = 0 [pid 5364] <... mount resumed>) = 0 [pid 5364] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5364] chdir("./file0" [pid 5363] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5363] chdir("./file0") = 0 [pid 5363] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5364] <... chdir resumed>) = 0 [pid 5363] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5364] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5363] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5364] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5364] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5363] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5364] <... openat resumed>) = 4 [pid 5364] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5363] <... openat resumed>) = 5 [pid 5363] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5364] <... openat resumed>) = 5 [pid 5364] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5365] <... write resumed>) = 16777216 [pid 5364] <... write resumed>) = 4243456 [pid 5364] exit_group(0) = ? [pid 5365] munmap(0x7f6c8ae00000, 138412032 [pid 5364] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5364, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5363] <... write resumed>) = 4243456 [pid 5363] exit_group(0) = ? [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5366] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./22/binderfs") = 0 [pid 5245] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5363] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5363, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=33 /* 0.33 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./22/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./22/binderfs") = 0 [pid 5244] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5365] <... munmap resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5365] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5365] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5365] ioctl(4, LOOP_SET_FD, 3 [pid 5244] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5244] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... openat resumed>) = 4 [pid 5245] getdents64(4, [pid 5244] newfstatat(4, "", [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] close(4 [pid 5244] getdents64(4, [pid 5245] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] rmdir("./22/file0" [pid 5244] getdents64(4, [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./22/file0" [pid 5245] getdents64(3, [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] getdents64(3, [pid 5245] close(3 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... close resumed>) = 0 [pid 5244] close(3 [pid 5245] rmdir("./22" [pid 5244] <... close resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] rmdir("./22") = 0 [pid 5245] mkdir("./23", 0777 [pid 5244] mkdir("./23", 0777 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5365] <... ioctl resumed>) = 0 [pid 5365] close(3) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5365] close(4 [pid 5245] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5365] <... close resumed>) = 0 [pid 5365] mkdir("./file0", 0777 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... openat resumed>) = 3 [pid 5365] <... mkdir resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] close(3 [pid 5365] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5365] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5365] chdir("./file0") = 0 [ 350.673401][ T5365] loop3: detected capacity change from 0 to 32768 [pid 5365] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5365] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5365] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5365] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5367] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5365] <... write resumed>) = 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5365] exit_group(0) = ? [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5368 ./strace-static-x86_64: Process 5368 attached [pid 5368] set_robust_list(0x55555b590660, 24) = 0 [pid 5368] chdir("./23") = 0 [pid 5368] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5368] setpgid(0, 0) = 0 [pid 5368] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5365] +++ exited with 0 +++ [pid 5368] write(3, "1000", 4 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5365, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5368] <... write resumed>) = 4 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5368] close(3) = 0 [pid 5368] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5368] write(1, "executing program\n", 18) = 18 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5368] memfd_create("syzkaller", 0 [pid 5246] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5368] <... memfd_create resumed>) = 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5368] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... openat resumed>) = 3 [pid 5245] <... close resumed>) = 0 [pid 5368] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5369 attached [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5369 [pid 5369] set_robust_list(0x55555b590660, 24 [pid 5246] newfstatat(AT_FDCWD, "./22/binderfs", [pid 5369] <... set_robust_list resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5369] chdir("./23" [pid 5246] unlink("./22/binderfs") = 0 [pid 5369] <... chdir resumed>) = 0 [pid 5246] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5369] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5369] setpgid(0, 0) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5369] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5369] <... openat resumed>) = 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5369] write(3, "1000", 4 [pid 5246] getdents64(4, [pid 5369] <... write resumed>) = 4 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5369] close(3 [pid 5246] getdents64(4, [pid 5369] <... close resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5369] symlink("/dev/binderfs", "./binderfs" [pid 5246] close(4 [pid 5369] <... symlink resumed>) = 0 [pid 5246] <... close resumed>) = 0 executing program [pid 5369] write(1, "executing program\n", 18 [pid 5246] rmdir("./22/file0" [pid 5369] <... write resumed>) = 18 [pid 5369] memfd_create("syzkaller", 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, [pid 5369] <... memfd_create resumed>) = 3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5369] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] close(3 [pid 5369] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./22") = 0 [pid 5246] mkdir("./23", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5366] <... write resumed>) = 16777216 [pid 5366] munmap(0x7f6c8ae00000, 138412032 [pid 5367] <... write resumed>) = 16777216 [pid 5367] munmap(0x7f6c8ae00000, 138412032 [pid 5366] <... munmap resumed>) = 0 [pid 5366] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5366] ioctl(4, LOOP_SET_FD, 3 [pid 5367] <... munmap resumed>) = 0 [pid 5367] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5366] <... ioctl resumed>) = 0 [pid 5366] close(3) = 0 [pid 5366] close(4) = 0 [pid 5367] <... openat resumed>) = 4 [pid 5367] ioctl(4, LOOP_SET_FD, 3 [pid 5366] mkdir("./file0", 0777) = 0 [pid 5366] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5367] <... ioctl resumed>) = 0 [pid 5367] close(3) = 0 [pid 5367] close(4) = 0 [pid 5367] mkdir("./file0", 0777) = 0 [pid 5367] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5366] <... mount resumed>) = 0 [pid 5366] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5366] chdir("./file0") = 0 [pid 5366] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5366] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5366] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 351.168271][ T5366] loop4: detected capacity change from 0 to 32768 [ 351.199358][ T5367] loop0: detected capacity change from 0 to 32768 [pid 5366] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5367] <... mount resumed>) = 0 [pid 5367] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5367] chdir("./file0") = 0 [pid 5367] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5367] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5367] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5367] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5370 attached , child_tidptr=0x55555b590650) = 5370 [pid 5370] set_robust_list(0x55555b590660, 24) = 0 [pid 5370] chdir("./23") = 0 [pid 5370] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5370] setpgid(0, 0) = 0 [pid 5370] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5370] write(3, "1000", 4executing program ) = 4 [pid 5370] close(3) = 0 [pid 5370] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5370] write(1, "executing program\n", 18) = 18 [pid 5370] memfd_create("syzkaller", 0) = 3 [pid 5370] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5366] <... write resumed>) = 4243456 [pid 5366] exit_group(0) = ? [pid 5366] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5366, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=39 /* 0.39 s */} --- [pid 5247] umount2("./22", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5368] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./22", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./22/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5369] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] newfstatat(AT_FDCWD, "./22/binderfs", [pid 5367] <... write resumed>) = 4243456 [pid 5367] exit_group(0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5367] <... exit_group resumed>) = ? [pid 5247] unlink("./22/binderfs") = 0 [pid 5247] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5367] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5367, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./23/binderfs") = 0 [pid 5243] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./22/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5247] umount2("./22/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./22/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./23/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./23") = 0 [pid 5243] mkdir("./24", 0777 [pid 5247] newfstatat(4, "", [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] getdents64(4, [pid 5243] <... ioctl resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] close(3 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./22/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./22") = 0 [pid 5247] mkdir("./23", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5370] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5371 attached , child_tidptr=0x55555b590650) = 5371 [pid 5371] set_robust_list(0x55555b590660, 24) = 0 [pid 5371] chdir("./24") = 0 [pid 5371] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5371] setpgid(0, 0) = 0 [pid 5371] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5371] write(3, "1000", 4) = 4 [pid 5371] close(3 [pid 5368] <... write resumed>) = 16777216 [pid 5371] <... close resumed>) = 0 [pid 5371] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5371] write(1, "executing program\n", 18) = 18 [pid 5371] memfd_create("syzkaller", 0) = 3 [pid 5371] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5368] munmap(0x7f6c8ae00000, 138412032 [pid 5369] <... write resumed>) = 16777216 [pid 5368] <... munmap resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5369] munmap(0x7f6c8ae00000, 138412032 [pid 5368] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5372 attached [pid 5368] <... openat resumed>) = 4 [pid 5372] set_robust_list(0x55555b590660, 24 [pid 5368] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5372 [pid 5372] <... set_robust_list resumed>) = 0 [pid 5369] <... munmap resumed>) = 0 [pid 5368] <... ioctl resumed>) = 0 [pid 5372] chdir("./23" [pid 5369] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5368] close(3 [pid 5372] <... chdir resumed>) = 0 [pid 5369] <... openat resumed>) = 4 [pid 5368] <... close resumed>) = 0 [pid 5372] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5369] ioctl(4, LOOP_SET_FD, 3 [pid 5368] close(4 [pid 5372] <... prctl resumed>) = 0 [pid 5368] <... close resumed>) = 0 [pid 5372] setpgid(0, 0 [pid 5368] mkdir("./file0", 0777 [pid 5372] <... setpgid resumed>) = 0 [pid 5368] <... mkdir resumed>) = 0 [pid 5372] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5368] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5372] write(3, "1000", 4) = 4 [pid 5372] close(3) = 0 [pid 5369] <... ioctl resumed>) = 0 [pid 5372] symlink("/dev/binderfs", "./binderfs" [pid 5369] close(3executing program [pid 5372] <... symlink resumed>) = 0 [pid 5369] <... close resumed>) = 0 [pid 5372] write(1, "executing program\n", 18 [pid 5369] close(4 [pid 5372] <... write resumed>) = 18 [pid 5369] <... close resumed>) = 0 [pid 5372] memfd_create("syzkaller", 0 [pid 5369] mkdir("./file0", 0777 [pid 5372] <... memfd_create resumed>) = 3 [pid 5369] <... mkdir resumed>) = 0 [pid 5368] <... mount resumed>) = 0 [pid 5372] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5369] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5372] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5368] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5368] chdir("./file0") = 0 [pid 5368] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5368] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5368] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 351.960307][ T5368] loop1: detected capacity change from 0 to 32768 [ 351.989859][ T5369] loop2: detected capacity change from 0 to 32768 [pid 5368] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5369] <... mount resumed>) = 0 [pid 5369] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5369] chdir("./file0") = 0 [pid 5369] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5369] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5369] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5369] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5370] <... write resumed>) = 16777216 [pid 5370] munmap(0x7f6c8ae00000, 138412032 [pid 5368] <... write resumed>) = 4243456 [pid 5368] exit_group(0 [pid 5370] <... munmap resumed>) = 0 [pid 5368] <... exit_group resumed>) = ? [pid 5368] +++ exited with 0 +++ [pid 5370] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5371] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5370] <... openat resumed>) = 4 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5368, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=35 /* 0.35 s */} --- [pid 5370] ioctl(4, LOOP_SET_FD, 3 [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5370] <... ioctl resumed>) = 0 [pid 5244] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5370] close(3 [pid 5244] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5370] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5370] close(4) = 0 [pid 5244] unlink("./23/binderfs" [pid 5370] mkdir("./file0", 0777 [pid 5244] <... unlink resumed>) = 0 [pid 5370] <... mkdir resumed>) = 0 [pid 5369] <... write resumed>) = 4243456 [pid 5244] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5369] exit_group(0) = ? [pid 5370] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5369] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5369, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./23/binderfs") = 0 [pid 5245] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5370] <... mount resumed>) = 0 [ 352.291869][ T5370] loop3: detected capacity change from 0 to 32768 [pid 5244] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5370] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./23/file0", [pid 5370] <... openat resumed>) = 3 [pid 5245] <... umount2 resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5370] chdir("./file0") = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5370] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5370] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5370] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... openat resumed>) = 4 [pid 5245] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5370] <... openat resumed>) = 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(4, "", [pid 5245] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5370] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5370] <... openat resumed>) = 5 [pid 5245] newfstatat(4, "", [pid 5244] getdents64(4, [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5244] getdents64(4, [pid 5370] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] rmdir("./23/file0" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5244] close(4 [pid 5245] getdents64(3, [pid 5244] <... close resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] rmdir("./23/file0" [pid 5245] close(3) = 0 [pid 5245] rmdir("./23") = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5245] mkdir("./24", 0777 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./23" [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./24", 0777 [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... mkdir resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] close(3 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5372] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] close(3 [pid 5370] <... write resumed>) = 4243456 [pid 5370] exit_group(0) = ? [pid 5370] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5370, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... close resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] getdents64(3, ./strace-static-x86_64: Process 5373 attached 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5373 [pid 5246] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5373] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5373] chdir("./24" [pid 5246] newfstatat(AT_FDCWD, "./23/binderfs", [pid 5373] <... chdir resumed>) = 0 [pid 5373] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5373] setpgid(0, 0 [pid 5246] unlink("./23/binderfs" [pid 5373] <... setpgid resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5373] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5373] <... openat resumed>) = 3 [pid 5373] write(3, "1000", 4) = 4 [pid 5373] close(3) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5373] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5374 attached [pid 5373] <... symlink resumed>) = 0 [pid 5246] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5373] write(1, "executing program\n", 18 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5373] <... write resumed>) = 18 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5374 [pid 5373] memfd_create("syzkaller", 0executing program [pid 5374] set_robust_list(0x55555b590660, 24 [pid 5246] newfstatat(AT_FDCWD, "./23/file0", [pid 5374] <... set_robust_list resumed>) = 0 [pid 5373] <... memfd_create resumed>) = 3 [pid 5373] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5374] chdir("./24" [pid 5373] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5374] <... chdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5374] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5374] setpgid(0, 0 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5374] <... setpgid resumed>) = 0 [pid 5246] getdents64(4, [pid 5374] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5371] <... write resumed>) = 16777216 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5374] <... openat resumed>) = 3 [pid 5371] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5374] write(3, "1000", 4 [pid 5246] close(4 [pid 5374] <... write resumed>) = 4 [pid 5374] close(3 [pid 5246] <... close resumed>) = 0 [pid 5374] <... close resumed>) = 0 [pid 5246] rmdir("./23/file0" [pid 5374] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] <... rmdir resumed>) = 0 executing program [pid 5374] write(1, "executing program\n", 18 [pid 5246] getdents64(3, [pid 5374] <... write resumed>) = 18 [pid 5374] memfd_create("syzkaller", 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5374] <... memfd_create resumed>) = 3 [pid 5371] <... munmap resumed>) = 0 [pid 5246] close(3 [pid 5374] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5371] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... close resumed>) = 0 [pid 5374] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] rmdir("./23" [pid 5371] <... openat resumed>) = 4 [pid 5371] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5371] close(3) = 0 [pid 5371] close(4 [pid 5246] <... rmdir resumed>) = 0 [pid 5371] <... close resumed>) = 0 [pid 5246] mkdir("./24", 0777) = 0 [pid 5371] mkdir("./file0", 0777) = 0 [pid 5371] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5372] <... write resumed>) = 16777216 [pid 5372] munmap(0x7f6c8ae00000, 138412032 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [ 352.790228][ T5371] loop0: detected capacity change from 0 to 32768 [pid 5246] close(3 [pid 5371] <... mount resumed>) = 0 [pid 5371] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5371] chdir("./file0") = 0 [pid 5371] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5371] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5371] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5372] <... munmap resumed>) = 0 [pid 5371] <... openat resumed>) = 5 [pid 5371] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5372] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5372] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5372] close(3) = 0 [pid 5372] close(4) = 0 [ 352.889375][ T5372] loop4: detected capacity change from 0 to 32768 [pid 5372] mkdir("./file0", 0777) = 0 [pid 5372] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5372] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5372] chdir("./file0") = 0 [pid 5372] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5372] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5372] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5372] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5371] <... write resumed>) = 4243456 [pid 5371] exit_group(0) = ? [pid 5371] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5371, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=27 /* 0.27 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./24/binderfs" [pid 5373] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5375 [pid 5243] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5375 attached [pid 5375] set_robust_list(0x55555b590660, 24 [pid 5243] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5375] <... set_robust_list resumed>) = 0 executing program [pid 5375] chdir("./24" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5375] <... chdir resumed>) = 0 [pid 5375] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5375] setpgid(0, 0) = 0 [pid 5375] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] newfstatat(AT_FDCWD, "./24/file0", [pid 5375] <... openat resumed>) = 3 [pid 5375] write(3, "1000", 4) = 4 [pid 5375] close(3) = 0 [pid 5375] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5375] write(1, "executing program\n", 18) = 18 [pid 5375] memfd_create("syzkaller", 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5375] <... memfd_create resumed>) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5375] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./24/file0" [pid 5372] <... write resumed>) = 4243456 [pid 5372] exit_group(0 [pid 5243] <... rmdir resumed>) = 0 [pid 5372] <... exit_group resumed>) = ? [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5372] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5372, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./24" [pid 5247] umount2("./23", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./23", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... rmdir resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5243] mkdir("./25", 0777 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... mkdir resumed>) = 0 [pid 5247] umount2("./23/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] newfstatat(AT_FDCWD, "./23/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5247] unlink("./23/binderfs" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5374] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... unlink resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5247] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./23/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./23/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./23/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./23/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./23") = 0 [pid 5247] mkdir("./24", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5376 attached , child_tidptr=0x55555b590650) = 5376 [pid 5376] set_robust_list(0x55555b590660, 24) = 0 [pid 5376] chdir("./25") = 0 [pid 5376] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5376] setpgid(0, 0) = 0 [pid 5376] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5247] <... close resumed>) = 0 [pid 5376] write(3, "1000", 4executing program ) = 4 [pid 5376] close(3) = 0 [pid 5376] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5376] write(1, "executing program\n", 18) = 18 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5376] memfd_create("syzkaller", 0./strace-static-x86_64: Process 5377 attached ) = 3 [pid 5376] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5377] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5377 [pid 5377] <... set_robust_list resumed>) = 0 [pid 5377] chdir("./24") = 0 [pid 5377] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5377] setpgid(0, 0) = 0 [pid 5375] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5373] <... write resumed>) = 16777216 [pid 5377] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5377] write(3, "1000", 4) = 4 [pid 5377] close(3) = 0 [pid 5377] symlink("/dev/binderfs", "./binderfs" [pid 5373] munmap(0x7f6c8ae00000, 138412032 [pid 5377] <... symlink resumed>) = 0 executing program [pid 5377] write(1, "executing program\n", 18) = 18 [pid 5377] memfd_create("syzkaller", 0) = 3 [pid 5377] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5374] <... write resumed>) = 16777216 [pid 5373] <... munmap resumed>) = 0 [pid 5374] munmap(0x7f6c8ae00000, 138412032 [pid 5373] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5374] <... munmap resumed>) = 0 [pid 5373] ioctl(4, LOOP_SET_FD, 3 [pid 5374] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5374] ioctl(4, LOOP_SET_FD, 3 [pid 5373] <... ioctl resumed>) = 0 [pid 5373] close(3) = 0 [pid 5373] close(4) = 0 [pid 5373] mkdir("./file0", 0777) = 0 [pid 5374] <... ioctl resumed>) = 0 [pid 5373] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5374] close(3) = 0 [pid 5374] close(4) = 0 [pid 5374] mkdir("./file0", 0777) = 0 [pid 5374] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5374] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5374] chdir("./file0") = 0 [pid 5374] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5374] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5374] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 353.650907][ T5373] loop2: detected capacity change from 0 to 32768 [ 353.651428][ T5374] loop1: detected capacity change from 0 to 32768 [pid 5374] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5373] <... mount resumed>) = 0 [pid 5373] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5373] chdir("./file0") = 0 [pid 5373] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5373] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5373] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5373] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5376] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5373] <... write resumed>) = 4243456 [pid 5373] exit_group(0) = ? [pid 5373] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5373, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5374] <... write resumed>) = 4243456 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5374] exit_group(0 [pid 5245] newfstatat(AT_FDCWD, "./24/binderfs", [pid 5374] <... exit_group resumed>) = ? [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5374] +++ exited with 0 +++ [pid 5245] unlink("./24/binderfs") = 0 [pid 5245] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5374, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./24/binderfs") = 0 [pid 5244] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5377] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5244] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5375] <... write resumed>) = 16777216 [pid 5245] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./24/file0", [pid 5375] munmap(0x7f6c8ae00000, 138412032 [pid 5245] newfstatat(AT_FDCWD, "./24/file0", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] getdents64(4, [pid 5244] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5244] newfstatat(4, "", [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... close resumed>) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./24/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./24") = 0 [pid 5244] mkdir("./25", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] rmdir("./24/file0") = 0 [pid 5375] <... munmap resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./24" [pid 5375] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./25", 0777 [pid 5375] <... openat resumed>) = 4 [pid 5245] <... mkdir resumed>) = 0 [pid 5375] ioctl(4, LOOP_SET_FD, 3 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5375] <... ioctl resumed>) = 0 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5375] close(3 [pid 5245] <... ioctl resumed>) = 0 [pid 5375] <... close resumed>) = 0 [pid 5245] close(3 [pid 5375] close(4) = 0 [pid 5375] mkdir("./file0", 0777) = 0 [ 354.089643][ T5375] loop3: detected capacity change from 0 to 32768 [pid 5375] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5375] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5375] chdir("./file0") = 0 [pid 5375] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5375] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5375] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5375] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5376] <... write resumed>) = 16777216 [pid 5375] <... write resumed>) = 4243456 [pid 5245] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5379 attached ./strace-static-x86_64: Process 5378 attached [pid 5375] exit_group(0 [pid 5379] set_robust_list(0x55555b590660, 24 [pid 5378] set_robust_list(0x55555b590660, 24 [pid 5375] <... exit_group resumed>) = ? [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5379 [pid 5379] <... set_robust_list resumed>) = 0 [pid 5378] <... set_robust_list resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5378 [pid 5379] chdir("./25") = 0 [pid 5379] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5379] setpgid(0, 0) = 0 [pid 5379] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5379] write(3, "1000", 4 [pid 5378] chdir("./25" [pid 5379] <... write resumed>) = 4 [pid 5379] close(3) = 0 [pid 5379] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5379] write(1, "executing program\n", 18executing program [pid 5378] <... chdir resumed>) = 0 [pid 5379] <... write resumed>) = 18 [pid 5378] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5375] +++ exited with 0 +++ [pid 5379] memfd_create("syzkaller", 0 [pid 5378] <... prctl resumed>) = 0 [pid 5376] munmap(0x7f6c8ae00000, 138412032 [pid 5378] setpgid(0, 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5375, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=38 /* 0.38 s */} --- [pid 5378] <... setpgid resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5379] <... memfd_create resumed>) = 3 [pid 5378] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5379] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5378] <... openat resumed>) = 3 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5378] write(3, "1000", 4) = 4 [pid 5378] close(3) = 0 [pid 5246] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5378] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5378] <... symlink resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5378] write(1, "executing program\n", 18executing program ) = 18 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5376] <... munmap resumed>) = 0 [pid 5378] memfd_create("syzkaller", 0 [pid 5377] <... write resumed>) = 16777216 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5378] <... memfd_create resumed>) = 3 [pid 5377] munmap(0x7f6c8ae00000, 138412032 [pid 5376] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] getdents64(3, [pid 5378] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5376] <... openat resumed>) = 4 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5378] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5376] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5376] <... ioctl resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./24/binderfs") = 0 [pid 5376] close(3) = 0 [pid 5376] close(4) = 0 [pid 5376] mkdir("./file0", 0777) = 0 [pid 5376] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5376] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5376] <... openat resumed>) = 3 [pid 5376] chdir("./file0") = 0 [pid 5376] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5376] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5376] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5377] <... munmap resumed>) = 0 [ 354.433604][ T5376] loop0: detected capacity change from 0 to 32768 [pid 5376] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5377] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5377] <... openat resumed>) = 4 [pid 5246] newfstatat(AT_FDCWD, "./24/file0", [pid 5377] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5377] <... ioctl resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5377] close(3) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5377] close(4 [pid 5246] newfstatat(4, "", [pid 5377] <... close resumed>) = 0 [pid 5377] mkdir("./file0", 0777 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5377] <... mkdir resumed>) = 0 [pid 5246] getdents64(4, [pid 5377] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./24/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./24") = 0 [pid 5246] mkdir("./25", 0777 [pid 5377] <... mount resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5377] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5377] <... openat resumed>) = 3 [pid 5377] chdir("./file0" [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [ 354.510390][ T5377] loop4: detected capacity change from 0 to 32768 [pid 5246] close(3 [pid 5377] <... chdir resumed>) = 0 [pid 5377] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5377] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5377] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5377] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5376] <... write resumed>) = 4243456 [pid 5376] exit_group(0) = ? [pid 5376] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5376, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=37 /* 0.37 s */} --- [pid 5243] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./25/binderfs") = 0 [pid 5243] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./25/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./25") = 0 [pid 5243] mkdir("./26", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5379] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5380 attached [pid 5380] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5380 [pid 5380] <... set_robust_list resumed>) = 0 [pid 5380] chdir("./25") = 0 [pid 5378] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5380] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5380] setpgid(0, 0) = 0 [pid 5380] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5377] <... write resumed>) = 4243456 [pid 5380] <... openat resumed>) = 3 [pid 5380] write(3, "1000", 4 [pid 5377] exit_group(0 [pid 5380] <... write resumed>) = 4 [pid 5377] <... exit_group resumed>) = ? [pid 5380] close(3) = 0 [pid 5380] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5380] write(1, "executing program\n", 18) = 18 [pid 5377] +++ exited with 0 +++ [pid 5380] memfd_create("syzkaller", 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5377, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5380] <... memfd_create resumed>) = 3 [pid 5380] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] umount2("./24", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5380] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./24", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./24/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./24/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./24/binderfs") = 0 [pid 5247] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./24/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./24/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./24/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./24/file0") = 0 [pid 5243] <... close resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5381 attached [pid 5247] close(3) = 0 [pid 5247] rmdir("./24") = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5381 [pid 5247] mkdir("./25", 0777) = 0 [pid 5381] set_robust_list(0x55555b590660, 24) = 0 [pid 5381] chdir("./26") = 0 [pid 5381] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5381] <... prctl resumed>) = 0 [pid 5381] setpgid(0, 0 [pid 5247] <... openat resumed>) = 3 [pid 5381] <... setpgid resumed>) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5381] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5247] <... ioctl resumed>) = 0 [pid 5381] write(3, "1000", 4) = 4 [pid 5247] close(3 [pid 5381] close(3) = 0 [pid 5381] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5381] write(1, "executing program\n", 18) = 18 [pid 5381] memfd_create("syzkaller", 0) = 3 [pid 5381] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5379] <... write resumed>) = 16777216 [pid 5379] munmap(0x7f6c8ae00000, 138412032 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5382 attached , child_tidptr=0x55555b590650) = 5382 [pid 5382] set_robust_list(0x55555b590660, 24) = 0 [pid 5379] <... munmap resumed>) = 0 [pid 5382] chdir("./25") = 0 [pid 5382] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5382] setpgid(0, 0 [pid 5379] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5379] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5382] <... setpgid resumed>) = 0 [pid 5380] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5378] <... write resumed>) = 16777216 [pid 5382] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5379] close(3 [pid 5378] munmap(0x7f6c8ae00000, 138412032 [pid 5382] <... openat resumed>) = 3 [pid 5379] <... close resumed>) = 0 [pid 5379] close(4) = 0 [pid 5379] mkdir("./file0", 0777) = 0 [pid 5379] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5379] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5379] chdir("./file0") = 0 [pid 5379] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5379] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5382] write(3, "1000", 4 [pid 5379] <... openat resumed>) = 4 [pid 5379] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5382] <... write resumed>) = 4 [pid 5382] close(3) = 0 [pid 5382] symlink("/dev/binderfs", "./binderfs" [pid 5379] <... openat resumed>) = 5 [pid 5379] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5381] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5382] <... symlink resumed>) = 0 executing program [pid 5382] write(1, "executing program\n", 18) = 18 [pid 5382] memfd_create("syzkaller", 0) = 3 [pid 5382] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 355.320847][ T5379] loop2: detected capacity change from 0 to 32768 [pid 5378] <... munmap resumed>) = 0 [pid 5378] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5378] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5378] close(3) = 0 [pid 5378] close(4) = 0 [ 355.415690][ T5378] loop1: detected capacity change from 0 to 32768 [pid 5378] mkdir("./file0", 0777) = 0 [pid 5378] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5378] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5378] chdir("./file0") = 0 [pid 5378] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5378] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5378] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5378] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5379] <... write resumed>) = 4243456 [pid 5379] exit_group(0) = ? [pid 5379] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5379, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./25/binderfs") = 0 [pid 5245] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./25/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./25") = 0 [pid 5245] mkdir("./26", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5380] <... write resumed>) = 16777216 [pid 5382] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5380] munmap(0x7f6c8ae00000, 138412032 [pid 5378] <... write resumed>) = 4243456 [pid 5378] exit_group(0 [pid 5381] <... write resumed>) = 16777216 [pid 5378] <... exit_group resumed>) = ? [pid 5381] munmap(0x7f6c8ae00000, 138412032 [pid 5380] <... munmap resumed>) = 0 [pid 5378] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5378, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5380] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5244] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5380] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5381] <... munmap resumed>) = 0 [pid 5380] <... ioctl resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5381] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5381] <... openat resumed>) = 4 [pid 5244] getdents64(3, [pid 5381] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5380] close(3 [pid 5381] <... ioctl resumed>) = 0 [pid 5244] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5381] close(3) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5381] close(4 [pid 5380] <... close resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./25/binderfs", [pid 5381] <... close resumed>) = 0 [pid 5380] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5381] mkdir("./file0", 0777 [pid 5380] <... close resumed>) = 0 [pid 5244] unlink("./25/binderfs" [pid 5381] <... mkdir resumed>) = 0 [pid 5380] mkdir("./file0", 0777 [pid 5381] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5380] <... mkdir resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5380] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5381] <... mount resumed>) = 0 [pid 5381] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 355.871494][ T5380] loop3: detected capacity change from 0 to 32768 [ 355.880770][ T5381] loop0: detected capacity change from 0 to 32768 [pid 5381] chdir("./file0" [pid 5380] <... mount resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5381] <... chdir resumed>) = 0 [pid 5380] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5381] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] newfstatat(AT_FDCWD, "./25/file0", [pid 5381] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5381] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5381] <... openat resumed>) = 4 [pid 5380] <... openat resumed>) = 3 [pid 5245] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5380] chdir("./file0" [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5380] <... chdir resumed>) = 0 [pid 5381] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5380] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... openat resumed>) = 4 [pid 5381] <... openat resumed>) = 5 [pid 5380] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] newfstatat(4, "", [pid 5380] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5384 attached [pid 5380] <... openat resumed>) = 4 [pid 5384] set_robust_list(0x55555b590660, 24 [pid 5380] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5384] <... set_robust_list resumed>) = 0 [pid 5380] <... openat resumed>) = 5 [pid 5384] chdir("./26" [pid 5380] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5384] <... chdir resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5384 [pid 5381] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] getdents64(4, [pid 5384] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5384] <... prctl resumed>) = 0 [pid 5384] setpgid(0, 0 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./25/file0" [pid 5384] <... setpgid resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5384] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5384] <... openat resumed>) = 3 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./25" [pid 5384] write(3, "1000", 4 [pid 5244] <... rmdir resumed>) = 0 [pid 5384] <... write resumed>) = 4 [pid 5384] close(3 [pid 5244] mkdir("./26", 0777 [pid 5384] <... close resumed>) = 0 [pid 5384] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5384] write(1, "executing program\n", 18) = 18 [pid 5384] memfd_create("syzkaller", 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5384] <... memfd_create resumed>) = 3 [pid 5384] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5380] <... write resumed>) = 4243456 [pid 5380] exit_group(0) = ? [pid 5380] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5380, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./25/binderfs") = 0 [pid 5246] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5381] <... write resumed>) = 4243456 [pid 5381] exit_group(0) = ? [pid 5381] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5381, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=23 /* 0.23 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5246] <... umount2 resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./26/binderfs") = 0 [pid 5243] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5244] <... close resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] getdents64(4, [pid 5243] <... umount2 resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./25/file0" [pid 5243] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5386 attached [pid 5382] <... write resumed>) = 16777216 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5386 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5386] set_robust_list(0x55555b590660, 24 [pid 5382] munmap(0x7f6c8ae00000, 138412032 [pid 5246] getdents64(3, [pid 5386] <... set_robust_list resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./26/file0", [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./25") = 0 [pid 5246] mkdir("./26", 0777 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5243] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5246] close(3 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5386] chdir("./26" [pid 5243] getdents64(4, [pid 5386] <... chdir resumed>) = 0 [pid 5386] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5386] setpgid(0, 0) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5386] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4executing program ) = 0 [pid 5386] <... openat resumed>) = 3 [pid 5386] write(3, "1000", 4) = 4 [pid 5386] close(3) = 0 [pid 5386] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5386] write(1, "executing program\n", 18) = 18 [pid 5386] memfd_create("syzkaller", 0) = 3 [pid 5243] rmdir("./26/file0") = 0 [pid 5386] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./26") = 0 [pid 5382] <... munmap resumed>) = 0 [pid 5243] mkdir("./27", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5382] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5382] <... openat resumed>) = 4 [pid 5243] <... ioctl resumed>) = 0 [pid 5382] ioctl(4, LOOP_SET_FD, 3 [pid 5243] close(3 [pid 5382] <... ioctl resumed>) = 0 [ 356.370887][ T5382] loop4: detected capacity change from 0 to 32768 [pid 5384] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5382] close(3) = 0 [pid 5382] close(4) = 0 [pid 5382] mkdir("./file0", 0777) = 0 [pid 5382] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5382] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5382] chdir("./file0") = 0 [pid 5382] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5382] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5382] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5382] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5387 ./strace-static-x86_64: Process 5387 attached [pid 5387] set_robust_list(0x55555b590660, 24) = 0 [pid 5387] chdir("./26") = 0 [pid 5387] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5387] setpgid(0, 0) = 0 [pid 5387] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5387] write(3, "1000", 4) = 4 [pid 5387] close(3) = 0 [pid 5387] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5387] write(1, "executing program\n", 18executing program ) = 18 [pid 5387] memfd_create("syzkaller", 0) = 3 [pid 5387] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5388 attached , child_tidptr=0x55555b590650) = 5388 [pid 5388] set_robust_list(0x55555b590660, 24) = 0 [pid 5388] chdir("./27") = 0 [pid 5388] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5388] setpgid(0, 0) = 0 [pid 5388] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5388] write(3, "1000", 4) = 4 [pid 5388] close(3) = 0 executing program [pid 5388] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5388] write(1, "executing program\n", 18) = 18 [pid 5388] memfd_create("syzkaller", 0) = 3 [pid 5388] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5386] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5382] <... write resumed>) = 4243456 [pid 5382] exit_group(0) = ? [pid 5382] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5382, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=38 /* 0.38 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./25", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./25", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./25/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./25/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./25/binderfs") = 0 [pid 5247] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5384] <... write resumed>) = 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5384] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./25/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./25/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./25/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./25/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./25") = 0 [pid 5247] mkdir("./26", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5384] <... munmap resumed>) = 0 [pid 5384] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5384] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5384] close(3) = 0 [pid 5384] close(4) = 0 [pid 5384] mkdir("./file0", 0777) = 0 [ 356.870052][ T5384] loop2: detected capacity change from 0 to 32768 [pid 5384] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5384] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5384] chdir("./file0") = 0 [pid 5384] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5384] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5384] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5384] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5387] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5388] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5389 ./strace-static-x86_64: Process 5389 attached [pid 5389] set_robust_list(0x55555b590660, 24) = 0 [pid 5389] chdir("./26") = 0 [pid 5389] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5389] setpgid(0, 0) = 0 [pid 5389] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5389] write(3, "1000", 4) = 4 [pid 5389] close(3) = 0 [pid 5389] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5389] write(1, "executing program\n", 18) = 18 [pid 5389] memfd_create("syzkaller", 0) = 3 [pid 5389] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5386] <... write resumed>) = 16777216 [pid 5386] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5384] <... write resumed>) = 4243456 [pid 5386] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5384] exit_group(0) = ? [pid 5386] <... openat resumed>) = 4 [pid 5386] ioctl(4, LOOP_SET_FD, 3 [pid 5384] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5384, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./26/binderfs") = 0 [pid 5245] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5386] <... ioctl resumed>) = 0 [pid 5245] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5386] close(3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5386] <... close resumed>) = 0 [pid 5245] newfstatat(AT_FDCWD, "./26/file0", [pid 5386] close(4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5386] <... close resumed>) = 0 [pid 5245] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5386] mkdir("./file0", 0777) = 0 [pid 5245] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./26/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./26") = 0 [pid 5386] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] mkdir("./27", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [ 357.228472][ T5386] loop1: detected capacity change from 0 to 32768 [pid 5245] close(3 [pid 5386] <... mount resumed>) = 0 [pid 5386] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5386] chdir("./file0") = 0 [pid 5386] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5386] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5386] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5386] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5389] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5388] <... write resumed>) = 16777216 [pid 5388] munmap(0x7f6c8ae00000, 138412032 [pid 5386] <... write resumed>) = 4243456 [pid 5386] exit_group(0) = ? [pid 5386] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5386, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5387] <... write resumed>) = 16777216 [pid 5387] munmap(0x7f6c8ae00000, 138412032 [pid 5244] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5388] <... munmap resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5388] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5388] ioctl(4, LOOP_SET_FD, 3 [pid 5387] <... munmap resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5244] newfstatat(3, "", [pid 5388] <... ioctl resumed>) = 0 [pid 5387] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5390 attached [pid 5388] close(3 [pid 5387] <... openat resumed>) = 4 [pid 5244] getdents64(3, [pid 5390] set_robust_list(0x55555b590660, 24 [pid 5388] <... close resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5390 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5387] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5390] <... set_robust_list resumed>) = 0 [pid 5388] close(4 [pid 5390] chdir("./27" [pid 5388] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./26/binderfs") = 0 [pid 5244] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5387] <... ioctl resumed>) = 0 [pid 5390] <... chdir resumed>) = 0 [pid 5387] close(3) = 0 [pid 5387] close(4) = 0 [pid 5387] mkdir("./file0", 0777) = 0 [pid 5387] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5390] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5388] mkdir("./file0", 0777 [pid 5390] <... prctl resumed>) = 0 [pid 5390] setpgid(0, 0 [pid 5388] <... mkdir resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5390] <... setpgid resumed>) = 0 [pid 5388] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5390] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5390] write(3, "1000", 4) = 4 [pid 5390] close(3 [pid 5244] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5390] <... close resumed>) = 0 [pid 5390] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5390] write(1, "executing program\n", 18 [pid 5244] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5390] <... write resumed>) = 18 [pid 5244] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5387] <... mount resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 357.566494][ T5388] loop0: detected capacity change from 0 to 32768 [ 357.591535][ T5387] loop3: detected capacity change from 0 to 32768 [pid 5387] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] getdents64(4, [pid 5390] memfd_create("syzkaller", 0 [pid 5387] <... openat resumed>) = 3 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5390] <... memfd_create resumed>) = 3 [pid 5387] chdir("./file0" [pid 5244] getdents64(4, [pid 5390] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5387] <... chdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5390] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5387] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] close(4 [pid 5388] <... mount resumed>) = 0 [pid 5387] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5388] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5387] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... close resumed>) = 0 [pid 5388] <... openat resumed>) = 3 [pid 5387] <... openat resumed>) = 4 [pid 5244] rmdir("./26/file0" [pid 5388] chdir("./file0" [pid 5387] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... rmdir resumed>) = 0 [pid 5388] <... chdir resumed>) = 0 [pid 5387] <... openat resumed>) = 5 [pid 5388] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5387] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] getdents64(3, [pid 5388] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5388] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] close(3 [pid 5388] <... openat resumed>) = 4 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./26" [pid 5388] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... rmdir resumed>) = 0 [pid 5388] <... openat resumed>) = 5 [pid 5244] mkdir("./27", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5388] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5389] <... write resumed>) = 16777216 [pid 5389] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5391 attached [pid 5387] <... write resumed>) = 4243456 [pid 5391] set_robust_list(0x55555b590660, 24 [pid 5387] exit_group(0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5391 [pid 5391] <... set_robust_list resumed>) = 0 [pid 5387] <... exit_group resumed>) = ? [pid 5391] chdir("./27" [pid 5388] <... write resumed>) = 4243456 [pid 5391] <... chdir resumed>) = 0 [pid 5388] exit_group(0 [pid 5391] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5388] <... exit_group resumed>) = ? [pid 5391] <... prctl resumed>) = 0 [pid 5387] +++ exited with 0 +++ [pid 5391] setpgid(0, 0) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5387, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5391] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5391] <... openat resumed>) = 3 [pid 5391] write(3, "1000", 4) = 4 [pid 5391] close(3) = 0 [pid 5391] symlink("/dev/binderfs", "./binderfs" [pid 5389] <... munmap resumed>) = 0 [pid 5389] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5391] <... symlink resumed>) = 0 [pid 5389] <... openat resumed>) = 4 [pid 5388] +++ exited with 0 +++ [pid 5389] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5388, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=34 /* 0.34 s */} --- [pid 5391] write(1, "executing program\n", 18executing program [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5391] <... write resumed>) = 18 [pid 5391] memfd_create("syzkaller", 0) = 3 [pid 5389] <... ioctl resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5391] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5389] close(3 [pid 5246] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5389] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5389] close(4 [pid 5246] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5391] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5389] <... close resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5389] mkdir("./file0", 0777 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5389] <... mkdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./26/binderfs") = 0 [pid 5246] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5389] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... umount2 resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5246] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] newfstatat(3, "", [pid 5389] <... mount resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5389] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] newfstatat(AT_FDCWD, "./26/file0", [pid 5243] getdents64(3, [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5389] <... openat resumed>) = 3 [pid 5243] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5389] chdir("./file0" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5389] <... chdir resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./27/binderfs", [pid 5246] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5389] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] unlink("./27/binderfs" [pid 5246] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5389] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] <... openat resumed>) = 4 [pid 5243] <... unlink resumed>) = 0 [ 357.945518][ T5389] loop4: detected capacity change from 0 to 32768 [pid 5389] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5389] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5389] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5246] getdents64(4, [pid 5389] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./26/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./26") = 0 [pid 5246] mkdir("./27", 0777 [pid 5390] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... mkdir resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5243] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... ioctl resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./27/file0", [pid 5246] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./27/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./27") = 0 [pid 5243] mkdir("./28", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5389] <... write resumed>) = 4243456 [pid 5389] exit_group(0) = ? [pid 5389] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5389, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} --- [pid 5247] umount2("./26", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./26", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./26/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./26/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./26/binderfs") = 0 [pid 5247] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5392 attached ) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./26/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./26/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./26/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5392] set_robust_list(0x55555b590660, 24 [pid 5247] getdents64(4, [pid 5243] <... close resumed>) = 0 [pid 5392] <... set_robust_list resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5392 [pid 5392] chdir("./27" [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5392] <... chdir resumed>) = 0 [pid 5392] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5392] setpgid(0, 0 [pid 5247] getdents64(4, [pid 5392] <... setpgid resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5392] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] close(4 [pid 5392] <... openat resumed>) = 3 [pid 5392] write(3, "1000", 4 [pid 5247] <... close resumed>) = 0 [pid 5392] <... write resumed>) = 4 [pid 5392] close(3 [pid 5247] rmdir("./26/file0" [pid 5392] <... close resumed>) = 0 [pid 5392] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... rmdir resumed>) = 0 executing program ./strace-static-x86_64: Process 5393 attached [pid 5392] <... symlink resumed>) = 0 [pid 5247] getdents64(3, [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5393 [pid 5392] write(1, "executing program\n", 18) = 18 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5392] memfd_create("syzkaller", 0 [pid 5247] close(3 [pid 5393] set_robust_list(0x55555b590660, 24 [pid 5392] <... memfd_create resumed>) = 3 [pid 5247] <... close resumed>) = 0 [pid 5392] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5393] <... set_robust_list resumed>) = 0 [pid 5247] rmdir("./26" [pid 5392] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] mkdir("./27", 0777 [pid 5393] chdir("./28" [pid 5247] <... mkdir resumed>) = 0 [pid 5393] <... chdir resumed>) = 0 [pid 5393] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5393] <... prctl resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5393] setpgid(0, 0) = 0 [pid 5393] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5393] write(3, "1000", 4) = 4 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5393] close(3 [pid 5247] <... ioctl resumed>) = 0 [pid 5393] <... close resumed>) = 0 [pid 5247] close(3 [pid 5393] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5393] write(1, "executing program\n", 18) = 18 [pid 5393] memfd_create("syzkaller", 0) = 3 [pid 5393] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5391] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5390] <... write resumed>) = 16777216 [pid 5390] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5390] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5390] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5390] close(3) = 0 [pid 5390] close(4) = 0 [pid 5390] mkdir("./file0", 0777) = 0 [ 358.522479][ T5390] loop2: detected capacity change from 0 to 32768 [pid 5390] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5390] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5390] chdir("./file0") = 0 [pid 5390] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5390] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5390] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5390] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5395 attached , child_tidptr=0x55555b590650) = 5395 [pid 5395] set_robust_list(0x55555b590660, 24) = 0 [pid 5395] chdir("./27") = 0 [pid 5395] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5395] setpgid(0, 0) = 0 [pid 5395] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5395] write(3, "1000", 4) = 4 [pid 5395] close(3) = 0 [pid 5395] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5395] write(1, "executing program\n", 18) = 18 [pid 5395] memfd_create("syzkaller", 0) = 3 [pid 5395] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5392] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5390] <... write resumed>) = 4243456 [pid 5390] exit_group(0) = ? [pid 5390] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5390, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=39 /* 0.39 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./27/binderfs") = 0 [pid 5245] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5393] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./27/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./27") = 0 [pid 5245] mkdir("./28", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5391] <... write resumed>) = 16777216 [pid 5391] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5391] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5391] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5391] close(3) = 0 [pid 5391] close(4) = 0 [pid 5391] mkdir("./file0", 0777) = 0 [ 358.983046][ T5391] loop1: detected capacity change from 0 to 32768 [pid 5391] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5391] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5391] chdir("./file0") = 0 [pid 5391] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5391] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5391] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5391] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5395] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5392] <... write resumed>) = 16777216 [pid 5392] munmap(0x7f6c8ae00000, 138412032 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5397 attached , child_tidptr=0x55555b590650) = 5397 [pid 5397] set_robust_list(0x55555b590660, 24) = 0 [pid 5397] chdir("./28") = 0 [pid 5397] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5397] setpgid(0, 0) = 0 [pid 5397] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5397] write(3, "1000", 4) = 4 [pid 5397] close(3) = 0 [pid 5397] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5397] write(1, "executing program\n", 18) = 18 [pid 5397] memfd_create("syzkaller", 0) = 3 [pid 5392] <... munmap resumed>) = 0 [pid 5397] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5392] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5392] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5392] close(3) = 0 [pid 5392] close(4) = 0 [pid 5392] mkdir("./file0", 0777) = 0 [pid 5392] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5392] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5392] chdir("./file0") = 0 [pid 5392] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5392] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5392] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5392] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5391] <... write resumed>) = 4243456 [ 359.250711][ T5392] loop3: detected capacity change from 0 to 32768 [pid 5391] exit_group(0) = ? [pid 5391] +++ exited with 0 +++ [pid 5393] <... write resumed>) = 16777216 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5391, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5393] munmap(0x7f6c8ae00000, 138412032 [pid 5244] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./27/binderfs" [pid 5393] <... munmap resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5393] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5393] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5393] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5393] close(3 [pid 5244] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./27/file0") = 0 [pid 5393] <... close resumed>) = 0 [pid 5244] getdents64(3, [pid 5393] close(4 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5393] <... close resumed>) = 0 [pid 5244] close(3 [pid 5393] mkdir("./file0", 0777 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./27" [pid 5393] <... mkdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5393] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] mkdir("./28", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [ 359.375090][ T5393] loop0: detected capacity change from 0 to 32768 [pid 5244] close(3 [pid 5393] <... mount resumed>) = 0 [pid 5393] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5393] chdir("./file0") = 0 [pid 5393] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5393] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5393] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5393] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5392] <... write resumed>) = 4243456 [pid 5392] exit_group(0) = ? [pid 5392] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5392, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./27/binderfs") = 0 [pid 5246] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./27/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./27/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./27") = 0 [pid 5246] mkdir("./28", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5395] <... write resumed>) = 16777216 [pid 5397] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5395] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5399 attached [pid 5399] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5399 [pid 5399] <... set_robust_list resumed>) = 0 [pid 5399] chdir("./28") = 0 [pid 5399] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5399] setpgid(0, 0) = 0 [pid 5399] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5399] write(3, "1000", 4) = 4 [pid 5399] close(3) = 0 [pid 5399] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5399] write(1, "executing program\n", 18) = 18 [pid 5399] memfd_create("syzkaller", 0 [pid 5395] <... munmap resumed>) = 0 [pid 5395] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5395] ioctl(4, LOOP_SET_FD, 3 [pid 5399] <... memfd_create resumed>) = 3 [pid 5399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5395] <... ioctl resumed>) = 0 [pid 5395] close(3) = 0 [pid 5393] <... write resumed>) = 4243456 [pid 5393] exit_group(0 [pid 5395] close(4 [pid 5393] <... exit_group resumed>) = ? [pid 5395] <... close resumed>) = 0 [pid 5395] mkdir("./file0", 0777) = 0 [ 359.734268][ T5395] loop4: detected capacity change from 0 to 32768 [pid 5395] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5393] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5393, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./28/binderfs") = 0 [pid 5243] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5395] <... mount resumed>) = 0 [pid 5395] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5395] chdir("./file0") = 0 [pid 5395] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] <... umount2 resumed>) = 0 [pid 5395] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5395] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5395] <... openat resumed>) = 4 [pid 5243] newfstatat(AT_FDCWD, "./28/file0", [pid 5395] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5395] <... openat resumed>) = 5 [pid 5243] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5395] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./28/file0" [pid 5246] <... close resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] getdents64(3, [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5401 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./28"./strace-static-x86_64: Process 5401 attached [pid 5401] set_robust_list(0x55555b590660, 24) = 0 [pid 5401] chdir("./28" [pid 5243] <... rmdir resumed>) = 0 [pid 5401] <... chdir resumed>) = 0 [pid 5243] mkdir("./29", 0777 [pid 5401] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5401] setpgid(0, 0) = 0 [pid 5401] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... mkdir resumed>) = 0 [pid 5401] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5401] write(3, "1000", 4 [pid 5243] <... openat resumed>) = 3 [pid 5401] <... write resumed>) = 4 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5401] close(3 [pid 5243] <... ioctl resumed>) = 0 [pid 5401] <... close resumed>) = 0 [pid 5243] close(3 [pid 5401] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5401] write(1, "executing program\n", 18) = 18 [pid 5401] memfd_create("syzkaller", 0) = 3 [pid 5401] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 executing program [pid 5397] <... write resumed>) = 16777216 [pid 5397] munmap(0x7f6c8ae00000, 138412032 [pid 5395] <... write resumed>) = 4243456 [pid 5395] exit_group(0) = ? [pid 5399] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5395] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5395, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5397] <... munmap resumed>) = 0 [pid 5397] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5397] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./27", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./27", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./27/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./27/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./27/binderfs") = 0 [pid 5247] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5397] <... ioctl resumed>) = 0 [pid 5397] close(3) = 0 [pid 5397] close(4) = 0 [pid 5397] mkdir("./file0", 0777) = 0 [pid 5397] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5402 attached ) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./27/file0", [pid 5402] set_robust_list(0x55555b590660, 24 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5402 [pid 5402] <... set_robust_list resumed>) = 0 [pid 5247] umount2("./27/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5402] chdir("./29" [pid 5247] openat(AT_FDCWD, "./27/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5402] <... chdir resumed>) = 0 [pid 5402] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5402] setpgid(0, 0) = 0 [pid 5402] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5397] <... mount resumed>) = 0 [pid 5247] <... openat resumed>) = 4 [ 360.153446][ T5397] loop2: detected capacity change from 0 to 32768 [pid 5397] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5402] <... openat resumed>) = 3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5397] <... openat resumed>) = 3 [pid 5402] write(3, "1000", 4 [pid 5247] getdents64(4, [pid 5397] chdir("./file0" [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5402] <... write resumed>) = 4 [pid 5397] <... chdir resumed>) = 0 [pid 5247] close(4 [pid 5402] close(3 [pid 5397] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] <... close resumed>) = 0 [pid 5402] <... close resumed>) = 0 [pid 5397] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] rmdir("./27/file0" [pid 5397] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000executing program [pid 5402] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5402] write(1, "executing program\n", 18 [pid 5397] <... openat resumed>) = 4 [pid 5402] <... write resumed>) = 18 [pid 5247] getdents64(3, [pid 5402] memfd_create("syzkaller", 0 [pid 5397] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5402] <... memfd_create resumed>) = 3 [pid 5397] <... openat resumed>) = 5 [pid 5402] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... close resumed>) = 0 [pid 5402] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5397] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] rmdir("./27") = 0 [pid 5247] mkdir("./28", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5401] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5397] <... write resumed>) = 4243456 [pid 5397] exit_group(0) = ? [pid 5397] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5397, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./28/binderfs") = 0 [pid 5245] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./28/file0", [pid 5247] <... close resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5403 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5403 [pid 5245] <... openat resumed>) = 4 [pid 5403] set_robust_list(0x55555b590660, 24 [pid 5245] newfstatat(4, "", [pid 5403] <... set_robust_list resumed>) = 0 [pid 5403] chdir("./28" [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5403] <... chdir resumed>) = 0 [pid 5245] getdents64(4, [pid 5403] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5403] setpgid(0, 0 [pid 5245] getdents64(4, [pid 5403] <... setpgid resumed>) = 0 [pid 5403] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5403] write(3, "1000", 4) = 4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5403] close(3 [pid 5245] close(4 [pid 5403] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5403] symlink("/dev/binderfs", "./binderfs" [pid 5245] rmdir("./28/file0" [pid 5403] <... symlink resumed>) = 0 executing program [pid 5403] write(1, "executing program\n", 18) = 18 [pid 5399] <... write resumed>) = 16777216 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5403] memfd_create("syzkaller", 0 [pid 5399] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5403] <... memfd_create resumed>) = 3 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./28" [pid 5403] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./29", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5399] <... munmap resumed>) = 0 [pid 5245] close(3 [pid 5399] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5402] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5399] <... openat resumed>) = 4 [pid 5399] ioctl(4, LOOP_SET_FD, 3 [pid 5401] <... write resumed>) = 16777216 [pid 5399] <... ioctl resumed>) = 0 [pid 5401] munmap(0x7f6c8ae00000, 138412032 [pid 5399] close(3) = 0 [pid 5399] close(4) = 0 [ 360.640852][ T5399] loop1: detected capacity change from 0 to 32768 [pid 5399] mkdir("./file0", 0777 [pid 5401] <... munmap resumed>) = 0 [pid 5399] <... mkdir resumed>) = 0 [pid 5401] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5399] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5401] <... openat resumed>) = 4 [pid 5401] ioctl(4, LOOP_SET_FD, 3 [pid 5399] <... mount resumed>) = 0 [pid 5399] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5401] <... ioctl resumed>) = 0 [pid 5399] <... openat resumed>) = 3 [pid 5399] chdir("./file0") = 0 [pid 5399] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5401] close(3 [pid 5399] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5401] <... close resumed>) = 0 [pid 5399] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5401] close(4) = 0 [pid 5399] <... openat resumed>) = 4 [pid 5401] mkdir("./file0", 0777) = 0 [pid 5399] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5401] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5399] <... openat resumed>) = 5 [pid 5401] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5399] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5401] <... openat resumed>) = 3 [pid 5401] chdir("./file0") = 0 [pid 5401] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5401] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5401] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 360.706599][ T5401] loop3: detected capacity change from 0 to 32768 [pid 5401] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5401] exit_group(0 [pid 5245] <... close resumed>) = 0 [pid 5401] <... exit_group resumed>) = ? [pid 5401] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5401, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 5404 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5404 [pid 5404] set_robust_list(0x55555b590660, 24 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5404] <... set_robust_list resumed>) = 0 [pid 5404] chdir("./29") = 0 [pid 5246] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5404] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5404] <... prctl resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5404] setpgid(0, 0 [pid 5246] <... openat resumed>) = 3 [pid 5404] <... setpgid resumed>) = 0 [pid 5246] newfstatat(3, "", [pid 5404] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5404] <... openat resumed>) = 3 [pid 5399] <... write resumed>) = 4243456 [pid 5246] getdents64(3, [pid 5399] exit_group(0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5404] write(3, "1000", 4 [pid 5399] <... exit_group resumed>) = ? [pid 5246] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program [pid 5404] <... write resumed>) = 4 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5404] close(3) = 0 [pid 5404] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5404] write(1, "executing program\n", 18 [pid 5246] newfstatat(AT_FDCWD, "./28/binderfs", [pid 5404] <... write resumed>) = 18 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5404] memfd_create("syzkaller", 0 [pid 5246] unlink("./28/binderfs" [pid 5404] <... memfd_create resumed>) = 3 [pid 5246] <... unlink resumed>) = 0 [pid 5404] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5399] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5399, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./28/binderfs" [pid 5246] <... umount2 resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5246] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5403] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(4, "", [pid 5244] newfstatat(AT_FDCWD, "./28/file0", [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] getdents64(4, [pid 5244] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] getdents64(4, [pid 5244] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5246] close(4 [pid 5244] newfstatat(4, "", [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./28/file0" [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5402] <... write resumed>) = 16777216 [pid 5402] munmap(0x7f6c8ae00000, 138412032 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./28") = 0 [pid 5244] getdents64(4, [pid 5246] mkdir("./29", 0777 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... mkdir resumed>) = 0 [pid 5244] getdents64(4, [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5244] close(4 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5244] <... close resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5244] rmdir("./28/file0" [pid 5246] close(3 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./28") = 0 [pid 5244] mkdir("./29", 0777 [pid 5402] <... munmap resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5402] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5402] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5402] close(3) = 0 [pid 5402] close(4) = 0 [ 361.100264][ T5402] loop0: detected capacity change from 0 to 32768 [pid 5402] mkdir("./file0", 0777) = 0 [pid 5402] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5402] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5402] chdir("./file0") = 0 [pid 5402] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5402] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5402] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5402] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5405 attached , child_tidptr=0x55555b590650) = 5405 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5406 ./strace-static-x86_64: Process 5406 attached [pid 5406] set_robust_list(0x55555b590660, 24) = 0 [pid 5406] chdir("./29") = 0 [pid 5406] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5406] setpgid(0, 0) = 0 [pid 5406] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5406] write(3, "1000", 4 [pid 5405] set_robust_list(0x55555b590660, 24 [pid 5402] <... write resumed>) = 4243456 [pid 5405] <... set_robust_list resumed>) = 0 [pid 5405] chdir("./29" [pid 5402] exit_group(0 [pid 5405] <... chdir resumed>) = 0 [pid 5402] <... exit_group resumed>) = ? [pid 5405] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5406] <... write resumed>) = 4 [pid 5406] close(3) = 0 [pid 5406] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5406] write(1, "executing program\n", 18) = 18 [pid 5406] memfd_create("syzkaller", 0) = 3 [pid 5406] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5402] +++ exited with 0 +++ [pid 5406] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5405] <... prctl resumed>) = 0 [pid 5405] setpgid(0, 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5402, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5405] <... setpgid resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5405] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5405] <... openat resumed>) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5405] write(3, "1000", 4 [pid 5243] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5405] <... write resumed>) = 4 [pid 5405] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5405] <... close resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5405] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5405] <... symlink resumed>) = 0 [pid 5243] getdents64(3, [pid 5405] write(1, "executing program\n", 18 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program [pid 5405] <... write resumed>) = 18 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./29/binderfs") = 0 [pid 5243] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5405] memfd_create("syzkaller", 0) = 3 [pid 5404] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... umount2 resumed>) = 0 [pid 5405] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5403] <... write resumed>) = 16777216 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5403] munmap(0x7f6c8ae00000, 138412032 [pid 5243] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./29/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./29") = 0 [pid 5243] mkdir("./30", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5403] <... munmap resumed>) = 0 [pid 5403] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5403] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5403] close(3) = 0 [pid 5403] close(4) = 0 [pid 5403] mkdir("./file0", 0777) = 0 [ 361.530057][ T5403] loop4: detected capacity change from 0 to 32768 [pid 5403] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5403] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5403] chdir("./file0") = 0 [pid 5403] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5403] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5403] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5403] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5407 ./strace-static-x86_64: Process 5407 attached [pid 5407] set_robust_list(0x55555b590660, 24) = 0 [pid 5407] chdir("./30") = 0 [pid 5407] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5407] setpgid(0, 0) = 0 [pid 5407] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5407] write(3, "1000", 4) = 4 [pid 5407] close(3) = 0 [pid 5407] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5406] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5407] write(1, "executing program\n", 18) = 18 [pid 5407] memfd_create("syzkaller", 0) = 3 [pid 5407] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5405] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5403] <... write resumed>) = 4243456 [pid 5407] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5403] exit_group(0 [pid 5404] <... write resumed>) = 16777216 [pid 5403] <... exit_group resumed>) = ? [pid 5404] munmap(0x7f6c8ae00000, 138412032 [pid 5403] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5403, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=29 /* 0.29 s */} --- [pid 5247] umount2("./28", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./28", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5404] <... munmap resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./28/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./28/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./28/binderfs") = 0 [pid 5247] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5404] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5404] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./28/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5404] close(3 [pid 5247] umount2("./28/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5404] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5404] close(4 [pid 5247] openat(AT_FDCWD, "./28/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5404] <... close resumed>) = 0 [pid 5247] <... openat resumed>) = 4 [pid 5404] mkdir("./file0", 0777) = 0 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5404] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./28/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./28") = 0 [pid 5247] mkdir("./29", 0777 [pid 5404] <... mount resumed>) = 0 [pid 5404] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... mkdir resumed>) = 0 [pid 5404] <... openat resumed>) = 3 [pid 5404] chdir("./file0") = 0 [pid 5404] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 361.920887][ T5404] loop2: detected capacity change from 0 to 32768 [pid 5404] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5404] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5404] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5404] <... write resumed>) = 4243456 [pid 5404] exit_group(0) = ? [pid 5404] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5404, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./29/binderfs") = 0 [pid 5245] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./29/file0", [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./29/file0") = 0 ./strace-static-x86_64: Process 5408 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5408 [pid 5408] set_robust_list(0x55555b590660, 24 [pid 5245] getdents64(3, [pid 5408] <... set_robust_list resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5408] chdir("./29" [pid 5245] rmdir("./29" [pid 5408] <... chdir resumed>) = 0 [pid 5408] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./30", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5408] setpgid(0, 0) = 0 [pid 5405] <... write resumed>) = 16777216 [pid 5408] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5405] munmap(0x7f6c8ae00000, 138412032 [pid 5408] <... openat resumed>) = 3 [pid 5408] write(3, "1000", 4) = 4 [pid 5408] close(3) = 0 [pid 5406] <... write resumed>) = 16777216 [pid 5408] symlink("/dev/binderfs", "./binderfs" [pid 5406] munmap(0x7f6c8ae00000, 138412032 [pid 5408] <... symlink resumed>) = 0 [pid 5408] write(1, "executing program\n", 18executing program ) = 18 [pid 5408] memfd_create("syzkaller", 0 [pid 5407] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5408] <... memfd_create resumed>) = 3 [pid 5408] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5405] <... munmap resumed>) = 0 [pid 5406] <... munmap resumed>) = 0 [pid 5405] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5405] ioctl(4, LOOP_SET_FD, 3 [pid 5406] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5406] ioctl(4, LOOP_SET_FD, 3 [pid 5405] <... ioctl resumed>) = 0 [pid 5405] close(3) = 0 [pid 5405] close(4) = 0 [pid 5405] mkdir("./file0", 0777) = 0 [pid 5406] <... ioctl resumed>) = 0 [pid 5406] close(3) = 0 [pid 5406] close(4) = 0 [pid 5406] mkdir("./file0", 0777) = 0 [pid 5406] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5405] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5406] <... mount resumed>) = 0 [pid 5406] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5406] chdir("./file0") = 0 [pid 5406] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [ 362.358139][ T5405] loop3: detected capacity change from 0 to 32768 [ 362.368544][ T5406] loop1: detected capacity change from 0 to 32768 [pid 5406] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5406] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5406] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5405] <... mount resumed>) = 0 [pid 5405] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5405] chdir("./file0") = 0 [pid 5405] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5405] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5405] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5405] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5409 attached , child_tidptr=0x55555b590650) = 5409 [pid 5409] set_robust_list(0x55555b590660, 24) = 0 [pid 5409] chdir("./30" [pid 5405] <... write resumed>) = 4243456 [pid 5405] exit_group(0 [pid 5409] <... chdir resumed>) = 0 [pid 5405] <... exit_group resumed>) = ? [pid 5405] +++ exited with 0 +++ [pid 5409] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5405, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5409] <... prctl resumed>) = 0 [pid 5406] <... write resumed>) = 4243456 [pid 5406] exit_group(0) = ? [pid 5409] setpgid(0, 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5409] <... setpgid resumed>) = 0 [pid 5246] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5409] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5406] +++ exited with 0 +++ [pid 5246] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5406, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5409] <... openat resumed>) = 3 [pid 5246] unlink("./29/binderfs" [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5409] write(3, "1000", 4 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5409] <... write resumed>) = 4 [pid 5409] close(3 [pid 5244] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5409] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5409] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... unlink resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5409] <... symlink resumed>) = 0 [pid 5246] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./29/binderfs", executing program [pid 5409] write(1, "executing program\n", 18 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5409] <... write resumed>) = 18 [pid 5244] unlink("./29/binderfs" [pid 5409] memfd_create("syzkaller", 0 [pid 5408] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5409] <... memfd_create resumed>) = 3 [pid 5244] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5409] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... umount2 resumed>) = 0 [pid 5246] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./29/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] newfstatat(AT_FDCWD, "./29/file0", [pid 5246] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5244] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(4, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] getdents64(4, [pid 5244] <... openat resumed>) = 4 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] newfstatat(4, "", [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... close resumed>) = 0 [pid 5244] getdents64(4, [pid 5246] rmdir("./29/file0" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] getdents64(4, [pid 5246] getdents64(3, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5246] close(3 [pid 5244] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5244] rmdir("./29/file0" [pid 5246] rmdir("./29" [pid 5244] <... rmdir resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5246] mkdir("./30", 0777 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./29" [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... rmdir resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5407] <... write resumed>) = 16777216 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5244] mkdir("./30", 0777) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5407] munmap(0x7f6c8ae00000, 138412032 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5407] <... munmap resumed>) = 0 [pid 5244] close(3 [pid 5407] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5407] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5407] close(3) = 0 [pid 5407] close(4) = 0 [pid 5407] mkdir("./file0", 0777) = 0 [ 362.825450][ T5407] loop0: detected capacity change from 0 to 32768 [pid 5407] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5407] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5407] chdir("./file0") = 0 [pid 5407] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5407] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5407] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5407] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5410 attached [pid 5410] set_robust_list(0x55555b590660, 24) = 0 [pid 5410] chdir("./30" [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5410 [pid 5410] <... chdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5410] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5410] setpgid(0, 0) = 0 [pid 5410] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5410] write(3, "1000", 4) = 4 [pid 5410] close(3) = 0 [pid 5410] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5410] write(1, "executing program\n", 18executing program ) = 18 [pid 5410] memfd_create("syzkaller", 0) = 3 [pid 5410] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5411 ./strace-static-x86_64: Process 5411 attached [pid 5411] set_robust_list(0x55555b590660, 24) = 0 [pid 5411] chdir("./30") = 0 [pid 5411] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5411] setpgid(0, 0) = 0 [pid 5411] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5411] write(3, "1000", 4) = 4 [pid 5411] close(3) = 0 [pid 5411] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5411] write(1, "executing program\n", 18) = 18 [pid 5411] memfd_create("syzkaller", 0) = 3 [pid 5411] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5408] <... write resumed>) = 16777216 [pid 5408] munmap(0x7f6c8ae00000, 138412032 [pid 5409] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5408] <... munmap resumed>) = 0 [pid 5407] <... write resumed>) = 4243456 [pid 5408] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5407] exit_group(0 [pid 5408] <... openat resumed>) = 4 [pid 5407] <... exit_group resumed>) = ? [pid 5408] ioctl(4, LOOP_SET_FD, 3 [pid 5407] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5407, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5408] <... ioctl resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5408] close(3 [pid 5243] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./30/binderfs" [pid 5408] <... close resumed>) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5408] close(4 [pid 5243] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5408] <... close resumed>) = 0 [pid 5408] mkdir("./file0", 0777) = 0 [pid 5408] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... umount2 resumed>) = 0 [ 363.181497][ T5408] loop4: detected capacity change from 0 to 32768 [pid 5243] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./30/file0") = 0 [pid 5243] getdents64(3, [pid 5408] <... mount resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5408] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] close(3 [pid 5408] <... openat resumed>) = 3 [pid 5243] <... close resumed>) = 0 [pid 5408] chdir("./file0" [pid 5243] rmdir("./30" [pid 5408] <... chdir resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5408] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] mkdir("./31", 0777 [pid 5408] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] <... mkdir resumed>) = 0 [pid 5408] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5408] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5408] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5408] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5410] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5408] <... write resumed>) = 4243456 [pid 5408] exit_group(0) = ? [pid 5411] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5408] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5408, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./29", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./29", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./29/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./29/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./29/binderfs") = 0 [pid 5247] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5412 attached [pid 5247] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5412] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5412 [pid 5412] <... set_robust_list resumed>) = 0 [pid 5412] chdir("./31" [pid 5247] newfstatat(AT_FDCWD, "./29/file0", [pid 5412] <... chdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5412] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] umount2("./29/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5412] <... prctl resumed>) = 0 [pid 5412] setpgid(0, 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5412] <... setpgid resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./29/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./29/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5412] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] rmdir("./29" [pid 5412] <... openat resumed>) = 3 [pid 5412] write(3, "1000", 4) = 4 [pid 5412] close(3 [pid 5247] <... rmdir resumed>) = 0 [pid 5412] <... close resumed>) = 0 [pid 5412] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5412] write(1, "executing program\n", 18) = 18 [pid 5247] mkdir("./30", 0777 [pid 5412] memfd_create("syzkaller", 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5412] <... memfd_create resumed>) = 3 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5412] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5409] <... write resumed>) = 16777216 [pid 5409] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5409] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5409] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5409] close(3) = 0 [pid 5409] close(4) = 0 [pid 5409] mkdir("./file0", 0777) = 0 [pid 5409] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5409] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5409] chdir("./file0") = 0 [pid 5409] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5409] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [ 363.648856][ T5409] loop2: detected capacity change from 0 to 32768 [pid 5409] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5409] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5413 ./strace-static-x86_64: Process 5413 attached [pid 5413] set_robust_list(0x55555b590660, 24) = 0 [pid 5413] chdir("./30") = 0 [pid 5413] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5413] setpgid(0, 0) = 0 [pid 5413] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5413] write(3, "1000", 4) = 4 [pid 5413] close(3) = 0 [pid 5413] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5413] write(1, "executing program\n", 18 [pid 5409] <... write resumed>) = 4243456 [pid 5409] exit_group(0) = ? executing program [pid 5409] +++ exited with 0 +++ [pid 5413] <... write resumed>) = 18 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5409, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", [pid 5413] memfd_create("syzkaller", 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5413] <... memfd_create resumed>) = 3 [pid 5411] <... write resumed>) = 16777216 [pid 5413] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5413] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5411] munmap(0x7f6c8ae00000, 138412032 [pid 5245] unlink("./30/binderfs") = 0 [pid 5245] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5410] <... write resumed>) = 16777216 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5411] <... munmap resumed>) = 0 [pid 5411] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5245] close(4 [pid 5411] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./30/file0" [pid 5410] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... rmdir resumed>) = 0 [pid 5410] <... munmap resumed>) = 0 [pid 5412] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5411] <... ioctl resumed>) = 0 [pid 5245] getdents64(3, [pid 5410] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5411] close(3 [pid 5410] <... openat resumed>) = 4 [pid 5245] <... close resumed>) = 0 [pid 5411] <... close resumed>) = 0 [ 363.971053][ T5411] loop1: detected capacity change from 0 to 32768 [pid 5410] ioctl(4, LOOP_SET_FD, 3 [pid 5245] rmdir("./30" [pid 5411] close(4) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./31", 0777 [pid 5411] mkdir("./file0", 0777) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5411] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5410] <... ioctl resumed>) = 0 [pid 5410] close(3) = 0 [pid 5410] close(4) = 0 [pid 5410] mkdir("./file0", 0777) = 0 [pid 5410] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [ 364.019286][ T5410] loop3: detected capacity change from 0 to 32768 [pid 5245] close(3 [pid 5411] <... mount resumed>) = 0 [pid 5410] <... mount resumed>) = 0 [pid 5411] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5410] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5410] chdir("./file0") = 0 [pid 5410] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5410] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5411] <... openat resumed>) = 3 [pid 5410] <... openat resumed>) = 4 [pid 5411] chdir("./file0" [pid 5410] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5410] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5411] <... chdir resumed>) = 0 [pid 5411] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5411] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5411] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5411] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5413] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5410] <... write resumed>) = 4243456 [pid 5410] exit_group(0) = ? [pid 5410] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5410, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5246] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./30/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./30/binderfs") = 0 [pid 5246] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] newfstatat(AT_FDCWD, "./30/file0", ./strace-static-x86_64: Process 5414 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5411] <... write resumed>) = 4243456 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5414 [pid 5411] exit_group(0 [pid 5246] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5414] set_robust_list(0x55555b590660, 24 [pid 5411] <... exit_group resumed>) = ? [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5411] +++ exited with 0 +++ [pid 5246] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5414] <... set_robust_list resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5414] chdir("./31" [pid 5246] newfstatat(4, "", [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5411, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5414] <... chdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5414] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] getdents64(4, [pid 5414] <... prctl resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5414] setpgid(0, 0 [pid 5246] getdents64(4, [pid 5414] <... setpgid resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5414] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] close(4) = 0 [pid 5246] rmdir("./30/file0" [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5414] <... openat resumed>) = 3 [pid 5244] getdents64(3, [pid 5246] <... rmdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5414] write(3, "1000", 4 [pid 5244] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5414] <... write resumed>) = 4 [pid 5414] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5414] <... close resumed>) = 0 [pid 5246] getdents64(3, [pid 5244] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5414] symlink("/dev/binderfs", "./binderfs" [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5414] <... symlink resumed>) = 0 [pid 5244] unlink("./30/binderfs" [pid 5414] write(1, "executing program\n", 18executing program [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5414] <... write resumed>) = 18 [pid 5244] <... unlink resumed>) = 0 [pid 5414] memfd_create("syzkaller", 0 [pid 5246] close(3 [pid 5244] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./30") = 0 [pid 5246] mkdir("./31", 0777 [pid 5414] <... memfd_create resumed>) = 3 [pid 5246] <... mkdir resumed>) = 0 [pid 5414] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... umount2 resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5244] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5244] newfstatat(AT_FDCWD, "./30/file0", [pid 5246] <... ioctl resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] close(3 [pid 5244] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./30/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./30") = 0 [pid 5244] mkdir("./31", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5412] <... write resumed>) = 16777216 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5412] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5412] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5412] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5412] close(3) = 0 [pid 5412] close(4) = 0 [pid 5412] mkdir("./file0", 0777) = 0 [ 364.530850][ T5412] loop0: detected capacity change from 0 to 32768 [pid 5412] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5412] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5412] chdir("./file0") = 0 [pid 5412] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5412] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5412] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5412] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5415 attached [pid 5413] <... write resumed>) = 16777216 [pid 5413] munmap(0x7f6c8ae00000, 138412032 [pid 5415] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5415 [pid 5415] <... set_robust_list resumed>) = 0 [pid 5415] chdir("./31") = 0 [pid 5415] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5415] setpgid(0, 0) = 0 [pid 5415] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5413] <... munmap resumed>) = 0 [pid 5415] <... openat resumed>) = 3 [pid 5415] write(3, "1000", 4) = 4 [pid 5415] close(3) = 0 [pid 5415] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5415] write(1, "executing program\n", 18executing program ) = 18 [pid 5415] memfd_create("syzkaller", 0) = 3 [pid 5415] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5413] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5413] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5416 attached [pid 5413] <... ioctl resumed>) = 0 [pid 5413] close(3) = 0 [pid 5413] close(4 [pid 5416] set_robust_list(0x55555b590660, 24 [pid 5413] <... close resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5416 [pid 5416] <... set_robust_list resumed>) = 0 [pid 5416] chdir("./31") = 0 [pid 5416] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5413] mkdir("./file0", 0777 [pid 5416] <... prctl resumed>) = 0 [pid 5413] <... mkdir resumed>) = 0 [pid 5416] setpgid(0, 0) = 0 [pid 5413] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5416] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5416] write(3, "1000", 4) = 4 [pid 5416] close(3) = 0 [pid 5416] symlink("/dev/binderfs", "./binderfs" [pid 5413] <... mount resumed>) = 0 [pid 5413] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5413] chdir("./file0") = 0 [pid 5413] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5413] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5413] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 364.740213][ T5413] loop4: detected capacity change from 0 to 32768 [pid 5413] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456executing program [pid 5416] <... symlink resumed>) = 0 [pid 5416] write(1, "executing program\n", 18) = 18 [pid 5416] memfd_create("syzkaller", 0) = 3 [pid 5416] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5412] <... write resumed>) = 4243456 [pid 5414] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5412] exit_group(0) = ? [pid 5412] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5412, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=37 /* 0.37 s */} --- [pid 5243] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./31/binderfs") = 0 [pid 5243] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5413] <... write resumed>) = 4243456 [pid 5243] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5413] exit_group(0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5413] <... exit_group resumed>) = ? [pid 5243] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5413] +++ exited with 0 +++ [pid 5243] <... openat resumed>) = 4 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5413, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=25 /* 0.25 s */} --- [pid 5243] newfstatat(4, "", [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5247] umount2("./30", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./30", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] rmdir("./31/file0" [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] getdents64(3, [pid 5243] getdents64(3, [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] umount2("./30/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... close resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./30/binderfs", [pid 5243] rmdir("./31" [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./30/binderfs" [pid 5243] <... rmdir resumed>) = 0 [pid 5415] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... unlink resumed>) = 0 [pid 5243] mkdir("./32", 0777 [pid 5247] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./30/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./30/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./30/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./30/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./30") = 0 [pid 5247] mkdir("./31", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] close(3 [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5416] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5417 attached , child_tidptr=0x55555b590650) = 5417 [pid 5417] set_robust_list(0x55555b590660, 24) = 0 [pid 5417] chdir("./31") = 0 [pid 5417] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5417] <... prctl resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5418 ./strace-static-x86_64: Process 5418 attached [pid 5417] setpgid(0, 0 [pid 5414] <... write resumed>) = 16777216 [pid 5417] <... setpgid resumed>) = 0 [pid 5417] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5418] set_robust_list(0x55555b590660, 24 [pid 5417] write(3, "1000", 4 [pid 5414] munmap(0x7f6c8ae00000, 138412032 [pid 5417] <... write resumed>) = 4 [pid 5417] close(3) = 0 [pid 5417] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5417] write(1, "executing program\n", 18executing program [pid 5418] <... set_robust_list resumed>) = 0 [pid 5417] <... write resumed>) = 18 [pid 5417] memfd_create("syzkaller", 0 [pid 5418] chdir("./32" [pid 5417] <... memfd_create resumed>) = 3 [pid 5418] <... chdir resumed>) = 0 [pid 5417] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5418] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5418] setpgid(0, 0) = 0 [pid 5418] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5414] <... munmap resumed>) = 0 [pid 5418] <... openat resumed>) = 3 [pid 5414] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5414] ioctl(4, LOOP_SET_FD, 3 [pid 5418] write(3, "1000", 4 [pid 5414] <... ioctl resumed>) = 0 [pid 5414] close(3 [pid 5418] <... write resumed>) = 4 [pid 5414] <... close resumed>) = 0 [pid 5418] close(3 [pid 5414] close(4 [pid 5418] <... close resumed>) = 0 [pid 5418] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5414] <... close resumed>) = 0 [pid 5418] write(1, "executing program\n", 18 [pid 5414] mkdir("./file0", 0777) = 0 executing program [pid 5414] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5418] <... write resumed>) = 18 [pid 5418] memfd_create("syzkaller", 0) = 3 [pid 5418] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 365.399074][ T5414] loop2: detected capacity change from 0 to 32768 [pid 5414] <... mount resumed>) = 0 [pid 5414] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5414] chdir("./file0") = 0 [pid 5414] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5414] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5414] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5414] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5415] <... write resumed>) = 16777216 [pid 5415] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5415] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5415] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5415] close(3) = 0 [pid 5415] close(4) = 0 [pid 5415] mkdir("./file0", 0777) = 0 [ 365.564892][ T5415] loop3: detected capacity change from 0 to 32768 [pid 5415] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5416] <... write resumed>) = 16777216 [pid 5415] <... mount resumed>) = 0 [pid 5415] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5415] chdir("./file0") = 0 [pid 5415] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5415] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5416] munmap(0x7f6c8ae00000, 138412032 [pid 5415] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5415] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5416] <... munmap resumed>) = 0 [pid 5416] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5416] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5416] close(3) = 0 [pid 5416] close(4) = 0 [pid 5416] mkdir("./file0", 0777) = 0 [pid 5416] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5414] <... write resumed>) = 4243456 [ 365.668837][ T5416] loop1: detected capacity change from 0 to 32768 [pid 5414] exit_group(0) = ? [pid 5416] <... mount resumed>) = 0 [pid 5416] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5416] chdir("./file0") = 0 [pid 5416] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5414] +++ exited with 0 +++ [pid 5416] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5414, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=38 /* 0.38 s */} --- [pid 5245] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", [pid 5416] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./31/binderfs" [pid 5416] <... openat resumed>) = 4 [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5416] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5416] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./31/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./31") = 0 [pid 5245] mkdir("./32", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5417] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5418] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5415] <... write resumed>) = 4243456 [pid 5415] exit_group(0) = ? [pid 5415] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5415, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5246] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./31/binderfs") = 0 [pid 5246] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./31/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./31") = 0 [pid 5246] mkdir("./32", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5416] <... write resumed>) = 4243456 [pid 5416] exit_group(0) = ? [pid 5416] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5416, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./31/binderfs") = 0 [pid 5244] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5245] <... close resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./31/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./31") = 0 [pid 5244] mkdir("./32", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5419 attached , child_tidptr=0x55555b590650) = 5419 [pid 5419] set_robust_list(0x55555b590660, 24) = 0 [pid 5419] chdir("./32") = 0 [pid 5419] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5419] setpgid(0, 0) = 0 [pid 5419] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5419] write(3, "1000", 4) = 4 [pid 5419] close(3) = 0 [pid 5419] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5419] write(1, "executing program\n", 18executing program ) = 18 [pid 5419] memfd_create("syzkaller", 0) = 3 [pid 5419] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5418] <... write resumed>) = 16777216 [pid 5419] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5418] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5418] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5246] <... close resumed>) = 0 [pid 5418] ioctl(4, LOOP_SET_FD, 3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5420 attached , child_tidptr=0x55555b590650) = 5420 [pid 5420] set_robust_list(0x55555b590660, 24) = 0 [pid 5420] chdir("./32") = 0 [pid 5418] <... ioctl resumed>) = 0 [pid 5417] <... write resumed>) = 16777216 [pid 5244] <... close resumed>) = 0 [pid 5418] close(3) = 0 [pid 5420] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5417] munmap(0x7f6c8ae00000, 138412032 [ 366.294371][ T5418] loop0: detected capacity change from 0 to 32768 [pid 5418] close(4 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5420] <... prctl resumed>) = 0 [pid 5418] <... close resumed>) = 0 [pid 5417] <... munmap resumed>) = 0 [pid 5420] setpgid(0, 0) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5421 [pid 5420] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5420] write(3, "1000", 4) = 4 [pid 5420] close(3) = 0 [pid 5420] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5420] write(1, "executing program\n", 18) = 18 [pid 5420] memfd_create("syzkaller", 0) = 3 [pid 5420] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 ./strace-static-x86_64: Process 5421 attached [pid 5418] mkdir("./file0", 0777) = 0 [pid 5418] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5417] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5421] set_robust_list(0x55555b590660, 24) = 0 [pid 5417] <... openat resumed>) = 4 [pid 5417] ioctl(4, LOOP_SET_FD, 3 [pid 5421] chdir("./32") = 0 [pid 5421] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5421] setpgid(0, 0) = 0 [pid 5421] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5421] write(3, "1000", 4) = 4 [pid 5421] close(3) = 0 [pid 5421] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5421] write(1, "executing program\n", 18 [pid 5418] <... mount resumed>) = 0 [pid 5421] <... write resumed>) = 18 [pid 5418] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5417] <... ioctl resumed>) = 0 [pid 5421] memfd_create("syzkaller", 0 [pid 5417] close(3 [pid 5421] <... memfd_create resumed>) = 3 [pid 5418] <... openat resumed>) = 3 [pid 5417] <... close resumed>) = 0 [pid 5421] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5418] chdir("./file0" [pid 5421] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5418] <... chdir resumed>) = 0 [pid 5418] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5417] close(4) = 0 [pid 5417] mkdir("./file0", 0777) = 0 [pid 5417] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5418] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5418] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5417] <... mount resumed>) = 0 [pid 5417] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5417] chdir("./file0") = 0 [pid 5417] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5417] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5418] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5417] <... openat resumed>) = 4 [pid 5417] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5417] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5418] <... openat resumed>) = 5 [ 366.380079][ T5417] loop4: detected capacity change from 0 to 32768 [pid 5418] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5419] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5418] <... write resumed>) = 4243456 [pid 5418] exit_group(0) = ? [pid 5418] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5418, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=26 /* 0.26 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./32/binderfs" [pid 5417] <... write resumed>) = 4243456 [pid 5243] <... unlink resumed>) = 0 [pid 5417] exit_group(0) = ? [pid 5243] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5417] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5417, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] umount2("./31", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./31", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5243] newfstatat(AT_FDCWD, "./32/file0", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] getdents64(3, [pid 5243] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./31/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 4 [pid 5247] newfstatat(AT_FDCWD, "./31/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] newfstatat(4, "", [pid 5247] unlink("./31/binderfs" [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5243] getdents64(4, [pid 5247] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./32/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./32") = 0 [pid 5243] mkdir("./33", 0777) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./31/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./31/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./31/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./31/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./31") = 0 [pid 5247] mkdir("./32", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5421] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5420] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5419] <... write resumed>) = 16777216 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5422 ./strace-static-x86_64: Process 5422 attached [pid 5422] set_robust_list(0x55555b590660, 24) = 0 [pid 5422] chdir("./33") = 0 [pid 5422] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5422] setpgid(0, 0) = 0 [pid 5422] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5422] write(3, "1000", 4) = 4 [pid 5422] close(3) = 0 [pid 5422] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5419] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... close resumed>) = 0 executing program [pid 5422] write(1, "executing program\n", 18) = 18 [pid 5422] memfd_create("syzkaller", 0) = 3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5422] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 ./strace-static-x86_64: Process 5423 attached [pid 5423] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5423 [pid 5423] <... set_robust_list resumed>) = 0 [pid 5419] <... munmap resumed>) = 0 [pid 5423] chdir("./32") = 0 [pid 5419] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5423] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5419] <... openat resumed>) = 4 [pid 5423] setpgid(0, 0 [pid 5419] ioctl(4, LOOP_SET_FD, 3 [pid 5423] <... setpgid resumed>) = 0 [pid 5419] <... ioctl resumed>) = 0 [pid 5423] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5419] close(3 [pid 5423] write(3, "1000", 4 [pid 5419] <... close resumed>) = 0 [pid 5423] <... write resumed>) = 4 [pid 5419] close(4 [pid 5423] close(3) = 0 [pid 5423] symlink("/dev/binderfs", "./binderfs" [pid 5419] <... close resumed>) = 0 executing program [pid 5423] <... symlink resumed>) = 0 [pid 5419] mkdir("./file0", 0777 [pid 5423] write(1, "executing program\n", 18) = 18 [pid 5419] <... mkdir resumed>) = 0 [pid 5423] memfd_create("syzkaller", 0 [pid 5419] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5423] <... memfd_create resumed>) = 3 [pid 5423] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5419] <... mount resumed>) = 0 [pid 5423] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5419] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 367.070757][ T5419] loop2: detected capacity change from 0 to 32768 [pid 5419] chdir("./file0") = 0 [pid 5419] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5419] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5419] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5419] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5421] <... write resumed>) = 16777216 [pid 5421] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5421] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5421] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5421] close(3) = 0 [pid 5421] close(4) = 0 [pid 5421] mkdir("./file0", 0777) = 0 [pid 5421] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5421] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5421] chdir("./file0") = 0 [pid 5421] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5421] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5421] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5421] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5420] <... write resumed>) = 16777216 [ 367.311870][ T5421] loop1: detected capacity change from 0 to 32768 [pid 5420] munmap(0x7f6c8ae00000, 138412032 [pid 5419] <... write resumed>) = 4243456 [pid 5419] exit_group(0) = ? [pid 5419] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5419, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=18 /* 0.18 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5420] <... munmap resumed>) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./32/binderfs") = 0 [pid 5245] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5420] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5420] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./32/file0" [pid 5420] <... ioctl resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./32") = 0 [pid 5245] mkdir("./33", 0777 [pid 5420] close(3) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5420] close(4 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5420] <... close resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5420] mkdir("./file0", 0777) = 0 [pid 5420] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5422] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 367.449226][ T5420] loop3: detected capacity change from 0 to 32768 [pid 5420] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5420] chdir("./file0") = 0 [pid 5420] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5420] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5420] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5420] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5423] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5421] <... write resumed>) = 4243456 [pid 5421] exit_group(0) = ? [pid 5421] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5421, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=41 /* 0.41 s */} --- [pid 5244] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./32/binderfs") = 0 [pid 5244] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./32/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./32") = 0 [pid 5244] mkdir("./33", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5424 attached , child_tidptr=0x55555b590650) = 5424 [pid 5424] set_robust_list(0x55555b590660, 24) = 0 [pid 5424] chdir("./33") = 0 [pid 5424] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5424] setpgid(0, 0) = 0 [pid 5424] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5420] <... write resumed>) = 4243456 [pid 5424] write(3, "1000", 4 [pid 5420] exit_group(0 [pid 5424] <... write resumed>) = 4 [pid 5424] close(3) = 0 [pid 5420] <... exit_group resumed>) = ? [pid 5424] symlink("/dev/binderfs", "./binderfs" [pid 5420] +++ exited with 0 +++ [pid 5424] <... symlink resumed>) = 0 executing program [pid 5424] write(1, "executing program\n", 18) = 18 [pid 5424] memfd_create("syzkaller", 0) = 3 [pid 5424] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5420, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./32/binderfs") = 0 [pid 5246] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5425 attached [pid 5425] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5425 [pid 5425] <... set_robust_list resumed>) = 0 [pid 5425] chdir("./33") = 0 [pid 5425] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5425] setpgid(0, 0) = 0 [pid 5425] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... umount2 resumed>) = 0 [pid 5425] write(3, "1000", 4) = 4 [pid 5425] close(3) = 0 [pid 5246] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5425] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./32/file0", [pid 5425] <... symlink resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5425] write(1, "executing program\n", 18executing program [pid 5246] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5425] <... write resumed>) = 18 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./32/file0" [pid 5425] memfd_create("syzkaller", 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5425] <... memfd_create resumed>) = 3 [pid 5246] getdents64(3, [pid 5425] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./32") = 0 [pid 5246] mkdir("./33", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5422] <... write resumed>) = 16777216 [pid 5422] munmap(0x7f6c8ae00000, 138412032 [pid 5423] <... write resumed>) = 16777216 [pid 5423] munmap(0x7f6c8ae00000, 138412032 [pid 5422] <... munmap resumed>) = 0 [pid 5422] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5422] ioctl(4, LOOP_SET_FD, 3 [pid 5423] <... munmap resumed>) = 0 [pid 5423] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5423] ioctl(4, LOOP_SET_FD, 3 [pid 5422] <... ioctl resumed>) = 0 [pid 5422] close(3) = 0 [pid 5422] close(4) = 0 [pid 5422] mkdir("./file0", 0777) = 0 [pid 5422] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5423] <... ioctl resumed>) = 0 [pid 5423] close(3) = 0 [pid 5423] close(4) = 0 [pid 5423] mkdir("./file0", 0777) = 0 [pid 5423] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5422] <... mount resumed>) = 0 [pid 5422] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5422] chdir("./file0") = 0 [pid 5422] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5422] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5422] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 368.073110][ T5422] loop0: detected capacity change from 0 to 32768 [ 368.084265][ T5423] loop4: detected capacity change from 0 to 32768 [pid 5422] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5423] <... mount resumed>) = 0 [pid 5423] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5423] chdir("./file0") = 0 [pid 5423] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5423] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5423] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5423] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5425] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5424] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5426 ./strace-static-x86_64: Process 5426 attached [pid 5426] set_robust_list(0x55555b590660, 24) = 0 [pid 5426] chdir("./33") = 0 [pid 5426] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5426] setpgid(0, 0) = 0 [pid 5426] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5426] write(3, "1000", 4) = 4 [pid 5426] close(3) = 0 [pid 5426] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5426] write(1, "executing program\n", 18executing program ) = 18 [pid 5426] memfd_create("syzkaller", 0) = 3 [pid 5426] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5422] <... write resumed>) = 4243456 [pid 5426] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5422] exit_group(0) = ? [pid 5422] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5422, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", [pid 5423] <... write resumed>) = 4243456 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5423] exit_group(0 [pid 5243] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5423] <... exit_group resumed>) = ? [pid 5243] newfstatat(AT_FDCWD, "./33/binderfs", [pid 5423] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5423, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=29 /* 0.29 s */} --- [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] unlink("./33/binderfs") = 0 [pid 5243] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5247] umount2("./32", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./32", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./33/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./33") = 0 [pid 5243] mkdir("./34", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./32/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./32/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./32/binderfs") = 0 [pid 5247] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./32/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./32/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./32/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./32/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./32") = 0 [pid 5247] mkdir("./33", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5424] <... write resumed>) = 16777216 [pid 5424] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5424] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5424] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5424] close(3) = 0 [pid 5424] close(4) = 0 [pid 5424] mkdir("./file0", 0777) = 0 [pid 5424] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5424] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5424] chdir("./file0") = 0 [pid 5424] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 368.647628][ T5424] loop2: detected capacity change from 0 to 32768 [pid 5424] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5424] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5424] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5425] <... write resumed>) = 16777216 [pid 5425] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5425] <... munmap resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5427 attached [pid 5425] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5427] set_robust_list(0x55555b590660, 24 [pid 5425] <... openat resumed>) = 4 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5427 [pid 5427] <... set_robust_list resumed>) = 0 [pid 5425] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 5428 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5428 [pid 5428] set_robust_list(0x55555b590660, 24) = 0 [pid 5428] chdir("./33") = 0 [pid 5428] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5427] chdir("./34" [pid 5428] <... prctl resumed>) = 0 [pid 5428] setpgid(0, 0) = 0 [pid 5428] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5428] write(3, "1000", 4) = 4 [pid 5428] close(3 [pid 5427] <... chdir resumed>) = 0 [pid 5427] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5427] setpgid(0, 0) = 0 [pid 5428] <... close resumed>) = 0 [pid 5428] symlink("/dev/binderfs", "./binderfs" [pid 5427] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5428] <... symlink resumed>) = 0 [pid 5425] <... ioctl resumed>) = 0 [pid 5427] <... openat resumed>) = 3 [pid 5425] close(3 [pid 5427] write(3, "1000", 4 [pid 5425] <... close resumed>) = 0 [pid 5427] <... write resumed>) = 4 [pid 5425] close(4 [pid 5427] close(3 [pid 5425] <... close resumed>) = 0 [pid 5427] <... close resumed>) = 0 executing program executing program [pid 5425] mkdir("./file0", 0777 [pid 5428] write(1, "executing program\n", 18 [pid 5427] symlink("/dev/binderfs", "./binderfs" [pid 5428] <... write resumed>) = 18 [pid 5428] memfd_create("syzkaller", 0 [pid 5427] <... symlink resumed>) = 0 [pid 5425] <... mkdir resumed>) = 0 [pid 5427] write(1, "executing program\n", 18 [pid 5425] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5427] <... write resumed>) = 18 [pid 5428] <... memfd_create resumed>) = 3 [pid 5427] memfd_create("syzkaller", 0 [pid 5428] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5427] <... memfd_create resumed>) = 3 [pid 5426] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5427] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5428] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5427] <... mmap resumed>) = 0x7f6c8ae00000 [ 368.777750][ T5425] loop1: detected capacity change from 0 to 32768 [pid 5425] <... mount resumed>) = 0 [pid 5425] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5425] chdir("./file0") = 0 [pid 5425] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5425] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5425] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5425] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5424] <... write resumed>) = 4243456 [pid 5424] exit_group(0) = ? [pid 5424] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5424, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./33/binderfs") = 0 [pid 5245] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./33/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./33") = 0 [pid 5245] mkdir("./34", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5425] <... write resumed>) = 4243456 [pid 5425] exit_group(0) = ? [pid 5425] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5425, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=23 /* 0.23 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./33/binderfs") = 0 [pid 5244] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5427] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5428] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./33/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./33/file0") = 0 [pid 5426] <... write resumed>) = 16777216 [pid 5245] <... close resumed>) = 0 [pid 5244] getdents64(3, [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5426] munmap(0x7f6c8ae00000, 138412032 [pid 5244] close(3./strace-static-x86_64: Process 5429 attached ) = 0 [pid 5429] set_robust_list(0x55555b590660, 24) = 0 [pid 5429] chdir("./34" [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5429 [pid 5244] rmdir("./33" [pid 5429] <... chdir resumed>) = 0 [pid 5429] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5429] setpgid(0, 0) = 0 [pid 5429] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] <... rmdir resumed>) = 0 [pid 5429] <... openat resumed>) = 3 [pid 5426] <... munmap resumed>) = 0 [pid 5244] mkdir("./34", 0777 [pid 5429] write(3, "1000", 4) = 4 [pid 5429] close(3) = 0 [pid 5429] symlink("/dev/binderfs", "./binderfs" [pid 5244] <... mkdir resumed>) = 0 [pid 5429] <... symlink resumed>) = 0 [pid 5429] write(1, "executing program\n", 18executing program ) = 18 [pid 5429] memfd_create("syzkaller", 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5429] <... memfd_create resumed>) = 3 [pid 5429] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... openat resumed>) = 3 [pid 5426] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5426] <... openat resumed>) = 4 [pid 5244] <... ioctl resumed>) = 0 [pid 5426] ioctl(4, LOOP_SET_FD, 3 [pid 5244] close(3 [pid 5426] <... ioctl resumed>) = 0 [pid 5426] close(3) = 0 [pid 5426] close(4) = 0 [pid 5426] mkdir("./file0", 0777) = 0 [pid 5426] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5426] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5426] chdir("./file0") = 0 [pid 5426] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5426] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5426] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 369.310347][ T5426] loop3: detected capacity change from 0 to 32768 [pid 5426] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5426] exit_group(0) = ? [pid 5426] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5426, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./33/binderfs") = 0 [pid 5246] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./33/file0", [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5430 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", ./strace-static-x86_64: Process 5430 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5430] set_robust_list(0x55555b590660, 24 [pid 5246] getdents64(4, [pid 5430] <... set_robust_list resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5430] chdir("./34" [pid 5246] close(4 [pid 5430] <... chdir resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5430] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] rmdir("./33/file0" [pid 5430] <... prctl resumed>) = 0 [pid 5430] setpgid(0, 0) = 0 [pid 5430] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5430] <... openat resumed>) = 3 [pid 5246] close(3 [pid 5430] write(3, "1000", 4 [pid 5246] <... close resumed>) = 0 [pid 5430] <... write resumed>) = 4 [pid 5246] rmdir("./33" [pid 5430] close(3) = 0 [pid 5430] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] <... rmdir resumed>) = 0 executing program [pid 5430] write(1, "executing program\n", 18) = 18 [pid 5430] memfd_create("syzkaller", 0 [pid 5428] <... write resumed>) = 16777216 [pid 5246] mkdir("./34", 0777 [pid 5430] <... memfd_create resumed>) = 3 [pid 5430] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... mkdir resumed>) = 0 [pid 5428] munmap(0x7f6c8ae00000, 138412032 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5428] <... munmap resumed>) = 0 [pid 5428] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5428] ioctl(4, LOOP_SET_FD, 3 [pid 5429] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5428] <... ioctl resumed>) = 0 [pid 5427] <... write resumed>) = 16777216 [pid 5428] close(3) = 0 [pid 5428] close(4) = 0 [pid 5428] mkdir("./file0", 0777) = 0 [pid 5427] munmap(0x7f6c8ae00000, 138412032 [ 369.710273][ T5428] loop4: detected capacity change from 0 to 32768 [pid 5428] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5427] <... munmap resumed>) = 0 [pid 5428] <... mount resumed>) = 0 [pid 5427] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5428] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5427] <... openat resumed>) = 4 [pid 5428] chdir("./file0" [pid 5427] ioctl(4, LOOP_SET_FD, 3 [pid 5428] <... chdir resumed>) = 0 [pid 5427] <... ioctl resumed>) = 0 [pid 5428] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5428] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5427] close(3 [pid 5428] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5427] <... close resumed>) = 0 [pid 5428] <... openat resumed>) = 5 [pid 5427] close(4 [pid 5428] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5427] <... close resumed>) = 0 [pid 5427] mkdir("./file0", 0777) = 0 [pid 5427] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5427] <... mount resumed>) = 0 [pid 5427] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5427] <... openat resumed>) = 3 [ 369.831462][ T5427] loop0: detected capacity change from 0 to 32768 ./strace-static-x86_64: Process 5431 attached [pid 5427] chdir("./file0" [pid 5431] set_robust_list(0x55555b590660, 24) = 0 [pid 5431] chdir("./34" [pid 5427] <... chdir resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5431 [pid 5427] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5431] <... chdir resumed>) = 0 [pid 5427] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5431] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5431] setpgid(0, 0) = 0 [pid 5431] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5427] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5431] <... openat resumed>) = 3 [pid 5431] write(3, "1000", 4) = 4 [pid 5431] close(3) = 0 [pid 5431] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5427] <... openat resumed>) = 4 executing program [pid 5431] write(1, "executing program\n", 18) = 18 [pid 5431] memfd_create("syzkaller", 0) = 3 [pid 5431] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5427] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5427] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5428] <... write resumed>) = 4243456 [pid 5428] exit_group(0) = ? [pid 5428] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5428, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./33", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./33", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./33/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./33/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./33/binderfs") = 0 [pid 5247] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5427] <... write resumed>) = 4243456 [pid 5427] exit_group(0) = ? [pid 5247] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./33/file0", [pid 5430] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5427] +++ exited with 0 +++ [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./33/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5427, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=38 /* 0.38 s */} --- [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./33/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 4 [pid 5243] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] newfstatat(4, "", [pid 5243] <... openat resumed>) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] newfstatat(3, "", [pid 5247] getdents64(4, [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] close(4 [pid 5243] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... close resumed>) = 0 [pid 5243] unlink("./34/binderfs" [pid 5247] rmdir("./33/file0" [pid 5243] <... unlink resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5243] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] getdents64(3, [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./33" [pid 5243] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... rmdir resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] mkdir("./34", 0777 [pid 5243] <... openat resumed>) = 4 [pid 5247] <... mkdir resumed>) = 0 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./34/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] rmdir("./34" [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5429] <... write resumed>) = 16777216 [pid 5247] close(3 [pid 5243] mkdir("./35", 0777) = 0 [pid 5429] munmap(0x7f6c8ae00000, 138412032 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5429] <... munmap resumed>) = 0 [pid 5429] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5429] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5429] close(3) = 0 [pid 5429] close(4) = 0 [pid 5429] mkdir("./file0", 0777) = 0 [pid 5429] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5429] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 370.283333][ T5429] loop2: detected capacity change from 0 to 32768 [pid 5429] chdir("./file0") = 0 [pid 5429] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5429] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5429] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5429] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5431] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5432 attached , child_tidptr=0x55555b590650) = 5433 [pid 5432] set_robust_list(0x55555b590660, 24) = 0 ./strace-static-x86_64: Process 5433 attached [pid 5432] chdir("./34" [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5432 [pid 5433] set_robust_list(0x55555b590660, 24 [pid 5432] <... chdir resumed>) = 0 [pid 5433] <... set_robust_list resumed>) = 0 [pid 5433] chdir("./35" [pid 5432] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5433] <... chdir resumed>) = 0 [pid 5432] setpgid(0, 0 [pid 5433] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5432] <... setpgid resumed>) = 0 [pid 5433] <... prctl resumed>) = 0 [pid 5433] setpgid(0, 0 [pid 5432] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5433] <... setpgid resumed>) = 0 [pid 5433] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5433] write(3, "1000", 4) = 4 [pid 5432] <... openat resumed>) = 3 [pid 5433] close(3) = 0 [pid 5433] symlink("/dev/binderfs", "./binderfs" [pid 5432] write(3, "1000", 4 [pid 5433] <... symlink resumed>) = 0 [pid 5432] <... write resumed>) = 4 [pid 5432] close(3 [pid 5433] write(1, "executing program\n", 18executing program [pid 5432] <... close resumed>) = 0 [pid 5433] <... write resumed>) = 18 [pid 5432] symlink("/dev/binderfs", "./binderfs" [pid 5433] memfd_create("syzkaller", 0) = 3 [pid 5433] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5432] <... symlink resumed>) = 0 [pid 5432] write(1, "executing program\n", 18) = 18 executing program [pid 5432] memfd_create("syzkaller", 0) = 3 [pid 5429] <... write resumed>) = 4243456 [pid 5432] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5429] exit_group(0) = ? [pid 5430] <... write resumed>) = 16777216 [pid 5429] +++ exited with 0 +++ [pid 5430] munmap(0x7f6c8ae00000, 138412032 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5429, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./34/binderfs") = 0 [pid 5245] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5430] <... munmap resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./34/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5430] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] close(3 [pid 5430] <... openat resumed>) = 4 [pid 5245] <... close resumed>) = 0 [pid 5430] ioctl(4, LOOP_SET_FD, 3 [pid 5245] rmdir("./34" [pid 5430] <... ioctl resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./35", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5430] close(3) = 0 [pid 5430] close(4) = 0 [pid 5430] mkdir("./file0", 0777) = 0 [ 370.610462][ T5430] loop1: detected capacity change from 0 to 32768 [pid 5430] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5430] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5430] chdir("./file0") = 0 [pid 5430] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5430] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5430] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5430] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5433] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5432] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5431] <... write resumed>) = 16777216 [pid 5245] <... close resumed>) = 0 [pid 5431] munmap(0x7f6c8ae00000, 138412032 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5434 attached [pid 5434] set_robust_list(0x55555b590660, 24) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5434 [pid 5434] chdir("./35") = 0 [pid 5430] <... write resumed>) = 4243456 [pid 5430] exit_group(0 [pid 5434] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5430] <... exit_group resumed>) = ? [pid 5434] <... prctl resumed>) = 0 [pid 5434] setpgid(0, 0) = 0 [pid 5434] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5431] <... munmap resumed>) = 0 [pid 5430] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5430, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5434] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5431] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5434] write(3, "1000", 4 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5434] <... write resumed>) = 4 [pid 5431] <... openat resumed>) = 4 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5434] close(3 [pid 5431] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5434] <... close resumed>) = 0 [pid 5431] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5434] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5244] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./34/binderfs") = 0 [pid 5244] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program [pid 5434] write(1, "executing program\n", 18) = 18 [pid 5434] memfd_create("syzkaller", 0) = 3 [pid 5434] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... umount2 resumed>) = 0 [pid 5431] close(3) = 0 [pid 5431] close(4) = 0 [pid 5431] mkdir("./file0", 0777) = 0 [pid 5244] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5431] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./34/file0" [pid 5431] <... mount resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5431] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./34") = 0 [pid 5431] <... openat resumed>) = 3 [pid 5244] mkdir("./35", 0777 [pid 5431] chdir("./file0" [pid 5244] <... mkdir resumed>) = 0 [ 370.969337][ T5431] loop3: detected capacity change from 0 to 32768 [pid 5431] <... chdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5431] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5431] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... ioctl resumed>) = 0 [pid 5431] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] close(3 [pid 5431] <... openat resumed>) = 4 [pid 5431] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5431] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5431] <... write resumed>) = 4243456 [pid 5431] exit_group(0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5435 attached [pid 5431] <... exit_group resumed>) = ? [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5435 [pid 5431] +++ exited with 0 +++ [pid 5435] set_robust_list(0x55555b590660, 24 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5431, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} --- [pid 5435] <... set_robust_list resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5435] chdir("./35" [pid 5433] <... write resumed>) = 16777216 [pid 5435] <... chdir resumed>) = 0 [pid 5432] <... write resumed>) = 16777216 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5435] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5432] munmap(0x7f6c8ae00000, 138412032 [pid 5435] <... prctl resumed>) = 0 [pid 5433] munmap(0x7f6c8ae00000, 138412032 [pid 5435] setpgid(0, 0 [pid 5246] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5435] <... setpgid resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5435] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5435] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./34/binderfs") = 0 [pid 5246] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5435] write(3, "1000", 4) = 4 [pid 5435] close(3executing program ) = 0 [pid 5435] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5435] write(1, "executing program\n", 18) = 18 [pid 5435] memfd_create("syzkaller", 0) = 3 [pid 5435] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5433] <... munmap resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5434] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5433] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5432] <... munmap resumed>) = 0 [pid 5246] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5433] <... openat resumed>) = 4 [pid 5432] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5433] ioctl(4, LOOP_SET_FD, 3 [pid 5432] <... openat resumed>) = 4 [pid 5246] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5432] ioctl(4, LOOP_SET_FD, 3 [pid 5246] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5433] <... ioctl resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./34/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./34" [pid 5433] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5433] <... close resumed>) = 0 [pid 5246] mkdir("./35", 0777 [pid 5433] close(4 [pid 5246] <... mkdir resumed>) = 0 [pid 5433] <... close resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5433] mkdir("./file0", 0777) = 0 [pid 5432] <... ioctl resumed>) = 0 [pid 5433] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5432] close(3) = 0 [pid 5432] close(4) = 0 [pid 5432] mkdir("./file0", 0777) = 0 [ 371.360265][ T5433] loop0: detected capacity change from 0 to 32768 [ 371.360948][ T5432] loop4: detected capacity change from 0 to 32768 [pid 5432] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5433] <... mount resumed>) = 0 [pid 5433] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5433] chdir("./file0") = 0 [pid 5433] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5433] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5433] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5433] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5432] <... mount resumed>) = 0 [pid 5432] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5432] chdir("./file0") = 0 [pid 5432] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5432] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5432] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5432] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5436 ./strace-static-x86_64: Process 5436 attached [pid 5433] <... write resumed>) = 4243456 [pid 5433] exit_group(0 [pid 5436] set_robust_list(0x55555b590660, 24) = 0 [pid 5436] chdir("./35") = 0 [pid 5436] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5436] setpgid(0, 0) = 0 [pid 5436] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5436] write(3, "1000", 4) = 4 [pid 5436] close(3) = 0 [pid 5436] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5436] write(1, "executing program\n", 18 [pid 5433] <... exit_group resumed>) = ? [pid 5436] <... write resumed>) = 18 [pid 5436] memfd_create("syzkaller", 0) = 3 [pid 5436] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5433] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5433, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5432] <... write resumed>) = 4243456 [pid 5432] exit_group(0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5432] <... exit_group resumed>) = ? [pid 5243] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./35/binderfs" [pid 5432] +++ exited with 0 +++ [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5432, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./34", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] newfstatat(AT_FDCWD, "./35/file0", [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./34", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5243] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] newfstatat(3, "", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] getdents64(3, [pid 5243] <... openat resumed>) = 4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] newfstatat(4, "", [pid 5247] umount2("./34/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] newfstatat(AT_FDCWD, "./34/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./34/binderfs") = 0 [pid 5247] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./35/file0" [pid 5435] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./34/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./34/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] getdents64(3, [pid 5247] openat(AT_FDCWD, "./34/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] newfstatat(4, "", [pid 5243] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./34/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./34") = 0 [pid 5247] mkdir("./35", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./35" [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] close(3 [pid 5243] mkdir("./36", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5434] <... write resumed>) = 16777216 [pid 5243] close(3 [pid 5434] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5434] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5434] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5434] close(3) = 0 [pid 5434] close(4) = 0 [pid 5434] mkdir("./file0", 0777) = 0 [ 371.909473][ T5434] loop2: detected capacity change from 0 to 32768 [pid 5434] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5434] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5434] chdir("./file0") = 0 [pid 5434] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5434] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5434] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5434] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5437 attached , child_tidptr=0x55555b590650) = 5437 [pid 5437] set_robust_list(0x55555b590660, 24) = 0 [pid 5437] chdir("./35") = 0 [pid 5437] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5437] setpgid(0, 0) = 0 [pid 5437] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5436] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5437] <... openat resumed>) = 3 [pid 5437] write(3, "1000", 4) = 4 [pid 5437] close(3) = 0 [pid 5437] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5437] write(1, "executing program\n", 18) = 18 [pid 5437] memfd_create("syzkaller", 0) = 3 [pid 5437] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5438 attached , child_tidptr=0x55555b590650) = 5438 [pid 5438] set_robust_list(0x55555b590660, 24) = 0 [pid 5438] chdir("./36") = 0 [pid 5438] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5438] setpgid(0, 0) = 0 [pid 5438] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5438] write(3, "1000", 4) = 4 [pid 5438] close(3) = 0 [pid 5438] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5438] write(1, "executing program\n", 18) = 18 [pid 5438] memfd_create("syzkaller", 0) = 3 [pid 5438] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5435] <... write resumed>) = 16777216 [pid 5434] <... write resumed>) = 4243456 [pid 5438] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5434] exit_group(0) = ? [pid 5434] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5434, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5435] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./35/binderfs") = 0 [pid 5245] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5435] <... munmap resumed>) = 0 [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./35/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./35") = 0 [pid 5245] mkdir("./36", 0777 [pid 5435] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5245] <... mkdir resumed>) = 0 [pid 5435] ioctl(4, LOOP_SET_FD, 3 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5435] <... ioctl resumed>) = 0 [pid 5435] close(3) = 0 [pid 5435] close(4) = 0 [pid 5435] mkdir("./file0", 0777) = 0 [ 372.299181][ T5435] loop1: detected capacity change from 0 to 32768 [pid 5435] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5435] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5435] chdir("./file0") = 0 [pid 5435] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5435] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5435] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5435] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5436] <... write resumed>) = 16777216 [pid 5436] munmap(0x7f6c8ae00000, 138412032 [pid 5437] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5436] <... munmap resumed>) = 0 [pid 5436] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5436] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5245] <... close resumed>) = 0 [pid 5436] close(3) = 0 [pid 5436] close(4) = 0 [pid 5436] mkdir("./file0", 0777) = 0 [pid 5436] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5439 attached [pid 5439] set_robust_list(0x55555b590660, 24) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5439 [pid 5439] chdir("./36") = 0 [ 372.544404][ T5436] loop3: detected capacity change from 0 to 32768 [pid 5439] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5439] setpgid(0, 0 [pid 5436] <... mount resumed>) = 0 [pid 5435] <... write resumed>) = 4243456 [pid 5439] <... setpgid resumed>) = 0 [pid 5436] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5439] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5436] <... openat resumed>) = 3 [pid 5435] exit_group(0 [pid 5436] chdir("./file0" [pid 5439] <... openat resumed>) = 3 [pid 5436] <... chdir resumed>) = 0 [pid 5435] <... exit_group resumed>) = ? [pid 5439] write(3, "1000", 4 [pid 5436] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5436] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5439] <... write resumed>) = 4 [pid 5436] <... openat resumed>) = 4 [pid 5439] close(3) = 0 [pid 5439] symlink("/dev/binderfs", "./binderfs" [pid 5436] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5435] +++ exited with 0 +++ executing program [pid 5439] <... symlink resumed>) = 0 [pid 5436] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5435, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} --- [pid 5439] write(1, "executing program\n", 18 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5439] <... write resumed>) = 18 [pid 5439] memfd_create("syzkaller", 0) = 3 [pid 5439] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5438] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5439] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./35/binderfs") = 0 [pid 5244] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./35/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./35") = 0 [pid 5244] mkdir("./36", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5436] <... write resumed>) = 4243456 [pid 5436] exit_group(0) = ? [pid 5436] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5436, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./35/binderfs") = 0 [pid 5246] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5437] <... write resumed>) = 16777216 [pid 5437] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./35/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./35") = 0 [pid 5246] mkdir("./36", 0777) = 0 [pid 5437] <... munmap resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5437] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] <... close resumed>) = 0 [pid 5437] <... openat resumed>) = 4 [pid 5437] ioctl(4, LOOP_SET_FD, 3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5440 attached [pid 5437] <... ioctl resumed>) = 0 [pid 5440] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5440 [pid 5440] <... set_robust_list resumed>) = 0 [pid 5440] chdir("./36") = 0 [pid 5440] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5440] setpgid(0, 0) = 0 [pid 5437] close(3 [pid 5440] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5437] <... close resumed>) = 0 [pid 5440] <... openat resumed>) = 3 [pid 5437] close(4 [pid 5440] write(3, "1000", 4 [pid 5437] <... close resumed>) = 0 [pid 5437] mkdir("./file0", 0777) = 0 [pid 5440] <... write resumed>) = 4 [pid 5437] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5440] close(3) = 0 [pid 5437] <... mount resumed>) = 0 [pid 5440] symlink("/dev/binderfs", "./binderfs" [pid 5437] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5440] <... symlink resumed>) = 0 [pid 5437] <... openat resumed>) = 3 [pid 5437] chdir("./file0" [pid 5440] write(1, "executing program\n", 18 [pid 5439] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5437] <... chdir resumed>) = 0 executing program [pid 5440] <... write resumed>) = 18 [ 373.020713][ T5437] loop4: detected capacity change from 0 to 32768 [pid 5437] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5440] memfd_create("syzkaller", 0 [pid 5437] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5440] <... memfd_create resumed>) = 3 [pid 5440] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5437] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5437] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5437] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5438] <... write resumed>) = 16777216 [pid 5438] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5438] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5438] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5438] close(3) = 0 [pid 5438] close(4) = 0 [pid 5438] mkdir("./file0", 0777) = 0 [pid 5438] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5438] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 373.189848][ T5438] loop0: detected capacity change from 0 to 32768 [pid 5438] chdir("./file0") = 0 [pid 5438] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5438] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5438] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5246] <... close resumed>) = 0 [pid 5438] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5441 [pid 5437] <... write resumed>) = 4243456 ./strace-static-x86_64: Process 5441 attached [pid 5437] exit_group(0) = ? [pid 5441] set_robust_list(0x55555b590660, 24 [pid 5437] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5437, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5441] <... set_robust_list resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5441] chdir("./36") = 0 [pid 5441] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] umount2("./35", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5441] <... prctl resumed>) = 0 [pid 5441] setpgid(0, 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5441] <... setpgid resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./35", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5441] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5441] <... openat resumed>) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./35/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./35/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./35/binderfs") = 0 [pid 5247] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5441] write(3, "1000", 4) = 4 [pid 5441] close(3) = 0 [pid 5441] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5441] write(1, "executing program\n", 18) = 18 [pid 5441] memfd_create("syzkaller", 0) = 3 [pid 5247] <... umount2 resumed>) = 0 [pid 5441] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./35/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./35/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./35/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./35/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./35") = 0 [pid 5247] mkdir("./36", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5440] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5438] <... write resumed>) = 4243456 [pid 5438] exit_group(0) = ? [pid 5438] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5438, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./36/binderfs") = 0 [pid 5243] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5439] <... write resumed>) = 16777216 [pid 5439] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5439] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] newfstatat(AT_FDCWD, "./36/file0", [pid 5439] <... openat resumed>) = 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5439] ioctl(4, LOOP_SET_FD, 3 [pid 5243] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5439] <... ioctl resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./36/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./36") = 0 [pid 5243] mkdir("./37", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5439] close(3) = 0 [pid 5439] close(4) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5439] mkdir("./file0", 0777 [pid 5243] close(3 [pid 5439] <... mkdir resumed>) = 0 [pid 5439] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... close resumed>) = 0 [ 373.599840][ T5439] loop2: detected capacity change from 0 to 32768 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5442 ./strace-static-x86_64: Process 5442 attached [pid 5442] set_robust_list(0x55555b590660, 24) = 0 [pid 5442] chdir("./36") = 0 [pid 5442] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5442] setpgid(0, 0) = 0 [pid 5442] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5439] <... mount resumed>) = 0 [pid 5442] write(3, "1000", 4 [pid 5439] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5442] <... write resumed>) = 4 [pid 5439] <... openat resumed>) = 3 [pid 5442] close(3 [pid 5439] chdir("./file0" [pid 5442] <... close resumed>) = 0 [pid 5441] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5439] <... chdir resumed>) = 0 [pid 5442] symlink("/dev/binderfs", "./binderfs" [pid 5439] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5439] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5439] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5439] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5442] <... symlink resumed>) = 0 [pid 5442] write(1, "executing program\n", 18executing program ) = 18 [pid 5442] memfd_create("syzkaller", 0) = 3 [pid 5442] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5443 attached [pid 5443] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5443 [pid 5443] chdir("./37") = 0 [pid 5443] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5443] setpgid(0, 0) = 0 [pid 5443] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5443] write(3, "1000", 4) = 4 [pid 5443] close(3) = 0 [pid 5443] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5443] write(1, "executing program\n", 18) = 18 [pid 5443] memfd_create("syzkaller", 0) = 3 [pid 5443] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5439] <... write resumed>) = 4243456 [pid 5439] exit_group(0) = ? [pid 5439] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5439, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5440] <... write resumed>) = 16777216 [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5440] munmap(0x7f6c8ae00000, 138412032 [pid 5245] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5440] <... munmap resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5440] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5440] <... openat resumed>) = 4 [pid 5245] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5440] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./36/binderfs") = 0 [pid 5245] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5440] <... ioctl resumed>) = 0 [pid 5440] close(3) = 0 [pid 5440] close(4) = 0 [pid 5440] mkdir("./file0", 0777) = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5440] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5440] <... mount resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5440] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] close(4 [pid 5440] <... openat resumed>) = 3 [pid 5245] <... close resumed>) = 0 [pid 5440] chdir("./file0" [pid 5245] rmdir("./36/file0" [pid 5440] <... chdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5440] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5440] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] close(3 [pid 5440] <... openat resumed>) = 4 [pid 5245] <... close resumed>) = 0 [pid 5440] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] rmdir("./36" [pid 5440] <... openat resumed>) = 5 [pid 5440] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... rmdir resumed>) = 0 [ 373.992495][ T5440] loop1: detected capacity change from 0 to 32768 [pid 5245] mkdir("./37", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5442] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5441] <... write resumed>) = 16777216 [pid 5441] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5441] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5441] ioctl(4, LOOP_SET_FD, 3 [pid 5443] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5441] <... ioctl resumed>) = 0 [pid 5441] close(3 [pid 5440] <... write resumed>) = 4243456 [pid 5441] <... close resumed>) = 0 [pid 5440] exit_group(0 [pid 5441] close(4 [pid 5440] <... exit_group resumed>) = ? [pid 5441] <... close resumed>) = 0 [pid 5440] +++ exited with 0 +++ [pid 5441] mkdir("./file0", 0777) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5440, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=40 /* 0.40 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5441] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [ 374.258014][ T5441] loop3: detected capacity change from 0 to 32768 [pid 5244] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./36/binderfs") = 0 [pid 5244] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5441] <... mount resumed>) = 0 [pid 5441] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5244] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5441] chdir("./file0" [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5441] <... chdir resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./36/file0", [pid 5441] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5441] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5441] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5441] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5441] <... openat resumed>) = 5 [pid 5245] <... close resumed>) = 0 [pid 5244] getdents64(4, [pid 5441] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, ./strace-static-x86_64: Process 5444 attached 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5444 [pid 5244] close(4 [pid 5444] set_robust_list(0x55555b590660, 24) = 0 [pid 5244] <... close resumed>) = 0 [pid 5444] chdir("./37" [pid 5244] rmdir("./36/file0" [pid 5444] <... chdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5444] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5244] getdents64(3, [pid 5444] <... prctl resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5444] setpgid(0, 0 [pid 5244] close(3 [pid 5444] <... setpgid resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5444] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] rmdir("./36") = 0 [pid 5444] <... openat resumed>) = 3 [pid 5244] mkdir("./37", 0777 [pid 5444] write(3, "1000", 4 [pid 5244] <... mkdir resumed>) = 0 [pid 5444] <... write resumed>) = 4 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5444] close(3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5444] <... close resumed>) = 0 [pid 5244] close(3 [pid 5444] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5444] write(1, "executing program\n", 18) = 18 [pid 5444] memfd_create("syzkaller", 0) = 3 [pid 5444] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5442] <... write resumed>) = 16777216 [pid 5441] <... write resumed>) = 4243456 [pid 5441] exit_group(0) = ? [pid 5441] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5441, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5246] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5442] munmap(0x7f6c8ae00000, 138412032 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./36/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./36/binderfs") = 0 [pid 5246] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5443] <... write resumed>) = 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5443] munmap(0x7f6c8ae00000, 138412032 [pid 5246] newfstatat(AT_FDCWD, "./36/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5442] <... munmap resumed>) = 0 [pid 5442] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5442] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./36/file0") = 0 [pid 5246] getdents64(3, [pid 5442] <... ioctl resumed>) = 0 [pid 5442] close(3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... close resumed>) = 0 [pid 5442] <... close resumed>) = 0 [pid 5246] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5443] <... munmap resumed>) = 0 [pid 5442] close(4 [pid 5246] <... close resumed>) = 0 ./strace-static-x86_64: Process 5445 attached [pid 5445] set_robust_list(0x55555b590660, 24 [pid 5442] <... close resumed>) = 0 [pid 5442] mkdir("./file0", 0777) = 0 [pid 5246] rmdir("./36" [pid 5442] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... rmdir resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5445 [pid 5246] mkdir("./37", 0777 [pid 5445] <... set_robust_list resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5445] chdir("./37" [pid 5246] close(3 [pid 5445] <... chdir resumed>) = 0 [pid 5442] <... mount resumed>) = 0 [pid 5442] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5442] chdir("./file0" [pid 5443] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5442] <... chdir resumed>) = 0 [pid 5443] <... openat resumed>) = 4 [ 374.660331][ T5442] loop4: detected capacity change from 0 to 32768 [pid 5442] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5443] ioctl(4, LOOP_SET_FD, 3 [pid 5442] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5445] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5442] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5445] <... prctl resumed>) = 0 [pid 5445] setpgid(0, 0) = 0 [pid 5445] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5442] <... openat resumed>) = 4 [pid 5445] <... openat resumed>) = 3 [pid 5442] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5445] write(3, "1000", 4 [pid 5442] <... openat resumed>) = 5 [pid 5442] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5445] <... write resumed>) = 4 [pid 5445] close(3) = 0 [pid 5445] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5443] <... ioctl resumed>) = 0 [pid 5443] close(3) = 0 [pid 5443] close(4) = 0 [pid 5443] mkdir("./file0", 0777) = 0 [pid 5443] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"executing program [pid 5445] write(1, "executing program\n", 18) = 18 [pid 5445] memfd_create("syzkaller", 0 [pid 5443] <... mount resumed>) = 0 [pid 5443] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5443] chdir("./file0") = 0 [pid 5443] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5443] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5443] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5443] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5445] <... memfd_create resumed>) = 3 [pid 5445] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 374.702804][ T5443] loop0: detected capacity change from 0 to 32768 [pid 5444] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5443] <... write resumed>) = 4243456 [pid 5442] <... write resumed>) = 4243456 [pid 5246] <... close resumed>) = 0 [pid 5442] exit_group(0) = ? [pid 5443] exit_group(0) = ? [pid 5442] +++ exited with 0 +++ [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5446 attached [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5442, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5446 [pid 5443] +++ exited with 0 +++ [pid 5446] set_robust_list(0x55555b590660, 24 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5443, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=38 /* 0.38 s */} --- [pid 5446] <... set_robust_list resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5446] chdir("./37" [pid 5247] <... restart_syscall resumed>) = 0 [pid 5446] <... chdir resumed>) = 0 [pid 5446] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] umount2("./36", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5446] <... prctl resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./36", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5446] setpgid(0, 0 [pid 5247] newfstatat(3, "", [pid 5446] <... setpgid resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5243] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5446] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... openat resumed>) = 3 [pid 5446] <... openat resumed>) = 3 [pid 5446] write(3, "1000", 4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] newfstatat(3, "", [pid 5446] <... write resumed>) = 4 [pid 5247] umount2("./36/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5446] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5446] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5446] symlink("/dev/binderfs", "./binderfs" [pid 5247] newfstatat(AT_FDCWD, "./36/binderfs", [pid 5243] getdents64(3, executing program [pid 5446] <... symlink resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5446] write(1, "executing program\n", 18 [pid 5247] unlink("./36/binderfs" [pid 5446] <... write resumed>) = 18 [pid 5243] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... unlink resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./37/binderfs", [pid 5446] memfd_create("syzkaller", 0 [pid 5247] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5446] <... memfd_create resumed>) = 3 [pid 5243] unlink("./37/binderfs" [pid 5446] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./36/file0", [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./36/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./36/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] newfstatat(AT_FDCWD, "./37/file0", [pid 5247] getdents64(4, [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] close(4 [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", [pid 5445] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] rmdir("./36/file0" [pid 5243] getdents64(4, [pid 5247] <... rmdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(3, [pid 5243] close(4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5243] rmdir("./37/file0" [pid 5247] rmdir("./36") = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] mkdir("./37", 0777 [pid 5243] getdents64(3, [pid 5247] <... mkdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] close(3 [pid 5247] <... openat resumed>) = 3 [pid 5243] <... close resumed>) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5243] rmdir("./37" [pid 5247] <... ioctl resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] close(3 [pid 5243] mkdir("./38", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5447 attached [pid 5447] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5447 [pid 5447] <... set_robust_list resumed>) = 0 [pid 5447] chdir("./37") = 0 [pid 5447] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5447] setpgid(0, 0) = 0 [pid 5447] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5447] write(3, "1000", 4executing program ) = 4 [pid 5447] close(3) = 0 [pid 5447] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5447] write(1, "executing program\n", 18) = 18 [pid 5447] memfd_create("syzkaller", 0 [pid 5446] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5444] <... write resumed>) = 16777216 [pid 5447] <... memfd_create resumed>) = 3 [pid 5444] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... close resumed>) = 0 [pid 5447] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5448 attached , child_tidptr=0x55555b590650) = 5448 [pid 5448] set_robust_list(0x55555b590660, 24 [pid 5444] <... munmap resumed>) = 0 [pid 5448] <... set_robust_list resumed>) = 0 [pid 5444] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5448] chdir("./38" [pid 5444] <... openat resumed>) = 4 [pid 5448] <... chdir resumed>) = 0 [pid 5444] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5448] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5444] close(3 [pid 5448] <... prctl resumed>) = 0 [pid 5444] <... close resumed>) = 0 [pid 5448] setpgid(0, 0) = 0 [pid 5448] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5444] close(4 [pid 5448] <... openat resumed>) = 3 [pid 5444] <... close resumed>) = 0 [pid 5448] write(3, "1000", 4 [pid 5444] mkdir("./file0", 0777) = 0 [pid 5448] <... write resumed>) = 4 [pid 5448] close(3 [pid 5444] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5448] <... close resumed>) = 0 [pid 5448] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5448] write(1, "executing program\n", 18) = 18 [pid 5448] memfd_create("syzkaller", 0) = 3 [pid 5448] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 375.440924][ T5444] loop2: detected capacity change from 0 to 32768 [pid 5444] <... mount resumed>) = 0 [pid 5444] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5444] chdir("./file0") = 0 [pid 5444] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5444] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5445] <... write resumed>) = 16777216 [pid 5444] <... openat resumed>) = 4 [pid 5445] munmap(0x7f6c8ae00000, 138412032 [pid 5444] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5444] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5445] <... munmap resumed>) = 0 [pid 5445] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5445] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5445] close(3) = 0 [pid 5445] close(4) = 0 [pid 5445] mkdir("./file0", 0777) = 0 [ 375.616310][ T5445] loop1: detected capacity change from 0 to 32768 [pid 5445] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5445] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5445] chdir("./file0") = 0 [pid 5445] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5445] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5445] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5445] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5444] <... write resumed>) = 4243456 [pid 5444] exit_group(0) = ? [pid 5444] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5444, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./37/binderfs") = 0 [pid 5245] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5447] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5446] <... write resumed>) = 16777216 [pid 5245] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5446] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5446] <... munmap resumed>) = 0 [pid 5448] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] newfstatat(4, "", [pid 5446] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5446] ioctl(4, LOOP_SET_FD, 3 [pid 5245] getdents64(4, [pid 5446] <... ioctl resumed>) = 0 [pid 5445] <... write resumed>) = 4243456 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5445] exit_group(0 [pid 5245] getdents64(4, [pid 5445] <... exit_group resumed>) = ? [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5446] close(3) = 0 [pid 5245] rmdir("./37/file0" [pid 5446] close(4) = 0 [pid 5445] +++ exited with 0 +++ [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5445, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] close(3 [pid 5446] mkdir("./file0", 0777 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5446] <... mkdir resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5446] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] rmdir("./37") = 0 [pid 5244] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] mkdir("./38", 0777 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 375.897473][ T5446] loop3: detected capacity change from 0 to 32768 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] newfstatat(3, "", [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5244] getdents64(3, [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] <... ioctl resumed>) = 0 [pid 5244] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./37/binderfs") = 0 [pid 5244] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5446] <... mount resumed>) = 0 [pid 5446] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5446] chdir("./file0" [pid 5244] <... umount2 resumed>) = 0 [pid 5446] <... chdir resumed>) = 0 [pid 5446] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5446] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5446] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5446] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./37/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./37/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./37") = 0 [pid 5244] mkdir("./38", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5447] <... write resumed>) = 16777216 [pid 5245] <... close resumed>) = 0 [pid 5446] <... write resumed>) = 4243456 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5449 attached [pid 5446] exit_group(0 [pid 5447] munmap(0x7f6c8ae00000, 138412032 [pid 5446] <... exit_group resumed>) = ? [pid 5449] set_robust_list(0x55555b590660, 24) = 0 [pid 5449] chdir("./38") = 0 [pid 5449] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5449] setpgid(0, 0) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5449 [pid 5449] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5446] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5446, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=37 /* 0.37 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5449] <... openat resumed>) = 3 [pid 5449] write(3, "1000", 4) = 4 [pid 5449] close(3) = 0 [pid 5449] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5449] write(1, "executing program\n", 18executing program [pid 5246] <... restart_syscall resumed>) = 0 [pid 5449] <... write resumed>) = 18 [pid 5246] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5449] memfd_create("syzkaller", 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5449] <... memfd_create resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5449] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5449] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./37/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./37/binderfs") = 0 [pid 5244] <... close resumed>) = 0 [pid 5246] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5450 ./strace-static-x86_64: Process 5450 attached [pid 5448] <... write resumed>) = 16777216 [pid 5450] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5450] chdir("./38" [pid 5448] munmap(0x7f6c8ae00000, 138412032 [pid 5447] <... munmap resumed>) = 0 [pid 5246] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5450] <... chdir resumed>) = 0 [pid 5447] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5450] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5447] <... openat resumed>) = 4 [pid 5246] newfstatat(AT_FDCWD, "./37/file0", [pid 5450] <... prctl resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5450] setpgid(0, 0 [pid 5447] ioctl(4, LOOP_SET_FD, 3 [pid 5246] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5450] <... setpgid resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5450] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5450] <... openat resumed>) = 3 [pid 5450] write(3, "1000", 4) = 4 [pid 5450] close(3) = 0 [pid 5450] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5450] write(1, "executing program\n", 18) = 18 [pid 5450] memfd_create("syzkaller", 0) = 3 [pid 5246] <... openat resumed>) = 4 [pid 5450] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] newfstatat(4, "", [pid 5450] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5447] <... ioctl resumed>) = 0 [pid 5447] close(3 [pid 5246] getdents64(4, [pid 5447] <... close resumed>) = 0 [pid 5447] close(4 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5447] <... close resumed>) = 0 [pid 5246] getdents64(4, [pid 5447] mkdir("./file0", 0777 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5447] <... mkdir resumed>) = 0 [pid 5246] close(4 [pid 5447] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./37/file0") = 0 [pid 5246] getdents64(3, [pid 5448] <... munmap resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5448] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] close(3 [pid 5448] <... openat resumed>) = 4 [pid 5246] <... close resumed>) = 0 [ 376.334397][ T5447] loop4: detected capacity change from 0 to 32768 [pid 5448] ioctl(4, LOOP_SET_FD, 3 [pid 5246] rmdir("./37" [pid 5447] <... mount resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5447] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] mkdir("./38", 0777 [pid 5447] <... openat resumed>) = 3 [pid 5246] <... mkdir resumed>) = 0 [pid 5447] chdir("./file0" [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5447] <... chdir resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5447] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5447] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] <... ioctl resumed>) = 0 [pid 5448] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5447] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5448] close(3) = 0 [pid 5447] <... openat resumed>) = 4 [pid 5448] close(4 [ 376.375448][ T5448] loop0: detected capacity change from 0 to 32768 [pid 5447] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5448] <... close resumed>) = 0 [pid 5447] <... openat resumed>) = 5 [pid 5448] mkdir("./file0", 0777 [pid 5447] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5448] <... mkdir resumed>) = 0 [pid 5448] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5448] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5448] chdir("./file0") = 0 [pid 5448] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5448] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5448] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5448] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5449] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5447] <... write resumed>) = 4243456 [pid 5447] exit_group(0) = ? [pid 5246] <... close resumed>) = 0 [pid 5447] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5447, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] umount2("./37", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./37", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5451 attached [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5451 [pid 5247] umount2("./37/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./37/binderfs", [pid 5451] set_robust_list(0x55555b590660, 24 [pid 5448] <... write resumed>) = 4243456 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5448] exit_group(0 [pid 5247] unlink("./37/binderfs" [pid 5448] <... exit_group resumed>) = ? [pid 5448] +++ exited with 0 +++ [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5448, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=41 /* 0.41 s */} --- [pid 5451] <... set_robust_list resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5451] chdir("./38") = 0 [pid 5451] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5451] setpgid(0, 0) = 0 [pid 5451] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5451] write(3, "1000", 4) = 4 [pid 5451] close(3) = 0 [pid 5451] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5243] <... restart_syscall resumed>) = 0 executing program [pid 5243] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5451] write(1, "executing program\n", 18) = 18 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5451] memfd_create("syzkaller", 0 [pid 5243] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5451] <... memfd_create resumed>) = 3 [pid 5451] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] <... openat resumed>) = 3 [pid 5451] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5450] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./38/binderfs") = 0 [pid 5243] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./37/file0", [pid 5243] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(4, [pid 5247] umount2("./37/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] close(4) = 0 [pid 5243] rmdir("./38/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./38") = 0 [pid 5247] openat(AT_FDCWD, "./37/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] mkdir("./39", 0777 [pid 5247] <... openat resumed>) = 4 [pid 5243] <... mkdir resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./37/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./37") = 0 [pid 5247] mkdir("./38", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5449] <... write resumed>) = 16777216 [pid 5449] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5247] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5449] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5449] ioctl(4, LOOP_SET_FD, 3 [pid 5451] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5452 attached [pid 5449] <... ioctl resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5452 ./strace-static-x86_64: Process 5453 attached [pid 5452] set_robust_list(0x55555b590660, 24 [pid 5449] close(3 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5453 [pid 5452] <... set_robust_list resumed>) = 0 [pid 5452] chdir("./38" [pid 5449] <... close resumed>) = 0 [pid 5449] close(4 [pid 5453] set_robust_list(0x55555b590660, 24 [pid 5452] <... chdir resumed>) = 0 [pid 5449] <... close resumed>) = 0 [pid 5452] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5449] mkdir("./file0", 0777 [pid 5453] <... set_robust_list resumed>) = 0 [pid 5452] <... prctl resumed>) = 0 [pid 5449] <... mkdir resumed>) = 0 [pid 5449] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5452] setpgid(0, 0 [pid 5453] chdir("./39" [pid 5452] <... setpgid resumed>) = 0 [pid 5453] <... chdir resumed>) = 0 [pid 5453] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5453] setpgid(0, 0) = 0 [pid 5453] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5452] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5453] write(3, "1000", 4 [pid 5452] <... openat resumed>) = 3 [ 377.079643][ T5449] loop2: detected capacity change from 0 to 32768 [pid 5453] <... write resumed>) = 4 [pid 5452] write(3, "1000", 4 [pid 5453] close(3 [pid 5452] <... write resumed>) = 4 [pid 5453] <... close resumed>) = 0 executing program [pid 5453] symlink("/dev/binderfs", "./binderfs" [pid 5452] close(3 [pid 5453] <... symlink resumed>) = 0 [pid 5452] <... close resumed>) = 0 [pid 5453] write(1, "executing program\n", 18 [pid 5452] symlink("/dev/binderfs", "./binderfs" [pid 5449] <... mount resumed>) = 0 [pid 5453] <... write resumed>) = 18 [pid 5453] memfd_create("syzkaller", 0 [pid 5452] <... symlink resumed>) = 0 [pid 5449] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5453] <... memfd_create resumed>) = 3 executing program [pid 5452] write(1, "executing program\n", 18 [pid 5449] <... openat resumed>) = 3 [pid 5453] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5452] <... write resumed>) = 18 [pid 5449] chdir("./file0" [pid 5453] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5452] memfd_create("syzkaller", 0 [pid 5449] <... chdir resumed>) = 0 [pid 5452] <... memfd_create resumed>) = 3 [pid 5449] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5452] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5449] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5452] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5450] <... write resumed>) = 16777216 [pid 5449] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5450] munmap(0x7f6c8ae00000, 138412032 [pid 5449] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5449] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5450] <... munmap resumed>) = 0 [pid 5450] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5450] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5450] close(3) = 0 [pid 5450] close(4) = 0 [pid 5450] mkdir("./file0", 0777) = 0 [ 377.239444][ T5450] loop1: detected capacity change from 0 to 32768 [pid 5450] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5450] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5450] chdir("./file0") = 0 [pid 5450] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5450] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5450] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5450] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5449] <... write resumed>) = 4243456 [pid 5449] exit_group(0) = ? [pid 5449] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5449, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", [pid 5451] <... write resumed>) = 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./38/binderfs") = 0 [pid 5245] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5451] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5450] <... write resumed>) = 4243456 [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5450] exit_group(0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./38/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./38") = 0 [pid 5245] mkdir("./39", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5450] <... exit_group resumed>) = ? [pid 5245] close(3 [pid 5450] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5450, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=25 /* 0.25 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5453] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5452] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5451] <... munmap resumed>) = 0 [pid 5244] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./38/binderfs") = 0 [pid 5244] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5451] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5451] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = 0 [pid 5451] <... ioctl resumed>) = 0 [pid 5451] close(3) = 0 [pid 5451] close(4) = 0 [pid 5244] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5451] mkdir("./file0", 0777 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5451] <... mkdir resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./38/file0", [pid 5451] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [ 377.573376][ T5451] loop3: detected capacity change from 0 to 32768 [pid 5244] close(4) = 0 [pid 5244] rmdir("./38/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./38") = 0 [pid 5244] mkdir("./39", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5451] <... mount resumed>) = 0 [pid 5451] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] close(3 [pid 5451] <... openat resumed>) = 3 [pid 5451] chdir("./file0") = 0 [pid 5451] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5451] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5451] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5451] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5454 attached , child_tidptr=0x55555b590650) = 5454 [pid 5454] set_robust_list(0x55555b590660, 24) = 0 [pid 5454] chdir("./39") = 0 [pid 5454] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5454] setpgid(0, 0) = 0 [pid 5454] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5454] write(3, "1000", 4) = 4 [pid 5454] close(3) = 0 [pid 5454] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5454] write(1, "executing program\n", 18) = 18 [pid 5454] memfd_create("syzkaller", 0) = 3 [pid 5454] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5451] <... write resumed>) = 4243456 [pid 5451] exit_group(0) = ? [pid 5451] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5451, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5455 ./strace-static-x86_64: Process 5455 attached [pid 5455] set_robust_list(0x55555b590660, 24 [pid 5453] <... write resumed>) = 16777216 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5455] <... set_robust_list resumed>) = 0 [pid 5246] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, [pid 5455] chdir("./39" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5455] <... chdir resumed>) = 0 [pid 5246] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5455] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5455] <... prctl resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./38/binderfs", [pid 5455] setpgid(0, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5455] <... setpgid resumed>) = 0 [pid 5246] unlink("./38/binderfs" [pid 5455] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... unlink resumed>) = 0 [pid 5455] <... openat resumed>) = 3 [pid 5246] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5455] write(3, "1000", 4) = 4 [pid 5246] <... umount2 resumed>) = 0 [pid 5455] close(3 [pid 5246] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5455] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5455] symlink("/dev/binderfs", "./binderfs" [pid 5246] newfstatat(AT_FDCWD, "./38/file0", [pid 5455] <... symlink resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5455] write(1, "executing program\n", 18executing program [pid 5246] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5455] <... write resumed>) = 18 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5455] memfd_create("syzkaller", 0 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", [pid 5453] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5455] <... memfd_create resumed>) = 3 [pid 5455] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] getdents64(4, [pid 5455] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./38/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./38") = 0 [pid 5246] mkdir("./39", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5452] <... write resumed>) = 16777216 [pid 5453] <... munmap resumed>) = 0 [pid 5453] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5452] munmap(0x7f6c8ae00000, 138412032 [pid 5453] <... openat resumed>) = 4 [pid 5453] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5453] close(3) = 0 [pid 5453] close(4) = 0 [pid 5453] mkdir("./file0", 0777) = 0 [pid 5453] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5452] <... munmap resumed>) = 0 [pid 5452] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5453] <... mount resumed>) = 0 [pid 5452] ioctl(4, LOOP_SET_FD, 3 [pid 5453] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 378.041393][ T5453] loop0: detected capacity change from 0 to 32768 [pid 5453] chdir("./file0") = 0 [pid 5453] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5453] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5453] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5453] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5452] <... ioctl resumed>) = 0 [pid 5452] close(3) = 0 [ 378.093258][ T5452] loop4: detected capacity change from 0 to 32768 [pid 5452] close(4) = 0 [pid 5452] mkdir("./file0", 0777) = 0 [pid 5452] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5452] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5452] chdir("./file0") = 0 [pid 5452] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5452] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5452] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5452] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5454] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5456 ./strace-static-x86_64: Process 5456 attached [pid 5456] set_robust_list(0x55555b590660, 24) = 0 [pid 5456] chdir("./39") = 0 [pid 5456] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5456] setpgid(0, 0) = 0 [pid 5456] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5456] write(3, "1000", 4) = 4 [pid 5456] close(3) = 0 [pid 5456] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5456] write(1, "executing program\n", 18) = 18 [pid 5456] memfd_create("syzkaller", 0) = 3 [pid 5456] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5453] <... write resumed>) = 4243456 [pid 5453] exit_group(0) = ? [pid 5453] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5453, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./39/binderfs") = 0 [pid 5243] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./39/file0", [pid 5452] <... write resumed>) = 4243456 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5452] exit_group(0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5452] <... exit_group resumed>) = ? [pid 5243] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./39/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5452] +++ exited with 0 +++ [pid 5243] <... close resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5452, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] rmdir("./39" [pid 5247] umount2("./38", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] <... rmdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./38", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] mkdir("./40", 0777 [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5243] <... mkdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5455] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] getdents64(3, [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./38/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./38/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./38/binderfs") = 0 [pid 5247] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./38/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./38/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./38/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./38/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./38") = 0 [pid 5247] mkdir("./39", 0777) = 0 [pid 5456] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5457 attached [pid 5454] <... write resumed>) = 16777216 [pid 5454] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5457 [pid 5457] set_robust_list(0x55555b590660, 24) = 0 [pid 5457] chdir("./40") = 0 [pid 5457] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5457] setpgid(0, 0) = 0 [pid 5457] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5457] write(3, "1000", 4) = 4 executing program [pid 5457] close(3) = 0 [pid 5454] <... munmap resumed>) = 0 [pid 5457] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5457] write(1, "executing program\n", 18) = 18 [pid 5454] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5457] memfd_create("syzkaller", 0 [pid 5454] <... openat resumed>) = 4 [pid 5454] ioctl(4, LOOP_SET_FD, 3 [pid 5457] <... memfd_create resumed>) = 3 [pid 5457] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5454] <... ioctl resumed>) = 0 [pid 5454] close(3) = 0 [pid 5454] close(4) = 0 [pid 5454] mkdir("./file0", 0777) = 0 [pid 5454] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 378.783302][ T5454] loop2: detected capacity change from 0 to 32768 [pid 5454] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5454] chdir("./file0") = 0 [pid 5454] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5454] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5454] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5454] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5455] <... write resumed>) = 16777216 [pid 5455] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5458 attached , child_tidptr=0x55555b590650) = 5458 [pid 5458] set_robust_list(0x55555b590660, 24) = 0 [pid 5455] <... munmap resumed>) = 0 [pid 5458] chdir("./39") = 0 [pid 5458] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5458] setpgid(0, 0) = 0 [pid 5458] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5455] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5458] <... openat resumed>) = 3 [pid 5455] <... openat resumed>) = 4 [pid 5458] write(3, "1000", 4 [pid 5455] ioctl(4, LOOP_SET_FD, 3 [pid 5458] <... write resumed>) = 4 [pid 5458] close(3) = 0 [pid 5458] symlink("/dev/binderfs", "./binderfs" [pid 5456] <... write resumed>) = 16777216 [pid 5458] <... symlink resumed>) = 0 executing program [pid 5458] write(1, "executing program\n", 18 [pid 5456] munmap(0x7f6c8ae00000, 138412032 [pid 5458] <... write resumed>) = 18 [pid 5458] memfd_create("syzkaller", 0 [pid 5455] <... ioctl resumed>) = 0 [pid 5455] close(3) = 0 [pid 5455] close(4 [pid 5458] <... memfd_create resumed>) = 3 [pid 5455] <... close resumed>) = 0 [pid 5458] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5455] mkdir("./file0", 0777 [pid 5458] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5455] <... mkdir resumed>) = 0 [pid 5455] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5455] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5455] chdir("./file0") = 0 [ 378.954372][ T5455] loop1: detected capacity change from 0 to 32768 [pid 5455] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5456] <... munmap resumed>) = 0 [pid 5455] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5455] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5456] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5455] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5456] ioctl(4, LOOP_SET_FD, 3 [pid 5455] <... openat resumed>) = 5 [pid 5455] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5456] <... ioctl resumed>) = 0 [pid 5456] close(3) = 0 [pid 5454] <... write resumed>) = 4243456 [pid 5456] close(4 [pid 5454] exit_group(0 [pid 5456] <... close resumed>) = 0 [pid 5454] <... exit_group resumed>) = ? [pid 5456] mkdir("./file0", 0777) = 0 [pid 5456] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5454] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5454, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5245] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [ 379.049213][ T5456] loop3: detected capacity change from 0 to 32768 [pid 5456] <... mount resumed>) = 0 [pid 5245] newfstatat(3, "", [pid 5456] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5456] <... openat resumed>) = 3 [pid 5245] getdents64(3, [pid 5456] chdir("./file0" [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5456] <... chdir resumed>) = 0 [pid 5245] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5456] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5456] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] newfstatat(AT_FDCWD, "./39/binderfs", [pid 5456] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5456] <... openat resumed>) = 4 [pid 5245] unlink("./39/binderfs") = 0 [pid 5456] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5456] <... openat resumed>) = 5 [pid 5456] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./39/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./39") = 0 [pid 5245] mkdir("./40", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5457] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5455] <... write resumed>) = 4243456 [pid 5455] exit_group(0) = ? [pid 5455] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5455, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=38 /* 0.38 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./39/binderfs") = 0 [pid 5244] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5456] <... write resumed>) = 4243456 [pid 5244] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5456] exit_group(0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5456] <... exit_group resumed>) = ? [pid 5244] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./39/file0" [pid 5456] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5456, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./39") = 0 [pid 5244] mkdir("./40", 0777 [pid 5246] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5246] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5246] <... openat resumed>) = 3 [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./39/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./39/binderfs") = 0 [pid 5246] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5458] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./39/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./39") = 0 [pid 5246] mkdir("./40", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5459 ./strace-static-x86_64: Process 5459 attached [pid 5459] set_robust_list(0x55555b590660, 24) = 0 [pid 5459] chdir("./40") = 0 [pid 5459] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5459] setpgid(0, 0) = 0 [pid 5459] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5459] write(3, "1000", 4) = 4 [pid 5459] close(3) = 0 [pid 5459] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5459] write(1, "executing program\n", 18) = 18 [pid 5459] memfd_create("syzkaller", 0) = 3 [pid 5459] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5460 attached , child_tidptr=0x55555b590650) = 5460 [pid 5460] set_robust_list(0x55555b590660, 24) = 0 [pid 5460] chdir("./40") = 0 [pid 5460] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5460] setpgid(0, 0) = 0 [pid 5460] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5460] write(3, "1000", 4) = 4 [pid 5460] close(3) = 0 [pid 5460] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5460] write(1, "executing program\n", 18executing program ) = 18 [pid 5460] memfd_create("syzkaller", 0) = 3 [pid 5460] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5457] <... write resumed>) = 16777216 [pid 5457] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... close resumed>) = 0 [pid 5457] <... munmap resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5457] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 5461 attached [pid 5461] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5461 [pid 5461] <... set_robust_list resumed>) = 0 [pid 5461] chdir("./40" [pid 5457] <... openat resumed>) = 4 [pid 5461] <... chdir resumed>) = 0 [pid 5457] ioctl(4, LOOP_SET_FD, 3 [pid 5461] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5457] <... ioctl resumed>) = 0 [pid 5461] setpgid(0, 0) = 0 [pid 5457] close(3 [pid 5461] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5457] <... close resumed>) = 0 [pid 5461] <... openat resumed>) = 3 [pid 5457] close(4 [pid 5461] write(3, "1000", 4 [pid 5457] <... close resumed>) = 0 [pid 5461] <... write resumed>) = 4 [pid 5457] mkdir("./file0", 0777 [pid 5461] close(3 [pid 5457] <... mkdir resumed>) = 0 [pid 5461] <... close resumed>) = 0 [pid 5457] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5461] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5461] write(1, "executing program\n", 18) = 18 [pid 5461] memfd_create("syzkaller", 0) = 3 [pid 5461] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5457] <... mount resumed>) = 0 [pid 5457] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5457] chdir("./file0") = 0 [pid 5457] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5457] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5457] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 379.779802][ T5457] loop0: detected capacity change from 0 to 32768 [pid 5457] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5458] <... write resumed>) = 16777216 [pid 5458] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5458] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5458] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5458] close(3) = 0 [pid 5458] close(4) = 0 [pid 5458] mkdir("./file0", 0777) = 0 [pid 5458] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5458] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5458] chdir("./file0") = 0 [pid 5458] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5458] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5458] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 379.923580][ T5458] loop4: detected capacity change from 0 to 32768 [pid 5458] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5459] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5457] <... write resumed>) = 4243456 [pid 5460] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5457] exit_group(0) = ? [pid 5457] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5457, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=29 /* 0.29 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./40/binderfs") = 0 [pid 5243] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5458] <... write resumed>) = 4243456 [pid 5458] exit_group(0) = ? [pid 5243] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5458] +++ exited with 0 +++ [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5458, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=38 /* 0.38 s */} --- [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", [pid 5247] umount2("./39", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./39", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] getdents64(4, [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5247] getdents64(3, [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] close(4 [pid 5247] umount2("./39/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] rmdir("./40/file0" [pid 5247] newfstatat(AT_FDCWD, "./39/binderfs", [pid 5243] <... rmdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(3, [pid 5247] unlink("./39/binderfs" [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5243] close(3 [pid 5247] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./40") = 0 [pid 5243] mkdir("./41", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./39/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./39/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./39/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./39/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./39") = 0 [pid 5247] mkdir("./40", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5461] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5459] <... write resumed>) = 16777216 [pid 5459] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... close resumed>) = 0 [pid 5459] <... munmap resumed>) = 0 [pid 5459] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5459] ioctl(4, LOOP_SET_FD, 3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5462 attached , child_tidptr=0x55555b590650) = 5463 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5462 ./strace-static-x86_64: Process 5463 attached [pid 5462] set_robust_list(0x55555b590660, 24) = 0 [pid 5463] set_robust_list(0x55555b590660, 24 [pid 5462] chdir("./40" [pid 5463] <... set_robust_list resumed>) = 0 [pid 5463] chdir("./41" [pid 5462] <... chdir resumed>) = 0 [pid 5459] <... ioctl resumed>) = 0 [pid 5463] <... chdir resumed>) = 0 [pid 5462] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5460] <... write resumed>) = 16777216 [pid 5463] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5462] <... prctl resumed>) = 0 [pid 5460] munmap(0x7f6c8ae00000, 138412032 [pid 5459] close(3 [pid 5463] <... prctl resumed>) = 0 [pid 5462] setpgid(0, 0 [pid 5459] <... close resumed>) = 0 [pid 5462] <... setpgid resumed>) = 0 [pid 5459] close(4 [pid 5462] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5459] <... close resumed>) = 0 [pid 5463] setpgid(0, 0 [pid 5462] <... openat resumed>) = 3 [pid 5459] mkdir("./file0", 0777 [pid 5463] <... setpgid resumed>) = 0 [pid 5462] write(3, "1000", 4 [pid 5459] <... mkdir resumed>) = 0 [pid 5462] <... write resumed>) = 4 [pid 5459] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5462] close(3) = 0 [pid 5462] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5462] write(1, "executing program\n", 18executing program ) = 18 [pid 5463] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5462] memfd_create("syzkaller", 0 [pid 5459] <... mount resumed>) = 0 [pid 5462] <... memfd_create resumed>) = 3 [pid 5459] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5463] <... openat resumed>) = 3 [pid 5463] write(3, "1000", 4 [pid 5462] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5459] <... openat resumed>) = 3 [pid 5463] <... write resumed>) = 4 [pid 5462] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5459] chdir("./file0" [pid 5463] close(3 [pid 5459] <... chdir resumed>) = 0 [pid 5463] <... close resumed>) = 0 [pid 5459] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 380.502844][ T5459] loop2: detected capacity change from 0 to 32768 [pid 5463] symlink("/dev/binderfs", "./binderfs" [pid 5459] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5463] <... symlink resumed>) = 0 [pid 5459] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4executing program [pid 5463] write(1, "executing program\n", 18 [pid 5460] <... munmap resumed>) = 0 [pid 5459] <... openat resumed>) = 5 [pid 5463] <... write resumed>) = 18 [pid 5460] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5459] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5463] memfd_create("syzkaller", 0 [pid 5460] <... openat resumed>) = 4 [pid 5460] ioctl(4, LOOP_SET_FD, 3 [pid 5463] <... memfd_create resumed>) = 3 [pid 5463] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5460] <... ioctl resumed>) = 0 [pid 5460] close(3) = 0 [pid 5460] close(4) = 0 [pid 5460] mkdir("./file0", 0777) = 0 [ 380.585898][ T5460] loop1: detected capacity change from 0 to 32768 [pid 5460] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5460] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5460] chdir("./file0") = 0 [pid 5460] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5460] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5460] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5460] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5461] <... write resumed>) = 16777216 [pid 5461] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5461] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5461] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5461] close(3) = 0 [pid 5461] close(4) = 0 [pid 5461] mkdir("./file0", 0777) = 0 [pid 5461] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5459] <... write resumed>) = 4243456 [pid 5459] exit_group(0) = ? [pid 5459] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5459, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5461] <... mount resumed>) = 0 [pid 5245] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [ 380.773690][ T5461] loop3: detected capacity change from 0 to 32768 [pid 5461] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5461] <... openat resumed>) = 3 [pid 5245] newfstatat(AT_FDCWD, "./40/binderfs", [pid 5461] chdir("./file0" [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5461] <... chdir resumed>) = 0 [pid 5245] unlink("./40/binderfs" [pid 5461] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... unlink resumed>) = 0 [pid 5461] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5461] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5461] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5461] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./40/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./40") = 0 [pid 5245] mkdir("./41", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5460] <... write resumed>) = 4243456 [pid 5460] exit_group(0) = ? [pid 5460] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5460, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=33 /* 0.33 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./40/binderfs") = 0 [pid 5244] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./40/file0") = 0 [pid 5462] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./40") = 0 [pid 5244] mkdir("./41", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5463] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5461] <... write resumed>) = 4243456 [pid 5461] exit_group(0) = ? [pid 5461] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5461, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./40/binderfs") = 0 [pid 5246] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./40/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./40") = 0 [pid 5246] mkdir("./41", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5464 attached , child_tidptr=0x55555b590650) = 5464 [pid 5464] set_robust_list(0x55555b590660, 24) = 0 [pid 5464] chdir("./41") = 0 [pid 5464] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5464] setpgid(0, 0) = 0 [pid 5244] <... close resumed>) = 0 [pid 5464] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5465 attached [pid 5465] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5465 [pid 5465] <... set_robust_list resumed>) = 0 [pid 5465] chdir("./41") = 0 [pid 5465] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5465] setpgid(0, 0) = 0 [pid 5465] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5465] write(3, "1000", 4 [pid 5464] write(3, "1000", 4 [pid 5465] <... write resumed>) = 4 [pid 5464] <... write resumed>) = 4 [pid 5464] close(3 [pid 5465] close(3 [pid 5464] <... close resumed>) = 0 [pid 5465] <... close resumed>) = 0 [pid 5464] symlink("/dev/binderfs", "./binderfs" [pid 5465] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5464] <... symlink resumed>) = 0 [pid 5465] write(1, "executing program\n", 18executing program ) = 18 [pid 5465] memfd_create("syzkaller", 0) = 3 [pid 5465] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5464] write(1, "executing program\n", 18executing program ) = 18 [pid 5464] memfd_create("syzkaller", 0) = 3 [pid 5464] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5466 ./strace-static-x86_64: Process 5466 attached [pid 5466] set_robust_list(0x55555b590660, 24 [pid 5462] <... write resumed>) = 16777216 [pid 5466] <... set_robust_list resumed>) = 0 [pid 5466] chdir("./41") = 0 [pid 5462] munmap(0x7f6c8ae00000, 138412032 [pid 5466] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5466] setpgid(0, 0) = 0 [pid 5466] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5466] write(3, "1000", 4) = 4 [pid 5466] close(3) = 0 [pid 5466] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5466] write(1, "executing program\n", 18executing program ) = 18 [pid 5466] memfd_create("syzkaller", 0) = 3 [pid 5466] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5462] <... munmap resumed>) = 0 [pid 5466] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5462] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5463] <... write resumed>) = 16777216 [pid 5462] ioctl(4, LOOP_SET_FD, 3 [ 381.506878][ T5462] loop4: detected capacity change from 0 to 32768 [pid 5463] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5462] <... ioctl resumed>) = 0 [pid 5463] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5462] close(3 [pid 5463] <... openat resumed>) = 4 [pid 5462] <... close resumed>) = 0 [pid 5462] close(4 [pid 5463] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5462] <... close resumed>) = 0 [pid 5463] close(3 [pid 5462] mkdir("./file0", 0777 [pid 5463] <... close resumed>) = 0 [pid 5463] close(4 [pid 5462] <... mkdir resumed>) = 0 [pid 5463] <... close resumed>) = 0 [pid 5462] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5463] mkdir("./file0", 0777) = 0 [pid 5463] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5463] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5463] chdir("./file0") = 0 [pid 5463] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5463] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5463] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 381.551354][ T5463] loop0: detected capacity change from 0 to 32768 [pid 5463] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5462] <... mount resumed>) = 0 [pid 5462] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5462] chdir("./file0") = 0 [pid 5462] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5462] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5465] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5462] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5462] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5464] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5463] <... write resumed>) = 4243456 [pid 5463] exit_group(0) = ? [pid 5463] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5463, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./41/binderfs") = 0 [pid 5243] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5466] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5462] <... write resumed>) = 4243456 [pid 5243] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5462] exit_group(0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5462] <... exit_group resumed>) = ? [pid 5243] newfstatat(AT_FDCWD, "./41/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5462] +++ exited with 0 +++ [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5462, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] getdents64(4, [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./41/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./41" [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5247] umount2("./40", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] mkdir("./42", 0777 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./40", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5247] getdents64(3, [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... ioctl resumed>) = 0 [pid 5247] umount2("./40/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./40/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./40/binderfs") = 0 [pid 5247] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./40/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./40/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./40/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./40/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./40") = 0 [pid 5247] mkdir("./41", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5465] <... write resumed>) = 16777216 [pid 5465] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5465] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5465] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5465] close(3) = 0 [pid 5465] close(4) = 0 [pid 5465] mkdir("./file0", 0777) = 0 [ 382.131437][ T5465] loop1: detected capacity change from 0 to 32768 [pid 5465] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5464] <... write resumed>) = 16777216 [pid 5465] <... mount resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5465] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5465] chdir("./file0") = 0 [pid 5465] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 5467 attached ) = -1 EBUSY (Device or resource busy) [pid 5464] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5467 [pid 5465] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5467] set_robust_list(0x55555b590660, 24 [pid 5465] <... openat resumed>) = 4 [pid 5247] <... close resumed>) = 0 [pid 5467] <... set_robust_list resumed>) = 0 [pid 5465] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5467] chdir("./42") = 0 [pid 5465] <... openat resumed>) = 5 [pid 5465] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5468 ./strace-static-x86_64: Process 5468 attached [pid 5467] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5467] setpgid(0, 0 [pid 5468] set_robust_list(0x55555b590660, 24 [pid 5467] <... setpgid resumed>) = 0 [pid 5468] <... set_robust_list resumed>) = 0 [pid 5467] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5468] chdir("./41") = 0 [pid 5467] <... openat resumed>) = 3 [pid 5468] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5468] setpgid(0, 0 [pid 5467] write(3, "1000", 4 [pid 5468] <... setpgid resumed>) = 0 [pid 5467] <... write resumed>) = 4 [pid 5468] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5467] close(3) = 0 [pid 5468] <... openat resumed>) = 3 [pid 5467] symlink("/dev/binderfs", "./binderfs"executing program [pid 5468] write(3, "1000", 4 [pid 5467] <... symlink resumed>) = 0 [pid 5468] <... write resumed>) = 4 [pid 5468] close(3) = 0 [pid 5468] symlink("/dev/binderfs", "./binderfs" [pid 5467] write(1, "executing program\n", 18 [pid 5468] <... symlink resumed>) = 0 [pid 5467] <... write resumed>) = 18 executing program [pid 5468] write(1, "executing program\n", 18 [pid 5467] memfd_create("syzkaller", 0 [pid 5468] <... write resumed>) = 18 [pid 5468] memfd_create("syzkaller", 0 [pid 5467] <... memfd_create resumed>) = 3 [pid 5467] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5468] <... memfd_create resumed>) = 3 [pid 5467] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5468] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5464] <... munmap resumed>) = 0 [pid 5464] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5464] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5464] close(3) = 0 [pid 5464] close(4) = 0 [pid 5464] mkdir("./file0", 0777) = 0 [pid 5464] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5464] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5464] chdir("./file0") = 0 [pid 5464] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5464] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5464] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 382.291085][ T5464] loop2: detected capacity change from 0 to 32768 [pid 5464] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5466] <... write resumed>) = 16777216 [pid 5466] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5466] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5466] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5466] close(3) = 0 [pid 5465] <... write resumed>) = 4243456 [pid 5466] close(4 [pid 5465] exit_group(0 [pid 5466] <... close resumed>) = 0 [pid 5465] <... exit_group resumed>) = ? [pid 5465] +++ exited with 0 +++ [pid 5466] mkdir("./file0", 0777 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5465, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5466] <... mkdir resumed>) = 0 [pid 5466] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./41/binderfs") = 0 [ 382.440901][ T5466] loop3: detected capacity change from 0 to 32768 [pid 5244] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5466] <... mount resumed>) = 0 [pid 5466] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5466] chdir("./file0") = 0 [pid 5466] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5466] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5466] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5466] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5464] <... write resumed>) = 4243456 [pid 5244] <... umount2 resumed>) = 0 [pid 5464] exit_group(0) = ? [pid 5464] +++ exited with 0 +++ [pid 5244] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5464, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] newfstatat(AT_FDCWD, "./41/file0", [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(4, "", [pid 5245] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5244] getdents64(4, [pid 5245] newfstatat(3, "", [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5245] getdents64(3, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] close(4 [pid 5245] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] rmdir("./41/file0" [pid 5245] newfstatat(AT_FDCWD, "./41/binderfs", [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./41/binderfs") = 0 [pid 5245] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./41") = 0 [pid 5244] mkdir("./42", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./41/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./41/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./41") = 0 [pid 5245] mkdir("./42", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5467] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5468] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5466] <... write resumed>) = 4243456 [pid 5466] exit_group(0) = ? [pid 5466] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5466, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5246] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./41/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./41/binderfs") = 0 [pid 5246] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5469 attached ) = -1 EINVAL (Invalid argument) [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5469 [pid 5246] newfstatat(AT_FDCWD, "./41/file0", [pid 5469] set_robust_list(0x55555b590660, 24 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5469] <... set_robust_list resumed>) = 0 [pid 5469] chdir("./42") = 0 [pid 5469] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5469] setpgid(0, 0) = 0 [pid 5469] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5469] write(3, "1000", 4) = 4 [pid 5469] close(3) = 0 [pid 5469] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5469] write(1, "executing program\n", 18executing program ) = 18 [pid 5469] memfd_create("syzkaller", 0 [pid 5246] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5469] <... memfd_create resumed>) = 3 [pid 5246] newfstatat(4, "", [pid 5469] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5469] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./41/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./41") = 0 [pid 5246] mkdir("./42", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5470 attached , child_tidptr=0x55555b590650) = 5470 [pid 5470] set_robust_list(0x55555b590660, 24) = 0 [pid 5470] chdir("./42") = 0 [pid 5470] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5470] setpgid(0, 0) = 0 [pid 5470] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5470] write(3, "1000", 4) = 4 [pid 5470] close(3) = 0 [pid 5470] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5470] write(1, "executing program\n", 18) = 18 [pid 5470] memfd_create("syzkaller", 0) = 3 [pid 5470] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5467] <... write resumed>) = 16777216 [pid 5467] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5467] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5467] ioctl(4, LOOP_SET_FD, 3 [pid 5468] <... write resumed>) = 16777216 [pid 5467] <... ioctl resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5468] munmap(0x7f6c8ae00000, 138412032 [pid 5467] close(3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5467] <... close resumed>) = 0 ./strace-static-x86_64: Process 5471 attached [pid 5467] close(4) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5471 [pid 5471] set_robust_list(0x55555b590660, 24 [pid 5467] mkdir("./file0", 0777 [pid 5471] <... set_robust_list resumed>) = 0 [pid 5467] <... mkdir resumed>) = 0 [pid 5471] chdir("./42") = 0 [pid 5467] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5471] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 383.153450][ T5467] loop0: detected capacity change from 0 to 32768 [pid 5471] setpgid(0, 0) = 0 [pid 5468] <... munmap resumed>) = 0 [pid 5467] <... mount resumed>) = 0 [pid 5468] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5468] ioctl(4, LOOP_SET_FD, 3 [pid 5471] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5467] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5471] <... openat resumed>) = 3 [pid 5467] <... openat resumed>) = 3 [pid 5467] chdir("./file0") = 0 [pid 5467] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5471] write(3, "1000", 4) = 4 [pid 5467] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5471] close(3 [pid 5467] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5468] <... ioctl resumed>) = 0 [pid 5467] <... openat resumed>) = 4 [pid 5471] <... close resumed>) = 0 [pid 5468] close(3 [pid 5467] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5471] symlink("/dev/binderfs", "./binderfs" [pid 5468] <... close resumed>) = 0 [pid 5467] <... openat resumed>) = 5 [pid 5471] <... symlink resumed>) = 0 [pid 5468] close(4executing program [pid 5471] write(1, "executing program\n", 18 [pid 5468] <... close resumed>) = 0 [pid 5467] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5471] <... write resumed>) = 18 [pid 5468] mkdir("./file0", 0777 [pid 5471] memfd_create("syzkaller", 0 [pid 5469] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5468] <... mkdir resumed>) = 0 [pid 5468] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5471] <... memfd_create resumed>) = 3 [pid 5471] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 383.228691][ T5468] loop4: detected capacity change from 0 to 32768 [pid 5468] <... mount resumed>) = 0 [pid 5468] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5468] chdir("./file0") = 0 [pid 5468] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5468] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5468] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5468] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5470] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5468] <... write resumed>) = 4243456 [pid 5468] exit_group(0 [pid 5467] <... write resumed>) = 4243456 [pid 5467] exit_group(0) = ? [pid 5468] <... exit_group resumed>) = ? [pid 5468] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5468, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5467] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5467, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./42/binderfs", [pid 5247] umount2("./41", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./41", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./41/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./41/binderfs", [pid 5243] unlink("./42/binderfs" [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5247] unlink("./41/binderfs" [pid 5243] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./42/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./42") = 0 [pid 5243] mkdir("./43", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./41/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./41/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./41/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./41/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./41") = 0 [pid 5247] mkdir("./42", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5469] <... write resumed>) = 16777216 [pid 5471] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5469] munmap(0x7f6c8ae00000, 138412032 [pid 5470] <... write resumed>) = 16777216 [pid 5470] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5469] <... munmap resumed>) = 0 [pid 5469] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5469] ioctl(4, LOOP_SET_FD, 3 [pid 5470] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5470] ioctl(4, LOOP_SET_FD, 3 [pid 5469] <... ioctl resumed>) = 0 [pid 5469] close(3) = 0 [pid 5469] close(4) = 0 [pid 5469] mkdir("./file0", 0777) = 0 [pid 5470] <... ioctl resumed>) = 0 [pid 5469] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5470] close(3) = 0 [pid 5470] close(4) = 0 [ 383.820572][ T5469] loop1: detected capacity change from 0 to 32768 [ 383.822325][ T5470] loop2: detected capacity change from 0 to 32768 [pid 5470] mkdir("./file0", 0777) = 0 [pid 5470] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5469] <... mount resumed>) = 0 [pid 5470] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5470] chdir("./file0") = 0 [pid 5470] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5470] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5469] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5470] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5469] <... openat resumed>) = 3 [pid 5247] <... close resumed>) = 0 [pid 5470] <... openat resumed>) = 5 [pid 5469] chdir("./file0" [pid 5470] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5469] <... chdir resumed>) = 0 [pid 5469] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5469] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... close resumed>) = 0 [pid 5469] <... openat resumed>) = 4 [pid 5469] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5469] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456./strace-static-x86_64: Process 5472 attached [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5472 [pid 5472] set_robust_list(0x55555b590660, 24) = 0 executing program [pid 5472] chdir("./43") = 0 [pid 5472] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5472] setpgid(0, 0) = 0 [pid 5472] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5472] write(3, "1000", 4) = 4 [pid 5472] close(3) = 0 [pid 5472] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5472] write(1, "executing program\n", 18) = 18 [pid 5472] memfd_create("syzkaller", 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5472] <... memfd_create resumed>) = 3 [pid 5472] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 5473 attached ) = 0x7f6c8ae00000 [pid 5473] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5473 [pid 5473] <... set_robust_list resumed>) = 0 [pid 5473] chdir("./42") = 0 [pid 5473] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5473] setpgid(0, 0) = 0 [pid 5473] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5473] write(3, "1000", 4) = 4 [pid 5473] close(3) = 0 [pid 5473] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5473] write(1, "executing program\n", 18) = 18 [pid 5473] memfd_create("syzkaller", 0) = 3 [pid 5473] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5469] <... write resumed>) = 4243456 [pid 5470] <... write resumed>) = 4243456 [pid 5469] exit_group(0) = ? [pid 5470] exit_group(0) = ? [pid 5469] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5469, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5470] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5470, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", [pid 5244] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./42/binderfs", [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./42/binderfs") = 0 [pid 5244] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./42/file0", [pid 5245] unlink("./42/binderfs" [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./42/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./42") = 0 [pid 5244] mkdir("./43", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./42/file0" [pid 5471] <... write resumed>) = 16777216 [pid 5245] <... rmdir resumed>) = 0 [pid 5471] munmap(0x7f6c8ae00000, 138412032 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./42") = 0 [pid 5245] mkdir("./43", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5471] <... munmap resumed>) = 0 [pid 5471] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5471] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5471] close(3) = 0 [pid 5471] close(4) = 0 [pid 5471] mkdir("./file0", 0777) = 0 [pid 5471] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 384.268207][ T5471] loop3: detected capacity change from 0 to 32768 [pid 5471] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5471] chdir("./file0") = 0 [pid 5471] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5471] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5471] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5471] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5473] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5472] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5474 attached , child_tidptr=0x55555b590650) = 5474 [pid 5474] set_robust_list(0x55555b590660, 24) = 0 [pid 5474] chdir("./43") = 0 [pid 5474] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5474] setpgid(0, 0) = 0 [pid 5474] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5474] write(3, "1000", 4) = 4 [pid 5474] close(3) = 0 [pid 5474] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5474] write(1, "executing program\n", 18executing program ) = 18 [pid 5474] memfd_create("syzkaller", 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5474] <... memfd_create resumed>) = 3 ./strace-static-x86_64: Process 5475 attached [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5475 [pid 5475] set_robust_list(0x55555b590660, 24 [pid 5474] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5475] <... set_robust_list resumed>) = 0 [pid 5475] chdir("./43") = 0 [pid 5475] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5475] setpgid(0, 0) = 0 [pid 5475] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5475] write(3, "1000", 4) = 4 [pid 5475] close(3) = 0 [pid 5475] symlink("/dev/binderfs", "./binderfs" [pid 5471] <... write resumed>) = 4243456 [pid 5475] <... symlink resumed>) = 0 [pid 5471] exit_group(0executing program [pid 5475] write(1, "executing program\n", 18 [pid 5471] <... exit_group resumed>) = ? [pid 5475] <... write resumed>) = 18 [pid 5475] memfd_create("syzkaller", 0) = 3 [pid 5475] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5471] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5471, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=37 /* 0.37 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./42/binderfs") = 0 [pid 5246] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./42/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./42") = 0 [pid 5246] mkdir("./43", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5472] <... write resumed>) = 16777216 [pid 5472] munmap(0x7f6c8ae00000, 138412032 [pid 5473] <... write resumed>) = 16777216 [pid 5473] munmap(0x7f6c8ae00000, 138412032 [pid 5472] <... munmap resumed>) = 0 [pid 5472] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5472] ioctl(4, LOOP_SET_FD, 3 [pid 5473] <... munmap resumed>) = 0 [pid 5473] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5472] <... ioctl resumed>) = 0 [pid 5472] close(3 [pid 5473] <... openat resumed>) = 4 [pid 5472] <... close resumed>) = 0 [pid 5472] close(4 [pid 5474] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5473] ioctl(4, LOOP_SET_FD, 3 [pid 5472] <... close resumed>) = 0 [pid 5472] mkdir("./file0", 0777) = 0 [pid 5472] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5472] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5472] chdir("./file0") = 0 [pid 5472] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5472] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5472] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5472] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5473] <... ioctl resumed>) = 0 [pid 5473] close(3) = 0 [pid 5473] close(4) = 0 [pid 5473] mkdir("./file0", 0777) = 0 [ 384.868674][ T5472] loop0: detected capacity change from 0 to 32768 [ 384.898619][ T5473] loop4: detected capacity change from 0 to 32768 [pid 5473] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5476 attached [pid 5476] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5476 [pid 5476] chdir("./43") = 0 [pid 5476] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5473] <... mount resumed>) = 0 [pid 5476] setpgid(0, 0 [pid 5473] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5476] <... setpgid resumed>) = 0 [pid 5476] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5473] chdir("./file0" [pid 5476] <... openat resumed>) = 3 [pid 5473] <... chdir resumed>) = 0 [pid 5476] write(3, "1000", 4 [pid 5473] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5476] <... write resumed>) = 4 [pid 5476] close(3) = 0 [pid 5473] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5476] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5473] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000executing program [pid 5476] write(1, "executing program\n", 18) = 18 [pid 5473] <... openat resumed>) = 4 [pid 5476] memfd_create("syzkaller", 0 [pid 5473] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5476] <... memfd_create resumed>) = 3 [pid 5473] <... openat resumed>) = 5 [pid 5476] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5473] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5476] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5475] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5472] <... write resumed>) = 4243456 [pid 5472] exit_group(0) = ? [pid 5472] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5472, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=29 /* 0.29 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./43/binderfs") = 0 [pid 5243] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5473] <... write resumed>) = 4243456 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5473] exit_group(0) = ? [pid 5473] +++ exited with 0 +++ [pid 5243] close(4) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5473, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] rmdir("./43/file0" [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] <... rmdir resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./43") = 0 [pid 5243] mkdir("./44", 0777) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] umount2("./42", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./42", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./42/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./42/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./42/binderfs" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] <... unlink resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5247] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./42/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./42/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./42/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./42/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./42") = 0 [pid 5247] mkdir("./43", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5474] <... write resumed>) = 16777216 [pid 5474] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5474] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5474] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5474] close(3) = 0 [pid 5474] close(4) = 0 [pid 5474] mkdir("./file0", 0777) = 0 [pid 5474] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5474] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5474] chdir("./file0") = 0 [pid 5474] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5474] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5474] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 385.397917][ T5474] loop2: detected capacity change from 0 to 32768 [pid 5474] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5476] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5475] <... write resumed>) = 16777216 ./strace-static-x86_64: Process 5477 attached [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5477 [pid 5477] set_robust_list(0x55555b590660, 24 [pid 5475] munmap(0x7f6c8ae00000, 138412032 [pid 5477] <... set_robust_list resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5477] chdir("./44" [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5477] <... chdir resumed>) = 0 ./strace-static-x86_64: Process 5478 attached [pid 5477] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5478] set_robust_list(0x55555b590660, 24 [pid 5477] <... prctl resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5478 [pid 5478] <... set_robust_list resumed>) = 0 [pid 5477] setpgid(0, 0 [pid 5478] chdir("./43" [pid 5477] <... setpgid resumed>) = 0 [pid 5478] <... chdir resumed>) = 0 [pid 5478] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5477] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5478] <... prctl resumed>) = 0 [pid 5478] setpgid(0, 0 [pid 5477] <... openat resumed>) = 3 [pid 5478] <... setpgid resumed>) = 0 [pid 5477] write(3, "1000", 4) = 4 [pid 5478] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5477] close(3 [pid 5478] <... openat resumed>) = 3 [pid 5477] <... close resumed>) = 0 [pid 5478] write(3, "1000", 4 [pid 5477] symlink("/dev/binderfs", "./binderfs" [pid 5478] <... write resumed>) = 4 [pid 5478] close(3) = 0 [pid 5477] <... symlink resumed>) = 0 [pid 5478] symlink("/dev/binderfs", "./binderfs" [pid 5477] write(1, "executing program\n", 18executing program [pid 5478] <... symlink resumed>) = 0 [pid 5477] <... write resumed>) = 18 [pid 5478] write(1, "executing program\n", 18executing program ) = 18 [pid 5477] memfd_create("syzkaller", 0 [pid 5478] memfd_create("syzkaller", 0 [pid 5477] <... memfd_create resumed>) = 3 [pid 5478] <... memfd_create resumed>) = 3 [pid 5477] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5478] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5475] <... munmap resumed>) = 0 [pid 5477] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5475] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5478] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5475] <... openat resumed>) = 4 [pid 5475] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5475] close(3) = 0 [pid 5475] close(4) = 0 [pid 5474] <... write resumed>) = 4243456 [pid 5475] mkdir("./file0", 0777) = 0 [pid 5474] exit_group(0 [pid 5475] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5474] <... exit_group resumed>) = ? [pid 5474] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5474, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [ 385.600893][ T5475] loop1: detected capacity change from 0 to 32768 [pid 5245] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./43/binderfs") = 0 [pid 5245] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5475] <... mount resumed>) = 0 [pid 5475] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5475] chdir("./file0") = 0 [pid 5475] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5475] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5475] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5475] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./43/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./43") = 0 [pid 5245] mkdir("./44", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5476] <... write resumed>) = 16777216 [pid 5476] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5476] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5476] ioctl(4, LOOP_SET_FD, 3 [pid 5475] <... write resumed>) = 4243456 [pid 5475] exit_group(0) = ? [pid 5475] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5475, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} --- [pid 5476] <... ioctl resumed>) = 0 [pid 5476] close(3) = 0 [pid 5244] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5476] close(4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5476] <... close resumed>) = 0 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./43/binderfs" [pid 5476] mkdir("./file0", 0777 [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5476] <... mkdir resumed>) = 0 [pid 5476] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5476] <... mount resumed>) = 0 [pid 5476] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5244] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5476] chdir("./file0" [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5476] <... chdir resumed>) = 0 [ 385.937581][ T5476] loop3: detected capacity change from 0 to 32768 [pid 5244] newfstatat(AT_FDCWD, "./43/file0", [pid 5476] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5479 ./strace-static-x86_64: Process 5479 attached [pid 5476] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5476] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5479] set_robust_list(0x55555b590660, 24) = 0 [pid 5476] <... openat resumed>) = 4 [pid 5479] chdir("./44" [pid 5476] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5476] <... openat resumed>) = 5 [pid 5479] <... chdir resumed>) = 0 [pid 5476] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5479] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5244] newfstatat(4, "", [pid 5479] <... prctl resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5479] setpgid(0, 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5479] <... setpgid resumed>) = 0 [pid 5244] close(4 [pid 5479] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] <... close resumed>) = 0 executing program [pid 5479] <... openat resumed>) = 3 [pid 5244] rmdir("./43/file0" [pid 5479] write(3, "1000", 4) = 4 [pid 5479] close(3) = 0 [pid 5479] symlink("/dev/binderfs", "./binderfs" [pid 5244] <... rmdir resumed>) = 0 [pid 5479] <... symlink resumed>) = 0 [pid 5479] write(1, "executing program\n", 18) = 18 [pid 5479] memfd_create("syzkaller", 0 [pid 5477] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] getdents64(3, [pid 5478] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5479] <... memfd_create resumed>) = 3 [pid 5244] <... close resumed>) = 0 [pid 5479] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] rmdir("./43") = 0 [pid 5244] mkdir("./44", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5476] <... write resumed>) = 4243456 [pid 5476] exit_group(0) = ? [pid 5476] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5476, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./43/binderfs") = 0 [pid 5246] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./43/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./43") = 0 [pid 5246] mkdir("./44", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5480 ./strace-static-x86_64: Process 5480 attached [pid 5480] set_robust_list(0x55555b590660, 24) = 0 [pid 5480] chdir("./44") = 0 [pid 5480] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5480] setpgid(0, 0) = 0 [pid 5480] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5480] write(3, "1000", 4) = 4 [pid 5480] close(3) = 0 [pid 5480] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5480] write(1, "executing program\n", 18) = 18 [pid 5480] memfd_create("syzkaller", 0) = 3 [pid 5480] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5481 attached [pid 5481] set_robust_list(0x55555b590660, 24) = 0 [pid 5479] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5481 [pid 5481] chdir("./44") = 0 [pid 5481] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5481] setpgid(0, 0) = 0 [pid 5481] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5481] write(3, "1000", 4) = 4 [pid 5481] close(3) = 0 [pid 5481] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5481] write(1, "executing program\n", 18executing program ) = 18 [pid 5481] memfd_create("syzkaller", 0) = 3 [pid 5481] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5478] <... write resumed>) = 16777216 [pid 5478] munmap(0x7f6c8ae00000, 138412032 [pid 5477] <... write resumed>) = 16777216 [pid 5477] munmap(0x7f6c8ae00000, 138412032 [pid 5478] <... munmap resumed>) = 0 [pid 5477] <... munmap resumed>) = 0 [pid 5478] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5477] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5477] ioctl(4, LOOP_SET_FD, 3 [pid 5478] <... openat resumed>) = 4 [pid 5478] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5477] <... ioctl resumed>) = 0 [pid 5478] close(3 [pid 5477] close(3 [pid 5478] <... close resumed>) = 0 [pid 5477] <... close resumed>) = 0 [pid 5478] close(4 [pid 5477] close(4 [pid 5478] <... close resumed>) = 0 [pid 5477] <... close resumed>) = 0 [pid 5477] mkdir("./file0", 0777) = 0 [pid 5477] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5478] mkdir("./file0", 0777 [pid 5477] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5478] <... mkdir resumed>) = 0 [pid 5477] chdir("./file0" [pid 5478] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5477] <... chdir resumed>) = 0 [pid 5477] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5477] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5477] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 386.599945][ T5477] loop0: detected capacity change from 0 to 32768 [ 386.610219][ T5478] loop4: detected capacity change from 0 to 32768 [pid 5477] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5478] <... mount resumed>) = 0 [pid 5478] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5478] chdir("./file0") = 0 [pid 5478] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5478] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5478] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5478] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5480] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5481] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5477] <... write resumed>) = 4243456 [pid 5477] exit_group(0) = ? [pid 5477] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5477, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5479] <... write resumed>) = 16777216 [pid 5243] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./44/binderfs" [pid 5479] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5479] <... munmap resumed>) = 0 [pid 5478] <... write resumed>) = 4243456 [pid 5243] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5478] exit_group(0) = ? [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5478] +++ exited with 0 +++ [pid 5479] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5479] <... openat resumed>) = 4 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5478, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=27 /* 0.27 s */} --- [pid 5479] ioctl(4, LOOP_SET_FD, 3 [pid 5247] umount2("./43", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./43", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] rmdir("./44/file0" [pid 5247] newfstatat(3, "", [pid 5243] <... rmdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5247] getdents64(3, [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] close(3 [pid 5479] <... ioctl resumed>) = 0 [pid 5247] umount2("./43/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./43/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./43/binderfs") = 0 [pid 5243] <... close resumed>) = 0 [pid 5247] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] rmdir("./44" [pid 5479] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5479] <... close resumed>) = 0 [pid 5479] close(4 [pid 5243] mkdir("./45", 0777 [pid 5479] <... close resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5479] mkdir("./file0", 0777 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] close(3 [pid 5479] <... mkdir resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./43/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./43/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./43/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", [pid 5479] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./43/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [ 386.980749][ T5479] loop2: detected capacity change from 0 to 32768 [pid 5247] rmdir("./43" [pid 5479] <... mount resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5479] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] mkdir("./44", 0777 [pid 5479] <... openat resumed>) = 3 [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5479] chdir("./file0") = 0 [pid 5479] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5479] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5479] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5479] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5480] <... write resumed>) = 16777216 [pid 5480] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5480] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5480] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5479] <... write resumed>) = 4243456 [pid 5480] close(3 [pid 5479] exit_group(0 [pid 5480] <... close resumed>) = 0 [pid 5479] <... exit_group resumed>) = ? [pid 5480] close(4) = 0 [pid 5243] <... close resumed>) = 0 [pid 5480] mkdir("./file0", 0777) = 0 [ 387.267156][ T5480] loop1: detected capacity change from 0 to 32768 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5480] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5479] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5479, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=29 /* 0.29 s */} --- [pid 5245] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./44/binderfs") = 0 [pid 5245] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5482 attached [pid 5482] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5482 [pid 5480] <... mount resumed>) = 0 [pid 5480] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5480] chdir("./file0") = 0 [pid 5480] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5482] <... set_robust_list resumed>) = 0 [pid 5482] chdir("./45" [pid 5480] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5480] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... close resumed>) = 0 [pid 5480] <... openat resumed>) = 5 [pid 5480] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5482] <... chdir resumed>) = 0 [pid 5482] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5482] setpgid(0, 0) = 0 [pid 5482] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5482] write(3, "1000", 4 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program ./strace-static-x86_64: Process 5483 attached [pid 5482] <... write resumed>) = 4 [pid 5482] close(3) = 0 [pid 5482] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5483 [pid 5482] write(1, "executing program\n", 18 [pid 5483] set_robust_list(0x55555b590660, 24 [pid 5482] <... write resumed>) = 18 [pid 5483] <... set_robust_list resumed>) = 0 [pid 5483] chdir("./44") = 0 [pid 5483] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5483] setpgid(0, 0) = 0 [pid 5483] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5482] memfd_create("syzkaller", 0 [pid 5483] <... openat resumed>) = 3 [pid 5482] <... memfd_create resumed>) = 3 [pid 5482] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5483] write(3, "1000", 4 [pid 5482] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5483] <... write resumed>) = 4 [pid 5481] <... write resumed>) = 16777216 [pid 5483] close(3executing program ) = 0 [pid 5483] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5483] write(1, "executing program\n", 18) = 18 [pid 5483] memfd_create("syzkaller", 0) = 3 [pid 5483] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5481] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5481] <... munmap resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5481] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5481] <... openat resumed>) = 4 [pid 5245] <... close resumed>) = 0 [pid 5481] ioctl(4, LOOP_SET_FD, 3 [pid 5245] rmdir("./44/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5481] <... ioctl resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5481] close(3) = 0 [pid 5245] rmdir("./44" [pid 5481] close(4 [pid 5245] <... rmdir resumed>) = 0 [pid 5481] <... close resumed>) = 0 [pid 5245] mkdir("./45", 0777 [pid 5481] mkdir("./file0", 0777) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5481] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5481] <... mount resumed>) = 0 [ 387.450149][ T5481] loop3: detected capacity change from 0 to 32768 [pid 5481] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5481] chdir("./file0") = 0 [pid 5481] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5481] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5481] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5481] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5480] <... write resumed>) = 4243456 [pid 5480] exit_group(0) = ? [pid 5480] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5480, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} --- [pid 5244] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./44/binderfs") = 0 [pid 5244] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./44/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./44") = 0 [pid 5244] mkdir("./45", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5481] <... write resumed>) = 4243456 [pid 5481] exit_group(0) = ? [pid 5245] <... close resumed>) = 0 [pid 5481] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5481, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./44/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./44/binderfs") = 0 [pid 5246] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5484 attached [pid 5246] <... umount2 resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5484 [pid 5484] set_robust_list(0x55555b590660, 24 [pid 5246] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5484] <... set_robust_list resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5484] chdir("./45" [pid 5246] newfstatat(AT_FDCWD, "./44/file0", [pid 5484] <... chdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5484] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... close resumed>) = 0 [pid 5484] <... prctl resumed>) = 0 [pid 5246] rmdir("./44/file0" [pid 5484] setpgid(0, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5484] <... setpgid resumed>) = 0 [pid 5484] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3 [pid 5484] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./44" [pid 5484] write(3, "1000", 4 [pid 5246] <... rmdir resumed>) = 0 [pid 5484] <... write resumed>) = 4 [pid 5484] close(3) = 0 [pid 5484] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] mkdir("./45", 0777) = 0 executing program [pid 5484] write(1, "executing program\n", 18) = 18 [pid 5484] memfd_create("syzkaller", 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5484] <... memfd_create resumed>) = 3 [pid 5484] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5482] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5483] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5485 ./strace-static-x86_64: Process 5485 attached [pid 5485] set_robust_list(0x55555b590660, 24) = 0 [pid 5485] chdir("./45") = 0 [pid 5485] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5485] setpgid(0, 0) = 0 [pid 5485] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5485] write(3, "1000", 4) = 4 [pid 5485] close(3) = 0 [pid 5485] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5485] write(1, "executing program\n", 18executing program ) = 18 [pid 5485] memfd_create("syzkaller", 0) = 3 [pid 5485] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5486 attached , child_tidptr=0x55555b590650) = 5486 [pid 5486] set_robust_list(0x55555b590660, 24) = 0 [pid 5486] chdir("./45") = 0 [pid 5486] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5486] setpgid(0, 0) = 0 [pid 5486] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5486] write(3, "1000", 4) = 4 [pid 5486] close(3) = 0 [pid 5486] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5486] write(1, "executing program\n", 18) = 18 [pid 5486] memfd_create("syzkaller", 0) = 3 [pid 5486] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5484] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5483] <... write resumed>) = 16777216 [pid 5482] <... write resumed>) = 16777216 [pid 5483] munmap(0x7f6c8ae00000, 138412032 [pid 5482] munmap(0x7f6c8ae00000, 138412032 [pid 5485] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5482] <... munmap resumed>) = 0 [pid 5483] <... munmap resumed>) = 0 [pid 5482] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5482] ioctl(4, LOOP_SET_FD, 3 [pid 5483] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5482] <... ioctl resumed>) = 0 [pid 5482] close(3 [pid 5483] <... openat resumed>) = 4 [pid 5483] ioctl(4, LOOP_SET_FD, 3 [pid 5482] <... close resumed>) = 0 [pid 5482] close(4) = 0 [pid 5483] <... ioctl resumed>) = 0 [pid 5482] mkdir("./file0", 0777 [pid 5483] close(3 [pid 5482] <... mkdir resumed>) = 0 [pid 5482] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5483] <... close resumed>) = 0 [pid 5483] close(4) = 0 [pid 5483] mkdir("./file0", 0777) = 0 [pid 5482] <... mount resumed>) = 0 [pid 5483] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5482] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 388.309384][ T5482] loop0: detected capacity change from 0 to 32768 [ 388.339875][ T5483] loop4: detected capacity change from 0 to 32768 [pid 5482] chdir("./file0") = 0 [pid 5482] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5482] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5482] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5482] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5483] <... mount resumed>) = 0 [pid 5483] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5483] chdir("./file0") = 0 [pid 5483] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5483] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5483] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5483] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5485] <... write resumed>) = 16777216 [pid 5485] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5485] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5485] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5485] close(3) = 0 [pid 5485] close(4 [pid 5483] <... write resumed>) = 4243456 [pid 5485] <... close resumed>) = 0 [pid 5482] <... write resumed>) = 4243456 [pid 5486] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5485] mkdir("./file0", 0777 [pid 5483] exit_group(0 [pid 5482] exit_group(0 [pid 5485] <... mkdir resumed>) = 0 [pid 5483] <... exit_group resumed>) = ? [pid 5482] <... exit_group resumed>) = ? [pid 5482] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5482, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=26 /* 0.26 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [ 388.625742][ T5485] loop1: detected capacity change from 0 to 32768 [pid 5485] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5483] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5483, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5485] <... mount resumed>) = 0 [pid 5243] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./45/binderfs") = 0 [pid 5243] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5485] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5485] chdir("./file0" [pid 5243] <... umount2 resumed>) = 0 [pid 5485] <... chdir resumed>) = 0 [pid 5485] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5485] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] umount2("./44", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5485] <... openat resumed>) = 4 [pid 5485] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] openat(AT_FDCWD, "./44", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5485] <... openat resumed>) = 5 [pid 5247] <... openat resumed>) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5485] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] newfstatat(3, "", [pid 5243] newfstatat(AT_FDCWD, "./45/file0", [pid 5484] <... write resumed>) = 16777216 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5484] munmap(0x7f6c8ae00000, 138412032 [pid 5247] getdents64(3, [pid 5243] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./44/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 4 [pid 5247] newfstatat(AT_FDCWD, "./44/binderfs", [pid 5243] newfstatat(4, "", [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] unlink("./44/binderfs" [pid 5243] getdents64(4, [pid 5247] <... unlink resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./45/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./45") = 0 [pid 5243] mkdir("./46", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5484] <... munmap resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./44/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./44/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5484] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5484] <... openat resumed>) = 4 [pid 5247] openat(AT_FDCWD, "./44/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./44/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./44") = 0 [pid 5247] mkdir("./45", 0777 [pid 5484] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5484] <... ioctl resumed>) = 0 [pid 5484] close(3) = 0 [pid 5484] close(4) = 0 [pid 5484] mkdir("./file0", 0777) = 0 [ 388.810369][ T5484] loop2: detected capacity change from 0 to 32768 [pid 5484] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5484] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5484] chdir("./file0") = 0 [pid 5484] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5484] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5484] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5484] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5485] <... write resumed>) = 4243456 [pid 5485] exit_group(0) = ? [pid 5485] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5485, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./45/binderfs") = 0 [pid 5244] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5488 attached [pid 5488] set_robust_list(0x55555b590660, 24 [pid 5244] newfstatat(AT_FDCWD, "./45/file0", [pid 5488] <... set_robust_list resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5488 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5488] chdir("./46") = 0 [pid 5244] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5488] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5488] setpgid(0, 0 [pid 5244] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5488] <... setpgid resumed>) = 0 [pid 5488] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] <... openat resumed>) = 4 [pid 5488] <... openat resumed>) = 3 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./45/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5488] write(3, "1000", 4 [pid 5244] close(3 [pid 5488] <... write resumed>) = 4 [pid 5488] close(3) = 0 [pid 5244] <... close resumed>) = 0 [pid 5488] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5244] rmdir("./45" [pid 5488] write(1, "executing program\n", 18) = 18 [pid 5488] memfd_create("syzkaller", 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5488] <... memfd_create resumed>) = 3 [pid 5244] mkdir("./46", 0777 [pid 5488] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... mkdir resumed>) = 0 [pid 5486] <... write resumed>) = 16777216 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5489 ./strace-static-x86_64: Process 5489 attached [pid 5486] munmap(0x7f6c8ae00000, 138412032 [pid 5484] <... write resumed>) = 4243456 [pid 5489] set_robust_list(0x55555b590660, 24) = 0 [pid 5489] chdir("./45") = 0 [pid 5489] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5489] setpgid(0, 0) = 0 [pid 5489] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5489] write(3, "1000", 4) = 4 [pid 5489] close(3) = 0 executing program [pid 5489] symlink("/dev/binderfs", "./binderfs" [pid 5484] exit_group(0 [pid 5489] <... symlink resumed>) = 0 [pid 5484] <... exit_group resumed>) = ? [pid 5489] write(1, "executing program\n", 18) = 18 [pid 5489] memfd_create("syzkaller", 0) = 3 [pid 5486] <... munmap resumed>) = 0 [pid 5484] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5484, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=30 /* 0.30 s */} --- [pid 5245] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5486] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] getdents64(3, [pid 5486] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5486] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5489] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] newfstatat(AT_FDCWD, "./45/binderfs", [pid 5489] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5486] <... ioctl resumed>) = 0 [pid 5245] unlink("./45/binderfs") = 0 [pid 5245] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5486] close(3) = 0 [pid 5486] close(4) = 0 [pid 5486] mkdir("./file0", 0777) = 0 [pid 5486] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 389.201365][ T5486] loop3: detected capacity change from 0 to 32768 [pid 5245] newfstatat(AT_FDCWD, "./45/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5486] <... mount resumed>) = 0 [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", [pid 5486] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5486] <... openat resumed>) = 3 [pid 5245] getdents64(4, [pid 5486] chdir("./file0" [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5486] <... chdir resumed>) = 0 [pid 5245] getdents64(4, [pid 5486] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5486] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] close(4 [pid 5486] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./45/file0" [pid 5486] <... openat resumed>) = 4 [pid 5245] <... rmdir resumed>) = 0 [pid 5486] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] getdents64(3, [pid 5486] <... openat resumed>) = 5 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5486] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./45") = 0 [pid 5245] mkdir("./46", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5490 attached [pid 5486] <... write resumed>) = 4243456 [pid 5486] exit_group(0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5490 [pid 5490] set_robust_list(0x55555b590660, 24 [pid 5486] <... exit_group resumed>) = ? [pid 5490] <... set_robust_list resumed>) = 0 [pid 5486] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5486, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5490] chdir("./46") = 0 [pid 5490] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5490] setpgid(0, 0) = 0 [pid 5490] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./45/binderfs") = 0 [pid 5246] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5490] <... openat resumed>) = 3 [pid 5490] write(3, "1000", 4) = 4 [pid 5490] close(3) = 0 [pid 5490] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5490] write(1, "executing program\n", 18) = 18 [pid 5246] <... umount2 resumed>) = 0 [pid 5490] memfd_create("syzkaller", 0) = 3 [pid 5246] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./45/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5490] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./45/file0" [pid 5490] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./45") = 0 [pid 5246] mkdir("./46", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5488] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5491 attached [pid 5491] set_robust_list(0x55555b590660, 24 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5491 [pid 5491] <... set_robust_list resumed>) = 0 [pid 5491] chdir("./46") = 0 [pid 5491] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5491] setpgid(0, 0) = 0 [pid 5491] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5491] write(3, "1000", 4) = 4 [pid 5491] close(3) = 0 [pid 5491] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5491] write(1, "executing program\n", 18) = 18 [pid 5491] memfd_create("syzkaller", 0) = 3 [pid 5491] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5489] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5492 attached , child_tidptr=0x55555b590650) = 5492 [pid 5492] set_robust_list(0x55555b590660, 24) = 0 [pid 5492] chdir("./46") = 0 [pid 5492] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5492] setpgid(0, 0) = 0 [pid 5492] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5492] write(3, "1000", 4executing program ) = 4 [pid 5492] close(3) = 0 [pid 5492] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5492] write(1, "executing program\n", 18) = 18 [pid 5492] memfd_create("syzkaller", 0) = 3 [pid 5492] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5490] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5488] <... write resumed>) = 16777216 [pid 5488] munmap(0x7f6c8ae00000, 138412032 [pid 5491] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5488] <... munmap resumed>) = 0 [pid 5488] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5488] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5488] close(3) = 0 [pid 5488] close(4) = 0 [pid 5488] mkdir("./file0", 0777) = 0 [ 390.163676][ T5488] loop0: detected capacity change from 0 to 32768 [pid 5488] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5489] <... write resumed>) = 16777216 [pid 5489] munmap(0x7f6c8ae00000, 138412032 [pid 5488] <... mount resumed>) = 0 [pid 5488] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5488] chdir("./file0") = 0 [pid 5488] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5488] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5488] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5488] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5489] <... munmap resumed>) = 0 [pid 5489] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5489] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5489] close(3) = 0 [pid 5489] close(4) = 0 [pid 5489] mkdir("./file0", 0777) = 0 [pid 5489] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5489] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5489] chdir("./file0") = 0 [pid 5489] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5489] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5489] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 390.295899][ T5489] loop4: detected capacity change from 0 to 32768 [pid 5489] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5492] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5490] <... write resumed>) = 16777216 [pid 5490] munmap(0x7f6c8ae00000, 138412032 [pid 5488] <... write resumed>) = 4243456 [pid 5488] exit_group(0) = ? [pid 5488] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5488, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5490] <... munmap resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./46/binderfs") = 0 [pid 5243] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5490] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5490] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5490] close(3) = 0 [pid 5490] close(4) = 0 [pid 5490] mkdir("./file0", 0777) = 0 [pid 5490] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5489] <... write resumed>) = 4243456 [pid 5489] exit_group(0) = ? [pid 5489] +++ exited with 0 +++ [pid 5490] <... mount resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5489, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] <... umount2 resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... restart_syscall resumed>) = 0 [pid 5490] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5490] <... openat resumed>) = 3 [pid 5243] newfstatat(AT_FDCWD, "./46/file0", [pid 5247] umount2("./45", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5490] chdir("./file0" [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5490] <... chdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./45", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5490] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] <... openat resumed>) = 3 [pid 5490] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] newfstatat(3, "", [pid 5490] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5490] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5247] getdents64(3, [pid 5243] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5490] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [ 390.600284][ T5490] loop1: detected capacity change from 0 to 32768 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./45/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] newfstatat(AT_FDCWD, "./45/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5247] unlink("./45/binderfs") = 0 [pid 5243] newfstatat(4, "", [pid 5247] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5247] <... umount2 resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./46/file0" [pid 5247] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... rmdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] newfstatat(AT_FDCWD, "./45/file0", [pid 5243] close(3) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] rmdir("./46") = 0 [pid 5247] umount2("./45/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] mkdir("./47", 0777 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./45/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 3 [pid 5247] newfstatat(4, "", [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5247] getdents64(4, [pid 5243] close(3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4 [pid 5491] <... write resumed>) = 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./45/file0" [pid 5491] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./45") = 0 [pid 5247] mkdir("./46", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5491] <... munmap resumed>) = 0 [pid 5491] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5491] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5491] close(3) = 0 [pid 5491] close(4) = 0 [ 390.837491][ T5491] loop2: detected capacity change from 0 to 32768 [pid 5491] mkdir("./file0", 0777) = 0 [pid 5490] <... write resumed>) = 4243456 [pid 5490] exit_group(0) = ? [pid 5491] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5490] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5490, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5491] <... mount resumed>) = 0 [pid 5491] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5491] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5491] chdir("./file0" [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5491] <... chdir resumed>) = 0 [pid 5244] unlink("./46/binderfs" [pid 5491] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... unlink resumed>) = 0 [pid 5491] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5491] <... openat resumed>) = 4 [pid 5491] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5491] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... umount2 resumed>) = 0 [pid 5492] <... write resumed>) = 16777216 [pid 5244] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./46/file0", [pid 5492] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./46/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./46") = 0 [pid 5244] mkdir("./47", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5492] <... munmap resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5492] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5492] ioctl(4, LOOP_SET_FD, 3 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5493 ./strace-static-x86_64: Process 5493 attached [pid 5492] <... ioctl resumed>) = 0 [pid 5492] close(3) = 0 [pid 5492] close(4) = 0 [pid 5492] mkdir("./file0", 0777 [pid 5493] set_robust_list(0x55555b590660, 24 [pid 5492] <... mkdir resumed>) = 0 [pid 5493] <... set_robust_list resumed>) = 0 [pid 5493] chdir("./47") = 0 [pid 5493] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 executing program [pid 5492] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5493] setpgid(0, 0) = 0 [pid 5493] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5493] write(3, "1000", 4) = 4 [pid 5493] close(3) = 0 [pid 5493] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5493] write(1, "executing program\n", 18) = 18 [pid 5493] memfd_create("syzkaller", 0 [pid 5492] <... mount resumed>) = 0 [pid 5493] <... memfd_create resumed>) = 3 [pid 5492] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5493] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5492] <... openat resumed>) = 3 [pid 5493] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5492] chdir("./file0") = 0 [pid 5492] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [ 391.002665][ T5492] loop3: detected capacity change from 0 to 32768 [pid 5492] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5492] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5492] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5494 attached [pid 5494] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5494 [pid 5494] <... set_robust_list resumed>) = 0 [pid 5494] chdir("./46") = 0 [pid 5494] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5494] setpgid(0, 0) = 0 [pid 5494] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5494] write(3, "1000", 4) = 4 [pid 5491] <... write resumed>) = 4243456 [pid 5494] close(3) = 0 [pid 5491] exit_group(0 [pid 5494] symlink("/dev/binderfs", "./binderfs" [pid 5491] <... exit_group resumed>) = ? [pid 5494] <... symlink resumed>) = 0 [pid 5491] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5491, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5494] write(1, "executing program\n", 18 [pid 5245] <... restart_syscall resumed>) = 0 executing program [pid 5494] <... write resumed>) = 18 [pid 5245] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5494] memfd_create("syzkaller", 0 [pid 5245] <... openat resumed>) = 3 [pid 5494] <... memfd_create resumed>) = 3 [pid 5245] newfstatat(3, "", [pid 5494] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5494] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./46/binderfs") = 0 [pid 5245] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./46/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./46/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./46") = 0 [pid 5245] mkdir("./47", 0777 [pid 5244] <... close resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5492] <... write resumed>) = 4243456 [pid 5492] exit_group(0) = ? [pid 5492] +++ exited with 0 +++ [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5495 attached [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5495] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5492, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=38 /* 0.38 s */} --- [pid 5245] <... openat resumed>) = 3 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5495 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5495] chdir("./47" [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./46/binderfs") = 0 [pid 5246] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5495] <... chdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5495] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5495] setpgid(0, 0) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./46/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5495] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... close resumed>) = 0 [pid 5495] <... openat resumed>) = 3 [pid 5495] write(3, "1000", 4) = 4 [pid 5495] close(3) = 0 [pid 5246] rmdir("./46/file0" [pid 5495] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5495] write(1, "executing program\n", 18) = 18 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5495] memfd_create("syzkaller", 0 [pid 5246] close(3 [pid 5495] <... memfd_create resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5495] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] rmdir("./46") = 0 [pid 5246] mkdir("./47", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5493] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5496 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5496 ./strace-static-x86_64: Process 5497 attached [pid 5496] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5497 [pid 5497] set_robust_list(0x55555b590660, 24 [pid 5496] <... set_robust_list resumed>) = 0 [pid 5497] <... set_robust_list resumed>) = 0 [pid 5496] chdir("./47" [pid 5497] chdir("./47" [pid 5496] <... chdir resumed>) = 0 [pid 5494] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5497] <... chdir resumed>) = 0 [pid 5496] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5497] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5496] <... prctl resumed>) = 0 [pid 5496] setpgid(0, 0 [pid 5497] <... prctl resumed>) = 0 [pid 5497] setpgid(0, 0 [pid 5496] <... setpgid resumed>) = 0 [pid 5497] <... setpgid resumed>) = 0 [pid 5496] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5497] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5496] <... openat resumed>) = 3 [pid 5497] <... openat resumed>) = 3 [pid 5496] write(3, "1000", 4 [pid 5497] write(3, "1000", 4 [pid 5496] <... write resumed>) = 4 [pid 5497] <... write resumed>) = 4 [pid 5496] close(3 [pid 5497] close(3 [pid 5496] <... close resumed>) = 0 [pid 5496] symlink("/dev/binderfs", "./binderfs" [pid 5497] <... close resumed>) = 0 [pid 5497] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5497] write(1, "executing program\n", 18executing program [pid 5496] <... symlink resumed>) = 0 [pid 5497] <... write resumed>) = 18 [pid 5496] write(1, "executing program\n", 18executing program [pid 5497] memfd_create("syzkaller", 0 [pid 5496] <... write resumed>) = 18 [pid 5497] <... memfd_create resumed>) = 3 [pid 5496] memfd_create("syzkaller", 0 [pid 5497] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5496] <... memfd_create resumed>) = 3 [pid 5496] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5497] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5496] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5495] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5493] <... write resumed>) = 16777216 [pid 5493] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5493] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5493] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5493] close(3) = 0 [pid 5493] close(4) = 0 [pid 5493] mkdir("./file0", 0777) = 0 [ 391.894496][ T5493] loop0: detected capacity change from 0 to 32768 [pid 5493] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5493] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5493] chdir("./file0") = 0 [pid 5493] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5493] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5493] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5493] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5494] <... write resumed>) = 16777216 [pid 5494] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5494] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5494] ioctl(4, LOOP_SET_FD, 3 [pid 5497] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5494] <... ioctl resumed>) = 0 [pid 5494] close(3) = 0 [pid 5494] close(4) = 0 [pid 5494] mkdir("./file0", 0777) = 0 [ 392.051538][ T5494] loop4: detected capacity change from 0 to 32768 [pid 5494] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5496] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5494] <... mount resumed>) = 0 [pid 5495] <... write resumed>) = 16777216 [pid 5494] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5495] munmap(0x7f6c8ae00000, 138412032 [pid 5494] chdir("./file0") = 0 [pid 5494] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5494] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5495] <... munmap resumed>) = 0 [pid 5494] <... openat resumed>) = 4 [pid 5493] <... write resumed>) = 4243456 [pid 5495] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5494] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5493] exit_group(0) = ? [pid 5495] <... openat resumed>) = 4 [pid 5494] <... openat resumed>) = 5 [pid 5493] +++ exited with 0 +++ [pid 5495] ioctl(4, LOOP_SET_FD, 3 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5493, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=30 /* 0.30 s */} --- [pid 5494] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5495] <... ioctl resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5495] close(3 [pid 5243] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5495] <... close resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5495] close(4 [pid 5243] unlink("./47/binderfs" [pid 5495] <... close resumed>) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5495] mkdir("./file0", 0777) = 0 [pid 5495] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5495] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5495] chdir("./file0") = 0 [pid 5495] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... umount2 resumed>) = 0 [pid 5495] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5495] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5495] <... openat resumed>) = 4 [ 392.196124][ T5495] loop1: detected capacity change from 0 to 32768 [pid 5495] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./47/file0", [pid 5495] <... openat resumed>) = 5 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5495] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./47/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./47") = 0 [pid 5243] mkdir("./48", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5497] <... write resumed>) = 16777216 [pid 5495] <... write resumed>) = 4243456 [pid 5494] <... write resumed>) = 4243456 [pid 5494] exit_group(0 [pid 5495] exit_group(0 [pid 5494] <... exit_group resumed>) = ? [pid 5495] <... exit_group resumed>) = ? [pid 5494] +++ exited with 0 +++ [pid 5497] munmap(0x7f6c8ae00000, 138412032 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5494, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5495] +++ exited with 0 +++ [pid 5247] umount2("./46", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5495, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=42 /* 0.42 s */} --- [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5247] openat(AT_FDCWD, "./46", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./46/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./46/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./46/binderfs") = 0 [pid 5247] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./47/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./47/binderfs") = 0 [pid 5244] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5497] <... munmap resumed>) = 0 [pid 5497] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5496] <... write resumed>) = 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5497] <... openat resumed>) = 4 [pid 5496] munmap(0x7f6c8ae00000, 138412032 [pid 5497] ioctl(4, LOOP_SET_FD, 3 [pid 5247] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./46/file0", [pid 5244] newfstatat(AT_FDCWD, "./47/file0", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./46/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./46/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... openat resumed>) = 4 [pid 5244] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] newfstatat(4, "", [pid 5247] getdents64(4, [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5247] getdents64(4, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] getdents64(4, [pid 5247] close(4 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... close resumed>) = 0 [pid 5244] close(4) = 0 ./strace-static-x86_64: Process 5498 attached [pid 5497] <... ioctl resumed>) = 0 [pid 5496] <... munmap resumed>) = 0 [pid 5247] rmdir("./46/file0" [pid 5498] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5498 [pid 5498] chdir("./48" [pid 5497] close(3 [pid 5496] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] <... rmdir resumed>) = 0 [pid 5244] rmdir("./47/file0" [pid 5498] <... chdir resumed>) = 0 [pid 5497] <... close resumed>) = 0 [pid 5496] <... openat resumed>) = 4 [pid 5247] getdents64(3, [pid 5498] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5497] close(4 [pid 5244] <... rmdir resumed>) = 0 [pid 5498] <... prctl resumed>) = 0 [pid 5497] <... close resumed>) = 0 [pid 5496] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [ 392.562793][ T5497] loop3: detected capacity change from 0 to 32768 [pid 5498] setpgid(0, 0 [pid 5497] mkdir("./file0", 0777 [pid 5247] close(3 [pid 5244] getdents64(3, [pid 5247] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] rmdir("./46" [pid 5244] close(3 [pid 5497] <... mkdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5497] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] rmdir("./47") = 0 [pid 5244] mkdir("./48", 0777) = 0 [pid 5498] <... setpgid resumed>) = 0 [pid 5247] mkdir("./47", 0777 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5498] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... mkdir resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5498] <... openat resumed>) = 3 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... openat resumed>) = 3 [pid 5244] <... ioctl resumed>) = 0 [pid 5498] write(3, "1000", 4 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] close(3 [pid 5497] <... mount resumed>) = 0 [pid 5498] <... write resumed>) = 4 [pid 5497] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... ioctl resumed>) = 0 [pid 5498] close(3 [pid 5247] close(3executing program [pid 5498] <... close resumed>) = 0 [pid 5497] <... openat resumed>) = 3 [pid 5498] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5498] write(1, "executing program\n", 18) = 18 [pid 5497] chdir("./file0" [pid 5496] <... ioctl resumed>) = 0 [pid 5497] <... chdir resumed>) = 0 [pid 5496] close(3 [pid 5497] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5496] <... close resumed>) = 0 [pid 5497] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5496] close(4 [pid 5498] memfd_create("syzkaller", 0 [pid 5497] <... openat resumed>) = 4 [pid 5497] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5496] <... close resumed>) = 0 [pid 5498] <... memfd_create resumed>) = 3 [pid 5497] <... openat resumed>) = 5 [pid 5496] mkdir("./file0", 0777 [pid 5498] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5497] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5498] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5496] <... mkdir resumed>) = 0 [ 392.607654][ T5496] loop2: detected capacity change from 0 to 32768 [pid 5496] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5496] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5496] chdir("./file0") = 0 [pid 5496] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5496] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5496] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5496] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5496] exit_group(0) = ? [pid 5496] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5496, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5497] <... write resumed>) = 4243456 [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5497] exit_group(0 [pid 5245] getdents64(3, ./strace-static-x86_64: Process 5499 attached [pid 5497] <... exit_group resumed>) = ? [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5499] set_robust_list(0x55555b590660, 24 [pid 5497] +++ exited with 0 +++ [pid 5247] <... close resumed>) = 0 [pid 5245] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5499] <... set_robust_list resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5497, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5499] chdir("./48" [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5245] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5499] <... chdir resumed>) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5499] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] unlink("./47/binderfs" [pid 5499] <... prctl resumed>) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5499] setpgid(0, 0 [pid 5246] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5499] <... setpgid resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5499 [pid 5246] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, ./strace-static-x86_64: Process 5500 attached 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5500 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./47/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5500] set_robust_list(0x55555b590660, 24 [pid 5246] unlink("./47/binderfs" [pid 5500] <... set_robust_list resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5500] chdir("./47" [pid 5499] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5500] <... chdir resumed>) = 0 [pid 5499] <... openat resumed>) = 3 [pid 5500] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5499] write(3, "1000", 4 [pid 5246] <... umount2 resumed>) = 0 [pid 5500] <... prctl resumed>) = 0 [pid 5499] <... write resumed>) = 4 [pid 5245] <... umount2 resumed>) = 0 [pid 5500] setpgid(0, 0 [pid 5499] close(3 [pid 5500] <... setpgid resumed>) = 0 [pid 5499] <... close resumed>) = 0 executing program executing program [pid 5245] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./47/file0", [pid 5500] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5499] symlink("/dev/binderfs", "./binderfs" [pid 5500] <... openat resumed>) = 3 [pid 5499] <... symlink resumed>) = 0 [pid 5500] write(3, "1000", 4 [pid 5499] write(1, "executing program\n", 18 [pid 5500] <... write resumed>) = 4 [pid 5499] <... write resumed>) = 18 [pid 5500] close(3 [pid 5499] memfd_create("syzkaller", 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5500] <... close resumed>) = 0 [pid 5246] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5500] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5499] <... memfd_create resumed>) = 3 [pid 5246] newfstatat(AT_FDCWD, "./47/file0", [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5500] write(1, "executing program\n", 18 [pid 5499] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5500] <... write resumed>) = 18 [pid 5499] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... openat resumed>) = 4 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(4, "", [pid 5500] memfd_create("syzkaller", 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] getdents64(4, [pid 5500] <... memfd_create resumed>) = 3 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] rmdir("./47/file0") = 0 [pid 5500] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] getdents64(4, [pid 5500] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5246] getdents64(3, [pid 5245] rmdir("./47/file0" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5246] close(3 [pid 5245] getdents64(3, [pid 5246] <... close resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] rmdir("./47" [pid 5245] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5246] mkdir("./48", 0777 [pid 5245] rmdir("./47" [pid 5246] <... mkdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] mkdir("./48", 0777 [pid 5246] <... openat resumed>) = 3 [pid 5245] <... mkdir resumed>) = 0 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] <... ioctl resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5246] close(3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5498] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5501 attached [pid 5501] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5501 [pid 5501] <... set_robust_list resumed>) = 0 [pid 5501] chdir("./48") = 0 [pid 5501] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5501] setpgid(0, 0) = 0 [pid 5501] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5501] write(3, "1000", 4) = 4 [pid 5501] close(3) = 0 [pid 5501] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5501] write(1, "executing program\n", 18) = 18 [pid 5501] memfd_create("syzkaller", 0) = 3 [pid 5501] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] <... close resumed>) = 0 [pid 5501] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5498] <... write resumed>) = 16777216 [pid 5498] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5502 ./strace-static-x86_64: Process 5502 attached [pid 5502] set_robust_list(0x55555b590660, 24) = 0 [pid 5502] chdir("./48") = 0 [pid 5502] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5502] setpgid(0, 0) = 0 [pid 5502] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5502] write(3, "1000", 4) = 4 [pid 5502] close(3) = 0 [pid 5502] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5502] write(1, "executing program\n", 18) = 18 [pid 5502] memfd_create("syzkaller", 0) = 3 [pid 5498] <... munmap resumed>) = 0 [pid 5502] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5498] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5498] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5498] close(3) = 0 [pid 5498] close(4) = 0 [pid 5498] mkdir("./file0", 0777) = 0 [pid 5498] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5500] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 393.389242][ T5498] loop0: detected capacity change from 0 to 32768 [pid 5499] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5498] <... mount resumed>) = 0 [pid 5498] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5498] chdir("./file0") = 0 [pid 5498] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5498] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5498] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5498] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5498] exit_group(0) = ? [pid 5498] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5498, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=38 /* 0.38 s */} --- [pid 5243] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./48/binderfs") = 0 [pid 5243] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5502] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5501] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./48/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./48") = 0 [pid 5243] mkdir("./49", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5499] <... write resumed>) = 16777216 [pid 5499] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5500] <... write resumed>) = 16777216 [pid 5500] munmap(0x7f6c8ae00000, 138412032 [pid 5499] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5499] ioctl(4, LOOP_SET_FD, 3 [pid 5500] <... munmap resumed>) = 0 [pid 5499] <... ioctl resumed>) = 0 [pid 5500] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5500] ioctl(4, LOOP_SET_FD, 3 [pid 5499] close(3) = 0 [pid 5500] <... ioctl resumed>) = 0 [pid 5499] close(4 [pid 5500] close(3) = 0 [pid 5500] close(4 [pid 5499] <... close resumed>) = 0 [pid 5499] mkdir("./file0", 0777) = 0 [pid 5499] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5500] <... close resumed>) = 0 [pid 5500] mkdir("./file0", 0777) = 0 [ 393.979199][ T5499] loop1: detected capacity change from 0 to 32768 [ 393.995461][ T5500] loop4: detected capacity change from 0 to 32768 [pid 5500] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5500] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5500] chdir("./file0") = 0 [pid 5500] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5500] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5500] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5500] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5499] <... mount resumed>) = 0 [pid 5499] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5499] chdir("./file0") = 0 [pid 5499] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5499] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5499] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5499] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5503 ./strace-static-x86_64: Process 5503 attached [pid 5503] set_robust_list(0x55555b590660, 24 [pid 5502] <... write resumed>) = 16777216 [pid 5502] munmap(0x7f6c8ae00000, 138412032 [pid 5503] <... set_robust_list resumed>) = 0 [pid 5503] chdir("./49") = 0 [pid 5503] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5503] setpgid(0, 0) = 0 [pid 5503] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5503] write(3, "1000", 4) = 4 [pid 5503] close(3) = 0 [pid 5503] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5503] write(1, "executing program\n", 18executing program ) = 18 [pid 5502] <... munmap resumed>) = 0 [pid 5502] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5503] memfd_create("syzkaller", 0 [pid 5502] <... openat resumed>) = 4 [pid 5503] <... memfd_create resumed>) = 3 [pid 5502] ioctl(4, LOOP_SET_FD, 3 [pid 5503] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5502] <... ioctl resumed>) = 0 [pid 5502] close(3) = 0 [pid 5502] close(4) = 0 [pid 5502] mkdir("./file0", 0777) = 0 [pid 5502] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5501] <... write resumed>) = 16777216 [ 394.182775][ T5502] loop2: detected capacity change from 0 to 32768 [pid 5501] munmap(0x7f6c8ae00000, 138412032 [pid 5502] <... mount resumed>) = 0 [pid 5502] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5502] chdir("./file0") = 0 [pid 5502] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5502] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5502] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5501] <... munmap resumed>) = 0 [pid 5502] <... openat resumed>) = 5 [pid 5500] <... write resumed>) = 4243456 [pid 5502] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5501] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5500] exit_group(0) = ? [pid 5501] <... openat resumed>) = 4 [pid 5500] +++ exited with 0 +++ [pid 5501] ioctl(4, LOOP_SET_FD, 3 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5500, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=38 /* 0.38 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5501] <... ioctl resumed>) = 0 [pid 5501] close(3) = 0 [pid 5501] close(4) = 0 [pid 5501] mkdir("./file0", 0777) = 0 [pid 5501] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] umount2("./47", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./47", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5499] <... write resumed>) = 4243456 [pid 5499] exit_group(0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5499] <... exit_group resumed>) = ? [ 394.285662][ T5501] loop3: detected capacity change from 0 to 32768 [pid 5247] umount2("./47/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5499] +++ exited with 0 +++ [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./47/binderfs", [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5499, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=35 /* 0.35 s */} --- [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./47/binderfs" [pid 5244] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... unlink resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./48/binderfs") = 0 [pid 5244] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5501] <... mount resumed>) = 0 [pid 5501] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5501] chdir("./file0") = 0 [pid 5501] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5501] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5501] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5501] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... umount2 resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] rmdir("./48/file0") = 0 [pid 5247] newfstatat(AT_FDCWD, "./47/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./47/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./47/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] close(3 [pid 5247] getdents64(4, [pid 5244] <... close resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] rmdir("./48" [pid 5247] getdents64(4, [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] mkdir("./49", 0777 [pid 5247] close(4 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] rmdir("./47/file0") = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./47") = 0 [pid 5247] mkdir("./48", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5502] <... write resumed>) = 4243456 [pid 5503] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5502] exit_group(0) = ? [pid 5502] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5502, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./48/binderfs") = 0 [pid 5245] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./48/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./48") = 0 [pid 5245] mkdir("./49", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5501] <... write resumed>) = 4243456 [pid 5501] exit_group(0) = ? [pid 5501] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5501, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./48/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./48/binderfs") = 0 [pid 5246] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./48/file0", [pid 5244] <... close resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5504 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, ./strace-static-x86_64: Process 5504 attached 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./48/file0" [pid 5247] <... close resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5504] set_robust_list(0x55555b590660, 24 [pid 5246] getdents64(3, [pid 5504] <... set_robust_list resumed>) = 0 [pid 5504] chdir("./49" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5504] <... chdir resumed>) = 0 [pid 5246] close(3 [pid 5504] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... close resumed>) = 0 [pid 5504] <... prctl resumed>) = 0 [pid 5246] rmdir("./48" [pid 5504] setpgid(0, 0) = 0 [pid 5504] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5504] write(3, "1000", 4 [pid 5246] mkdir("./49", 0777 [pid 5504] <... write resumed>) = 4 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5504] close(3 [pid 5246] <... mkdir resumed>) = 0 [pid 5504] <... close resumed>) = 0 ./strace-static-x86_64: Process 5505 attached [pid 5504] symlink("/dev/binderfs", "./binderfs" [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5505] set_robust_list(0x55555b590660, 24 [pid 5504] <... symlink resumed>) = 0 executing program [pid 5505] <... set_robust_list resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5504] write(1, "executing program\n", 18 [pid 5246] close(3 [pid 5504] <... write resumed>) = 18 [pid 5505] chdir("./48" [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5505 [pid 5505] <... chdir resumed>) = 0 [pid 5505] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5505] setpgid(0, 0 [pid 5504] memfd_create("syzkaller", 0 [pid 5505] <... setpgid resumed>) = 0 [pid 5504] <... memfd_create resumed>) = 3 [pid 5504] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5505] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5505] write(3, "1000", 4) = 4 [pid 5505] close(3) = 0 [pid 5505] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5505] write(1, "executing program\n", 18) = 18 [pid 5505] memfd_create("syzkaller", 0) = 3 [pid 5505] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5506 attached , child_tidptr=0x55555b590650) = 5506 [pid 5506] set_robust_list(0x55555b590660, 24) = 0 [pid 5506] chdir("./49") = 0 [pid 5506] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5506] setpgid(0, 0) = 0 [pid 5506] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5506] write(3, "1000", 4) = 4 [pid 5506] close(3) = 0 [pid 5506] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5506] write(1, "executing program\n", 18) = 18 [pid 5506] memfd_create("syzkaller", 0) = 3 [pid 5506] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5503] <... write resumed>) = 16777216 [pid 5503] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5507 ./strace-static-x86_64: Process 5507 attached [pid 5507] set_robust_list(0x55555b590660, 24) = 0 [pid 5507] chdir("./49") = 0 [pid 5507] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5503] <... munmap resumed>) = 0 [pid 5507] <... prctl resumed>) = 0 [pid 5507] setpgid(0, 0) = 0 [pid 5507] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5503] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5507] <... openat resumed>) = 3 [pid 5503] <... openat resumed>) = 4 [pid 5507] write(3, "1000", 4 [pid 5503] ioctl(4, LOOP_SET_FD, 3 [pid 5507] <... write resumed>) = 4 [pid 5507] close(3) = 0 [pid 5507] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5507] write(1, "executing program\n", 18executing program ) = 18 [pid 5507] memfd_create("syzkaller", 0 [pid 5503] <... ioctl resumed>) = 0 [pid 5507] <... memfd_create resumed>) = 3 [pid 5503] close(3) = 0 [pid 5507] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5503] close(4) = 0 [pid 5507] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5503] mkdir("./file0", 0777) = 0 [pid 5503] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5503] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 395.052792][ T5503] loop0: detected capacity change from 0 to 32768 [pid 5503] chdir("./file0") = 0 [pid 5503] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5503] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5503] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5503] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5504] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5505] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5506] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5503] <... write resumed>) = 4243456 [pid 5503] exit_group(0) = ? [pid 5503] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5503, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5243] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./49/binderfs") = 0 [pid 5243] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./49/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./49") = 0 [pid 5243] mkdir("./50", 0777) = 0 [pid 5507] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5504] <... write resumed>) = 16777216 [pid 5504] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5505] <... write resumed>) = 16777216 [pid 5505] munmap(0x7f6c8ae00000, 138412032 [pid 5504] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5504] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5504] close(3) = 0 [pid 5504] close(4) = 0 [pid 5504] mkdir("./file0", 0777) = 0 [pid 5504] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5505] <... munmap resumed>) = 0 [pid 5504] <... mount resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5505] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5504] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5505] <... openat resumed>) = 4 [pid 5504] <... openat resumed>) = 3 [ 395.650077][ T5504] loop1: detected capacity change from 0 to 32768 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5505] ioctl(4, LOOP_SET_FD, 3 [pid 5504] chdir("./file0"./strace-static-x86_64: Process 5508 attached [pid 5508] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5508 [pid 5508] <... set_robust_list resumed>) = 0 [pid 5508] chdir("./50") = 0 [pid 5508] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5508] setpgid(0, 0) = 0 [pid 5508] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5504] <... chdir resumed>) = 0 [pid 5508] <... openat resumed>) = 3 [pid 5504] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5508] write(3, "1000", 4) = 4 [pid 5508] close(3 [pid 5504] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5508] <... close resumed>) = 0 [pid 5508] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5504] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5508] write(1, "executing program\n", 18) = 18 [pid 5508] memfd_create("syzkaller", 0 [pid 5504] <... openat resumed>) = 4 [pid 5508] <... memfd_create resumed>) = 3 [pid 5508] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5504] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5504] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5505] <... ioctl resumed>) = 0 [pid 5505] close(3) = 0 [pid 5505] close(4) = 0 [pid 5505] mkdir("./file0", 0777) = 0 [ 395.708493][ T5505] loop4: detected capacity change from 0 to 32768 [pid 5505] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5505] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5505] chdir("./file0") = 0 [pid 5505] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5505] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5505] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5505] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5506] <... write resumed>) = 16777216 [pid 5506] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5506] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5506] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5506] close(3) = 0 [pid 5506] close(4) = 0 [pid 5506] mkdir("./file0", 0777) = 0 [pid 5506] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5506] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5506] chdir("./file0") = 0 [ 395.890044][ T5506] loop2: detected capacity change from 0 to 32768 [pid 5506] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5506] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5506] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5506] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5504] <... write resumed>) = 4243456 [pid 5504] exit_group(0) = ? [pid 5504] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5504, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5507] <... write resumed>) = 16777216 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./49/binderfs") = 0 [pid 5507] munmap(0x7f6c8ae00000, 138412032 [pid 5244] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5507] <... munmap resumed>) = 0 [pid 5505] <... write resumed>) = 4243456 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5505] exit_group(0 [pid 5244] getdents64(4, [pid 5505] <... exit_group resumed>) = ? [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5507] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] getdents64(4, [pid 5507] <... openat resumed>) = 4 [pid 5507] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5505] +++ exited with 0 +++ [pid 5244] close(4) = 0 [pid 5244] rmdir("./49/file0") = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5505, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=36 /* 0.36 s */} --- [pid 5247] umount2("./48", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] getdents64(3, [pid 5247] openat(AT_FDCWD, "./48", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] newfstatat(3, "", [pid 5244] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] getdents64(3, [pid 5244] rmdir("./49" [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./48/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... rmdir resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./48/binderfs", [pid 5244] mkdir("./50", 0777 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./48/binderfs") = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5507] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5507] close(3) = 0 [pid 5507] close(4) = 0 [pid 5507] mkdir("./file0", 0777) = 0 [ 396.048111][ T5507] loop3: detected capacity change from 0 to 32768 [pid 5507] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./48/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./48/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./48/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./48/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5506] <... write resumed>) = 4243456 [pid 5247] rmdir("./48" [pid 5508] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5507] <... mount resumed>) = 0 [pid 5506] exit_group(0 [pid 5247] <... rmdir resumed>) = 0 [pid 5507] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5506] <... exit_group resumed>) = ? [pid 5247] mkdir("./49", 0777 [pid 5507] <... openat resumed>) = 3 [pid 5506] +++ exited with 0 +++ [pid 5247] <... mkdir resumed>) = 0 [pid 5507] chdir("./file0" [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5507] <... chdir resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5507] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5506, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5507] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... ioctl resumed>) = 0 [pid 5507] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] close(3 [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./49/binderfs") = 0 [pid 5245] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5507] <... openat resumed>) = 4 [pid 5507] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5507] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./49/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./49") = 0 [pid 5245] mkdir("./50", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5509 ./strace-static-x86_64: Process 5509 attached [pid 5509] set_robust_list(0x55555b590660, 24) = 0 [pid 5509] chdir("./50") = 0 [pid 5509] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5509] setpgid(0, 0) = 0 [pid 5509] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5507] <... write resumed>) = 4243456 [pid 5509] <... openat resumed>) = 3 [pid 5507] exit_group(0 [pid 5509] write(3, "1000", 4 [pid 5507] <... exit_group resumed>) = ? [pid 5509] <... write resumed>) = 4 [pid 5507] +++ exited with 0 +++ [pid 5509] close(3 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5507, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5509] <... close resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5509] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5509] write(1, "executing program\n", 18) = 18 [pid 5509] memfd_create("syzkaller", 0 [pid 5247] <... close resumed>) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5509] <... memfd_create resumed>) = 3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5509] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5509] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5510 [pid 5246] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", ./strace-static-x86_64: Process 5510 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./49/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5510] set_robust_list(0x55555b590660, 24 [pid 5246] unlink("./49/binderfs" [pid 5510] <... set_robust_list resumed>) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5510] chdir("./49" [pid 5246] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program [pid 5510] <... chdir resumed>) = 0 [pid 5510] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5510] setpgid(0, 0) = 0 [pid 5510] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5510] write(3, "1000", 4) = 4 [pid 5510] close(3) = 0 [pid 5510] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5510] write(1, "executing program\n", 18) = 18 [pid 5510] memfd_create("syzkaller", 0) = 3 [pid 5510] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5511 attached [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5511] set_robust_list(0x55555b590660, 24 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5511 [pid 5511] <... set_robust_list resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./49/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5511] chdir("./50" [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5511] <... chdir resumed>) = 0 [pid 5246] getdents64(4, [pid 5511] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5511] <... prctl resumed>) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./49/file0"executing program [pid 5511] setpgid(0, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5511] <... setpgid resumed>) = 0 [pid 5511] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3 [pid 5511] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./49" [pid 5511] write(3, "1000", 4 [pid 5246] <... rmdir resumed>) = 0 [pid 5511] <... write resumed>) = 4 [pid 5511] close(3) = 0 [pid 5511] symlink("/dev/binderfs", "./binderfs" [pid 5246] mkdir("./50", 0777 [pid 5511] <... symlink resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5511] write(1, "executing program\n", 18 [pid 5246] <... openat resumed>) = 3 [pid 5511] <... write resumed>) = 18 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5511] memfd_create("syzkaller", 0 [pid 5246] close(3 [pid 5511] <... memfd_create resumed>) = 3 [pid 5511] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5508] <... write resumed>) = 16777216 [pid 5508] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5508] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5508] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5508] close(3) = 0 [pid 5508] close(4) = 0 [pid 5508] mkdir("./file0", 0777) = 0 [pid 5508] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5508] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 396.666687][ T5508] loop0: detected capacity change from 0 to 32768 [pid 5508] chdir("./file0") = 0 [pid 5508] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5508] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5508] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5508] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5512 attached , child_tidptr=0x55555b590650) = 5512 [pid 5512] set_robust_list(0x55555b590660, 24) = 0 [pid 5512] chdir("./50") = 0 [pid 5512] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5512] setpgid(0, 0) = 0 [pid 5512] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5512] write(3, "1000", 4) = 4 [pid 5512] close(3) = 0 [pid 5512] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5512] write(1, "executing program\n", 18) = 18 [pid 5512] memfd_create("syzkaller", 0) = 3 [pid 5509] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5512] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5510] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5511] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5508] <... write resumed>) = 4243456 [pid 5508] exit_group(0) = ? [pid 5508] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5508, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./50/binderfs") = 0 [pid 5243] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./50/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./50") = 0 [pid 5243] mkdir("./51", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5512] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5509] <... write resumed>) = 16777216 [pid 5509] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5510] <... write resumed>) = 16777216 [pid 5509] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5509] ioctl(4, LOOP_SET_FD, 3 [pid 5510] munmap(0x7f6c8ae00000, 138412032 [pid 5511] <... write resumed>) = 16777216 [pid 5509] <... ioctl resumed>) = 0 [pid 5511] munmap(0x7f6c8ae00000, 138412032 [pid 5509] close(3) = 0 [pid 5509] close(4 [pid 5510] <... munmap resumed>) = 0 [pid 5509] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5509] mkdir("./file0", 0777 [pid 5510] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5509] <... mkdir resumed>) = 0 [pid 5510] <... openat resumed>) = 4 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 397.324857][ T5509] loop1: detected capacity change from 0 to 32768 [pid 5510] ioctl(4, LOOP_SET_FD, 3./strace-static-x86_64: Process 5513 attached [pid 5509] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5513] set_robust_list(0x55555b590660, 24 [pid 5511] <... munmap resumed>) = 0 [pid 5510] <... ioctl resumed>) = 0 [pid 5509] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5513] <... set_robust_list resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5513 [pid 5513] chdir("./51" [pid 5509] <... openat resumed>) = 3 [pid 5513] <... chdir resumed>) = 0 [pid 5511] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5510] close(3 [pid 5509] chdir("./file0" [pid 5513] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5510] <... close resumed>) = 0 [pid 5509] <... chdir resumed>) = 0 [pid 5513] <... prctl resumed>) = 0 [pid 5511] <... openat resumed>) = 4 [pid 5510] close(4 [pid 5509] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5513] setpgid(0, 0 [pid 5509] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5513] <... setpgid resumed>) = 0 [pid 5510] <... close resumed>) = 0 [pid 5509] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5511] ioctl(4, LOOP_SET_FD, 3 [pid 5513] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5510] mkdir("./file0", 0777 [pid 5509] <... openat resumed>) = 4 [pid 5509] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5513] <... openat resumed>) = 3 [pid 5510] <... mkdir resumed>) = 0 [pid 5509] <... openat resumed>) = 5 [pid 5513] write(3, "1000", 4 [pid 5510] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5509] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5513] <... write resumed>) = 4 [pid 5513] close(3) = 0 [pid 5513] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5513] write(1, "executing program\n", 18executing program ) = 18 [pid 5513] memfd_create("syzkaller", 0) = 3 [pid 5513] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5510] <... mount resumed>) = 0 [ 397.378337][ T5510] loop4: detected capacity change from 0 to 32768 [ 397.416627][ T5511] loop2: detected capacity change from 0 to 32768 [pid 5510] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5511] <... ioctl resumed>) = 0 [pid 5511] close(3) = 0 [pid 5511] close(4) = 0 [pid 5510] chdir("./file0") = 0 [pid 5511] mkdir("./file0", 0777 [pid 5510] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5511] <... mkdir resumed>) = 0 [pid 5510] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5511] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5510] <... openat resumed>) = 4 [pid 5510] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5510] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5511] <... mount resumed>) = 0 [pid 5511] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5511] chdir("./file0") = 0 [pid 5511] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5511] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5511] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5511] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5512] <... write resumed>) = 16777216 [pid 5512] munmap(0x7f6c8ae00000, 138412032 [pid 5509] <... write resumed>) = 4243456 [pid 5509] exit_group(0) = ? [pid 5509] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5509, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5512] <... munmap resumed>) = 0 [pid 5244] unlink("./50/binderfs") = 0 [pid 5244] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5512] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5512] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5512] close(3 [pid 5511] <... write resumed>) = 4243456 [pid 5510] <... write resumed>) = 4243456 [pid 5512] <... close resumed>) = 0 [pid 5511] exit_group(0 [pid 5510] exit_group(0 [pid 5512] close(4 [pid 5511] <... exit_group resumed>) = ? [pid 5510] <... exit_group resumed>) = ? [pid 5244] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5512] <... close resumed>) = 0 [pid 5511] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5511, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=29 /* 0.29 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5510] +++ exited with 0 +++ [pid 5512] mkdir("./file0", 0777 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5510, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5244] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5512] <... mkdir resumed>) = 0 [pid 5244] newfstatat(4, "", [pid 5512] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./50/file0" [pid 5512] <... mount resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5512] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... rmdir resumed>) = 0 [pid 5512] <... openat resumed>) = 3 [pid 5512] chdir("./file0" [pid 5247] umount2("./49", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5512] <... chdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 397.731818][ T5512] loop3: detected capacity change from 0 to 32768 [pid 5512] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] openat(AT_FDCWD, "./49", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5512] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... openat resumed>) = 3 [pid 5245] <... openat resumed>) = 3 [pid 5512] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] newfstatat(3, "", [pid 5245] newfstatat(3, "", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5512] <... openat resumed>) = 4 [pid 5247] getdents64(3, [pid 5245] getdents64(3, [pid 5512] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] getdents64(3, [pid 5512] <... openat resumed>) = 5 [pid 5247] umount2("./49/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5512] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] newfstatat(AT_FDCWD, "./49/binderfs", [pid 5245] newfstatat(AT_FDCWD, "./50/binderfs", [pid 5244] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] unlink("./49/binderfs" [pid 5245] unlink("./50/binderfs" [pid 5244] rmdir("./50" [pid 5247] <... unlink resumed>) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] mkdir("./51", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5245] <... umount2 resumed>) = 0 [pid 5513] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5247] <... umount2 resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] close(4 [pid 5247] newfstatat(AT_FDCWD, "./49/file0", [pid 5245] <... close resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] rmdir("./50/file0" [pid 5247] umount2("./49/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5247] openat(AT_FDCWD, "./49/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./50" [pid 5247] <... openat resumed>) = 4 [pid 5245] <... rmdir resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5245] mkdir("./51", 0777 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5245] <... mkdir resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] getdents64(4, [pid 5245] <... openat resumed>) = 3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5247] rmdir("./49/file0") = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./49") = 0 [pid 5247] mkdir("./50", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5512] <... write resumed>) = 4243456 [pid 5512] exit_group(0) = ? [pid 5512] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5512, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... close resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5514 attached ) = -1 EINVAL (Invalid argument) [pid 5514] set_robust_list(0x55555b590660, 24 [pid 5246] newfstatat(AT_FDCWD, "./50/binderfs", [pid 5514] <... set_robust_list resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5514] chdir("./51" [pid 5246] unlink("./50/binderfs" [pid 5514] <... chdir resumed>) = 0 [pid 5514] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5514] setpgid(0, 0) = 0 [pid 5514] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5514] write(3, "1000", 4) = 4 [pid 5514] close(3) = 0 [pid 5514] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5514] write(1, "executing program\n", 18) = 18 [pid 5246] <... unlink resumed>) = 0 [pid 5514] memfd_create("syzkaller", 0) = 3 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5514 [pid 5514] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, ./strace-static-x86_64: Process 5515 attached 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] <... close resumed>) = 0 [pid 5515] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5515 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5515] <... set_robust_list resumed>) = 0 [pid 5246] close(4 [pid 5515] chdir("./50" [pid 5246] <... close resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5516 ./strace-static-x86_64: Process 5516 attached [pid 5515] <... chdir resumed>) = 0 [pid 5246] rmdir("./50/file0" [pid 5516] set_robust_list(0x55555b590660, 24 [pid 5515] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5516] <... set_robust_list resumed>) = 0 [pid 5515] <... prctl resumed>) = 0 [pid 5516] chdir("./51" [pid 5515] setpgid(0, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5516] <... chdir resumed>) = 0 [pid 5515] <... setpgid resumed>) = 0 [pid 5246] getdents64(3, [pid 5516] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5515] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5516] setpgid(0, 0 [pid 5246] close(3 [pid 5516] <... setpgid resumed>) = 0 [pid 5515] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5515] write(3, "1000", 4 [pid 5246] rmdir("./50" [pid 5516] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... rmdir resumed>) = 0 [pid 5516] <... openat resumed>) = 3 [pid 5515] <... write resumed>) = 4 [pid 5516] write(3, "1000", 4 [pid 5246] mkdir("./51", 0777 [pid 5516] <... write resumed>) = 4 [pid 5515] close(3 [pid 5516] close(3 [pid 5515] <... close resumed>) = 0 [pid 5516] <... close resumed>) = 0 [pid 5515] symlink("/dev/binderfs", "./binderfs" [pid 5516] symlink("/dev/binderfs", "./binderfs" [pid 5515] <... symlink resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 executing program executing program [pid 5516] <... symlink resumed>) = 0 [pid 5516] write(1, "executing program\n", 18 [pid 5515] write(1, "executing program\n", 18 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5516] <... write resumed>) = 18 [pid 5515] <... write resumed>) = 18 [pid 5246] <... openat resumed>) = 3 [pid 5515] memfd_create("syzkaller", 0 [pid 5516] memfd_create("syzkaller", 0 [pid 5515] <... memfd_create resumed>) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5515] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5516] <... memfd_create resumed>) = 3 [pid 5515] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] close(3 [pid 5516] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5513] <... write resumed>) = 16777216 [pid 5513] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5513] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5513] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5513] close(3) = 0 [pid 5513] close(4) = 0 [pid 5513] mkdir("./file0", 0777) = 0 [ 398.382369][ T5513] loop0: detected capacity change from 0 to 32768 [pid 5513] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5513] <... mount resumed>) = 0 [pid 5513] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5513] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5517 attached [pid 5513] chdir("./file0" [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5517 [pid 5513] <... chdir resumed>) = 0 [pid 5513] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5517] set_robust_list(0x55555b590660, 24 [pid 5513] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5517] <... set_robust_list resumed>) = 0 [pid 5513] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5517] chdir("./51") = 0 [pid 5517] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5517] setpgid(0, 0 [pid 5513] <... openat resumed>) = 4 [pid 5517] <... setpgid resumed>) = 0 [pid 5517] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5513] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5517] <... openat resumed>) = 3 [pid 5514] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5513] <... openat resumed>) = 5 [pid 5517] write(3, "1000", 4 [pid 5513] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5517] <... write resumed>) = 4 [pid 5517] close(3) = 0 [pid 5517] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5517] write(1, "executing program\n", 18) = 18 [pid 5517] memfd_create("syzkaller", 0) = 3 [pid 5517] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5515] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5516] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5513] <... write resumed>) = 4243456 [pid 5513] exit_group(0) = ? [pid 5513] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5513, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./51/binderfs") = 0 [pid 5243] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./51/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./51") = 0 [pid 5243] mkdir("./52", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5517] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5514] <... write resumed>) = 16777216 [pid 5514] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5514] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5514] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5514] close(3) = 0 [pid 5514] close(4) = 0 [pid 5514] mkdir("./file0", 0777) = 0 [pid 5514] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5518 ./strace-static-x86_64: Process 5518 attached [pid 5518] set_robust_list(0x55555b590660, 24) = 0 [pid 5518] chdir("./52") = 0 [pid 5518] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5518] setpgid(0, 0) = 0 [pid 5518] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5518] write(3, "1000", 4) = 4 [pid 5518] close(3) = 0 [pid 5518] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5518] write(1, "executing program\n", 18) = 18 [pid 5518] memfd_create("syzkaller", 0) = 3 [pid 5514] <... mount resumed>) = 0 [pid 5518] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5514] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5518] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5514] <... openat resumed>) = 3 [pid 5514] chdir("./file0") = 0 [pid 5514] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5514] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5514] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 398.990253][ T5514] loop1: detected capacity change from 0 to 32768 [pid 5514] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5516] <... write resumed>) = 16777216 [pid 5516] munmap(0x7f6c8ae00000, 138412032 [pid 5515] <... write resumed>) = 16777216 [pid 5515] munmap(0x7f6c8ae00000, 138412032 [pid 5516] <... munmap resumed>) = 0 [pid 5516] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5516] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5515] <... munmap resumed>) = 0 [pid 5516] close(3) = 0 [pid 5516] close(4) = 0 [pid 5516] mkdir("./file0", 0777) = 0 [pid 5516] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5515] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [ 399.132362][ T5516] loop2: detected capacity change from 0 to 32768 [pid 5515] ioctl(4, LOOP_SET_FD, 3 [pid 5516] <... mount resumed>) = 0 [pid 5516] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5516] chdir("./file0") = 0 [pid 5516] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5515] <... ioctl resumed>) = 0 [pid 5516] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5516] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5516] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5515] close(3) = 0 [pid 5515] close(4) = 0 [pid 5515] mkdir("./file0", 0777) = 0 [ 399.181226][ T5515] loop4: detected capacity change from 0 to 32768 [pid 5515] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5514] <... write resumed>) = 4243456 [pid 5514] exit_group(0) = ? [pid 5515] <... mount resumed>) = 0 [pid 5515] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5515] chdir("./file0") = 0 [pid 5515] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5515] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5515] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5515] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5514] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5514, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./51/binderfs") = 0 [pid 5244] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./51/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./51") = 0 [pid 5244] mkdir("./52", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5517] <... write resumed>) = 16777216 [pid 5516] <... write resumed>) = 4243456 [pid 5516] exit_group(0 [pid 5517] munmap(0x7f6c8ae00000, 138412032 [pid 5516] <... exit_group resumed>) = ? [pid 5516] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5516, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=38 /* 0.38 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./51/binderfs") = 0 [pid 5245] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5517] <... munmap resumed>) = 0 [pid 5518] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./51/file0", [pid 5517] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5517] ioctl(4, LOOP_SET_FD, 3 [pid 5245] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5517] <... ioctl resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5517] close(3) = 0 [pid 5245] getdents64(4, [pid 5517] close(4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5517] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5517] mkdir("./file0", 0777) = 0 [pid 5245] rmdir("./51/file0" [pid 5517] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5515] <... write resumed>) = 4243456 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5515] exit_group(0 [pid 5245] close(3 [pid 5515] <... exit_group resumed>) = ? [pid 5245] <... close resumed>) = 0 [pid 5515] +++ exited with 0 +++ [pid 5245] rmdir("./51" [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5515, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./52", 0777) = 0 [pid 5517] <... mount resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [ 399.501311][ T5517] loop3: detected capacity change from 0 to 32768 [pid 5517] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] umount2("./50", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5517] <... openat resumed>) = 3 [pid 5245] <... openat resumed>) = 3 [pid 5517] chdir("./file0") = 0 [pid 5517] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5517] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5517] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... ioctl resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] close(3 [pid 5247] openat(AT_FDCWD, "./50", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5517] <... openat resumed>) = 5 [pid 5517] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./50/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./50/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./50/binderfs") = 0 [pid 5247] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5519 attached [pid 5247] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5519 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./50/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5519] set_robust_list(0x55555b590660, 24 [pid 5247] umount2("./50/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5519] <... set_robust_list resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./50/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5519] chdir("./52" [pid 5247] <... openat resumed>) = 4 [pid 5519] <... chdir resumed>) = 0 [pid 5519] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5519] setpgid(0, 0) = 0 [pid 5519] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5519] write(3, "1000", 4executing program ) = 4 [pid 5247] newfstatat(4, "", [pid 5519] close(3) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5519] symlink("/dev/binderfs", "./binderfs" [pid 5247] getdents64(4, [pid 5519] <... symlink resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5519] write(1, "executing program\n", 18 [pid 5247] getdents64(4, [pid 5519] <... write resumed>) = 18 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5519] memfd_create("syzkaller", 0 [pid 5247] close(4 [pid 5519] <... memfd_create resumed>) = 3 [pid 5247] <... close resumed>) = 0 [pid 5519] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] rmdir("./50/file0" [pid 5519] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./50") = 0 [pid 5247] mkdir("./51", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5517] <... write resumed>) = 4243456 [pid 5517] exit_group(0) = ? [pid 5517] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5517, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5518] <... write resumed>) = 16777216 [pid 5518] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./51/binderfs") = 0 [pid 5246] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./51/file0") = 0 [pid 5246] getdents64(3, ./strace-static-x86_64: Process 5520 attached 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./51") = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5520 [pid 5520] set_robust_list(0x55555b590660, 24 [pid 5246] mkdir("./52", 0777 [pid 5520] <... set_robust_list resumed>) = 0 [pid 5520] chdir("./52") = 0 [pid 5518] <... munmap resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5520] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5520] setpgid(0, 0) = 0 [pid 5520] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5518] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5518] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5520] write(3, "1000", 4) = 4 [pid 5518] close(3 [pid 5520] close(3 [pid 5518] <... close resumed>) = 0 [pid 5518] close(4 [pid 5520] <... close resumed>) = 0 [pid 5518] <... close resumed>) = 0 [pid 5518] mkdir("./file0", 0777) = 0 [ 399.912044][ T5518] loop0: detected capacity change from 0 to 32768 [pid 5518] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"executing program [pid 5520] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5518] <... mount resumed>) = 0 [pid 5518] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5518] chdir("./file0") = 0 [pid 5518] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5518] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5518] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5518] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5520] write(1, "executing program\n", 18) = 18 [pid 5520] memfd_create("syzkaller", 0) = 3 [pid 5520] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5521 attached , child_tidptr=0x55555b590650) = 5521 [pid 5521] set_robust_list(0x55555b590660, 24) = 0 [pid 5521] chdir("./51") = 0 [pid 5521] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5521] setpgid(0, 0) = 0 [pid 5521] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5521] write(3, "1000", 4) = 4 [pid 5521] close(3) = 0 [pid 5521] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5521] write(1, "executing program\n", 18 [pid 5519] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216executing program [pid 5521] <... write resumed>) = 18 [pid 5521] memfd_create("syzkaller", 0) = 3 [pid 5521] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5518] <... write resumed>) = 4243456 [pid 5518] exit_group(0) = ? [pid 5518] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5518, si_uid=0, si_status=0, si_utime=14 /* 0.14 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5246] <... close resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5522 attached [pid 5243] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5522] set_robust_list(0x55555b590660, 24 [pid 5243] newfstatat(3, "", [pid 5522] <... set_robust_list resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5522 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5522] chdir("./52" [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5522] <... chdir resumed>) = 0 [pid 5243] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5522] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5522] <... prctl resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./52/binderfs", [pid 5522] setpgid(0, 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5522] <... setpgid resumed>) = 0 [pid 5243] unlink("./52/binderfs" [pid 5522] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... unlink resumed>) = 0 [pid 5522] <... openat resumed>) = 3 [pid 5243] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5522] write(3, "1000", 4) = 4 [pid 5522] close(3) = 0 [pid 5522] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5522] write(1, "executing program\n", 18) = 18 [pid 5522] memfd_create("syzkaller", 0) = 3 [pid 5243] <... umount2 resumed>) = 0 [pid 5522] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./52/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./52") = 0 [pid 5243] mkdir("./53", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5520] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5521] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5519] <... write resumed>) = 16777216 [pid 5519] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5523 ./strace-static-x86_64: Process 5523 attached [pid 5519] <... munmap resumed>) = 0 [pid 5523] set_robust_list(0x55555b590660, 24 [pid 5519] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5523] <... set_robust_list resumed>) = 0 [pid 5519] <... openat resumed>) = 4 [pid 5519] ioctl(4, LOOP_SET_FD, 3 [pid 5523] chdir("./53" [pid 5522] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5523] <... chdir resumed>) = 0 [pid 5519] <... ioctl resumed>) = 0 [pid 5523] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5523] setpgid(0, 0 [pid 5519] close(3 [pid 5523] <... setpgid resumed>) = 0 [pid 5523] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5519] <... close resumed>) = 0 [pid 5523] <... openat resumed>) = 3 [pid 5519] close(4 [pid 5523] write(3, "1000", 4 [pid 5519] <... close resumed>) = 0 [pid 5523] <... write resumed>) = 4 [pid 5519] mkdir("./file0", 0777 [pid 5523] close(3) = 0 [pid 5519] <... mkdir resumed>) = 0 [pid 5523] symlink("/dev/binderfs", "./binderfs" [pid 5519] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5523] <... symlink resumed>) = 0 [pid 5523] write(1, "executing program\n", 18executing program ) = 18 [pid 5523] memfd_create("syzkaller", 0) = 3 [pid 5523] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 400.562211][ T5519] loop1: detected capacity change from 0 to 32768 [pid 5519] <... mount resumed>) = 0 [pid 5519] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5519] chdir("./file0") = 0 [pid 5519] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5519] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5519] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5519] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5521] <... write resumed>) = 16777216 [pid 5521] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5521] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5521] ioctl(4, LOOP_SET_FD, 3 [pid 5520] <... write resumed>) = 16777216 [pid 5521] <... ioctl resumed>) = 0 [pid 5520] munmap(0x7f6c8ae00000, 138412032 [pid 5521] close(3) = 0 [pid 5521] close(4) = 0 [pid 5521] mkdir("./file0", 0777) = 0 [pid 5521] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5521] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5521] chdir("./file0") = 0 [pid 5521] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5521] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5521] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 400.823112][ T5521] loop4: detected capacity change from 0 to 32768 [pid 5521] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5520] <... munmap resumed>) = 0 [pid 5519] <... write resumed>) = 4243456 [pid 5520] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5519] exit_group(0 [pid 5520] ioctl(4, LOOP_SET_FD, 3 [pid 5519] <... exit_group resumed>) = ? [pid 5520] <... ioctl resumed>) = 0 [pid 5519] +++ exited with 0 +++ [pid 5520] close(3) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5519, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5520] close(4 [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5520] <... close resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5520] mkdir("./file0", 0777) = 0 [pid 5244] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5520] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5520] <... mount resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5520] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] newfstatat(AT_FDCWD, "./52/binderfs", [pid 5520] <... openat resumed>) = 3 [pid 5520] chdir("./file0" [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5520] <... chdir resumed>) = 0 [pid 5244] unlink("./52/binderfs" [ 400.901952][ T5520] loop2: detected capacity change from 0 to 32768 [pid 5520] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5520] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5520] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5520] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5523] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./52/file0" [pid 5522] <... write resumed>) = 16777216 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5522] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5521] <... write resumed>) = 4243456 [pid 5521] exit_group(0) = ? [pid 5522] <... munmap resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./52" [pid 5521] +++ exited with 0 +++ [pid 5244] <... rmdir resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5521, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=37 /* 0.37 s */} --- [pid 5522] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] mkdir("./53", 0777) = 0 [pid 5522] <... openat resumed>) = 4 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5522] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5522] <... ioctl resumed>) = 0 [pid 5247] umount2("./51", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./51", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./51/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./51/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./51/binderfs") = 0 [pid 5247] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5522] close(3) = 0 [pid 5522] close(4) = 0 [pid 5522] mkdir("./file0", 0777) = 0 [pid 5522] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./51/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./51/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./51/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./51/file0") = 0 [pid 5247] getdents64(3, [pid 5522] <... mount resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [ 401.114107][ T5522] loop3: detected capacity change from 0 to 32768 [pid 5522] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] close(3 [pid 5522] <... openat resumed>) = 3 [pid 5247] <... close resumed>) = 0 [pid 5522] chdir("./file0" [pid 5247] rmdir("./51" [pid 5522] <... chdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5522] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5247] mkdir("./52", 0777 [pid 5522] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] <... mkdir resumed>) = 0 [pid 5522] <... openat resumed>) = 4 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5522] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... openat resumed>) = 3 [pid 5522] <... openat resumed>) = 5 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5522] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5520] <... write resumed>) = 4243456 [pid 5520] exit_group(0) = ? [pid 5520] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5520, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./52/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./52/binderfs") = 0 [pid 5245] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./52/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./52") = 0 [pid 5245] mkdir("./53", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... close resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5524 attached , child_tidptr=0x55555b590650) = 5524 [pid 5524] set_robust_list(0x55555b590660, 24) = 0 [pid 5524] chdir("./53") = 0 [pid 5524] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5524] setpgid(0, 0) = 0 [pid 5524] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5524] write(3, "1000", 4) = 4 [pid 5524] close(3) = 0 [pid 5524] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5524] write(1, "executing program\n", 18) = 18 [pid 5524] memfd_create("syzkaller", 0) = 3 [pid 5524] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5522] <... write resumed>) = 4243456 [pid 5522] exit_group(0) = ? [pid 5522] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5522, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5523] <... write resumed>) = 16777216 [pid 5523] munmap(0x7f6c8ae00000, 138412032 [pid 5246] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5525 attached [pid 5246] newfstatat(3, "", [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5525 [pid 5525] set_robust_list(0x55555b590660, 24 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5525] <... set_robust_list resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5525] chdir("./52" [pid 5246] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5525] <... chdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5525] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] newfstatat(AT_FDCWD, "./52/binderfs", [pid 5525] <... prctl resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./52/binderfs" [pid 5525] setpgid(0, 0) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5525] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5525] <... openat resumed>) = 3 [pid 5525] write(3, "1000", 4) = 4 [pid 5525] close(3) = 0 [pid 5525] symlink("/dev/binderfs", "./binderfs"executing program [pid 5523] <... munmap resumed>) = 0 [pid 5525] <... symlink resumed>) = 0 [pid 5525] write(1, "executing program\n", 18) = 18 [pid 5523] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5523] ioctl(4, LOOP_SET_FD, 3 [pid 5525] memfd_create("syzkaller", 0 [pid 5523] <... ioctl resumed>) = 0 [pid 5523] close(3 [pid 5525] <... memfd_create resumed>) = 3 [pid 5525] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5523] <... close resumed>) = 0 [pid 5523] close(4) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5523] mkdir("./file0", 0777) = 0 [pid 5523] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5246] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5523] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5523] chdir("./file0" [pid 5246] newfstatat(AT_FDCWD, "./52/file0", [pid 5523] <... chdir resumed>) = 0 [pid 5523] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5523] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5523] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5523] <... openat resumed>) = 4 [pid 5523] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5246] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5523] <... openat resumed>) = 5 [pid 5245] <... close resumed>) = 0 [pid 5523] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... openat resumed>) = 4 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] newfstatat(4, "", ./strace-static-x86_64: Process 5526 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5526 [ 401.540955][ T5523] loop0: detected capacity change from 0 to 32768 [pid 5526] set_robust_list(0x55555b590660, 24 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5526] <... set_robust_list resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5526] chdir("./53" [pid 5246] close(4 [pid 5526] <... chdir resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5526] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] rmdir("./52/file0" [pid 5526] <... prctl resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5526] setpgid(0, 0 [pid 5246] getdents64(3, [pid 5526] <... setpgid resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5526] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] close(3) = 0 [pid 5526] <... openat resumed>) = 3 [pid 5246] rmdir("./52" [pid 5526] write(3, "1000", 4 [pid 5246] <... rmdir resumed>) = 0 [pid 5526] <... write resumed>) = 4 [pid 5246] mkdir("./53", 0777 [pid 5526] close(3) = 0 [pid 5526] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... mkdir resumed>) = 0 [pid 5526] <... symlink resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5526] write(1, "executing program\n", 18executing program ) = 18 [pid 5246] <... openat resumed>) = 3 [pid 5526] memfd_create("syzkaller", 0 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5526] <... memfd_create resumed>) = 3 [pid 5526] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5526] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5524] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5523] <... write resumed>) = 4243456 [pid 5523] exit_group(0) = ? [pid 5523] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5523, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./53/binderfs") = 0 [pid 5243] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./53/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./53" [pid 5246] <... close resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./54", 0777) = 0 [pid 5525] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ./strace-static-x86_64: Process 5527 attached [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5527 [pid 5243] <... ioctl resumed>) = 0 [pid 5527] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] close(3 [pid 5527] chdir("./53") = 0 [pid 5527] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5527] setpgid(0, 0) = 0 [pid 5527] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5527] write(3, "1000", 4) = 4 [pid 5527] close(3) = 0 [pid 5527] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5527] write(1, "executing program\n", 18executing program ) = 18 [pid 5527] memfd_create("syzkaller", 0 [pid 5526] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5527] <... memfd_create resumed>) = 3 [pid 5527] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5528 ./strace-static-x86_64: Process 5528 attached [pid 5528] set_robust_list(0x55555b590660, 24) = 0 [pid 5528] chdir("./54") = 0 [pid 5528] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5524] <... write resumed>) = 16777216 [pid 5528] <... prctl resumed>) = 0 [pid 5528] setpgid(0, 0) = 0 [pid 5528] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5528] write(3, "1000", 4) = 4 [pid 5528] close(3) = 0 [pid 5528] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5528] write(1, "executing program\n", 18) = 18 [pid 5528] memfd_create("syzkaller", 0) = 3 [pid 5528] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5524] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5524] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5524] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5524] close(3) = 0 [pid 5524] close(4) = 0 [pid 5524] mkdir("./file0", 0777) = 0 [ 402.281016][ T5524] loop1: detected capacity change from 0 to 32768 [pid 5524] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5524] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5524] chdir("./file0") = 0 [pid 5524] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5524] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5524] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5524] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5527] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5525] <... write resumed>) = 16777216 [pid 5525] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5525] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5525] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5526] <... write resumed>) = 16777216 [pid 5525] close(3) = 0 [pid 5525] close(4) = 0 [pid 5526] munmap(0x7f6c8ae00000, 138412032 [pid 5525] mkdir("./file0", 0777) = 0 [pid 5525] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 402.445282][ T5525] loop4: detected capacity change from 0 to 32768 [pid 5525] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5525] chdir("./file0") = 0 [pid 5525] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5525] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5525] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5525] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5526] <... munmap resumed>) = 0 [pid 5526] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5526] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5526] close(3) = 0 [ 402.562134][ T5526] loop2: detected capacity change from 0 to 32768 [pid 5526] close(4 [pid 5528] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5526] <... close resumed>) = 0 [pid 5526] mkdir("./file0", 0777) = 0 [pid 5526] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5524] <... write resumed>) = 4243456 [pid 5524] exit_group(0) = ? [pid 5524] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5524, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5526] <... mount resumed>) = 0 [pid 5244] newfstatat(3, "", [pid 5526] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5526] chdir("./file0" [pid 5244] getdents64(3, [pid 5526] <... chdir resumed>) = 0 [pid 5526] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5526] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5526] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5526] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./53/binderfs") = 0 [pid 5244] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./53/file0") = 0 [pid 5525] <... write resumed>) = 4243456 [pid 5244] getdents64(3, [pid 5525] exit_group(0) = ? [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5525] +++ exited with 0 +++ [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./53" [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5525, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=41 /* 0.41 s */} --- [pid 5244] <... rmdir resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5244] mkdir("./54", 0777 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5247] umount2("./52", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5247] openat(AT_FDCWD, "./52", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./52/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./52/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./52/binderfs") = 0 [pid 5247] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5527] <... write resumed>) = 16777216 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5526] <... write resumed>) = 4243456 [pid 5526] exit_group(0 [pid 5247] newfstatat(AT_FDCWD, "./52/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5526] <... exit_group resumed>) = ? [pid 5247] umount2("./52/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5527] munmap(0x7f6c8ae00000, 138412032 [pid 5247] openat(AT_FDCWD, "./52/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5526] +++ exited with 0 +++ [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5526, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./52/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5245] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./53/binderfs") = 0 [pid 5245] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] rmdir("./52") = 0 [pid 5247] mkdir("./53", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5527] <... munmap resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5245] <... umount2 resumed>) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5245] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5527] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] <... ioctl resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5527] <... openat resumed>) = 4 [pid 5247] close(3 [pid 5245] newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./53/file0") = 0 [pid 5527] ioctl(4, LOOP_SET_FD, 3 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./53") = 0 [pid 5245] mkdir("./54", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5527] <... ioctl resumed>) = 0 [pid 5527] close(3) = 0 [pid 5527] close(4) = 0 [pid 5527] mkdir("./file0", 0777) = 0 [ 402.928250][ T5527] loop3: detected capacity change from 0 to 32768 [pid 5527] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5527] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5527] chdir("./file0") = 0 [pid 5527] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5527] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5527] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5527] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5528] <... write resumed>) = 16777216 ./strace-static-x86_64: Process 5529 attached [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5529 [pid 5529] set_robust_list(0x55555b590660, 24 [pid 5528] munmap(0x7f6c8ae00000, 138412032 [pid 5529] <... set_robust_list resumed>) = 0 [pid 5529] chdir("./54") = 0 [pid 5529] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5528] <... munmap resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5528] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5529] setpgid(0, 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5529] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5530 attached [pid 5529] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5528] <... openat resumed>) = 4 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5530 [pid 5528] ioctl(4, LOOP_SET_FD, 3 [pid 5529] <... openat resumed>) = 3 [pid 5529] write(3, "1000", 4) = 4 [pid 5529] close(3 [pid 5530] set_robust_list(0x55555b590660, 24 [pid 5529] <... close resumed>) = 0 [pid 5530] <... set_robust_list resumed>) = 0 [pid 5529] symlink("/dev/binderfs", "./binderfs"executing program [pid 5530] chdir("./53" [pid 5529] <... symlink resumed>) = 0 [pid 5530] <... chdir resumed>) = 0 [pid 5529] write(1, "executing program\n", 18) = 18 [pid 5530] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5530] setpgid(0, 0) = 0 [pid 5529] memfd_create("syzkaller", 0 [pid 5530] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5529] <... memfd_create resumed>) = 3 [pid 5529] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5530] <... openat resumed>) = 3 [pid 5529] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5530] write(3, "1000", 4) = 4 [pid 5530] close(3) = 0 executing program [pid 5530] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5530] write(1, "executing program\n", 18) = 18 [pid 5530] memfd_create("syzkaller", 0 [pid 5528] <... ioctl resumed>) = 0 [pid 5528] close(3 [pid 5530] <... memfd_create resumed>) = 3 [pid 5528] <... close resumed>) = 0 [pid 5530] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5528] close(4 [pid 5530] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5528] <... close resumed>) = 0 [pid 5528] mkdir("./file0", 0777) = 0 [pid 5528] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... close resumed>) = 0 [ 403.145618][ T5528] loop0: detected capacity change from 0 to 32768 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5531 attached [pid 5528] <... mount resumed>) = 0 [pid 5531] set_robust_list(0x55555b590660, 24 [pid 5528] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5531 [pid 5531] <... set_robust_list resumed>) = 0 [pid 5528] <... openat resumed>) = 3 [pid 5528] chdir("./file0" [pid 5531] chdir("./54" [pid 5528] <... chdir resumed>) = 0 [pid 5531] <... chdir resumed>) = 0 [pid 5528] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5531] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5528] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5531] <... prctl resumed>) = 0 [pid 5528] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5531] setpgid(0, 0 [pid 5528] <... openat resumed>) = 4 [pid 5531] <... setpgid resumed>) = 0 [pid 5531] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5528] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5528] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5531] <... openat resumed>) = 3 [pid 5531] write(3, "1000", 4) = 4 [pid 5531] close(3) = 0 [pid 5531] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5531] write(1, "executing program\n", 18) = 18 [pid 5531] memfd_create("syzkaller", 0) = 3 [pid 5531] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5527] <... write resumed>) = 4243456 [pid 5527] exit_group(0) = ? [pid 5527] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5527, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./53/binderfs") = 0 [pid 5246] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5528] <... write resumed>) = 4243456 [pid 5528] exit_group(0) = ? [pid 5246] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5528] +++ exited with 0 +++ [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./53/file0", [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5528, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=39 /* 0.39 s */} --- [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5246] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5246] rmdir("./53/file0") = 0 [pid 5246] getdents64(3, [pid 5243] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] close(3 [pid 5243] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... close resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5246] rmdir("./53" [pid 5243] newfstatat(3, "", [pid 5246] <... rmdir resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] mkdir("./54", 0777 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./54/binderfs") = 0 [pid 5243] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... mkdir resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./54/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./54/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./54") = 0 [pid 5243] mkdir("./55", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5529] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5530] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5531] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5532 attached , child_tidptr=0x55555b590650) = 5532 [pid 5532] set_robust_list(0x55555b590660, 24) = 0 [pid 5532] chdir("./54") = 0 [pid 5532] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5243] <... close resumed>) = 0 [pid 5532] setpgid(0, 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5532] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5533 attached [pid 5532] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5533] set_robust_list(0x55555b590660, 24 [pid 5532] <... openat resumed>) = 3 [pid 5532] write(3, "1000", 4 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5533 [pid 5532] <... write resumed>) = 4 [pid 5532] close(3) = 0 [pid 5532] symlink("/dev/binderfs", "./binderfs" [pid 5533] <... set_robust_list resumed>) = 0 [pid 5533] chdir("./55" [pid 5532] <... symlink resumed>) = 0 [pid 5533] <... chdir resumed>) = 0 executing program [pid 5533] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5532] write(1, "executing program\n", 18) = 18 [pid 5533] <... prctl resumed>) = 0 [pid 5533] setpgid(0, 0 [pid 5532] memfd_create("syzkaller", 0 [pid 5533] <... setpgid resumed>) = 0 [pid 5532] <... memfd_create resumed>) = 3 [pid 5533] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5532] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5533] <... openat resumed>) = 3 [pid 5533] write(3, "1000", 4) = 4 [pid 5533] close(3) = 0 [pid 5533] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5533] write(1, "executing program\n", 18executing program ) = 18 [pid 5533] memfd_create("syzkaller", 0) = 3 [pid 5533] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5529] <... write resumed>) = 16777216 [pid 5529] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5529] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5531] <... write resumed>) = 16777216 [pid 5531] munmap(0x7f6c8ae00000, 138412032 [pid 5529] <... openat resumed>) = 4 [pid 5529] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5531] <... munmap resumed>) = 0 [pid 5529] close(3 [pid 5531] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5529] <... close resumed>) = 0 [pid 5531] ioctl(4, LOOP_SET_FD, 3 [pid 5530] <... write resumed>) = 16777216 [pid 5529] close(4 [pid 5531] <... ioctl resumed>) = 0 [pid 5530] munmap(0x7f6c8ae00000, 138412032 [pid 5529] <... close resumed>) = 0 [pid 5529] mkdir("./file0", 0777 [pid 5531] close(3 [pid 5529] <... mkdir resumed>) = 0 [pid 5531] <... close resumed>) = 0 [pid 5531] close(4) = 0 [pid 5531] mkdir("./file0", 0777 [pid 5529] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5531] <... mkdir resumed>) = 0 [pid 5531] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5529] <... mount resumed>) = 0 [pid 5531] <... mount resumed>) = 0 [pid 5529] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5531] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5529] <... openat resumed>) = 3 [ 403.991881][ T5529] loop1: detected capacity change from 0 to 32768 [ 404.026241][ T5531] loop2: detected capacity change from 0 to 32768 [pid 5531] chdir("./file0" [pid 5529] chdir("./file0") = 0 [pid 5529] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5531] <... chdir resumed>) = 0 [pid 5531] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5531] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5531] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5531] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5529] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5529] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5530] <... munmap resumed>) = 0 [pid 5529] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5530] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5529] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5530] <... openat resumed>) = 4 [pid 5530] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5530] close(3) = 0 [pid 5530] close(4) = 0 [pid 5530] mkdir("./file0", 0777) = 0 [ 404.113270][ T5530] loop4: detected capacity change from 0 to 32768 [pid 5530] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5530] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5530] chdir("./file0") = 0 [pid 5530] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5530] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5530] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5530] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5533] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5532] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5531] <... write resumed>) = 4243456 [pid 5531] exit_group(0) = ? [pid 5531] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5531, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./54/binderfs") = 0 [pid 5245] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5529] <... write resumed>) = 4243456 [pid 5245] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5529] exit_group(0) = ? [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./54/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5529] +++ exited with 0 +++ [pid 5245] close(4) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5529, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=23 /* 0.23 s */} --- [pid 5245] rmdir("./54/file0" [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./54") = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] mkdir("./55", 0777 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./54/binderfs") = 0 [pid 5244] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./54/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5530] <... write resumed>) = 4243456 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5530] exit_group(0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./54/file0" [pid 5530] <... exit_group resumed>) = ? [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./54") = 0 [pid 5244] mkdir("./55", 0777 [pid 5530] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5530, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5244] <... mkdir resumed>) = 0 [pid 5247] umount2("./53", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./53", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] newfstatat(3, "", [pid 5244] <... openat resumed>) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] getdents64(3, [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./53/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./53/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./53/binderfs") = 0 [pid 5247] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./53/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./53/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./53/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./53/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./53") = 0 [pid 5247] mkdir("./54", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5533] <... write resumed>) = 16777216 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5533] munmap(0x7f6c8ae00000, 138412032./strace-static-x86_64: Process 5534 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5534 [pid 5534] set_robust_list(0x55555b590660, 24) = 0 [pid 5534] chdir("./55") = 0 [pid 5534] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5532] <... write resumed>) = 16777216 [pid 5534] setpgid(0, 0) = 0 [pid 5534] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5533] <... munmap resumed>) = 0 [pid 5532] munmap(0x7f6c8ae00000, 138412032 [pid 5534] <... openat resumed>) = 3 [pid 5533] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5534] write(3, "1000", 4) = 4 [pid 5534] close(3) = 0 [pid 5534] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5533] <... openat resumed>) = 4 [pid 5533] ioctl(4, LOOP_SET_FD, 3executing program [pid 5534] write(1, "executing program\n", 18) = 18 [pid 5534] memfd_create("syzkaller", 0) = 3 [pid 5534] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5533] <... ioctl resumed>) = 0 [pid 5532] <... munmap resumed>) = 0 [pid 5533] close(3) = 0 [pid 5532] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... close resumed>) = 0 [pid 5533] close(4 [pid 5532] <... openat resumed>) = 4 [pid 5533] <... close resumed>) = 0 [pid 5533] mkdir("./file0", 0777 [pid 5532] ioctl(4, LOOP_SET_FD, 3 [ 404.739152][ T5533] loop0: detected capacity change from 0 to 32768 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5533] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5535 attached [pid 5533] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5532] <... ioctl resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5535 [pid 5532] close(3) = 0 [pid 5532] close(4) = 0 [pid 5532] mkdir("./file0", 0777 [pid 5535] set_robust_list(0x55555b590660, 24 [pid 5533] <... mount resumed>) = 0 [pid 5532] <... mkdir resumed>) = 0 [pid 5535] <... set_robust_list resumed>) = 0 [pid 5535] chdir("./55" [pid 5533] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5532] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5535] <... chdir resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5535] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5533] <... openat resumed>) = 3 [pid 5535] <... prctl resumed>) = 0 [pid 5533] chdir("./file0" [pid 5535] setpgid(0, 0 [pid 5533] <... chdir resumed>) = 0 [pid 5535] <... setpgid resumed>) = 0 [pid 5533] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5535] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5533] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5532] <... mount resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5533] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5532] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5533] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5535] write(3, "1000", 4 [pid 5533] <... openat resumed>) = 5 [pid 5532] <... openat resumed>) = 3 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5536 [pid 5535] <... write resumed>) = 4 [pid 5533] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456./strace-static-x86_64: Process 5536 attached [pid 5535] close(3 [pid 5532] chdir("./file0" [pid 5535] <... close resumed>) = 0 [pid 5536] set_robust_list(0x55555b590660, 24 [pid 5532] <... chdir resumed>) = 0 [pid 5536] <... set_robust_list resumed>) = 0 [pid 5532] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5536] chdir("./54" [pid 5535] symlink("/dev/binderfs", "./binderfs" [pid 5532] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5536] <... chdir resumed>) = 0 [pid 5536] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5535] <... symlink resumed>) = 0 [pid 5532] <... openat resumed>) = 4 [pid 5536] <... prctl resumed>) = 0 [ 404.790346][ T5532] loop3: detected capacity change from 0 to 32768 executing program [pid 5536] setpgid(0, 0 [pid 5535] write(1, "executing program\n", 18 [pid 5532] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5535] <... write resumed>) = 18 [pid 5535] memfd_create("syzkaller", 0) = 3 [pid 5535] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5536] <... setpgid resumed>) = 0 [pid 5536] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5532] <... openat resumed>) = 5 [pid 5536] write(3, "1000", 4 [pid 5532] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5536] <... write resumed>) = 4 [pid 5536] close(3) = 0 [pid 5536] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5536] write(1, "executing program\n", 18executing program ) = 18 [pid 5536] memfd_create("syzkaller", 0) = 3 [pid 5536] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5533] <... write resumed>) = 4243456 [pid 5533] exit_group(0) = ? [pid 5533] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5533, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=29 /* 0.29 s */} --- [pid 5532] <... write resumed>) = 4243456 [pid 5532] exit_group(0) = ? [pid 5532] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5532, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./55/binderfs", [pid 5246] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5243] unlink("./55/binderfs" [pid 5246] newfstatat(3, "", [pid 5243] <... unlink resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./54/binderfs") = 0 [pid 5246] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5534] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./54/file0", [pid 5243] newfstatat(AT_FDCWD, "./55/file0", [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 4 [pid 5243] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] newfstatat(4, "", [pid 5243] <... openat resumed>) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] newfstatat(4, "", [pid 5246] getdents64(4, [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5246] getdents64(4, [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] getdents64(4, [pid 5246] close(4 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] <... close resumed>) = 0 [pid 5243] close(4 [pid 5246] rmdir("./54/file0" [pid 5243] <... close resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5243] rmdir("./55/file0" [pid 5246] getdents64(3, [pid 5243] <... rmdir resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./54") = 0 [pid 5246] mkdir("./55", 0777) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./55") = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] mkdir("./56", 0777) = 0 [pid 5535] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5536] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5537 attached , child_tidptr=0x55555b590650) = 5537 [pid 5537] set_robust_list(0x55555b590660, 24) = 0 [pid 5537] chdir("./55") = 0 [pid 5537] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5537] setpgid(0, 0) = 0 [pid 5537] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5537] write(3, "1000", 4) = 4 [pid 5537] close(3) = 0 [pid 5537] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5243] <... close resumed>) = 0 [pid 5537] write(1, "executing program\n", 18executing program ) = 18 [pid 5537] memfd_create("syzkaller", 0) = 3 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5537] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 ./strace-static-x86_64: Process 5538 attached [pid 5538] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5538 [pid 5538] chdir("./56") = 0 [pid 5538] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5538] setpgid(0, 0) = 0 [pid 5538] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5538] write(3, "1000", 4) = 4 [pid 5538] close(3) = 0 [pid 5538] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5538] write(1, "executing program\n", 18) = 18 [pid 5538] memfd_create("syzkaller", 0) = 3 [pid 5538] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5535] <... write resumed>) = 16777216 [pid 5535] munmap(0x7f6c8ae00000, 138412032 [pid 5534] <... write resumed>) = 16777216 [pid 5534] munmap(0x7f6c8ae00000, 138412032 [pid 5535] <... munmap resumed>) = 0 [pid 5534] <... munmap resumed>) = 0 [pid 5534] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5535] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5534] ioctl(4, LOOP_SET_FD, 3 [pid 5535] <... openat resumed>) = 4 [pid 5535] ioctl(4, LOOP_SET_FD, 3 [pid 5534] <... ioctl resumed>) = 0 [pid 5535] <... ioctl resumed>) = 0 [pid 5535] close(3) = 0 [pid 5535] close(4) = 0 [pid 5535] mkdir("./file0", 0777) = 0 [pid 5535] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5534] close(3) = 0 [pid 5534] close(4) = 0 [ 405.658622][ T5534] loop2: detected capacity change from 0 to 32768 [ 405.666665][ T5535] loop1: detected capacity change from 0 to 32768 [pid 5534] mkdir("./file0", 0777) = 0 [pid 5534] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5535] <... mount resumed>) = 0 [pid 5535] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5535] chdir("./file0") = 0 [pid 5535] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5535] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5534] <... mount resumed>) = 0 [pid 5535] <... openat resumed>) = 4 [pid 5534] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5535] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5534] <... openat resumed>) = 3 [pid 5535] <... openat resumed>) = 5 [pid 5534] chdir("./file0" [pid 5535] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5534] <... chdir resumed>) = 0 [pid 5536] <... write resumed>) = 16777216 [pid 5534] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5536] munmap(0x7f6c8ae00000, 138412032 [pid 5534] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5534] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5534] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5534] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5536] <... munmap resumed>) = 0 [pid 5536] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5536] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5536] close(3) = 0 [pid 5537] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5536] close(4) = 0 [ 405.786028][ T5536] loop4: detected capacity change from 0 to 32768 [pid 5536] mkdir("./file0", 0777) = 0 [pid 5536] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5536] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5536] chdir("./file0") = 0 [pid 5536] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5538] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5536] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5536] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5536] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5536] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5535] <... write resumed>) = 4243456 [pid 5534] <... write resumed>) = 4243456 [pid 5535] exit_group(0 [pid 5534] exit_group(0 [pid 5535] <... exit_group resumed>) = ? [pid 5534] <... exit_group resumed>) = ? [pid 5534] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5534, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=31 /* 0.31 s */} --- [pid 5535] +++ exited with 0 +++ [pid 5245] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5535, si_uid=0, si_status=0, si_utime=15 /* 0.15 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./55/binderfs", [pid 5244] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] unlink("./55/binderfs" [pid 5244] getdents64(3, [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./55/binderfs") = 0 [pid 5244] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./55/file0", [pid 5244] newfstatat(AT_FDCWD, "./55/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] newfstatat(4, "", [pid 5245] <... openat resumed>) = 4 [pid 5245] newfstatat(4, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5244] getdents64(4, [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5244] close(4 [pid 5245] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5245] rmdir("./55/file0" [pid 5244] rmdir("./55/file0" [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5244] getdents64(3, [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./55") = 0 [pid 5536] <... write resumed>) = 4243456 [pid 5245] close(3 [pid 5244] mkdir("./56", 0777 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./55" [pid 5536] exit_group(0 [pid 5244] <... mkdir resumed>) = 0 [pid 5536] <... exit_group resumed>) = ? [pid 5245] <... rmdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] mkdir("./56", 0777 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5536] +++ exited with 0 +++ [pid 5245] <... mkdir resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] close(3 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5536, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=24 /* 0.24 s */} --- [pid 5245] <... openat resumed>) = 3 [pid 5537] <... write resumed>) = 16777216 [pid 5247] umount2("./54", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... ioctl resumed>) = 0 [pid 5537] munmap(0x7f6c8ae00000, 138412032 [pid 5245] close(3 [pid 5247] openat(AT_FDCWD, "./54", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5537] <... munmap resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./54/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./54/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5537] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] unlink("./54/binderfs") = 0 [pid 5247] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5537] <... openat resumed>) = 4 [pid 5537] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5537] close(3) = 0 [pid 5247] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5537] close(4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./54/file0", [pid 5537] <... close resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5537] mkdir("./file0", 0777 [pid 5247] umount2("./54/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5537] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./54/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5537] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./54/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./54") = 0 [pid 5247] mkdir("./55", 0777 [pid 5537] <... mount resumed>) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [ 406.238485][ T5537] loop3: detected capacity change from 0 to 32768 [pid 5247] close(3 [pid 5537] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5537] chdir("./file0") = 0 [pid 5537] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5538] <... write resumed>) = 16777216 [pid 5537] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5538] munmap(0x7f6c8ae00000, 138412032 [pid 5537] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5537] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5537] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5538] <... munmap resumed>) = 0 [pid 5538] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5538] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5538] close(3) = 0 [pid 5538] close(4) = 0 [pid 5538] mkdir("./file0", 0777) = 0 [ 406.388464][ T5538] loop0: detected capacity change from 0 to 32768 [pid 5538] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5538] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5538] chdir("./file0") = 0 [pid 5538] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5538] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5538] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5538] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5539 ./strace-static-x86_64: Process 5539 attached [pid 5537] <... write resumed>) = 4243456 [pid 5245] <... close resumed>) = 0 [pid 5539] set_robust_list(0x55555b590660, 24) = 0 [pid 5539] chdir("./56") = 0 [pid 5537] exit_group(0) = ? [pid 5539] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5539] setpgid(0, 0) = 0 [pid 5539] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5539] <... openat resumed>) = 3 [pid 5537] +++ exited with 0 +++ [pid 5539] write(3, "1000", 4) = 4 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5537, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5539] close(3 [pid 5246] restart_syscall(<... resuming interrupted clone ...>executing program [pid 5539] <... close resumed>) = 0 [pid 5539] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5539] write(1, "executing program\n", 18) = 18 [pid 5539] memfd_create("syzkaller", 0) = 3 [pid 5539] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 ./strace-static-x86_64: Process 5540 attached [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5540 [pid 5246] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./55/binderfs") = 0 [pid 5246] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5540] set_robust_list(0x55555b590660, 24) = 0 [pid 5540] chdir("./56") = 0 [pid 5540] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5540] setpgid(0, 0) = 0 [pid 5540] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5540] write(3, "1000", 4) = 4 [pid 5540] close(3) = 0 [pid 5540] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5540] write(1, "executing program\n", 18) = 18 [pid 5540] memfd_create("syzkaller", 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./55/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5540] <... memfd_create resumed>) = 3 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./55/file0" [pid 5540] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./55" [pid 5540] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... rmdir resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] mkdir("./56", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5541 attached , child_tidptr=0x55555b590650) = 5541 [pid 5541] set_robust_list(0x55555b590660, 24) = 0 [pid 5541] chdir("./55") = 0 [pid 5541] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5541] setpgid(0, 0) = 0 executing program [pid 5541] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5541] write(3, "1000", 4) = 4 [pid 5541] close(3) = 0 [pid 5541] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5541] write(1, "executing program\n", 18) = 18 [pid 5541] memfd_create("syzkaller", 0) = 3 [pid 5541] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5538] <... write resumed>) = 4243456 [pid 5538] exit_group(0) = ? [pid 5538] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5538, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./56/binderfs") = 0 [pid 5243] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./56/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./56") = 0 [pid 5243] mkdir("./57", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5542 ./strace-static-x86_64: Process 5542 attached [pid 5542] set_robust_list(0x55555b590660, 24) = 0 [pid 5542] chdir("./56") = 0 [pid 5542] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5542] setpgid(0, 0) = 0 [pid 5542] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5542] write(3, "1000", 4) = 4 [pid 5542] close(3) = 0 [pid 5542] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5243] <... close resumed>) = 0 executing program [pid 5542] write(1, "executing program\n", 18) = 18 [pid 5542] memfd_create("syzkaller", 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5542] <... memfd_create resumed>) = 3 [pid 5542] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 ./strace-static-x86_64: Process 5543 attached [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5543 [pid 5543] set_robust_list(0x55555b590660, 24) = 0 [pid 5543] chdir("./57") = 0 [pid 5543] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5540] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5543] setpgid(0, 0) = 0 [pid 5543] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5539] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5543] <... openat resumed>) = 3 executing program [pid 5541] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5543] write(3, "1000", 4) = 4 [pid 5543] close(3) = 0 [pid 5543] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5543] write(1, "executing program\n", 18) = 18 [pid 5543] memfd_create("syzkaller", 0) = 3 [pid 5543] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5540] <... write resumed>) = 16777216 [pid 5541] <... write resumed>) = 16777216 [pid 5540] munmap(0x7f6c8ae00000, 138412032 [pid 5541] munmap(0x7f6c8ae00000, 138412032 [pid 5542] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5539] <... write resumed>) = 16777216 [pid 5539] munmap(0x7f6c8ae00000, 138412032 [pid 5540] <... munmap resumed>) = 0 [pid 5543] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5541] <... munmap resumed>) = 0 [pid 5540] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5539] <... munmap resumed>) = 0 [pid 5540] <... openat resumed>) = 4 [pid 5540] ioctl(4, LOOP_SET_FD, 3 [pid 5541] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5539] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5541] <... openat resumed>) = 4 [pid 5540] <... ioctl resumed>) = 0 [pid 5541] ioctl(4, LOOP_SET_FD, 3 [pid 5539] <... openat resumed>) = 4 [pid 5541] <... ioctl resumed>) = 0 [pid 5539] ioctl(4, LOOP_SET_FD, 3 [pid 5541] close(3 [pid 5540] close(3 [pid 5541] <... close resumed>) = 0 [pid 5541] close(4 [pid 5540] <... close resumed>) = 0 [pid 5540] close(4) = 0 [pid 5540] mkdir("./file0", 0777) = 0 [pid 5540] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5541] <... close resumed>) = 0 [pid 5539] <... ioctl resumed>) = 0 [pid 5541] mkdir("./file0", 0777 [pid 5539] close(3 [pid 5541] <... mkdir resumed>) = 0 [pid 5539] <... close resumed>) = 0 [pid 5540] <... mount resumed>) = 0 [pid 5540] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5539] close(4 [pid 5540] <... openat resumed>) = 3 [pid 5539] <... close resumed>) = 0 [pid 5540] chdir("./file0" [pid 5539] mkdir("./file0", 0777 [pid 5540] <... chdir resumed>) = 0 [pid 5540] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5541] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5540] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5539] <... mkdir resumed>) = 0 [pid 5539] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5540] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5540] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 407.410845][ T5540] loop2: detected capacity change from 0 to 32768 [ 407.420455][ T5541] loop4: detected capacity change from 0 to 32768 [ 407.439865][ T5539] loop1: detected capacity change from 0 to 32768 [pid 5540] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5539] <... mount resumed>) = 0 [pid 5539] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5539] chdir("./file0") = 0 [pid 5539] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5541] <... mount resumed>) = 0 [pid 5539] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5541] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5539] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5541] <... openat resumed>) = 3 [pid 5541] chdir("./file0") = 0 [pid 5539] <... openat resumed>) = 4 [pid 5541] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5539] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5539] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5541] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5541] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5541] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5541] exit_group(0) = ? [pid 5541] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5541, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5540] <... write resumed>) = 4243456 [pid 5540] exit_group(0) = ? [pid 5247] umount2("./55", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./55", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5540] +++ exited with 0 +++ [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5540, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./55/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./55/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./55/binderfs") = 0 [pid 5247] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./56/binderfs") = 0 [pid 5245] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] close(4 [pid 5247] newfstatat(AT_FDCWD, "./55/file0", [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./56/file0" [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./56") = 0 [pid 5245] mkdir("./57", 0777) = 0 [pid 5247] umount2("./55/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./55/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5247] <... openat resumed>) = 4 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5247] newfstatat(4, "", [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5539] <... write resumed>) = 4243456 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5539] exit_group(0 [pid 5247] rmdir("./55/file0" [pid 5539] <... exit_group resumed>) = ? [pid 5247] <... rmdir resumed>) = 0 [pid 5539] +++ exited with 0 +++ [pid 5247] getdents64(3, [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5539, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5542] <... write resumed>) = 16777216 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5542] munmap(0x7f6c8ae00000, 138412032 [pid 5247] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./56/binderfs") = 0 [pid 5244] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./55" [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... rmdir resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5543] <... write resumed>) = 16777216 [pid 5247] mkdir("./56", 0777 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./56/file0" [pid 5543] munmap(0x7f6c8ae00000, 138412032 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] <... rmdir resumed>) = 0 [pid 5542] <... munmap resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5244] getdents64(3, [pid 5542] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5542] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5543] <... munmap resumed>) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./56" [pid 5543] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... rmdir resumed>) = 0 [pid 5542] close(3 [pid 5244] mkdir("./57", 0777 [pid 5542] <... close resumed>) = 0 [pid 5542] close(4) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5542] mkdir("./file0", 0777) = 0 [pid 5542] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5543] <... openat resumed>) = 4 [pid 5244] <... openat resumed>) = 3 [pid 5543] ioctl(4, LOOP_SET_FD, 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5542] <... mount resumed>) = 0 [pid 5542] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5542] chdir("./file0") = 0 [pid 5542] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5542] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5542] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5542] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5543] <... ioctl resumed>) = 0 [ 407.900382][ T5542] loop3: detected capacity change from 0 to 32768 [ 407.935288][ T5543] loop0: detected capacity change from 0 to 32768 [pid 5543] close(3) = 0 [pid 5543] close(4) = 0 [pid 5543] mkdir("./file0", 0777) = 0 [pid 5543] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5543] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5543] chdir("./file0") = 0 [pid 5543] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5543] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5543] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5543] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5544 attached , child_tidptr=0x55555b590650) = 5544 [pid 5544] set_robust_list(0x55555b590660, 24) = 0 [pid 5544] chdir("./57") = 0 [pid 5544] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5544] setpgid(0, 0) = 0 [pid 5544] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5544] write(3, "1000", 4) = 4 [pid 5544] close(3) = 0 [pid 5544] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5544] write(1, "executing program\n", 18 [pid 5247] <... close resumed>) = 0 [pid 5544] <... write resumed>) = 18 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5545 ./strace-static-x86_64: Process 5545 attached [pid 5544] memfd_create("syzkaller", 0 [pid 5545] set_robust_list(0x55555b590660, 24 [pid 5544] <... memfd_create resumed>) = 3 [pid 5545] <... set_robust_list resumed>) = 0 [pid 5545] chdir("./56" [pid 5544] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5545] <... chdir resumed>) = 0 [pid 5544] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5545] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5545] setpgid(0, 0) = 0 [pid 5545] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5545] write(3, "1000", 4) = 4 [pid 5545] close(3) = 0 [pid 5545] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5545] write(1, "executing program\n", 18) = 18 [pid 5545] memfd_create("syzkaller", 0) = 3 [pid 5545] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5546 attached [pid 5546] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5546 [pid 5546] <... set_robust_list resumed>) = 0 [pid 5546] chdir("./57") = 0 [pid 5543] <... write resumed>) = 4243456 [pid 5546] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5546] setpgid(0, 0 [pid 5543] exit_group(0 [pid 5546] <... setpgid resumed>) = 0 [pid 5543] <... exit_group resumed>) = ? [pid 5546] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5543] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5543, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5546] <... openat resumed>) = 3 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5546] write(3, "1000", 4 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5546] <... write resumed>) = 4 [pid 5546] close(3 [pid 5243] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5546] <... close resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5546] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... openat resumed>) = 3 executing program [pid 5546] <... symlink resumed>) = 0 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./57/binderfs") = 0 [pid 5243] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5546] write(1, "executing program\n", 18) = 18 [pid 5542] <... write resumed>) = 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5542] exit_group(0 [pid 5243] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5546] memfd_create("syzkaller", 0 [pid 5542] <... exit_group resumed>) = ? [pid 5546] <... memfd_create resumed>) = 3 [pid 5542] +++ exited with 0 +++ [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5546] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5542, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=29 /* 0.29 s */} --- [pid 5243] newfstatat(AT_FDCWD, "./57/file0", [pid 5546] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./57/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./57") = 0 [pid 5246] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] mkdir("./58", 0777 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... openat resumed>) = 3 [pid 5243] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] close(3 [pid 5246] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./56/binderfs") = 0 [pid 5246] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./56/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./56/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./56") = 0 [pid 5246] mkdir("./57", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5545] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5547 attached [pid 5547] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5547 [pid 5547] <... set_robust_list resumed>) = 0 [pid 5547] chdir("./58") = 0 [pid 5547] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5547] setpgid(0, 0) = 0 [pid 5547] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5547] write(3, "1000", 4) = 4 [pid 5547] close(3) = 0 [pid 5547] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5547] write(1, "executing program\n", 18executing program ) = 18 [pid 5547] memfd_create("syzkaller", 0) = 3 [pid 5547] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5544] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5548 attached [pid 5548] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5548 [pid 5548] <... set_robust_list resumed>) = 0 [pid 5548] chdir("./57") = 0 [pid 5546] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5548] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5548] setpgid(0, 0) = 0 [pid 5548] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5548] write(3, "1000", 4) = 4 [pid 5548] close(3) = 0 [pid 5548] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5548] write(1, "executing program\n", 18) = 18 [pid 5548] memfd_create("syzkaller", 0) = 3 [pid 5548] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5547] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5548] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5545] <... write resumed>) = 16777216 [pid 5545] munmap(0x7f6c8ae00000, 138412032 [pid 5546] <... write resumed>) = 16777216 [pid 5544] <... write resumed>) = 16777216 [pid 5546] munmap(0x7f6c8ae00000, 138412032 [pid 5544] munmap(0x7f6c8ae00000, 138412032 [pid 5545] <... munmap resumed>) = 0 [pid 5545] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5545] ioctl(4, LOOP_SET_FD, 3 [pid 5546] <... munmap resumed>) = 0 [pid 5545] <... ioctl resumed>) = 0 [pid 5544] <... munmap resumed>) = 0 [pid 5546] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5545] close(3 [pid 5544] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5544] ioctl(4, LOOP_SET_FD, 3 [pid 5545] <... close resumed>) = 0 [pid 5545] close(4 [pid 5546] <... openat resumed>) = 4 [pid 5545] <... close resumed>) = 0 [pid 5545] mkdir("./file0", 0777 [pid 5546] ioctl(4, LOOP_SET_FD, 3 [pid 5545] <... mkdir resumed>) = 0 [pid 5546] <... ioctl resumed>) = 0 [pid 5545] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5544] <... ioctl resumed>) = 0 [pid 5545] <... mount resumed>) = 0 [pid 5546] close(3 [pid 5544] close(3 [pid 5545] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5546] <... close resumed>) = 0 [pid 5544] <... close resumed>) = 0 [pid 5546] close(4 [pid 5545] <... openat resumed>) = 3 [pid 5544] close(4 [pid 5545] chdir("./file0" [pid 5546] <... close resumed>) = 0 [pid 5545] <... chdir resumed>) = 0 [pid 5544] <... close resumed>) = 0 [pid 5546] mkdir("./file0", 0777 [pid 5545] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5544] mkdir("./file0", 0777 [pid 5546] <... mkdir resumed>) = 0 [pid 5545] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5544] <... mkdir resumed>) = 0 [pid 5546] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5545] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5544] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5545] <... openat resumed>) = 4 [ 409.053807][ T5545] loop4: detected capacity change from 0 to 32768 [ 409.089310][ T5544] loop2: detected capacity change from 0 to 32768 [ 409.096201][ T5546] loop1: detected capacity change from 0 to 32768 [pid 5546] <... mount resumed>) = 0 [pid 5545] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5546] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5545] <... openat resumed>) = 5 [pid 5546] chdir("./file0" [pid 5545] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5546] <... chdir resumed>) = 0 [pid 5546] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5546] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5546] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5546] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5544] <... mount resumed>) = 0 [pid 5544] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5544] chdir("./file0") = 0 [pid 5544] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5544] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5544] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5544] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5545] <... write resumed>) = 4243456 [pid 5545] exit_group(0) = ? [pid 5545] +++ exited with 0 +++ [pid 5544] <... write resumed>) = 4243456 [pid 5544] exit_group(0) = ? [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5545, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=27 /* 0.27 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5546] <... write resumed>) = 4243456 [pid 5546] exit_group(0) = ? [pid 5247] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./56", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./56", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5546] +++ exited with 0 +++ [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5546, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=25 /* 0.25 s */} --- [pid 5247] umount2("./56/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./56/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./56/binderfs") = 0 [pid 5247] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5544] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5544, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... openat resumed>) = 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(3, "", [pid 5244] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5245] getdents64(3, [pid 5244] newfstatat(3, "", [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] newfstatat(AT_FDCWD, "./57/binderfs", [pid 5244] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] unlink("./57/binderfs" [pid 5244] newfstatat(AT_FDCWD, "./57/binderfs", [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] unlink("./57/binderfs") = 0 [pid 5244] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5547] <... write resumed>) = 16777216 [pid 5247] newfstatat(AT_FDCWD, "./56/file0", [pid 5547] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5247] umount2("./56/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./56/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... umount2 resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 4 [pid 5245] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./57/file0", [pid 5547] <... munmap resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5547] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] newfstatat(AT_FDCWD, "./57/file0", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5548] <... write resumed>) = 16777216 [pid 5547] <... openat resumed>) = 4 [pid 5247] getdents64(4, [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5547] ioctl(4, LOOP_SET_FD, 3 [pid 5247] getdents64(4, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./56/file0" [pid 5245] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5548] munmap(0x7f6c8ae00000, 138412032 [pid 5245] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", [pid 5245] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5245] newfstatat(4, "", [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] close(4) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] rmdir("./57/file0" [pid 5245] close(4 [pid 5247] getdents64(3, [pid 5244] <... rmdir resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./57/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] getdents64(3, [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5245] close(3) = 0 [pid 5244] rmdir("./57" [pid 5245] rmdir("./57" [pid 5244] <... rmdir resumed>) = 0 [pid 5547] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5245] <... rmdir resumed>) = 0 [pid 5547] close(3 [pid 5247] <... close resumed>) = 0 [pid 5547] <... close resumed>) = 0 [pid 5247] rmdir("./56" [pid 5547] close(4 [pid 5247] <... rmdir resumed>) = 0 [pid 5244] mkdir("./58", 0777 [pid 5547] <... close resumed>) = 0 [pid 5247] mkdir("./57", 0777 [pid 5547] mkdir("./file0", 0777 [pid 5247] <... mkdir resumed>) = 0 [pid 5547] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5547] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] mkdir("./58", 0777 [pid 5244] <... mkdir resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5244] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5548] <... munmap resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5548] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] close(3 [pid 5244] close(3 [pid 5547] <... mount resumed>) = 0 [pid 5547] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5547] chdir("./file0") = 0 [pid 5547] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5548] <... openat resumed>) = 4 [pid 5547] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [ 409.463670][ T5547] loop0: detected capacity change from 0 to 32768 [pid 5548] ioctl(4, LOOP_SET_FD, 3 [pid 5547] <... openat resumed>) = 4 [pid 5547] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5547] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5548] <... ioctl resumed>) = 0 [ 409.522334][ T5548] loop3: detected capacity change from 0 to 32768 [pid 5548] close(3) = 0 [pid 5548] close(4) = 0 [pid 5548] mkdir("./file0", 0777) = 0 [pid 5548] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5548] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5548] chdir("./file0") = 0 [pid 5548] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5548] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5548] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5548] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5549 attached [pid 5549] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5549 [pid 5549] <... set_robust_list resumed>) = 0 [pid 5549] chdir("./57") = 0 [pid 5549] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5549] setpgid(0, 0) = 0 [pid 5547] <... write resumed>) = 4243456 [pid 5549] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5547] exit_group(0 [pid 5549] <... openat resumed>) = 3 [pid 5547] <... exit_group resumed>) = ? [pid 5549] write(3, "1000", 4 [pid 5547] +++ exited with 0 +++ [pid 5549] <... write resumed>) = 4 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5547, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5549] close(3) = 0 [pid 5549] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5243] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5549] write(1, "executing program\n", 18 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) executing program [pid 5549] <... write resumed>) = 18 [pid 5243] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5549] memfd_create("syzkaller", 0 [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", [pid 5549] <... memfd_create resumed>) = 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5549] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] getdents64(3, [pid 5549] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] <... close resumed>) = 0 [pid 5243] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./58/binderfs" [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... close resumed>) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5550 attached [pid 5243] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5550] set_robust_list(0x55555b590660, 24) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5550 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5550] chdir("./58" [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5550] <... chdir resumed>) = 0 [pid 5550] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] newfstatat(AT_FDCWD, "./58/file0", [pid 5550] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5551 attached [pid 5550] setpgid(0, 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5551 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5550] <... setpgid resumed>) = 0 [pid 5243] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5550] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5551] set_robust_list(0x55555b590660, 24 [pid 5550] <... openat resumed>) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5551] <... set_robust_list resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5551] chdir("./58" [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", [pid 5551] <... chdir resumed>) = 0 [pid 5550] write(3, "1000", 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5551] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5550] <... write resumed>) = 4 [pid 5551] <... prctl resumed>) = 0 [pid 5550] close(3 [pid 5243] getdents64(4, [pid 5551] setpgid(0, 0 [pid 5550] <... close resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5551] <... setpgid resumed>) = 0 [pid 5550] symlink("/dev/binderfs", "./binderfs" [pid 5243] getdents64(4, [pid 5551] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5550] <... symlink resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5551] <... openat resumed>) = 3 [pid 5550] write(1, "executing program\n", 18 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./58/file0"executing program [pid 5551] write(3, "1000", 4 [pid 5550] <... write resumed>) = 18 [pid 5243] <... rmdir resumed>) = 0 [pid 5551] <... write resumed>) = 4 [pid 5550] memfd_create("syzkaller", 0 [pid 5243] getdents64(3, [pid 5551] close(3 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5551] <... close resumed>) = 0 [pid 5243] close(3 [pid 5551] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5550] <... memfd_create resumed>) = 3 [pid 5243] <... close resumed>) = 0 [pid 5550] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5551] write(1, "executing program\n", 18executing program ) = 18 [pid 5551] memfd_create("syzkaller", 0 [pid 5243] rmdir("./58" [pid 5551] <... memfd_create resumed>) = 3 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./59", 0777 [pid 5551] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5551] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5548] <... write resumed>) = 4243456 [pid 5548] exit_group(0) = ? [pid 5548] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5548, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./57/binderfs") = 0 [pid 5246] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./57/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./57/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./57") = 0 [pid 5246] mkdir("./58", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5552 ./strace-static-x86_64: Process 5552 attached [pid 5552] set_robust_list(0x55555b590660, 24) = 0 [pid 5552] chdir("./59") = 0 [pid 5552] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5549] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5552] setpgid(0, 0) = 0 [pid 5552] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5552] write(3, "1000", 4) = 4 [pid 5552] close(3) = 0 [pid 5552] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5552] write(1, "executing program\n", 18) = 18 [pid 5552] memfd_create("syzkaller", 0 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5553 ./strace-static-x86_64: Process 5553 attached [pid 5553] set_robust_list(0x55555b590660, 24) = 0 [pid 5553] chdir("./58") = 0 [pid 5553] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5552] <... memfd_create resumed>) = 3 [pid 5552] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5553] setpgid(0, 0) = 0 [pid 5553] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5553] write(3, "1000", 4) = 4 [pid 5553] close(3) = 0 [pid 5553] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5553] write(1, "executing program\n", 18executing program ) = 18 [pid 5553] memfd_create("syzkaller", 0) = 3 [pid 5553] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5551] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5550] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5553] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5549] <... write resumed>) = 16777216 [pid 5549] munmap(0x7f6c8ae00000, 138412032 [pid 5553] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5552] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5549] <... munmap resumed>) = 0 [pid 5549] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5549] ioctl(4, LOOP_SET_FD, 3 [pid 5550] <... write resumed>) = 16777216 [pid 5550] munmap(0x7f6c8ae00000, 138412032 [pid 5551] <... write resumed>) = 16777216 [pid 5549] <... ioctl resumed>) = 0 [pid 5551] munmap(0x7f6c8ae00000, 138412032 [pid 5549] close(3) = 0 [pid 5549] close(4) = 0 [ 410.643551][ T5549] loop4: detected capacity change from 0 to 32768 [pid 5549] mkdir("./file0", 0777 [pid 5550] <... munmap resumed>) = 0 [pid 5549] <... mkdir resumed>) = 0 [pid 5549] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5550] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5550] ioctl(4, LOOP_SET_FD, 3 [pid 5549] <... mount resumed>) = 0 [pid 5549] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5549] chdir("./file0") = 0 [pid 5549] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5549] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5549] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5549] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5551] <... munmap resumed>) = 0 [pid 5550] <... ioctl resumed>) = 0 [pid 5550] close(3) = 0 [pid 5550] close(4) = 0 [pid 5551] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5550] mkdir("./file0", 0777 [pid 5551] <... openat resumed>) = 4 [pid 5551] ioctl(4, LOOP_SET_FD, 3 [pid 5550] <... mkdir resumed>) = 0 [pid 5551] <... ioctl resumed>) = 0 [pid 5550] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5551] close(3) = 0 [pid 5551] close(4) = 0 [pid 5551] mkdir("./file0", 0777) = 0 [pid 5551] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5550] <... mount resumed>) = 0 [ 410.714822][ T5550] loop2: detected capacity change from 0 to 32768 [ 410.739926][ T5551] loop1: detected capacity change from 0 to 32768 [pid 5550] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5551] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5550] <... openat resumed>) = 3 [pid 5551] <... openat resumed>) = 3 [pid 5551] chdir("./file0") = 0 [pid 5550] chdir("./file0" [pid 5551] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5551] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5550] <... chdir resumed>) = 0 [pid 5550] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5551] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5550] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5551] <... openat resumed>) = 5 [pid 5550] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5551] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5550] <... openat resumed>) = 4 [pid 5550] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5550] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5549] <... write resumed>) = 4243456 [pid 5549] exit_group(0) = ? [pid 5549] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5549, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./57", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./57", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./57/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./57/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./57/binderfs") = 0 [pid 5247] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5552] <... write resumed>) = 16777216 [pid 5247] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./57/file0", [pid 5552] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./57/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./57/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4 [pid 5552] <... munmap resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./57/file0" [pid 5552] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... rmdir resumed>) = 0 [pid 5552] <... openat resumed>) = 4 [pid 5552] ioctl(4, LOOP_SET_FD, 3 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5550] <... write resumed>) = 4243456 [pid 5551] <... write resumed>) = 4243456 [pid 5247] <... close resumed>) = 0 [pid 5552] <... ioctl resumed>) = 0 [pid 5553] <... write resumed>) = 16777216 [pid 5552] close(3 [pid 5551] exit_group(0 [pid 5550] exit_group(0 [pid 5247] rmdir("./57" [pid 5553] munmap(0x7f6c8ae00000, 138412032 [pid 5552] <... close resumed>) = 0 [pid 5551] <... exit_group resumed>) = ? [pid 5550] <... exit_group resumed>) = ? [pid 5247] <... rmdir resumed>) = 0 [pid 5552] close(4 [pid 5551] +++ exited with 0 +++ [pid 5550] +++ exited with 0 +++ [pid 5247] mkdir("./58", 0777 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5550, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=31 /* 0.31 s */} --- [pid 5552] <... close resumed>) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5551, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=36 /* 0.36 s */} --- [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5552] mkdir("./file0", 0777 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] <... ioctl resumed>) = 0 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] close(3 [pid 5244] newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./58/binderfs") = 0 [pid 5244] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5552] <... mkdir resumed>) = 0 [ 411.069830][ T5552] loop0: detected capacity change from 0 to 32768 [pid 5553] <... munmap resumed>) = 0 [pid 5552] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = 0 [pid 5552] <... mount resumed>) = 0 [pid 5552] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5553] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5553] <... openat resumed>) = 4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5553] ioctl(4, LOOP_SET_FD, 3 [pid 5244] newfstatat(AT_FDCWD, "./58/file0", [pid 5552] <... openat resumed>) = 3 [pid 5245] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5552] chdir("./file0" [pid 5245] newfstatat(3, "", [pid 5552] <... chdir resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] getdents64(3, [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... openat resumed>) = 4 [pid 5245] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5245] newfstatat(AT_FDCWD, "./58/binderfs", [pid 5244] <... close resumed>) = 0 [pid 5552] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] rmdir("./58/file0" [pid 5552] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] unlink("./58/binderfs") = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5552] <... openat resumed>) = 4 [pid 5244] <... close resumed>) = 0 [pid 5245] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] rmdir("./58") = 0 [pid 5244] mkdir("./59", 0777 [pid 5553] <... ioctl resumed>) = 0 [pid 5552] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... mkdir resumed>) = 0 [pid 5553] close(3 [pid 5552] <... openat resumed>) = 5 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5553] <... close resumed>) = 0 [pid 5552] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... openat resumed>) = 3 [pid 5553] close(4 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5553] <... close resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5553] mkdir("./file0", 0777 [pid 5244] close(3 [pid 5553] <... mkdir resumed>) = 0 [ 411.153152][ T5553] loop3: detected capacity change from 0 to 32768 [pid 5553] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./58/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./58/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./58") = 0 [pid 5553] <... mount resumed>) = 0 [pid 5553] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5553] chdir("./file0") = 0 [pid 5245] mkdir("./59", 0777 [pid 5553] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5245] <... mkdir resumed>) = 0 [pid 5553] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5553] <... openat resumed>) = 4 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5553] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5553] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5554 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5554 ./strace-static-x86_64: Process 5555 attached [pid 5554] set_robust_list(0x55555b590660, 24 [pid 5555] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5555 [pid 5554] <... set_robust_list resumed>) = 0 [pid 5555] <... set_robust_list resumed>) = 0 [pid 5554] chdir("./58" [pid 5555] chdir("./59" [pid 5554] <... chdir resumed>) = 0 [pid 5555] <... chdir resumed>) = 0 [pid 5554] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5555] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5554] <... prctl resumed>) = 0 [pid 5555] <... prctl resumed>) = 0 [pid 5554] setpgid(0, 0 [pid 5555] setpgid(0, 0 [pid 5554] <... setpgid resumed>) = 0 [pid 5555] <... setpgid resumed>) = 0 [pid 5555] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5554] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5554] write(3, "1000", 4 [pid 5555] <... openat resumed>) = 3 [pid 5554] <... write resumed>) = 4 [pid 5555] write(3, "1000", 4) = 4 [pid 5555] close(3 [pid 5554] close(3 [pid 5555] <... close resumed>) = 0 [pid 5554] <... close resumed>) = 0 [pid 5555] symlink("/dev/binderfs", "./binderfs" [pid 5554] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5555] <... symlink resumed>) = 0 [pid 5554] write(1, "executing program\n", 18executing program executing program [pid 5555] write(1, "executing program\n", 18 [pid 5554] <... write resumed>) = 18 [pid 5555] <... write resumed>) = 18 [pid 5552] <... write resumed>) = 4243456 [pid 5554] memfd_create("syzkaller", 0 [pid 5555] memfd_create("syzkaller", 0 [pid 5552] exit_group(0 [pid 5554] <... memfd_create resumed>) = 3 [pid 5552] <... exit_group resumed>) = ? [pid 5554] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5555] <... memfd_create resumed>) = 3 [pid 5554] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5555] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5552] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5552, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./59/binderfs") = 0 [pid 5243] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5553] <... write resumed>) = 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./59/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./59/file0") = 0 [pid 5243] getdents64(3, [pid 5553] exit_group(0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5553] <... exit_group resumed>) = ? [pid 5243] close(3) = 0 [pid 5243] rmdir("./59") = 0 [pid 5243] mkdir("./60", 0777 [pid 5553] +++ exited with 0 +++ [pid 5243] <... mkdir resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5553, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] <... close resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5556 attached [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5556] set_robust_list(0x55555b590660, 24 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5556] <... set_robust_list resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5556 [pid 5246] newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./58/binderfs" [pid 5556] chdir("./59" [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5556] <... chdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5556] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5243] close(3 [pid 5556] setpgid(0, 0) = 0 [pid 5556] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5556] write(3, "1000", 4) = 4 [pid 5556] close(3) = 0 [pid 5556] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... umount2 resumed>) = 0 executing program [pid 5556] <... symlink resumed>) = 0 [pid 5556] write(1, "executing program\n", 18) = 18 [pid 5246] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5556] memfd_create("syzkaller", 0 [pid 5246] newfstatat(AT_FDCWD, "./58/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5556] <... memfd_create resumed>) = 3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5556] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./58/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./58") = 0 [pid 5246] mkdir("./59", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5555] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5554] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5557 attached , child_tidptr=0x55555b590650) = 5557 [pid 5557] set_robust_list(0x55555b590660, 24 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5557] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5558 attached [pid 5557] chdir("./59" [pid 5558] set_robust_list(0x55555b590660, 24 [pid 5557] <... chdir resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5558 [pid 5558] <... set_robust_list resumed>) = 0 [pid 5557] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5557] setpgid(0, 0) = 0 [pid 5557] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5558] chdir("./60") = 0 [pid 5557] <... openat resumed>) = 3 [pid 5558] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5557] write(3, "1000", 4 [pid 5558] <... prctl resumed>) = 0 [pid 5557] <... write resumed>) = 4 [pid 5558] setpgid(0, 0 [pid 5557] close(3 [pid 5558] <... setpgid resumed>) = 0 [pid 5557] <... close resumed>) = 0 [pid 5558] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5557] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5557] write(1, "executing program\n", 18 [pid 5558] <... openat resumed>) = 3 [pid 5557] <... write resumed>) = 18 [pid 5557] memfd_create("syzkaller", 0 [pid 5558] write(3, "1000", 4 [pid 5557] <... memfd_create resumed>) = 3 [pid 5558] <... write resumed>) = 4 [pid 5557] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5558] close(3) = 0 [pid 5557] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5558] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5558] write(1, "executing program\n", 18executing program ) = 18 [pid 5558] memfd_create("syzkaller", 0) = 3 [pid 5558] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5556] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5555] <... write resumed>) = 16777216 [pid 5554] <... write resumed>) = 16777216 [pid 5555] munmap(0x7f6c8ae00000, 138412032 [pid 5554] munmap(0x7f6c8ae00000, 138412032 [pid 5555] <... munmap resumed>) = 0 [pid 5554] <... munmap resumed>) = 0 [pid 5554] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5554] ioctl(4, LOOP_SET_FD, 3 [pid 5555] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5555] ioctl(4, LOOP_SET_FD, 3 [pid 5554] <... ioctl resumed>) = 0 [pid 5555] <... ioctl resumed>) = 0 [pid 5555] close(3) = 0 [pid 5554] close(3 [pid 5555] close(4 [pid 5554] <... close resumed>) = 0 [pid 5555] <... close resumed>) = 0 [pid 5555] mkdir("./file0", 0777) = 0 [pid 5555] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5557] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5554] close(4) = 0 [pid 5554] mkdir("./file0", 0777) = 0 [ 412.226379][ T5554] loop4: detected capacity change from 0 to 32768 [ 412.235953][ T5555] loop1: detected capacity change from 0 to 32768 [pid 5554] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5555] <... mount resumed>) = 0 [pid 5555] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5555] chdir("./file0") = 0 [pid 5555] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5555] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5555] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5555] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5554] <... mount resumed>) = 0 [pid 5554] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5554] chdir("./file0") = 0 [pid 5554] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5554] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5554] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5554] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5558] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5555] <... write resumed>) = 4243456 [pid 5555] exit_group(0 [pid 5556] <... write resumed>) = 16777216 [pid 5554] <... write resumed>) = 4243456 [pid 5555] <... exit_group resumed>) = ? [pid 5556] munmap(0x7f6c8ae00000, 138412032 [pid 5554] exit_group(0 [pid 5555] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5555, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5554] <... exit_group resumed>) = ? [pid 5554] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5554, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... restart_syscall resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./59/binderfs") = 0 [pid 5244] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] umount2("./58", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./58", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5556] <... munmap resumed>) = 0 [pid 5247] umount2("./58/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./58/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./58/binderfs") = 0 [pid 5247] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5556] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5556] <... openat resumed>) = 4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5556] ioctl(4, LOOP_SET_FD, 3 [pid 5244] newfstatat(AT_FDCWD, "./59/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5556] <... ioctl resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5556] close(3 [pid 5244] <... openat resumed>) = 4 [pid 5556] <... close resumed>) = 0 [pid 5244] newfstatat(4, "", [pid 5556] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5556] <... close resumed>) = 0 [pid 5556] mkdir("./file0", 0777 [pid 5244] getdents64(4, [pid 5556] <... mkdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5556] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] getdents64(4, [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./59/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5556] <... mount resumed>) = 0 [pid 5244] close(3 [pid 5556] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... close resumed>) = 0 [pid 5556] <... openat resumed>) = 3 [pid 5244] rmdir("./59" [pid 5556] chdir("./file0" [pid 5247] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5556] <... chdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5556] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] mkdir("./60", 0777 [pid 5556] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... mkdir resumed>) = 0 [pid 5556] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] newfstatat(AT_FDCWD, "./58/file0", [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5556] <... openat resumed>) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5556] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] umount2("./58/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 3 [pid 5556] <... openat resumed>) = 5 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5556] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] openat(AT_FDCWD, "./58/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./58/file0") = 0 [ 412.592885][ T5556] loop2: detected capacity change from 0 to 32768 [pid 5247] getdents64(3, [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./58") = 0 [pid 5247] mkdir("./59", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5557] <... write resumed>) = 16777216 [pid 5557] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5557] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5557] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5557] close(3) = 0 [pid 5557] close(4 [pid 5558] <... write resumed>) = 16777216 [pid 5557] <... close resumed>) = 0 [ 412.790928][ T5557] loop3: detected capacity change from 0 to 32768 [pid 5557] mkdir("./file0", 0777) = 0 [pid 5557] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5557] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5557] chdir("./file0") = 0 [pid 5557] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5558] munmap(0x7f6c8ae00000, 138412032 [pid 5557] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5556] <... write resumed>) = 4243456 [pid 5557] <... openat resumed>) = 4 [pid 5557] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5556] exit_group(0 [pid 5557] <... openat resumed>) = 5 [pid 5556] <... exit_group resumed>) = ? [pid 5557] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5556] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5556, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=39 /* 0.39 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./59/binderfs") = 0 [pid 5245] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5558] <... munmap resumed>) = 0 [pid 5558] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5558] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5558] close(3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... close resumed>) = 0 [pid 5245] newfstatat(AT_FDCWD, "./59/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5558] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5558] close(4 [pid 5247] <... close resumed>) = 0 [pid 5245] <... openat resumed>) = 4 ./strace-static-x86_64: Process 5559 attached [pid 5558] <... close resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5559] set_robust_list(0x55555b590660, 24 [pid 5245] getdents64(4, ./strace-static-x86_64: Process 5560 attached [pid 5559] <... set_robust_list resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5560 [pid 5559] chdir("./60" [pid 5245] getdents64(4, [pid 5560] set_robust_list(0x55555b590660, 24 [pid 5559] <... chdir resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5560] <... set_robust_list resumed>) = 0 [pid 5559] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5558] mkdir("./file0", 0777 [pid 5245] close(4 [pid 5560] chdir("./59" [pid 5245] <... close resumed>) = 0 [pid 5558] <... mkdir resumed>) = 0 [pid 5560] <... chdir resumed>) = 0 [pid 5245] rmdir("./59/file0" [pid 5560] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5559] <... prctl resumed>) = 0 [pid 5558] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... rmdir resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5559 [pid 5559] setpgid(0, 0) = 0 [pid 5560] <... prctl resumed>) = 0 [pid 5559] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5560] setpgid(0, 0 [pid 5245] getdents64(3, [pid 5559] <... openat resumed>) = 3 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5560] <... setpgid resumed>) = 0 [pid 5559] write(3, "1000", 4 [pid 5245] close(3 [pid 5560] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] <... close resumed>) = 0 [pid 5559] <... write resumed>) = 4 [pid 5245] rmdir("./59" [ 412.929845][ T5558] loop0: detected capacity change from 0 to 32768 [pid 5559] close(3 [pid 5245] <... rmdir resumed>) = 0 [pid 5559] <... close resumed>) = 0 [pid 5559] symlink("/dev/binderfs", "./binderfs" [pid 5560] <... openat resumed>) = 3 [pid 5559] <... symlink resumed>) = 0 [pid 5558] <... mount resumed>) = 0 [pid 5245] mkdir("./60", 0777 [pid 5560] write(3, "1000", 4 [pid 5559] write(1, "executing program\n", 18 [pid 5558] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORYexecuting program [pid 5245] <... mkdir resumed>) = 0 [pid 5560] <... write resumed>) = 4 [pid 5559] <... write resumed>) = 18 [pid 5558] <... openat resumed>) = 3 [pid 5560] close(3 [pid 5559] memfd_create("syzkaller", 0 [pid 5558] chdir("./file0" [pid 5560] <... close resumed>) = 0 [pid 5558] <... chdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5560] symlink("/dev/binderfs", "./binderfs" [pid 5558] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5560] <... symlink resumed>) = 0 [pid 5559] <... memfd_create resumed>) = 3 [pid 5558] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... openat resumed>) = 3 [pid 5558] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000executing program ) = 4 [pid 5560] write(1, "executing program\n", 18 [pid 5559] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5558] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5560] <... write resumed>) = 18 [pid 5560] memfd_create("syzkaller", 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5558] <... openat resumed>) = 5 [pid 5245] close(3 [pid 5559] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5558] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5560] <... memfd_create resumed>) = 3 [pid 5560] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5557] <... write resumed>) = 4243456 [pid 5557] exit_group(0) = ? [pid 5557] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5557, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./59/binderfs") = 0 [pid 5246] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5561 attached , child_tidptr=0x55555b590650) = 5561 [pid 5561] set_robust_list(0x55555b590660, 24) = 0 [pid 5561] chdir("./60") = 0 [pid 5561] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5561] setpgid(0, 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5561] <... setpgid resumed>) = 0 [pid 5246] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5561] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5561] <... openat resumed>) = 3 [pid 5246] newfstatat(AT_FDCWD, "./59/file0", [pid 5561] write(3, "1000", 4) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5561] close(3 [pid 5246] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5561] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5561] symlink("/dev/binderfs", "./binderfs" [pid 5246] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5561] <... symlink resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5561] write(1, "executing program\n", 18 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4executing program [pid 5561] <... write resumed>) = 18 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./59/file0" [pid 5561] memfd_create("syzkaller", 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5561] <... memfd_create resumed>) = 3 [pid 5246] getdents64(3, [pid 5561] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3 [pid 5561] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./59") = 0 [pid 5246] mkdir("./60", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5558] <... write resumed>) = 4243456 [pid 5558] exit_group(0) = ? [pid 5558] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5558, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./60/binderfs") = 0 [pid 5243] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5562 ./strace-static-x86_64: Process 5562 attached [pid 5243] getdents64(4, [pid 5562] set_robust_list(0x55555b590660, 24 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5562] <... set_robust_list resumed>) = 0 [pid 5243] getdents64(4, [pid 5562] chdir("./60" [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5562] <... chdir resumed>) = 0 [pid 5243] close(4 [pid 5562] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./60/file0") = 0 [pid 5562] <... prctl resumed>) = 0 [pid 5243] getdents64(3, [pid 5562] setpgid(0, 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5562] <... setpgid resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./60") = 0 [pid 5243] mkdir("./61", 0777) = 0 [pid 5562] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5559] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5562] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5562] write(3, "1000", 4) = 4 [pid 5562] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5562] <... close resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5562] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5562] <... symlink resumed>) = 0 [pid 5562] write(1, "executing program\n", 18executing program ) = 18 [pid 5562] memfd_create("syzkaller", 0) = 3 [pid 5562] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5560] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5561] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5563 attached [pid 5563] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5563 [pid 5563] chdir("./61") = 0 [pid 5563] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5563] setpgid(0, 0) = 0 [pid 5563] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5563] write(3, "1000", 4) = 4 [pid 5563] close(3) = 0 [pid 5563] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5563] write(1, "executing program\n", 18) = 18 [pid 5563] memfd_create("syzkaller", 0) = 3 [pid 5563] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5559] <... write resumed>) = 16777216 [pid 5562] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5559] munmap(0x7f6c8ae00000, 138412032 [pid 5560] <... write resumed>) = 16777216 [pid 5559] <... munmap resumed>) = 0 [pid 5559] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5560] munmap(0x7f6c8ae00000, 138412032 [pid 5559] <... openat resumed>) = 4 [pid 5559] ioctl(4, LOOP_SET_FD, 3 [pid 5560] <... munmap resumed>) = 0 [pid 5559] <... ioctl resumed>) = 0 [pid 5560] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5560] ioctl(4, LOOP_SET_FD, 3 [pid 5559] close(3) = 0 [pid 5559] close(4) = 0 [pid 5559] mkdir("./file0", 0777 [pid 5561] <... write resumed>) = 16777216 [pid 5559] <... mkdir resumed>) = 0 [pid 5560] <... ioctl resumed>) = 0 [pid 5559] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5559] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5559] chdir("./file0") = 0 [pid 5559] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5559] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5559] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5559] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5561] munmap(0x7f6c8ae00000, 138412032 [pid 5560] close(3) = 0 [pid 5560] close(4) = 0 [pid 5560] mkdir("./file0", 0777) = 0 [ 413.960140][ T5559] loop1: detected capacity change from 0 to 32768 [ 413.982280][ T5560] loop4: detected capacity change from 0 to 32768 [pid 5560] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5563] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5561] <... munmap resumed>) = 0 [pid 5561] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5560] <... mount resumed>) = 0 [pid 5561] ioctl(4, LOOP_SET_FD, 3 [pid 5560] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5561] <... ioctl resumed>) = 0 [pid 5560] chdir("./file0") = 0 [pid 5560] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5560] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5560] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5560] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5561] close(3) = 0 [pid 5561] close(4) = 0 [pid 5561] mkdir("./file0", 0777) = 0 [pid 5561] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5561] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5561] chdir("./file0") = 0 [pid 5561] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 414.100850][ T5561] loop2: detected capacity change from 0 to 32768 [pid 5561] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5561] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5561] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5559] <... write resumed>) = 4243456 [pid 5559] exit_group(0) = ? [pid 5559] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5559, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./60/binderfs") = 0 [pid 5244] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./60/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./60") = 0 [pid 5244] mkdir("./61", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5562] <... write resumed>) = 16777216 [pid 5562] munmap(0x7f6c8ae00000, 138412032 [pid 5560] <... write resumed>) = 4243456 [pid 5560] exit_group(0) = ? [pid 5560] +++ exited with 0 +++ [pid 5562] <... munmap resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5560, si_uid=0, si_status=0, si_utime=14 /* 0.14 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5562] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5562] ioctl(4, LOOP_SET_FD, 3 [pid 5247] umount2("./59", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5561] <... write resumed>) = 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5561] exit_group(0 [pid 5247] openat(AT_FDCWD, "./59", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5561] <... exit_group resumed>) = ? [pid 5562] <... ioctl resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5562] close(3) = 0 [pid 5562] close(4) = 0 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5562] mkdir("./file0", 0777 [pid 5561] +++ exited with 0 +++ [pid 5247] getdents64(3, [pid 5562] <... mkdir resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5561, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=31 /* 0.31 s */} --- [pid 5562] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./59/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./59/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./59/binderfs") = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./60/binderfs") = 0 [pid 5245] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./59/file0", [pid 5245] <... umount2 resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./59/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./59/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 414.450470][ T5562] loop3: detected capacity change from 0 to 32768 [pid 5562] <... mount resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5245] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] newfstatat(AT_FDCWD, "./60/file0", [pid 5247] close(4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... close resumed>) = 0 [pid 5245] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] rmdir("./59/file0" [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... rmdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(3, [pid 5245] getdents64(4, [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5245] close(4 [pid 5562] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5247] rmdir("./59" [pid 5245] rmdir("./60/file0" [pid 5562] <... openat resumed>) = 3 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5562] chdir("./file0") = 0 [pid 5247] mkdir("./60", 0777 [pid 5562] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] getdents64(3, [pid 5562] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5562] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5562] <... openat resumed>) = 4 [pid 5247] <... mkdir resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5562] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5245] rmdir("./60" [pid 5562] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... rmdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] mkdir("./61", 0777 [pid 5247] <... openat resumed>) = 3 [pid 5245] <... mkdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5563] <... write resumed>) = 16777216 [pid 5563] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5564 attached , child_tidptr=0x55555b590650) = 5564 [pid 5564] set_robust_list(0x55555b590660, 24) = 0 [pid 5564] chdir("./61" [pid 5563] <... munmap resumed>) = 0 [pid 5564] <... chdir resumed>) = 0 [pid 5564] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5563] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5564] setpgid(0, 0) = 0 [pid 5563] <... openat resumed>) = 4 [pid 5563] ioctl(4, LOOP_SET_FD, 3 [pid 5564] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5564] write(3, "1000", 4) = 4 [pid 5564] close(3) = 0 [pid 5564] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5564] write(1, "executing program\n", 18) = 18 [pid 5564] memfd_create("syzkaller", 0 [pid 5563] <... ioctl resumed>) = 0 [pid 5563] close(3) = 0 [pid 5563] close(4) = 0 [pid 5563] mkdir("./file0", 0777 [pid 5564] <... memfd_create resumed>) = 3 [pid 5563] <... mkdir resumed>) = 0 [pid 5564] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 414.644023][ T5563] loop0: detected capacity change from 0 to 32768 [pid 5563] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5563] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5563] chdir("./file0") = 0 [pid 5563] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5563] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5563] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5563] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5562] <... write resumed>) = 4243456 [pid 5562] exit_group(0) = ? [pid 5562] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5562, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./60/binderfs") = 0 [pid 5246] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5247] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./60/file0" [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5565 attached [pid 5246] <... rmdir resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5565 [pid 5246] getdents64(3, [pid 5565] set_robust_list(0x55555b590660, 24) = 0 [pid 5565] chdir("./60" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5565] <... chdir resumed>) = 0 [pid 5565] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5565] setpgid(0, 0) = 0 [pid 5565] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] close(3executing program [pid 5565] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5565] write(3, "1000", 4) = 4 [pid 5565] close(3) = 0 [pid 5565] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5565] write(1, "executing program\n", 18) = 18 [pid 5565] memfd_create("syzkaller", 0) = 3 [pid 5245] <... close resumed>) = 0 [pid 5565] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] rmdir("./60" [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5566 attached [pid 5246] <... rmdir resumed>) = 0 [pid 5566] set_robust_list(0x55555b590660, 24 [pid 5246] mkdir("./61", 0777 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5566 [pid 5566] <... set_robust_list resumed>) = 0 [pid 5566] chdir("./61" [pid 5246] <... mkdir resumed>) = 0 [pid 5566] <... chdir resumed>) = 0 [pid 5566] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5566] setpgid(0, 0) = 0 [pid 5566] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5566] write(3, "1000", 4) = 4 [pid 5566] close(3) = 0 [pid 5566] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWRexecuting program [pid 5566] write(1, "executing program\n", 18) = 18 [pid 5246] <... openat resumed>) = 3 [pid 5566] memfd_create("syzkaller", 0 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5566] <... memfd_create resumed>) = 3 [pid 5566] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5563] <... write resumed>) = 4243456 [pid 5563] exit_group(0) = ? [pid 5563] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5563, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./61/binderfs") = 0 [pid 5243] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./61/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./61") = 0 [pid 5243] mkdir("./62", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5564] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5567 attached [pid 5567] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5567 [pid 5567] <... set_robust_list resumed>) = 0 [pid 5567] chdir("./61") = 0 [pid 5567] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5567] setpgid(0, 0) = 0 [pid 5567] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5567] write(3, "1000", 4) = 4 [pid 5567] close(3) = 0 [pid 5567] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5567] write(1, "executing program\n", 18executing program ) = 18 [pid 5567] memfd_create("syzkaller", 0) = 3 [pid 5567] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5568 attached , child_tidptr=0x55555b590650) = 5568 [pid 5568] set_robust_list(0x55555b590660, 24) = 0 [pid 5564] <... write resumed>) = 16777216 [pid 5568] chdir("./62" [pid 5565] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5568] <... chdir resumed>) = 0 [pid 5568] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5568] setpgid(0, 0) = 0 [pid 5564] munmap(0x7f6c8ae00000, 138412032 [pid 5568] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5564] <... munmap resumed>) = 0 [pid 5568] write(3, "1000", 4) = 4 [pid 5568] close(3) = 0 [pid 5568] symlink("/dev/binderfs", "./binderfs" [pid 5564] openat(AT_FDCWD, "/dev/loop1", O_RDWRexecuting program [pid 5568] <... symlink resumed>) = 0 [pid 5568] write(1, "executing program\n", 18) = 18 [pid 5564] <... openat resumed>) = 4 [pid 5568] memfd_create("syzkaller", 0 [pid 5564] ioctl(4, LOOP_SET_FD, 3 [pid 5568] <... memfd_create resumed>) = 3 [pid 5568] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5566] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5564] <... ioctl resumed>) = 0 [pid 5564] close(3) = 0 [pid 5564] close(4) = 0 [pid 5564] mkdir("./file0", 0777) = 0 [ 415.355824][ T5564] loop1: detected capacity change from 0 to 32768 [pid 5564] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5564] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5564] chdir("./file0") = 0 [pid 5564] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5564] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5564] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5564] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5567] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5564] <... write resumed>) = 4243456 [pid 5564] exit_group(0) = ? [pid 5564] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5564, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./61/binderfs") = 0 [pid 5244] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5565] <... write resumed>) = 16777216 [pid 5244] close(4) = 0 [pid 5244] rmdir("./61/file0") = 0 [pid 5565] munmap(0x7f6c8ae00000, 138412032 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./61") = 0 [pid 5244] mkdir("./62", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5565] <... munmap resumed>) = 0 [pid 5568] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5565] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5565] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5565] close(3) = 0 [pid 5565] close(4) = 0 [pid 5565] mkdir("./file0", 0777) = 0 [pid 5565] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5566] <... write resumed>) = 16777216 [pid 5566] munmap(0x7f6c8ae00000, 138412032 [pid 5565] <... mount resumed>) = 0 [ 415.817001][ T5565] loop4: detected capacity change from 0 to 32768 [pid 5566] <... munmap resumed>) = 0 [pid 5565] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5566] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5565] <... openat resumed>) = 3 [pid 5566] ioctl(4, LOOP_SET_FD, 3 [pid 5565] chdir("./file0" [pid 5566] <... ioctl resumed>) = 0 [pid 5565] <... chdir resumed>) = 0 [pid 5566] close(3 [pid 5565] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5566] <... close resumed>) = 0 [pid 5566] close(4 [pid 5565] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5566] <... close resumed>) = 0 [pid 5566] mkdir("./file0", 0777 [ 415.904495][ T5566] loop2: detected capacity change from 0 to 32768 [pid 5565] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5567] <... write resumed>) = 16777216 [pid 5566] <... mkdir resumed>) = 0 [pid 5565] <... openat resumed>) = 4 [pid 5567] munmap(0x7f6c8ae00000, 138412032 [pid 5566] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5565] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5565] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5567] <... munmap resumed>) = 0 [pid 5567] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5567] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5567] close(3 [pid 5244] <... close resumed>) = 0 [pid 5567] <... close resumed>) = 0 [pid 5566] <... mount resumed>) = 0 [pid 5567] close(4 [pid 5566] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5567] <... close resumed>) = 0 [pid 5566] <... openat resumed>) = 3 [pid 5567] mkdir("./file0", 0777 [pid 5566] chdir("./file0" [pid 5567] <... mkdir resumed>) = 0 [pid 5566] <... chdir resumed>) = 0 [pid 5567] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5566] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5566] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5569 ./strace-static-x86_64: Process 5569 attached [pid 5566] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5569] set_robust_list(0x55555b590660, 24 [pid 5566] <... openat resumed>) = 5 [ 416.021301][ T5567] loop3: detected capacity change from 0 to 32768 [pid 5569] <... set_robust_list resumed>) = 0 [pid 5566] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5567] <... mount resumed>) = 0 [pid 5567] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5569] chdir("./62" [pid 5567] chdir("./file0") = 0 [pid 5569] <... chdir resumed>) = 0 [pid 5569] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5567] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5569] <... prctl resumed>) = 0 [pid 5567] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5569] setpgid(0, 0) = 0 [pid 5569] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5567] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5569] <... openat resumed>) = 3 [pid 5567] <... openat resumed>) = 4 [pid 5567] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5569] write(3, "1000", 4 [pid 5567] <... openat resumed>) = 5 [pid 5569] <... write resumed>) = 4 [pid 5567] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5569] close(3) = 0 [pid 5569] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5569] write(1, "executing program\n", 18) = 18 [pid 5569] memfd_create("syzkaller", 0) = 3 [pid 5569] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5568] <... write resumed>) = 16777216 [pid 5568] munmap(0x7f6c8ae00000, 138412032 [pid 5565] <... write resumed>) = 4243456 [pid 5565] exit_group(0) = ? [pid 5565] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5565, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} --- [pid 5247] umount2("./60", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./60", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./60/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./60/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./60/binderfs") = 0 [pid 5247] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5568] <... munmap resumed>) = 0 [pid 5568] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5568] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5568] close(3) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5568] close(4) = 0 [pid 5247] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5568] mkdir("./file0", 0777) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5568] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] newfstatat(AT_FDCWD, "./60/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./60/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./60/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./60/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./60" [pid 5568] <... mount resumed>) = 0 [pid 5568] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5568] chdir("./file0") = 0 [pid 5568] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5568] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5568] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... rmdir resumed>) = 0 [pid 5568] <... openat resumed>) = 5 [ 416.259253][ T5568] loop0: detected capacity change from 0 to 32768 [pid 5247] mkdir("./61", 0777 [pid 5568] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5566] <... write resumed>) = 4243456 [pid 5247] <... mkdir resumed>) = 0 [pid 5566] exit_group(0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5566] <... exit_group resumed>) = ? [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5566] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5566, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5567] <... write resumed>) = 4243456 [pid 5567] exit_group(0 [pid 5245] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5567] <... exit_group resumed>) = ? [pid 5567] +++ exited with 0 +++ [pid 5245] <... openat resumed>) = 3 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5567, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./61/binderfs") = 0 [pid 5245] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./61/binderfs") = 0 [pid 5246] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... umount2 resumed>) = 0 [pid 5245] <... openat resumed>) = 4 [pid 5246] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] newfstatat(4, "", [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] newfstatat(AT_FDCWD, "./61/file0", [pid 5245] getdents64(4, [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] close(4) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] rmdir("./61/file0" [pid 5246] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", [pid 5245] <... rmdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./61" [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... rmdir resumed>) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] mkdir("./62", 0777 [pid 5246] close(4) = 0 [pid 5246] rmdir("./61/file0") = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] close(3 [pid 5245] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5246] rmdir("./61" [pid 5245] <... ioctl resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5245] close(3 [pid 5246] mkdir("./62", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5569] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5568] <... write resumed>) = 4243456 [pid 5568] exit_group(0 [pid 5247] <... close resumed>) = 0 [pid 5568] <... exit_group resumed>) = ? [pid 5568] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5568, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./62/binderfs" [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5570 attached ) = 0 [pid 5570] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5570 [pid 5243] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5570] <... set_robust_list resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./62/file0", [pid 5570] chdir("./61") = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5570] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5570] <... prctl resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5570] setpgid(0, 0) = 0 [pid 5243] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5570] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", [pid 5570] <... openat resumed>) = 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5570] write(3, "1000", 4 [pid 5243] getdents64(4, [pid 5570] <... write resumed>) = 4 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5570] close(3) = 0 [pid 5243] getdents64(4, [pid 5570] symlink("/dev/binderfs", "./binderfs"executing program [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5570] <... symlink resumed>) = 0 [pid 5243] close(4 [pid 5570] write(1, "executing program\n", 18) = 18 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./62/file0" [pid 5570] memfd_create("syzkaller", 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5570] <... memfd_create resumed>) = 3 [pid 5570] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] getdents64(3, [pid 5570] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./62") = 0 [pid 5243] mkdir("./63", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5246] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5571 attached ./strace-static-x86_64: Process 5572 attached [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5572 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5571 [pid 5572] set_robust_list(0x55555b590660, 24) = 0 [pid 5572] chdir("./62") = 0 [pid 5572] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5572] setpgid(0, 0) = 0 executing program [pid 5572] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5572] write(3, "1000", 4) = 4 [pid 5572] close(3) = 0 [pid 5572] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5572] write(1, "executing program\n", 18) = 18 [pid 5572] memfd_create("syzkaller", 0 [pid 5571] set_robust_list(0x55555b590660, 24) = 0 [pid 5571] chdir("./62" [pid 5572] <... memfd_create resumed>) = 3 [pid 5571] <... chdir resumed>) = 0 [pid 5572] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5571] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5571] setpgid(0, 0) = 0 [pid 5571] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5571] write(3, "1000", 4) = 4 [pid 5571] close(3) = 0 [pid 5571] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5571] write(1, "executing program\n", 18executing program ) = 18 [pid 5571] memfd_create("syzkaller", 0) = 3 [pid 5571] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5573 attached , child_tidptr=0x55555b590650) = 5573 [pid 5573] set_robust_list(0x55555b590660, 24) = 0 [pid 5573] chdir("./63") = 0 [pid 5573] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5573] setpgid(0, 0) = 0 [pid 5573] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5573] write(3, "1000", 4) = 4 [pid 5573] close(3) = 0 executing program [pid 5573] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5573] write(1, "executing program\n", 18) = 18 [pid 5573] memfd_create("syzkaller", 0) = 3 [pid 5573] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5569] <... write resumed>) = 16777216 [pid 5569] munmap(0x7f6c8ae00000, 138412032 [pid 5570] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5569] <... munmap resumed>) = 0 [pid 5569] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5569] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5569] close(3) = 0 [pid 5569] close(4) = 0 [pid 5569] mkdir("./file0", 0777) = 0 [ 417.034848][ T5569] loop1: detected capacity change from 0 to 32768 [pid 5569] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5569] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5569] chdir("./file0") = 0 [pid 5569] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5569] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5569] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5569] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5572] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5571] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5573] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5569] <... write resumed>) = 4243456 [pid 5569] exit_group(0) = ? [pid 5569] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5569, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./62/binderfs") = 0 [pid 5244] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./62/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./62/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./62") = 0 [pid 5244] mkdir("./63", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5570] <... write resumed>) = 16777216 [pid 5570] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5570] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5570] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5570] close(3) = 0 [pid 5570] close(4) = 0 [pid 5570] mkdir("./file0", 0777) = 0 [ 417.507349][ T5570] loop4: detected capacity change from 0 to 32768 [pid 5570] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5570] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5570] chdir("./file0") = 0 [pid 5570] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5570] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5570] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5572] <... write resumed>) = 16777216 [pid 5570] <... openat resumed>) = 5 [pid 5570] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5572] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... close resumed>) = 0 [pid 5572] <... munmap resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5574 attached [pid 5572] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5574] set_robust_list(0x55555b590660, 24 [pid 5572] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5574 [pid 5574] <... set_robust_list resumed>) = 0 [pid 5574] chdir("./63") = 0 [pid 5574] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5572] <... ioctl resumed>) = 0 [pid 5572] close(3) = 0 [pid 5572] close(4 [pid 5574] setpgid(0, 0 [pid 5572] <... close resumed>) = 0 [pid 5574] <... setpgid resumed>) = 0 [pid 5574] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5574] write(3, "1000", 4) = 4 [pid 5572] mkdir("./file0", 0777 [pid 5574] close(3) = 0 [pid 5572] <... mkdir resumed>) = 0 [pid 5574] symlink("/dev/binderfs", "./binderfs" [pid 5572] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5574] <... symlink resumed>) = 0 executing program [pid 5574] write(1, "executing program\n", 18) = 18 [pid 5574] memfd_create("syzkaller", 0) = 3 [pid 5574] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 417.643287][ T5572] loop3: detected capacity change from 0 to 32768 [pid 5571] <... write resumed>) = 16777216 [pid 5571] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5573] <... write resumed>) = 16777216 [pid 5572] <... mount resumed>) = 0 [pid 5572] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5572] chdir("./file0") = 0 [pid 5572] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5571] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5572] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5571] <... openat resumed>) = 4 [pid 5572] <... openat resumed>) = 4 [pid 5571] ioctl(4, LOOP_SET_FD, 3 [pid 5572] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5570] <... write resumed>) = 4243456 [pid 5572] <... openat resumed>) = 5 [pid 5570] exit_group(0 [pid 5573] munmap(0x7f6c8ae00000, 138412032 [pid 5572] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5570] <... exit_group resumed>) = ? [pid 5570] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5570, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5571] <... ioctl resumed>) = 0 [pid 5247] umount2("./61", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5571] close(3) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5571] close(4 [pid 5573] <... munmap resumed>) = 0 [pid 5571] <... close resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./61", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [ 417.783771][ T5571] loop2: detected capacity change from 0 to 32768 [pid 5571] mkdir("./file0", 0777 [pid 5573] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5571] <... mkdir resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5571] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5573] <... openat resumed>) = 4 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5573] ioctl(4, LOOP_SET_FD, 3 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./61/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./61/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./61/binderfs") = 0 [pid 5247] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5573] <... ioctl resumed>) = 0 [pid 5573] close(3) = 0 [pid 5573] close(4) = 0 [pid 5573] mkdir("./file0", 0777) = 0 [pid 5571] <... mount resumed>) = 0 [pid 5571] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5573] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5571] <... openat resumed>) = 3 [pid 5571] chdir("./file0") = 0 [pid 5571] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5571] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5571] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 417.828818][ T5573] loop0: detected capacity change from 0 to 32768 [pid 5571] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5573] <... mount resumed>) = 0 [pid 5573] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5573] chdir("./file0") = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5573] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5573] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5573] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5573] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./61/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./61/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./61/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./61/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./61") = 0 [pid 5247] mkdir("./62", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5572] <... write resumed>) = 4243456 [pid 5572] exit_group(0) = ? [pid 5572] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5572, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./62/binderfs") = 0 [pid 5246] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5574] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5571] <... write resumed>) = 4243456 [pid 5571] exit_group(0) = ? [pid 5571] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5571, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=39 /* 0.39 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./62/binderfs") = 0 [pid 5245] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./62/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5573] <... write resumed>) = 4243456 [pid 5246] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5573] exit_group(0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5573] <... exit_group resumed>) = ? [pid 5573] +++ exited with 0 +++ [pid 5246] <... openat resumed>) = 4 [pid 5245] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(4, "", [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5573, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] newfstatat(AT_FDCWD, "./62/file0", [pid 5246] getdents64(4, [pid 5243] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... close resumed>) = 0 [pid 5246] getdents64(4, [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5575 attached [pid 5246] close(4 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 3 [pid 5575] set_robust_list(0x55555b590660, 24 [pid 5246] <... close resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] newfstatat(3, "", [pid 5575] <... set_robust_list resumed>) = 0 [pid 5246] rmdir("./62/file0" [pid 5245] <... openat resumed>) = 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5575] chdir("./62" [pid 5246] <... rmdir resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5243] getdents64(3, [pid 5575] <... chdir resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5575 [pid 5246] getdents64(3, [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5575] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] getdents64(4, [pid 5243] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5575] <... prctl resumed>) = 0 [pid 5246] close(3 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5575] setpgid(0, 0 [pid 5246] <... close resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./63/binderfs", [pid 5575] <... setpgid resumed>) = 0 [pid 5246] rmdir("./62" [pid 5245] getdents64(4, [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5575] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... rmdir resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] unlink("./63/binderfs" [pid 5246] mkdir("./63", 0777 [pid 5243] <... unlink resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5243] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5575] <... openat resumed>) = 3 [pid 5246] close(3 [pid 5245] close(4 [pid 5575] write(3, "1000", 4) = 4 [pid 5245] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5575] close(3 [pid 5245] rmdir("./62/file0" [pid 5575] <... close resumed>) = 0 [pid 5243] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5575] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5575] <... symlink resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./63/file0", executing program [pid 5575] write(1, "executing program\n", 18 [pid 5245] <... rmdir resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5575] <... write resumed>) = 18 [pid 5245] getdents64(3, [pid 5243] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] close(3 [pid 5243] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... close resumed>) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5575] memfd_create("syzkaller", 0 [pid 5245] rmdir("./62" [pid 5243] newfstatat(4, "", [pid 5245] <... rmdir resumed>) = 0 [pid 5575] <... memfd_create resumed>) = 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5575] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] mkdir("./63", 0777 [pid 5575] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5243] getdents64(4, [pid 5245] <... mkdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... openat resumed>) = 3 [pid 5243] getdents64(4, [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./63/file0") = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5245] close(3 [pid 5243] rmdir("./63") = 0 [pid 5243] mkdir("./64", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5576 ./strace-static-x86_64: Process 5576 attached [pid 5576] set_robust_list(0x55555b590660, 24) = 0 [pid 5576] chdir("./63") = 0 [pid 5576] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5576] setpgid(0, 0) = 0 [pid 5576] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5576] write(3, "1000", 4) = 4 [pid 5576] close(3) = 0 [pid 5576] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5576] write(1, "executing program\n", 18) = 18 [pid 5576] memfd_create("syzkaller", 0) = 3 [pid 5576] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5577 attached [pid 5577] set_robust_list(0x55555b590660, 24) = 0 [pid 5577] chdir("./63") = 0 [pid 5577] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5577] setpgid(0, 0) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5577 [pid 5577] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5577] write(3, "1000", 4) = 4 [pid 5577] close(3) = 0 executing program [pid 5577] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5577] write(1, "executing program\n", 18) = 18 [pid 5577] memfd_create("syzkaller", 0) = 3 [pid 5577] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5578 attached , child_tidptr=0x55555b590650) = 5578 [pid 5578] set_robust_list(0x55555b590660, 24) = 0 [pid 5578] chdir("./64") = 0 [pid 5578] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5578] setpgid(0, 0) = 0 [pid 5578] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5578] write(3, "1000", 4) = 4 [pid 5578] close(3) = 0 [pid 5578] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5578] write(1, "executing program\n", 18) = 18 [pid 5578] memfd_create("syzkaller", 0) = 3 [pid 5578] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5574] <... write resumed>) = 16777216 [pid 5574] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5574] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5574] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5574] close(3) = 0 [pid 5574] close(4) = 0 [pid 5574] mkdir("./file0", 0777) = 0 [ 418.666523][ T5574] loop1: detected capacity change from 0 to 32768 [pid 5574] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5575] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5574] <... mount resumed>) = 0 [pid 5574] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5574] chdir("./file0") = 0 [pid 5574] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5574] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5574] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5574] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5577] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5576] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5578] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5574] <... write resumed>) = 4243456 [pid 5574] exit_group(0) = ? [pid 5574] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5574, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./63/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./63/binderfs") = 0 [pid 5244] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./63/file0") = 0 [pid 5575] <... write resumed>) = 16777216 [pid 5244] getdents64(3, [pid 5575] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./63") = 0 [pid 5244] mkdir("./64", 0777 [pid 5575] <... munmap resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5575] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5575] <... openat resumed>) = 4 [pid 5575] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5575] close(3) = 0 [pid 5575] close(4) = 0 [pid 5575] mkdir("./file0", 0777) = 0 [pid 5575] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5575] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5575] chdir("./file0") = 0 [pid 5575] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5575] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [ 419.169489][ T5575] loop4: detected capacity change from 0 to 32768 [pid 5575] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5575] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5577] <... write resumed>) = 16777216 [pid 5577] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5576] <... write resumed>) = 16777216 [pid 5577] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5576] munmap(0x7f6c8ae00000, 138412032 [pid 5577] <... openat resumed>) = 4 [pid 5577] ioctl(4, LOOP_SET_FD, 3 [pid 5576] <... munmap resumed>) = 0 [pid 5577] <... ioctl resumed>) = 0 [pid 5577] close(3) = 0 [pid 5578] <... write resumed>) = 16777216 [ 419.363087][ T5577] loop2: detected capacity change from 0 to 32768 [pid 5578] munmap(0x7f6c8ae00000, 138412032 [pid 5577] close(4 [pid 5576] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... close resumed>) = 0 [pid 5577] <... close resumed>) = 0 [pid 5576] <... openat resumed>) = 4 [pid 5576] ioctl(4, LOOP_SET_FD, 3 [pid 5577] mkdir("./file0", 0777 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5579 [pid 5577] <... mkdir resumed>) = 0 [pid 5576] <... ioctl resumed>) = 0 [pid 5577] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"./strace-static-x86_64: Process 5579 attached [pid 5578] <... munmap resumed>) = 0 [pid 5576] close(3) = 0 [pid 5576] close(4) = 0 [pid 5576] mkdir("./file0", 0777 [pid 5579] set_robust_list(0x55555b590660, 24 [pid 5578] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5579] <... set_robust_list resumed>) = 0 [pid 5578] <... openat resumed>) = 4 [pid 5576] <... mkdir resumed>) = 0 [pid 5579] chdir("./64" [pid 5578] ioctl(4, LOOP_SET_FD, 3 [pid 5579] <... chdir resumed>) = 0 [pid 5576] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5575] <... write resumed>) = 4243456 [pid 5575] exit_group(0) = ? [pid 5575] +++ exited with 0 +++ [pid 5579] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5575, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5579] setpgid(0, 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5579] <... setpgid resumed>) = 0 [pid 5579] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5578] <... ioctl resumed>) = 0 [pid 5577] <... mount resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5579] <... openat resumed>) = 3 [pid 5578] close(3 [pid 5577] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5579] write(3, "1000", 4 [pid 5578] <... close resumed>) = 0 [pid 5577] <... openat resumed>) = 3 [pid 5579] <... write resumed>) = 4 [pid 5577] chdir("./file0" [pid 5247] umount2("./62", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5579] close(3 [pid 5578] close(4 [pid 5577] <... chdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5579] <... close resumed>) = 0 [pid 5578] <... close resumed>) = 0 [pid 5577] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] openat(AT_FDCWD, "./62", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5579] symlink("/dev/binderfs", "./binderfs" [pid 5578] mkdir("./file0", 0777 [pid 5577] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... openat resumed>) = 3 [pid 5579] <... symlink resumed>) = 0 executing program [pid 5578] <... mkdir resumed>) = 0 [pid 5577] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] newfstatat(3, "", [pid 5579] write(1, "executing program\n", 18 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5579] <... write resumed>) = 18 [pid 5247] getdents64(3, [pid 5579] memfd_create("syzkaller", 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5579] <... memfd_create resumed>) = 3 [pid 5576] <... mount resumed>) = 0 [pid 5247] umount2("./62/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5577] <... openat resumed>) = 4 [ 419.409263][ T5576] loop3: detected capacity change from 0 to 32768 [ 419.435398][ T5578] loop0: detected capacity change from 0 to 32768 [pid 5247] newfstatat(AT_FDCWD, "./62/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5579] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5578] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5577] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5576] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] unlink("./62/binderfs" [pid 5579] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5577] <... openat resumed>) = 5 [pid 5576] <... openat resumed>) = 3 [pid 5247] <... unlink resumed>) = 0 [pid 5577] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5576] chdir("./file0") = 0 [pid 5576] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5247] <... umount2 resumed>) = 0 [pid 5576] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5576] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5247] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5578] <... mount resumed>) = 0 [pid 5578] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5576] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5578] <... openat resumed>) = 3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5578] chdir("./file0" [pid 5247] newfstatat(AT_FDCWD, "./62/file0", [pid 5578] <... chdir resumed>) = 0 [pid 5578] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5578] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./62/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5578] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./62/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./62/file0" [pid 5578] <... openat resumed>) = 5 [pid 5247] <... rmdir resumed>) = 0 [pid 5578] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./62") = 0 [pid 5247] mkdir("./63", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5577] <... write resumed>) = 4243456 [pid 5577] exit_group(0) = ? [pid 5577] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5577, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./63/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5578] <... write resumed>) = 4243456 [pid 5245] unlink("./63/binderfs" [pid 5578] exit_group(0 [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5578] <... exit_group resumed>) = ? [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./63/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./63") = 0 [pid 5245] mkdir("./64", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5578] +++ exited with 0 +++ [pid 5576] <... write resumed>) = 4243456 [pid 5576] exit_group(0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5578, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5576] <... exit_group resumed>) = ? [pid 5243] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5576] +++ exited with 0 +++ [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5576, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=26 /* 0.26 s */} --- [pid 5245] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] newfstatat(3, "", [pid 5247] <... close resumed>) = 0 [pid 5246] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... openat resumed>) = 3 [pid 5243] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(3, "", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] newfstatat(AT_FDCWD, "./64/binderfs", [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5580 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] getdents64(3, [pid 5243] unlink("./64/binderfs" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 5580 attached [pid 5243] <... unlink resumed>) = 0 [pid 5246] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5580] set_robust_list(0x55555b590660, 24 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./63/binderfs", [pid 5580] <... set_robust_list resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5580] chdir("./63") = 0 [pid 5580] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5580] setpgid(0, 0) = 0 [pid 5580] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5580] write(3, "1000", 4) = 4 [pid 5580] close(3) = 0 [pid 5580] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5580] write(1, "executing program\n", 18) = 18 [pid 5580] memfd_create("syzkaller", 0) = 3 [pid 5580] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... umount2 resumed>) = 0 executing program [pid 5246] unlink("./63/binderfs") = 0 [pid 5246] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./64/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./64") = 0 [pid 5243] mkdir("./65", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5246] <... umount2 resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5579] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./63/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./63") = 0 [pid 5246] mkdir("./64", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5581 attached [pid 5581] set_robust_list(0x55555b590660, 24 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5581 [pid 5581] <... set_robust_list resumed>) = 0 [pid 5581] chdir("./64") = 0 [pid 5581] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5581] setpgid(0, 0) = 0 [pid 5581] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5581] write(3, "1000", 4) = 4 [pid 5581] close(3) = 0 [pid 5581] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5581] write(1, "executing program\n", 18) = 18 [pid 5581] memfd_create("syzkaller", 0) = 3 [pid 5581] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5582 ./strace-static-x86_64: Process 5582 attached [pid 5582] set_robust_list(0x55555b590660, 24) = 0 [pid 5582] chdir("./65") = 0 [pid 5582] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5582] setpgid(0, 0) = 0 [pid 5582] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5582] write(3, "1000", 4) = 4 [pid 5582] close(3) = 0 [pid 5582] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5582] write(1, "executing program\n", 18) = 18 [pid 5582] memfd_create("syzkaller", 0) = 3 [pid 5582] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5580] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5583 attached [pid 5583] set_robust_list(0x55555b590660, 24) = 0 [pid 5583] chdir("./64") = 0 [pid 5583] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5583] setpgid(0, 0) = 0 [pid 5583] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5583 [pid 5583] <... openat resumed>) = 3 [pid 5583] write(3, "1000", 4) = 4 [pid 5583] close(3) = 0 [pid 5583] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5583] write(1, "executing program\n", 18executing program ) = 18 [pid 5583] memfd_create("syzkaller", 0) = 3 [pid 5583] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5579] <... write resumed>) = 16777216 [pid 5579] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5579] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5579] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5581] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5579] close(3) = 0 [pid 5579] close(4) = 0 [pid 5579] mkdir("./file0", 0777) = 0 [pid 5579] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5579] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5579] chdir("./file0") = 0 [pid 5579] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5579] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5579] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 420.432127][ T5579] loop1: detected capacity change from 0 to 32768 [pid 5579] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5582] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5580] <... write resumed>) = 16777216 [pid 5580] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5580] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5580] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5580] close(3) = 0 [pid 5580] close(4) = 0 [pid 5580] mkdir("./file0", 0777) = 0 [pid 5580] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5580] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5580] chdir("./file0") = 0 [pid 5580] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5579] <... write resumed>) = 4243456 [pid 5580] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5579] exit_group(0 [pid 5580] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5579] <... exit_group resumed>) = ? [pid 5580] <... openat resumed>) = 4 [ 420.676501][ T5580] loop4: detected capacity change from 0 to 32768 [pid 5580] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5580] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5579] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5579, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=38 /* 0.38 s */} --- [pid 5244] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5583] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./64/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./64/binderfs") = 0 [pid 5244] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./64/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./64") = 0 [pid 5244] mkdir("./65", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5581] <... write resumed>) = 16777216 [pid 5581] munmap(0x7f6c8ae00000, 138412032 [pid 5582] <... write resumed>) = 16777216 [pid 5581] <... munmap resumed>) = 0 [pid 5581] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5580] <... write resumed>) = 4243456 [pid 5580] exit_group(0 [pid 5581] <... openat resumed>) = 4 [pid 5580] <... exit_group resumed>) = ? [pid 5581] ioctl(4, LOOP_SET_FD, 3 [pid 5582] munmap(0x7f6c8ae00000, 138412032 [pid 5581] <... ioctl resumed>) = 0 [pid 5581] close(3) = 0 [pid 5581] close(4) = 0 [pid 5580] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5580, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] umount2("./63", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5581] mkdir("./file0", 0777) = 0 [pid 5581] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./63", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5581] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5581] chdir("./file0") = 0 [pid 5581] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5581] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5247] newfstatat(3, "", [pid 5581] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5581] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5582] <... munmap resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... close resumed>) = 0 [pid 5247] umount2("./63/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 420.999931][ T5581] loop2: detected capacity change from 0 to 32768 [pid 5582] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] newfstatat(AT_FDCWD, "./63/binderfs", [pid 5582] <... openat resumed>) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5584 executing program ./strace-static-x86_64: Process 5584 attached [pid 5582] ioctl(4, LOOP_SET_FD, 3 [pid 5247] unlink("./63/binderfs" [pid 5584] set_robust_list(0x55555b590660, 24 [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5584] <... set_robust_list resumed>) = 0 [pid 5584] chdir("./65") = 0 [pid 5584] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5584] setpgid(0, 0) = 0 [pid 5584] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5584] write(3, "1000", 4) = 4 [pid 5584] close(3) = 0 [pid 5584] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5584] write(1, "executing program\n", 18) = 18 [pid 5584] memfd_create("syzkaller", 0) = 3 [pid 5584] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5582] <... ioctl resumed>) = 0 [pid 5582] close(3) = 0 [pid 5582] close(4) = 0 [pid 5582] mkdir("./file0", 0777 [pid 5247] <... umount2 resumed>) = 0 [pid 5582] <... mkdir resumed>) = 0 [pid 5582] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./63/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./63/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5582] <... mount resumed>) = 0 [pid 5582] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5582] chdir("./file0" [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5582] <... chdir resumed>) = 0 [pid 5582] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5582] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5582] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5582] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] openat(AT_FDCWD, "./63/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [ 421.088312][ T5582] loop0: detected capacity change from 0 to 32768 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5583] <... write resumed>) = 16777216 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5583] munmap(0x7f6c8ae00000, 138412032 [pid 5247] close(4) = 0 [pid 5247] rmdir("./63/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./63") = 0 [pid 5247] mkdir("./64", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5583] <... munmap resumed>) = 0 [pid 5583] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5583] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5583] close(3) = 0 [pid 5583] close(4 [pid 5581] <... write resumed>) = 4243456 [pid 5583] <... close resumed>) = 0 [pid 5581] exit_group(0) = ? [pid 5583] mkdir("./file0", 0777) = 0 [pid 5581] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5581, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5583] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5583] <... mount resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 421.262640][ T5583] loop3: detected capacity change from 0 to 32768 [pid 5583] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5583] <... openat resumed>) = 3 [pid 5245] <... openat resumed>) = 3 [pid 5583] chdir("./file0" [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5583] <... chdir resumed>) = 0 [pid 5583] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] getdents64(3, [pid 5583] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5583] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./64/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5583] <... openat resumed>) = 4 [pid 5245] unlink("./64/binderfs" [pid 5583] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... unlink resumed>) = 0 [pid 5583] <... openat resumed>) = 5 [pid 5583] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./64/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./64") = 0 [pid 5245] mkdir("./65", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5582] <... write resumed>) = 4243456 [pid 5582] exit_group(0) = ? [pid 5582] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5582, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./65/binderfs") = 0 [pid 5243] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./65/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./65/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./65") = 0 [pid 5243] mkdir("./66", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5583] <... write resumed>) = 4243456 ./strace-static-x86_64: Process 5585 attached [pid 5583] exit_group(0) = ? [pid 5585] set_robust_list(0x55555b590660, 24) = 0 [pid 5583] +++ exited with 0 +++ [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5585 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5583, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=28 /* 0.28 s */} --- [pid 5585] chdir("./64") = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5585] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5585] setpgid(0, 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5585] <... setpgid resumed>) = 0 [pid 5246] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5585] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5585] <... openat resumed>) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5585] write(3, "1000", 4) = 4 [pid 5246] getdents64(3, [pid 5585] close(3) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5585] symlink("/dev/binderfs", "./binderfs" [pid 5246] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./64/binderfs", [pid 5585] <... symlink resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./64/binderfs"executing program ) = 0 [pid 5246] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5585] write(1, "executing program\n", 18) = 18 [pid 5585] memfd_create("syzkaller", 0) = 3 [pid 5585] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5246] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5585] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY./strace-static-x86_64: Process 5586 attached [pid 5584] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... openat resumed>) = 4 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5586 [pid 5246] newfstatat(4, "", [pid 5586] set_robust_list(0x55555b590660, 24 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5586] <... set_robust_list resumed>) = 0 [pid 5246] getdents64(4, [pid 5586] chdir("./65" [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5586] <... chdir resumed>) = 0 [pid 5246] rmdir("./64/file0" [pid 5586] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... rmdir resumed>) = 0 [pid 5586] <... prctl resumed>) = 0 [pid 5586] setpgid(0, 0) = 0 [pid 5586] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./64" [pid 5586] <... openat resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5586] write(3, "1000", 4) = 4 [pid 5586] close(3) = 0 [pid 5246] mkdir("./65", 0777 [pid 5586] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5586] <... symlink resumed>) = 0 [pid 5246] close(3 [pid 5586] write(1, "executing program\n", 18executing program ) = 18 [pid 5586] memfd_create("syzkaller", 0) = 3 [pid 5586] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5587 ./strace-static-x86_64: Process 5587 attached [pid 5587] set_robust_list(0x55555b590660, 24) = 0 [pid 5587] chdir("./66") = 0 executing program [pid 5587] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5587] setpgid(0, 0) = 0 [pid 5587] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5587] write(3, "1000", 4) = 4 [pid 5587] close(3) = 0 [pid 5587] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5587] write(1, "executing program\n", 18) = 18 [pid 5587] memfd_create("syzkaller", 0) = 3 [pid 5587] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5585] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5588 ./strace-static-x86_64: Process 5588 attached [pid 5588] set_robust_list(0x55555b590660, 24) = 0 [pid 5588] chdir("./65") = 0 [pid 5588] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5588] setpgid(0, 0) = 0 [pid 5588] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5588] write(3, "1000", 4) = 4 [pid 5588] close(3) = 0 [pid 5588] symlink("/dev/binderfs", "./binderfs" [pid 5584] <... write resumed>) = 16777216 [pid 5588] <... symlink resumed>) = 0 [pid 5584] munmap(0x7f6c8ae00000, 138412032 [pid 5588] write(1, "executing program\n", 18) = 18 executing program [pid 5588] memfd_create("syzkaller", 0) = 3 [pid 5588] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5584] <... munmap resumed>) = 0 [pid 5584] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5584] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5584] close(3) = 0 [pid 5584] close(4) = 0 [pid 5584] mkdir("./file0", 0777 [pid 5586] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5584] <... mkdir resumed>) = 0 [ 422.034201][ T5584] loop1: detected capacity change from 0 to 32768 [pid 5584] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5584] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5584] chdir("./file0") = 0 [pid 5584] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5584] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5584] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5584] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5587] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5585] <... write resumed>) = 16777216 [pid 5585] munmap(0x7f6c8ae00000, 138412032 [pid 5588] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5584] <... write resumed>) = 4243456 [pid 5584] exit_group(0) = ? [pid 5584] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5584, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5585] <... munmap resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5585] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5585] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5244] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5585] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./65/binderfs" [pid 5585] <... close resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5585] close(4) = 0 [pid 5244] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5585] mkdir("./file0", 0777) = 0 [pid 5585] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = 0 [ 422.381127][ T5585] loop4: detected capacity change from 0 to 32768 [pid 5244] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./65/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5585] <... mount resumed>) = 0 [pid 5585] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] newfstatat(4, "", [pid 5585] <... openat resumed>) = 3 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5585] chdir("./file0" [pid 5244] getdents64(4, [pid 5585] <... chdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5585] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] getdents64(4, [pid 5585] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5585] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] close(4 [pid 5585] <... openat resumed>) = 4 [pid 5244] <... close resumed>) = 0 [pid 5585] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] rmdir("./65/file0" [pid 5585] <... openat resumed>) = 5 [pid 5585] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5586] <... write resumed>) = 16777216 [pid 5244] <... close resumed>) = 0 [pid 5586] munmap(0x7f6c8ae00000, 138412032 [pid 5244] rmdir("./65") = 0 [pid 5244] mkdir("./66", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5586] <... munmap resumed>) = 0 [pid 5586] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5586] ioctl(4, LOOP_SET_FD, 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5586] <... ioctl resumed>) = 0 [pid 5586] close(3) = 0 [pid 5586] close(4) = 0 [pid 5586] mkdir("./file0", 0777) = 0 [pid 5586] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 422.534194][ T5586] loop2: detected capacity change from 0 to 32768 [pid 5586] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5586] chdir("./file0") = 0 [pid 5586] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5586] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5586] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5586] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5585] <... write resumed>) = 4243456 [pid 5585] exit_group(0) = ? [pid 5585] +++ exited with 0 +++ [pid 5587] <... write resumed>) = 16777216 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5585, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=26 /* 0.26 s */} --- [pid 5247] umount2("./64", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./64", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./64/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5587] munmap(0x7f6c8ae00000, 138412032 [pid 5247] newfstatat(AT_FDCWD, "./64/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./64/binderfs") = 0 [pid 5247] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5587] <... munmap resumed>) = 0 [pid 5247] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5587] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5587] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./64/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./64/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./64/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5587] <... ioctl resumed>) = 0 [pid 5247] getdents64(4, [pid 5587] close(3) = 0 [pid 5587] close(4) = 0 [pid 5586] <... write resumed>) = 4243456 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5587] mkdir("./file0", 0777) = 0 [pid 5586] exit_group(0 [pid 5247] close(4 [pid 5586] <... exit_group resumed>) = ? [pid 5247] <... close resumed>) = 0 [pid 5587] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5586] +++ exited with 0 +++ [pid 5247] rmdir("./64/file0" [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5586, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... rmdir resumed>) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5587] <... mount resumed>) = 0 [pid 5247] close(3 [pid 5245] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5587] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5587] <... openat resumed>) = 3 [pid 5247] rmdir("./64" [ 422.748670][ T5587] loop0: detected capacity change from 0 to 32768 [pid 5245] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... close resumed>) = 0 [pid 5588] <... write resumed>) = 16777216 [pid 5587] chdir("./file0" [pid 5247] <... rmdir resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5587] <... chdir resumed>) = 0 [pid 5247] mkdir("./65", 0777 [pid 5245] newfstatat(3, "", [pid 5587] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5587] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] <... mkdir resumed>) = 0 [pid 5245] getdents64(3, [pid 5587] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5588] munmap(0x7f6c8ae00000, 138412032 [pid 5587] <... openat resumed>) = 4 [pid 5245] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5589 attached [pid 5587] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5589] set_robust_list(0x55555b590660, 24 [pid 5587] <... openat resumed>) = 5 [pid 5247] <... ioctl resumed>) = 0 [pid 5245] newfstatat(AT_FDCWD, "./65/binderfs", [pid 5247] close(3 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5587] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] unlink("./65/binderfs" [pid 5589] <... set_robust_list resumed>) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5589 [pid 5589] chdir("./66" [pid 5245] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5589] <... chdir resumed>) = 0 [pid 5589] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5589] setpgid(0, 0) = 0 [pid 5589] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5589] write(3, "1000", 4) = 4 [pid 5589] close(3) = 0 [pid 5589] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5589] write(1, "executing program\n", 18) = 18 [pid 5589] memfd_create("syzkaller", 0) = 3 [pid 5589] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... umount2 resumed>) = 0 [pid 5588] <... munmap resumed>) = 0 [pid 5245] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./65/file0", [pid 5588] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5588] <... openat resumed>) = 4 [pid 5245] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5588] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5588] <... ioctl resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5588] close(3 [pid 5245] rmdir("./65/file0" [pid 5588] <... close resumed>) = 0 [pid 5588] close(4 [pid 5245] <... rmdir resumed>) = 0 [pid 5588] <... close resumed>) = 0 [pid 5245] getdents64(3, [pid 5588] mkdir("./file0", 0777 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./65" [pid 5588] <... mkdir resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5588] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] mkdir("./66", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5588] <... mount resumed>) = 0 [pid 5245] close(3 [ 422.894261][ T5588] loop3: detected capacity change from 0 to 32768 [pid 5588] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5588] chdir("./file0") = 0 [pid 5588] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5588] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5588] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5588] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5587] <... write resumed>) = 4243456 [pid 5587] exit_group(0) = ? [pid 5587] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5587, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./66/binderfs") = 0 [pid 5243] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./66/file0") = 0 [pid 5243] getdents64(3, [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./66") = 0 [pid 5243] mkdir("./67", 0777./strace-static-x86_64: Process 5590 attached [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5590 [pid 5243] <... mkdir resumed>) = 0 [pid 5590] set_robust_list(0x55555b590660, 24 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5590] <... set_robust_list resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5590] chdir("./65" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5590] <... chdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5590] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5590] setpgid(0, 0) = 0 [pid 5590] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5590] write(3, "1000", 4) = 4 [pid 5590] close(3) = 0 [pid 5590] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5590] write(1, "executing program\n", 18) = 18 [pid 5590] memfd_create("syzkaller", 0) = 3 [pid 5590] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5591 attached , child_tidptr=0x55555b590650) = 5591 [pid 5591] set_robust_list(0x55555b590660, 24) = 0 [pid 5591] chdir("./66") = 0 [pid 5591] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5588] <... write resumed>) = 4243456 [pid 5588] exit_group(0 [pid 5591] <... prctl resumed>) = 0 [pid 5588] <... exit_group resumed>) = ? [pid 5591] setpgid(0, 0) = 0 [pid 5588] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5588, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=21 /* 0.21 s */} --- [pid 5246] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5591] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5591] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5591] write(3, "1000", 4 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5591] <... write resumed>) = 4 [pid 5246] getdents64(3, [pid 5591] close(3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5591] <... close resumed>) = 0 [pid 5246] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5591] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5591] <... symlink resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 executing program [pid 5246] unlink("./65/binderfs") = 0 [pid 5591] write(1, "executing program\n", 18 [pid 5246] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5591] <... write resumed>) = 18 [pid 5591] memfd_create("syzkaller", 0) = 3 [pid 5591] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5589] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5592 attached , child_tidptr=0x55555b590650) = 5592 [pid 5592] set_robust_list(0x55555b590660, 24) = 0 [pid 5592] chdir("./67") = 0 [pid 5592] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5592] setpgid(0, 0) = 0 [pid 5592] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = 0 [pid 5592] <... openat resumed>) = 3 [pid 5246] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5592] write(3, "1000", 4 [pid 5246] newfstatat(AT_FDCWD, "./65/file0", [pid 5592] <... write resumed>) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5592] close(3 [pid 5246] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5592] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5592] symlink("/dev/binderfs", "./binderfs" [pid 5246] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5592] <... symlink resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5592] write(1, "executing program\n", 18 [pid 5246] newfstatat(4, "", [pid 5592] <... write resumed>) = 18 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5592] memfd_create("syzkaller", 0executing program [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5592] <... memfd_create resumed>) = 3 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./65/file0" [pid 5592] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5592] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./65") = 0 [pid 5246] mkdir("./66", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5590] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5593 attached , child_tidptr=0x55555b590650) = 5593 [pid 5593] set_robust_list(0x55555b590660, 24) = 0 [pid 5593] chdir("./66") = 0 [pid 5593] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5593] setpgid(0, 0) = 0 [pid 5593] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5593] write(3, "1000", 4) = 4 [pid 5593] close(3) = 0 [pid 5593] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5593] write(1, "executing program\n", 18executing program ) = 18 [pid 5593] memfd_create("syzkaller", 0) = 3 [pid 5593] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5592] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5591] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5589] <... write resumed>) = 16777216 [pid 5589] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5589] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5589] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5589] close(3) = 0 [pid 5589] close(4) = 0 [pid 5589] mkdir("./file0", 0777) = 0 [pid 5589] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5589] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5589] chdir("./file0") = 0 [pid 5589] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5589] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5589] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 423.790876][ T5589] loop1: detected capacity change from 0 to 32768 [pid 5589] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5590] <... write resumed>) = 16777216 [pid 5590] munmap(0x7f6c8ae00000, 138412032 [pid 5589] <... write resumed>) = 4243456 [pid 5589] exit_group(0) = ? [pid 5589] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5589, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5590] <... munmap resumed>) = 0 [pid 5244] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5590] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5593] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5590] <... openat resumed>) = 4 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./66/binderfs") = 0 [pid 5590] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5590] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5590] close(3) = 0 [pid 5590] close(4) = 0 [pid 5590] mkdir("./file0", 0777) = 0 [pid 5590] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5590] <... mount resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5590] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] getdents64(4, [pid 5590] <... openat resumed>) = 3 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5590] chdir("./file0" [pid 5244] close(4 [pid 5590] <... chdir resumed>) = 0 [pid 5590] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] <... close resumed>) = 0 [pid 5590] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] rmdir("./66/file0" [pid 5590] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5590] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] rmdir("./66" [pid 5590] <... openat resumed>) = 5 [ 424.060880][ T5590] loop4: detected capacity change from 0 to 32768 [pid 5590] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./67", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5592] <... write resumed>) = 16777216 [pid 5592] munmap(0x7f6c8ae00000, 138412032 [pid 5591] <... write resumed>) = 16777216 [pid 5591] munmap(0x7f6c8ae00000, 138412032 [pid 5592] <... munmap resumed>) = 0 [pid 5592] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5592] ioctl(4, LOOP_SET_FD, 3 [pid 5591] <... munmap resumed>) = 0 [pid 5591] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5591] ioctl(4, LOOP_SET_FD, 3 [pid 5592] <... ioctl resumed>) = 0 [pid 5592] close(3 [pid 5591] <... ioctl resumed>) = 0 [pid 5592] <... close resumed>) = 0 [pid 5592] close(4) = 0 [pid 5592] mkdir("./file0", 0777 [pid 5591] close(3) = 0 [pid 5591] close(4) = 0 [pid 5592] <... mkdir resumed>) = 0 [pid 5591] mkdir("./file0", 0777 [pid 5592] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5591] <... mkdir resumed>) = 0 [pid 5591] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5592] <... mount resumed>) = 0 [pid 5592] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5592] chdir("./file0") = 0 [pid 5592] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5592] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5592] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 424.210177][ T5592] loop0: detected capacity change from 0 to 32768 [ 424.239309][ T5591] loop2: detected capacity change from 0 to 32768 [pid 5592] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5591] <... mount resumed>) = 0 [pid 5591] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5591] chdir("./file0") = 0 [pid 5591] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5591] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5591] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5591] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5590] <... write resumed>) = 4243456 [pid 5590] exit_group(0) = ? [pid 5590] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5590, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./65", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./65", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./65/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./65/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./65/binderfs") = 0 [pid 5247] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./65/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./65/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./65/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./65/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./65") = 0 [pid 5247] mkdir("./66", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5594 ./strace-static-x86_64: Process 5594 attached executing program [pid 5592] <... write resumed>) = 4243456 [pid 5594] set_robust_list(0x55555b590660, 24 [pid 5592] exit_group(0 [pid 5594] <... set_robust_list resumed>) = 0 [pid 5594] chdir("./67") = 0 [pid 5594] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5594] setpgid(0, 0) = 0 [pid 5594] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5594] write(3, "1000", 4) = 4 [pid 5594] close(3) = 0 [pid 5594] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5594] write(1, "executing program\n", 18) = 18 [pid 5594] memfd_create("syzkaller", 0) = 3 [pid 5592] <... exit_group resumed>) = ? [pid 5592] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5592, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5594] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./67/binderfs" [pid 5591] <... write resumed>) = 4243456 [pid 5243] <... unlink resumed>) = 0 [pid 5591] exit_group(0 [pid 5243] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5591] <... exit_group resumed>) = ? [pid 5591] +++ exited with 0 +++ [pid 5243] <... umount2 resumed>) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5591, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... openat resumed>) = 3 [pid 5243] newfstatat(AT_FDCWD, "./67/file0", [pid 5245] newfstatat(3, "", [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] getdents64(3, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] newfstatat(AT_FDCWD, "./66/binderfs", [pid 5243] getdents64(4, [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] unlink("./66/binderfs" [pid 5243] close(4) = 0 [pid 5243] rmdir("./67/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5243] rmdir("./67" [pid 5593] <... write resumed>) = 16777216 [pid 5245] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5593] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5245] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] mkdir("./68", 0777 [pid 5245] <... openat resumed>) = 4 [pid 5243] <... mkdir resumed>) = 0 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5245] rmdir("./66/file0" [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5245] <... rmdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5245] close(3) = 0 [pid 5245] rmdir("./66") = 0 [pid 5245] mkdir("./67", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5593] <... munmap resumed>) = 0 [pid 5593] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5593] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5593] close(3) = 0 [pid 5593] close(4) = 0 [pid 5593] mkdir("./file0", 0777) = 0 [ 424.669089][ T5593] loop3: detected capacity change from 0 to 32768 [pid 5593] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5593] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5593] chdir("./file0") = 0 [pid 5593] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5593] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5593] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5593] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5595 attached , child_tidptr=0x55555b590650) = 5595 [pid 5595] set_robust_list(0x55555b590660, 24) = 0 [pid 5595] chdir("./66") = 0 [pid 5595] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5595] setpgid(0, 0) = 0 [pid 5595] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5595] write(3, "1000", 4) = 4 [pid 5595] close(3) = 0 [pid 5595] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5595] write(1, "executing program\n", 18) = 18 [pid 5595] memfd_create("syzkaller", 0) = 3 [pid 5595] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5596 attached [pid 5595] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5596] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5596 [pid 5596] chdir("./68") = 0 [pid 5596] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5596] setpgid(0, 0) = 0 [pid 5596] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5596] write(3, "1000", 4) = 4 [pid 5596] close(3) = 0 [pid 5596] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5596] write(1, "executing program\n", 18) = 18 [pid 5596] memfd_create("syzkaller", 0) = 3 [pid 5596] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5597 ./strace-static-x86_64: Process 5597 attached [pid 5597] set_robust_list(0x55555b590660, 24) = 0 [pid 5597] chdir("./67") = 0 [pid 5597] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5597] setpgid(0, 0) = 0 [pid 5597] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5597] write(3, "1000", 4executing program ) = 4 [pid 5597] close(3) = 0 [pid 5597] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5597] write(1, "executing program\n", 18) = 18 [pid 5597] memfd_create("syzkaller", 0) = 3 [pid 5597] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5593] <... write resumed>) = 4243456 [pid 5593] exit_group(0) = ? [pid 5594] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5593] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5593, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./66/binderfs") = 0 [pid 5246] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./66/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./66") = 0 [pid 5246] mkdir("./67", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5595] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5596] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5598 attached [pid 5598] set_robust_list(0x55555b590660, 24 [pid 5597] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5598] <... set_robust_list resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5598 [pid 5598] chdir("./67") = 0 [pid 5598] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5598] setpgid(0, 0) = 0 [pid 5598] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5598] write(3, "1000", 4) = 4 [pid 5598] close(3) = 0 [pid 5598] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5598] write(1, "executing program\n", 18) = 18 [pid 5598] memfd_create("syzkaller", 0) = 3 [pid 5598] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5594] <... write resumed>) = 16777216 [pid 5594] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5594] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5594] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5594] close(3) = 0 [pid 5594] close(4) = 0 [pid 5594] mkdir("./file0", 0777) = 0 [pid 5594] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5594] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5594] chdir("./file0") = 0 [ 425.431160][ T5594] loop1: detected capacity change from 0 to 32768 [pid 5594] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5594] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5594] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5594] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5595] <... write resumed>) = 16777216 [pid 5595] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5595] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5595] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5595] close(3) = 0 [pid 5595] close(4) = 0 [pid 5595] mkdir("./file0", 0777) = 0 [ 425.651316][ T5595] loop4: detected capacity change from 0 to 32768 [pid 5595] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5595] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5595] chdir("./file0") = 0 [pid 5595] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5595] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5595] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5595] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5598] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5594] <... write resumed>) = 4243456 [pid 5594] exit_group(0) = ? [pid 5596] <... write resumed>) = 16777216 [pid 5594] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5594, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=28 /* 0.28 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5596] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./67/binderfs") = 0 [pid 5244] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5597] <... write resumed>) = 16777216 [pid 5244] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5596] <... munmap resumed>) = 0 [pid 5597] munmap(0x7f6c8ae00000, 138412032 [pid 5596] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5596] <... openat resumed>) = 4 [pid 5596] ioctl(4, LOOP_SET_FD, 3 [pid 5244] newfstatat(AT_FDCWD, "./67/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5596] <... ioctl resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5596] close(3) = 0 [pid 5244] rmdir("./67/file0" [pid 5596] close(4) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5596] mkdir("./file0", 0777 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5596] <... mkdir resumed>) = 0 [pid 5244] close(3 [pid 5596] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./67") = 0 [pid 5244] mkdir("./68", 0777 [pid 5597] <... munmap resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5597] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5597] <... openat resumed>) = 4 [pid 5597] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [ 425.820518][ T5596] loop0: detected capacity change from 0 to 32768 [pid 5244] close(3 [pid 5597] <... ioctl resumed>) = 0 [pid 5597] close(3) = 0 [pid 5597] close(4) = 0 [pid 5596] <... mount resumed>) = 0 [pid 5597] mkdir("./file0", 0777 [pid 5596] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5597] <... mkdir resumed>) = 0 [pid 5596] <... openat resumed>) = 3 [pid 5597] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5596] chdir("./file0") = 0 [pid 5596] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5596] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5596] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5596] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5597] <... mount resumed>) = 0 [ 425.868057][ T5597] loop2: detected capacity change from 0 to 32768 [pid 5597] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5597] chdir("./file0" [pid 5595] <... write resumed>) = 4243456 [pid 5597] <... chdir resumed>) = 0 [pid 5595] exit_group(0 [pid 5597] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5595] <... exit_group resumed>) = ? [pid 5597] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5595] +++ exited with 0 +++ [pid 5597] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5595, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5597] <... openat resumed>) = 4 [pid 5597] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5247] umount2("./66", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5597] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./66", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./66/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./66/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./66/binderfs") = 0 [pid 5247] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./66/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./66/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./66/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./66/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./66") = 0 [pid 5247] mkdir("./67", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5596] <... write resumed>) = 4243456 [pid 5244] <... close resumed>) = 0 [pid 5596] exit_group(0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5599 attached [pid 5597] <... write resumed>) = 4243456 [pid 5596] <... exit_group resumed>) = ? [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5599 [pid 5599] set_robust_list(0x55555b590660, 24) = 0 [pid 5599] chdir("./68") = 0 [pid 5599] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5597] exit_group(0 [pid 5596] +++ exited with 0 +++ [pid 5597] <... exit_group resumed>) = ? [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5596, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5599] setpgid(0, 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5599] <... setpgid resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5599] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", [pid 5599] <... openat resumed>) = 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5599] write(3, "1000", 4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5599] <... write resumed>) = 4 [pid 5243] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5599] close(3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5599] <... close resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./68/binderfs", executing program [pid 5599] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./68/binderfs") = 0 [pid 5243] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5597] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5597, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5599] <... symlink resumed>) = 0 [pid 5599] write(1, "executing program\n", 18) = 18 [pid 5599] memfd_create("syzkaller", 0) = 3 [pid 5599] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./67/binderfs" [pid 5243] <... umount2 resumed>) = 0 [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./68/file0", [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] newfstatat(AT_FDCWD, "./67/file0", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5598] <... write resumed>) = 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] getdents64(4, [pid 5245] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./68/file0") = 0 [pid 5245] <... openat resumed>) = 4 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./68") = 0 [pid 5598] munmap(0x7f6c8ae00000, 138412032 [pid 5243] mkdir("./69", 0777) = 0 [pid 5245] newfstatat(4, "", [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5245] getdents64(4, [pid 5243] <... ioctl resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4 [pid 5243] close(3 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./67/file0" [pid 5598] <... munmap resumed>) = 0 [pid 5598] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5245] <... rmdir resumed>) = 0 [pid 5598] ioctl(4, LOOP_SET_FD, 3 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5598] <... ioctl resumed>) = 0 [pid 5598] close(3) = 0 [pid 5598] close(4) = 0 [pid 5598] mkdir("./file0", 0777) = 0 [pid 5598] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] close(3) = 0 [pid 5598] <... mount resumed>) = 0 [pid 5245] rmdir("./67" [pid 5598] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./68", 0777 [pid 5598] chdir("./file0" [pid 5245] <... mkdir resumed>) = 0 [pid 5598] <... chdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5598] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... openat resumed>) = 3 [pid 5598] <... openat resumed>) = -1 EBUSY (Device or resource busy) [ 426.278497][ T5598] loop3: detected capacity change from 0 to 32768 [pid 5598] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5598] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... ioctl resumed>) = 0 [pid 5598] <... openat resumed>) = 5 [pid 5245] close(3 [pid 5598] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5600 attached , child_tidptr=0x55555b590650) = 5600 [pid 5600] set_robust_list(0x55555b590660, 24) = 0 [pid 5600] chdir("./67") = 0 [pid 5600] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5600] setpgid(0, 0) = 0 [pid 5600] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5600] write(3, "1000", 4) = 4 [pid 5600] close(3) = 0 [pid 5600] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5600] write(1, "executing program\n", 18executing program ) = 18 [pid 5600] memfd_create("syzkaller", 0) = 3 [pid 5600] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5601 attached , child_tidptr=0x55555b590650) = 5601 [pid 5601] set_robust_list(0x55555b590660, 24) = 0 [pid 5601] chdir("./69") = 0 [pid 5601] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5601] setpgid(0, 0) = 0 [pid 5245] <... close resumed>) = 0 [pid 5601] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5598] <... write resumed>) = 4243456 [pid 5598] exit_group(0) = ? [pid 5601] write(3, "1000", 4 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5601] <... write resumed>) = 4 [pid 5601] close(3) = 0 [pid 5601] symlink("/dev/binderfs", "./binderfs") = 0 ./strace-static-x86_64: Process 5602 attached executing program [pid 5601] write(1, "executing program\n", 18) = 18 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5602 [pid 5601] memfd_create("syzkaller", 0 [pid 5598] +++ exited with 0 +++ [pid 5602] set_robust_list(0x55555b590660, 24 [pid 5601] <... memfd_create resumed>) = 3 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5598, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=40 /* 0.40 s */} --- [pid 5601] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5602] <... set_robust_list resumed>) = 0 [pid 5602] chdir("./68") = 0 [pid 5602] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5602] setpgid(0, 0) = 0 [pid 5602] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5601] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5602] write(3, "1000", 4 [pid 5246] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5602] <... write resumed>) = 4 [pid 5246] <... openat resumed>) = 3 [pid 5602] close(3 [pid 5246] newfstatat(3, "", [pid 5602] <... close resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5602] symlink("/dev/binderfs", "./binderfs" [pid 5246] getdents64(3, executing program [pid 5602] <... symlink resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5602] write(1, "executing program\n", 18 [pid 5246] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5602] <... write resumed>) = 18 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5602] memfd_create("syzkaller", 0 [pid 5246] newfstatat(AT_FDCWD, "./67/binderfs", [pid 5602] <... memfd_create resumed>) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5602] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] unlink("./67/binderfs" [pid 5602] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5599] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./67/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./67/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./67") = 0 [pid 5246] mkdir("./68", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5600] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5603 attached , child_tidptr=0x55555b590650) = 5603 [pid 5603] set_robust_list(0x55555b590660, 24) = 0 [pid 5603] chdir("./68") = 0 [pid 5603] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5603] setpgid(0, 0) = 0 [pid 5603] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5603] write(3, "1000", 4) = 4 [pid 5603] close(3) = 0 [pid 5603] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5603] write(1, "executing program\n", 18executing program ) = 18 [pid 5603] memfd_create("syzkaller", 0) = 3 [pid 5603] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5602] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5601] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5599] <... write resumed>) = 16777216 [pid 5599] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5599] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5599] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5599] close(3) = 0 [pid 5599] close(4) = 0 [pid 5599] mkdir("./file0", 0777) = 0 [pid 5599] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5599] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5599] chdir("./file0") = 0 [pid 5599] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5599] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5599] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 427.140551][ T5599] loop1: detected capacity change from 0 to 32768 [pid 5599] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5600] <... write resumed>) = 16777216 [pid 5600] munmap(0x7f6c8ae00000, 138412032 [pid 5603] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5600] <... munmap resumed>) = 0 [pid 5600] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5600] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5600] close(3) = 0 [pid 5600] close(4) = 0 [pid 5600] mkdir("./file0", 0777) = 0 [pid 5600] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5600] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5600] chdir("./file0") = 0 [pid 5600] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5600] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5600] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 427.309346][ T5600] loop4: detected capacity change from 0 to 32768 [pid 5600] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5602] <... write resumed>) = 16777216 [pid 5602] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5599] <... write resumed>) = 4243456 [pid 5602] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5599] exit_group(0 [pid 5602] <... openat resumed>) = 4 [pid 5601] <... write resumed>) = 16777216 [pid 5599] <... exit_group resumed>) = ? [pid 5602] ioctl(4, LOOP_SET_FD, 3 [pid 5601] munmap(0x7f6c8ae00000, 138412032 [pid 5599] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5599, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5602] <... ioctl resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5602] close(3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5602] <... close resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5602] close(4 [pid 5244] <... openat resumed>) = 3 [pid 5602] <... close resumed>) = 0 [pid 5244] newfstatat(3, "", [pid 5602] mkdir("./file0", 0777 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5602] <... mkdir resumed>) = 0 [pid 5601] <... munmap resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5601] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./68/binderfs", [pid 5602] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 427.443963][ T5602] loop2: detected capacity change from 0 to 32768 [pid 5601] <... openat resumed>) = 4 [pid 5244] unlink("./68/binderfs" [pid 5601] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... unlink resumed>) = 0 [pid 5601] <... ioctl resumed>) = 0 [pid 5244] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5601] close(3) = 0 [pid 5601] close(4) = 0 [pid 5601] mkdir("./file0", 0777) = 0 [pid 5601] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5601] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5601] <... openat resumed>) = 3 [pid 5244] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5601] chdir("./file0" [pid 5244] newfstatat(AT_FDCWD, "./68/file0", [pid 5601] <... chdir resumed>) = 0 [pid 5601] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5601] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5601] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5601] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5601] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5602] <... mount resumed>) = 0 [pid 5601] <... openat resumed>) = 5 [pid 5601] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] getdents64(4, [pid 5602] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5602] <... openat resumed>) = 3 [pid 5244] close(4 [pid 5602] chdir("./file0" [pid 5244] <... close resumed>) = 0 [pid 5602] <... chdir resumed>) = 0 [pid 5244] rmdir("./68/file0" [pid 5602] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5602] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [ 427.489676][ T5601] loop0: detected capacity change from 0 to 32768 [pid 5244] close(3) = 0 [pid 5244] rmdir("./68" [pid 5602] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... rmdir resumed>) = 0 [pid 5602] <... openat resumed>) = 5 [pid 5244] mkdir("./69", 0777 [pid 5602] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5600] <... write resumed>) = 4243456 [pid 5600] exit_group(0) = ? [pid 5600] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5600, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./67", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./67", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./67/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./67/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./67/binderfs") = 0 [pid 5247] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./67/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./67/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./67/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./67/file0") = 0 [pid 5602] <... write resumed>) = 4243456 [pid 5247] getdents64(3, [pid 5602] exit_group(0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5602] <... exit_group resumed>) = ? [pid 5247] close(3 [pid 5602] +++ exited with 0 +++ [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./67") = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5602, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] mkdir("./68", 0777 [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... mkdir resumed>) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5601] <... write resumed>) = 4243456 [pid 5245] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5601] exit_group(0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5601] <... exit_group resumed>) = ? [pid 5247] <... openat resumed>) = 3 [pid 5245] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5601] +++ exited with 0 +++ [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5245] <... openat resumed>) = 3 [pid 5247] <... ioctl resumed>) = 0 [pid 5245] newfstatat(3, "", [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5601, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5247] close(3 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5603] <... write resumed>) = 16777216 [pid 5603] munmap(0x7f6c8ae00000, 138412032 [pid 5245] getdents64(3, [pid 5243] <... restart_syscall resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] newfstatat(AT_FDCWD, "./68/binderfs", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] unlink("./68/binderfs" [pid 5243] <... openat resumed>) = 3 [pid 5245] <... unlink resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5245] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./69/binderfs") = 0 [pid 5243] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = 0 [pid 5245] newfstatat(AT_FDCWD, "./68/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5603] <... munmap resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... close resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./69/file0", [pid 5245] <... openat resumed>) = 4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] newfstatat(4, "", [pid 5243] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5603] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5603] <... openat resumed>) = 4 [pid 5245] getdents64(4, [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5603] ioctl(4, LOOP_SET_FD, 3 [pid 5243] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5243] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./68/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./68") = 0 [pid 5245] mkdir("./69", 0777) = 0 [pid 5243] newfstatat(4, "", [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 ./strace-static-x86_64: Process 5604 attached [pid 5603] <... ioctl resumed>) = 0 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5604 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5604] set_robust_list(0x55555b590660, 24 [pid 5603] close(3 [pid 5245] <... ioctl resumed>) = 0 [pid 5243] getdents64(4, [pid 5604] <... set_robust_list resumed>) = 0 [pid 5603] <... close resumed>) = 0 [pid 5245] close(3 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5604] chdir("./69" [pid 5603] close(4 [pid 5243] getdents64(4, [pid 5604] <... chdir resumed>) = 0 [pid 5603] <... close resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5604] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5603] mkdir("./file0", 0777 [pid 5243] close(4 [pid 5604] <... prctl resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5604] setpgid(0, 0 [pid 5243] rmdir("./69/file0") = 0 [pid 5604] <... setpgid resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5604] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] close(3 [pid 5603] <... mkdir resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5604] <... openat resumed>) = 3 [pid 5603] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] rmdir("./69" [pid 5604] write(3, "1000", 4) = 4 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./70", 0777 [pid 5604] close(3) = 0 [pid 5604] symlink("/dev/binderfs", "./binderfs" [pid 5243] <... mkdir resumed>) = 0 [pid 5604] <... symlink resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5604] write(1, "executing program\n", 18 [pid 5243] <... ioctl resumed>) = 0 [ 427.865547][ T5603] loop3: detected capacity change from 0 to 32768 [pid 5243] close(3executing program [pid 5604] <... write resumed>) = 18 [pid 5604] memfd_create("syzkaller", 0 [pid 5603] <... mount resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5603] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5604] <... memfd_create resumed>) = 3 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5603] <... openat resumed>) = 3 [pid 5604] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5603] chdir("./file0"./strace-static-x86_64: Process 5605 attached [pid 5604] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5603] <... chdir resumed>) = 0 [pid 5603] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5605 [pid 5605] set_robust_list(0x55555b590660, 24 [pid 5603] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5605] <... set_robust_list resumed>) = 0 [pid 5605] chdir("./68" [pid 5603] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5605] <... chdir resumed>) = 0 [pid 5605] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5605] setpgid(0, 0) = 0 [pid 5605] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5605] write(3, "1000", 4) = 4 [pid 5605] close(3) = 0 [pid 5605] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5603] <... openat resumed>) = 4 executing program [pid 5603] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5605] write(1, "executing program\n", 18) = 18 [pid 5605] memfd_create("syzkaller", 0) = 3 [pid 5605] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5603] <... openat resumed>) = 5 [pid 5603] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5606 ./strace-static-x86_64: Process 5606 attached [pid 5606] set_robust_list(0x55555b590660, 24) = 0 [pid 5606] chdir("./69") = 0 [pid 5606] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5606] setpgid(0, 0) = 0 [pid 5606] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5606] write(3, "1000", 4) = 4 [pid 5606] close(3 [pid 5243] <... close resumed>) = 0 [pid 5606] <... close resumed>) = 0 [pid 5606] symlink("/dev/binderfs", "./binderfs" [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5606] <... symlink resumed>) = 0 ./strace-static-x86_64: Process 5607 attached [pid 5606] write(1, "executing program\n", 18executing program [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5607 [pid 5606] <... write resumed>) = 18 [pid 5606] memfd_create("syzkaller", 0) = 3 [pid 5607] set_robust_list(0x55555b590660, 24 [pid 5606] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5607] <... set_robust_list resumed>) = 0 [pid 5607] chdir("./70") = 0 [pid 5607] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5607] setpgid(0, 0) = 0 [pid 5607] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5607] write(3, "1000", 4) = 4 [pid 5607] close(3 [pid 5603] <... write resumed>) = 4243456 [pid 5607] <... close resumed>) = 0 [pid 5603] exit_group(0) = ? [pid 5607] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5607] write(1, "executing program\n", 18) = 18 [pid 5607] memfd_create("syzkaller", 0) = 3 [pid 5607] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5603] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5603, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./68/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./68/binderfs") = 0 [pid 5246] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5605] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./68/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", [pid 5604] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./68/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./68") = 0 [pid 5246] mkdir("./69", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5607] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5606] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5608 attached [pid 5608] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5608 [pid 5608] <... set_robust_list resumed>) = 0 [pid 5608] chdir("./69") = 0 executing program [pid 5608] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5608] setpgid(0, 0) = 0 [pid 5608] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5608] write(3, "1000", 4) = 4 [pid 5608] close(3) = 0 [pid 5608] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5608] write(1, "executing program\n", 18) = 18 [pid 5608] memfd_create("syzkaller", 0) = 3 [pid 5608] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5605] <... write resumed>) = 16777216 [pid 5605] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5605] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5605] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5605] close(3) = 0 [pid 5605] close(4) = 0 [pid 5605] mkdir("./file0", 0777) = 0 [pid 5605] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5605] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5605] chdir("./file0") = 0 [pid 5605] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [ 428.765688][ T5605] loop4: detected capacity change from 0 to 32768 [pid 5605] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5605] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5605] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5604] <... write resumed>) = 16777216 [pid 5604] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5604] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5604] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5604] close(3) = 0 [pid 5604] close(4) = 0 [pid 5604] mkdir("./file0", 0777) = 0 [pid 5604] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5604] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5604] chdir("./file0") = 0 [ 428.936510][ T5604] loop1: detected capacity change from 0 to 32768 [pid 5604] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5604] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5604] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5604] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5606] <... write resumed>) = 16777216 [pid 5608] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5605] <... write resumed>) = 4243456 [pid 5606] munmap(0x7f6c8ae00000, 138412032 [pid 5605] exit_group(0 [pid 5607] <... write resumed>) = 16777216 [pid 5605] <... exit_group resumed>) = ? [pid 5607] munmap(0x7f6c8ae00000, 138412032 [pid 5606] <... munmap resumed>) = 0 [pid 5605] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5605, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=27 /* 0.27 s */} --- [pid 5607] <... munmap resumed>) = 0 [pid 5606] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5606] ioctl(4, LOOP_SET_FD, 3 [pid 5247] umount2("./68", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./68", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./68/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5607] <... openat resumed>) = 4 [pid 5247] newfstatat(AT_FDCWD, "./68/binderfs", [pid 5607] ioctl(4, LOOP_SET_FD, 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./68/binderfs") = 0 [pid 5247] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5606] <... ioctl resumed>) = 0 [pid 5606] close(3) = 0 [pid 5606] close(4) = 0 [pid 5606] mkdir("./file0", 0777) = 0 [pid 5606] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5606] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5247] <... umount2 resumed>) = 0 [pid 5606] chdir("./file0") = 0 [pid 5606] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5606] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5606] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5607] <... ioctl resumed>) = 0 [ 429.107762][ T5606] loop2: detected capacity change from 0 to 32768 [ 429.122422][ T5607] loop0: detected capacity change from 0 to 32768 [pid 5606] <... openat resumed>) = 5 [pid 5247] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] close(3 [pid 5606] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5607] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5607] close(4 [pid 5247] newfstatat(AT_FDCWD, "./68/file0", [pid 5607] <... close resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5607] mkdir("./file0", 0777 [pid 5247] umount2("./68/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] <... mkdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5607] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] openat(AT_FDCWD, "./68/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./68/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5604] <... write resumed>) = 4243456 [pid 5247] rmdir("./68" [pid 5604] exit_group(0 [pid 5247] <... rmdir resumed>) = 0 [pid 5604] <... exit_group resumed>) = ? [pid 5247] mkdir("./69", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5604] +++ exited with 0 +++ [pid 5247] close(3 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5604, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5607] <... mount resumed>) = 0 [pid 5607] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5607] chdir("./file0" [pid 5244] <... restart_syscall resumed>) = 0 [pid 5607] <... chdir resumed>) = 0 [pid 5244] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5607] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5607] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] newfstatat(3, "", [pid 5607] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5607] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] unlink("./69/binderfs") = 0 [pid 5607] <... openat resumed>) = 5 [pid 5244] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./69/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./69/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./69") = 0 [pid 5244] mkdir("./70", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5606] <... write resumed>) = 4243456 [pid 5606] exit_group(0) = ? [pid 5606] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5606, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./69/binderfs") = 0 [pid 5245] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5607] <... write resumed>) = 4243456 [pid 5607] exit_group(0) = ? [pid 5247] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5609 attached [pid 5607] +++ exited with 0 +++ [pid 5245] <... umount2 resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5609 [pid 5245] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5607, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) ./strace-static-x86_64: Process 5610 attached [pid 5609] set_robust_list(0x55555b590660, 24 [pid 5245] newfstatat(AT_FDCWD, "./69/file0", [pid 5610] set_robust_list(0x55555b590660, 24 [pid 5609] <... set_robust_list resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5610 [pid 5243] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5610] <... set_robust_list resumed>) = 0 [pid 5609] chdir("./69" [pid 5245] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5610] chdir("./70" [pid 5609] <... chdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5609] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... openat resumed>) = 3 [pid 5610] <... chdir resumed>) = 0 [pid 5609] <... prctl resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5609] setpgid(0, 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5609] <... setpgid resumed>) = 0 [pid 5243] getdents64(3, [pid 5609] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5610] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5243] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5610] <... prctl resumed>) = 0 [pid 5609] <... openat resumed>) = 3 [pid 5608] <... write resumed>) = 16777216 [pid 5245] <... openat resumed>) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5610] setpgid(0, 0 [pid 5609] write(3, "1000", 4 [pid 5245] newfstatat(4, "", [pid 5243] newfstatat(AT_FDCWD, "./70/binderfs", [pid 5610] <... setpgid resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5609] <... write resumed>) = 4 [pid 5608] munmap(0x7f6c8ae00000, 138412032 [pid 5610] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5609] close(3 [pid 5245] getdents64(4, [pid 5243] unlink("./70/binderfs" [pid 5609] <... close resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... unlink resumed>) = 0 [pid 5610] <... openat resumed>) = 3 [pid 5609] symlink("/dev/binderfs", "./binderfs" [pid 5245] getdents64(4, [pid 5243] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5610] write(3, "1000", 4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5610] <... write resumed>) = 4 [pid 5245] close(4 [pid 5610] close(3 [pid 5609] <... symlink resumed>) = 0 [pid 5245] <... close resumed>) = 0 executing program [pid 5610] <... close resumed>) = 0 [pid 5609] write(1, "executing program\n", 18 [pid 5245] rmdir("./69/file0" [pid 5609] <... write resumed>) = 18 [pid 5609] memfd_create("syzkaller", 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5610] symlink("/dev/binderfs", "./binderfs" [pid 5245] getdents64(3, [pid 5610] <... symlink resumed>) = 0 [pid 5609] <... memfd_create resumed>) = 3 [pid 5608] <... munmap resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5610] write(1, "executing program\n", 18 [pid 5609] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] <... close resumed>) = 0 executing program [pid 5610] <... write resumed>) = 18 [pid 5609] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5608] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] rmdir("./69" [pid 5610] memfd_create("syzkaller", 0 [pid 5608] <... openat resumed>) = 4 [pid 5245] <... rmdir resumed>) = 0 [pid 5608] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... umount2 resumed>) = 0 [pid 5610] <... memfd_create resumed>) = 3 [pid 5245] mkdir("./70", 0777 [pid 5243] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... mkdir resumed>) = 0 [pid 5610] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5608] <... ioctl resumed>) = 0 [pid 5243] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5608] close(3) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5608] close(4 [pid 5243] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5608] <... close resumed>) = 0 [pid 5608] mkdir("./file0", 0777 [pid 5243] <... openat resumed>) = 4 [pid 5608] <... mkdir resumed>) = 0 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5608] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [ 429.577704][ T5608] loop3: detected capacity change from 0 to 32768 [pid 5243] rmdir("./70/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./70") = 0 [pid 5243] mkdir("./71", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5608] <... mount resumed>) = 0 [pid 5608] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5608] chdir("./file0") = 0 [pid 5608] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5608] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5608] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5608] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5611 attached , child_tidptr=0x55555b590650) = 5611 [pid 5611] set_robust_list(0x55555b590660, 24) = 0 [pid 5611] chdir("./70") = 0 [pid 5611] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5611] setpgid(0, 0) = 0 [pid 5611] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5611] write(3, "1000", 4) = 4 [pid 5611] close(3) = 0 [pid 5611] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5611] write(1, "executing program\n", 18) = 18 [pid 5611] memfd_create("syzkaller", 0) = 3 [pid 5611] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5612 attached , child_tidptr=0x55555b590650) = 5612 [pid 5612] set_robust_list(0x55555b590660, 24) = 0 [pid 5612] chdir("./71") = 0 [pid 5612] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5612] setpgid(0, 0) = 0 [pid 5612] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5612] write(3, "1000", 4) = 4 [pid 5612] close(3) = 0 [pid 5612] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5612] write(1, "executing program\n", 18) = 18 [pid 5612] memfd_create("syzkaller", 0) = 3 [pid 5612] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5608] <... write resumed>) = 4243456 [pid 5609] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5608] exit_group(0) = ? [pid 5608] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5608, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./69/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./69/binderfs") = 0 [pid 5246] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5610] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./69/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./69/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./69") = 0 [pid 5246] mkdir("./70", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5611] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5612] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5610] <... write resumed>) = 16777216 [pid 5609] <... write resumed>) = 16777216 [pid 5246] <... close resumed>) = 0 [pid 5610] munmap(0x7f6c8ae00000, 138412032 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5609] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5613 ./strace-static-x86_64: Process 5613 attached [pid 5613] set_robust_list(0x55555b590660, 24) = 0 [pid 5613] chdir("./70") = 0 [pid 5613] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5613] setpgid(0, 0) = 0 [pid 5610] <... munmap resumed>) = 0 [pid 5609] <... munmap resumed>) = 0 [pid 5613] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5613] write(3, "1000", 4) = 4 [pid 5610] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5613] close(3) = 0 [pid 5610] <... openat resumed>) = 4 [pid 5613] symlink("/dev/binderfs", "./binderfs" [pid 5610] ioctl(4, LOOP_SET_FD, 3executing program [pid 5613] <... symlink resumed>) = 0 [pid 5609] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5613] write(1, "executing program\n", 18) = 18 [pid 5609] <... openat resumed>) = 4 [pid 5613] memfd_create("syzkaller", 0 [pid 5609] ioctl(4, LOOP_SET_FD, 3 [pid 5613] <... memfd_create resumed>) = 3 [pid 5613] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5609] <... ioctl resumed>) = 0 [pid 5613] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5609] close(3 [pid 5610] <... ioctl resumed>) = 0 [pid 5610] close(3) = 0 [pid 5610] close(4 [pid 5609] <... close resumed>) = 0 [pid 5610] <... close resumed>) = 0 [pid 5609] close(4 [pid 5610] mkdir("./file0", 0777) = 0 [pid 5609] <... close resumed>) = 0 [ 430.440051][ T5610] loop1: detected capacity change from 0 to 32768 [ 430.449652][ T5609] loop4: detected capacity change from 0 to 32768 [pid 5609] mkdir("./file0", 0777 [pid 5610] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5609] <... mkdir resumed>) = 0 [pid 5610] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5609] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5610] chdir("./file0") = 0 [pid 5610] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5610] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5609] <... mount resumed>) = 0 [pid 5609] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5610] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5610] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5609] <... openat resumed>) = 3 [pid 5609] chdir("./file0") = 0 [pid 5609] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5609] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5609] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5609] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5611] <... write resumed>) = 16777216 [pid 5612] <... write resumed>) = 16777216 [pid 5611] munmap(0x7f6c8ae00000, 138412032 [pid 5612] munmap(0x7f6c8ae00000, 138412032 [pid 5610] <... write resumed>) = 4243456 [pid 5610] exit_group(0) = ? [pid 5610] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5610, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./70/binderfs") = 0 [pid 5244] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5612] <... munmap resumed>) = 0 [pid 5611] <... munmap resumed>) = 0 [pid 5611] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5611] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = 0 [pid 5612] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5612] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5609] <... write resumed>) = 4243456 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5611] <... ioctl resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5611] close(3) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5611] close(4 [pid 5244] newfstatat(4, "", [pid 5609] exit_group(0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5609] <... exit_group resumed>) = ? [pid 5244] getdents64(4, [pid 5611] <... close resumed>) = 0 [pid 5609] +++ exited with 0 +++ [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5611] mkdir("./file0", 0777 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5609, si_uid=0, si_status=0, si_utime=14 /* 0.14 s */, si_stime=29 /* 0.29 s */} --- [pid 5611] <... mkdir resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5244] getdents64(4, [pid 5247] <... restart_syscall resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5612] <... ioctl resumed>) = 0 [pid 5611] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5612] close(3 [pid 5244] close(4 [pid 5612] <... close resumed>) = 0 [pid 5247] umount2("./69", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5612] close(4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... close resumed>) = 0 [pid 5612] <... close resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./69", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5612] mkdir("./file0", 0777 [pid 5247] <... openat resumed>) = 3 [pid 5244] rmdir("./70/file0" [pid 5612] <... mkdir resumed>) = 0 [pid 5247] newfstatat(3, "", [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5612] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5611] <... mount resumed>) = 0 [pid 5247] getdents64(3, [pid 5244] getdents64(3, [pid 5611] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5611] <... openat resumed>) = 3 [pid 5247] umount2("./69/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5611] chdir("./file0" [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] close(3 [pid 5611] <... chdir resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./69/binderfs", [pid 5244] <... close resumed>) = 0 [pid 5611] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5611] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5247] unlink("./69/binderfs" [pid 5244] rmdir("./70" [pid 5611] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] <... unlink resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] mkdir("./71", 0777 [pid 5611] <... openat resumed>) = 4 [pid 5244] <... mkdir resumed>) = 0 [pid 5612] <... mount resumed>) = 0 [pid 5611] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5612] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5611] <... openat resumed>) = 5 [pid 5244] <... openat resumed>) = 3 [pid 5612] <... openat resumed>) = 3 [pid 5611] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5612] chdir("./file0" [pid 5244] <... ioctl resumed>) = 0 [pid 5612] <... chdir resumed>) = 0 [pid 5244] close(3 [ 430.776170][ T5611] loop2: detected capacity change from 0 to 32768 [ 430.785190][ T5612] loop0: detected capacity change from 0 to 32768 [pid 5612] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5612] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5613] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5612] <... openat resumed>) = 4 [pid 5247] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5612] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5612] <... openat resumed>) = 5 [pid 5247] newfstatat(AT_FDCWD, "./69/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5612] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] umount2("./69/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./69/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./69/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./69") = 0 [pid 5247] mkdir("./70", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5611] <... write resumed>) = 4243456 [pid 5611] exit_group(0) = ? [pid 5611] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5611, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./70/binderfs") = 0 [pid 5245] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5612] <... write resumed>) = 4243456 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5612] exit_group(0 [pid 5245] newfstatat(AT_FDCWD, "./70/file0", [pid 5612] <... exit_group resumed>) = ? [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5612] +++ exited with 0 +++ [pid 5245] <... openat resumed>) = 4 [pid 5244] <... close resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5612, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5245] getdents64(4, [pid 5243] <... restart_syscall resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5614 [pid 5243] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5614 attached [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5614] set_robust_list(0x55555b590660, 24 [pid 5245] getdents64(4, [pid 5243] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5614] <... set_robust_list resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5614] chdir("./71" [pid 5245] close(4 [pid 5243] <... openat resumed>) = 3 [pid 5614] <... chdir resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5245] <... close resumed>) = 0 [pid 5614] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] rmdir("./70/file0" [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5614] <... prctl resumed>) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5614] setpgid(0, 0 [pid 5245] getdents64(3, [pid 5243] getdents64(3, [pid 5614] <... setpgid resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] close(3 [pid 5614] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5245] <... close resumed>) = 0 [pid 5243] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5614] <... openat resumed>) = 3 [pid 5245] rmdir("./70" [pid 5614] write(3, "1000", 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5614] <... write resumed>) = 4 [pid 5245] <... rmdir resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./71/binderfs", [pid 5614] close(3 [pid 5245] mkdir("./71", 0777 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5243] unlink("./71/binderfs" [pid 5614] <... close resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] <... unlink resumed>) = 0 [pid 5614] symlink("/dev/binderfs", "./binderfs" [pid 5245] <... openat resumed>) = 3 [pid 5243] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5614] <... symlink resumed>) = 0 [pid 5245] close(3 [pid 5614] write(1, "executing program\n", 18 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./71/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./71/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./71"executing program [pid 5614] <... write resumed>) = 18 [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./72", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5614] memfd_create("syzkaller", 0) = 3 [pid 5614] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... close resumed>) = 0 [pid 5614] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5615 attached [pid 5615] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5615 [pid 5615] <... set_robust_list resumed>) = 0 [pid 5615] chdir("./70") = 0 [pid 5615] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5615] setpgid(0, 0) = 0 [pid 5615] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5615] write(3, "1000", 4) = 4 [pid 5615] close(3) = 0 [pid 5613] <... write resumed>) = 16777216 [pid 5613] munmap(0x7f6c8ae00000, 138412032 [pid 5615] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5615] write(1, "executing program\n", 18 [pid 5613] <... munmap resumed>) = 0 executing program [pid 5615] <... write resumed>) = 18 [pid 5613] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5615] memfd_create("syzkaller", 0 [pid 5613] <... openat resumed>) = 4 [pid 5613] ioctl(4, LOOP_SET_FD, 3 [pid 5615] <... memfd_create resumed>) = 3 [pid 5615] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5613] <... ioctl resumed>) = 0 [pid 5613] close(3) = 0 [pid 5613] close(4) = 0 [pid 5613] mkdir("./file0", 0777) = 0 [pid 5613] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5613] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5613] chdir("./file0") = 0 [pid 5613] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5613] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5613] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 431.366675][ T5613] loop3: detected capacity change from 0 to 32768 [pid 5613] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5616 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5617 attached , child_tidptr=0x55555b590650) = 5617 [pid 5617] set_robust_list(0x55555b590660, 24) = 0 ./strace-static-x86_64: Process 5616 attached [pid 5617] chdir("./71") = 0 [pid 5617] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5616] set_robust_list(0x55555b590660, 24 [pid 5617] <... prctl resumed>) = 0 [pid 5617] setpgid(0, 0 [pid 5616] <... set_robust_list resumed>) = 0 [pid 5617] <... setpgid resumed>) = 0 [pid 5617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5616] chdir("./72") = 0 [pid 5617] <... openat resumed>) = 3 [pid 5616] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5617] write(3, "1000", 4 [pid 5616] setpgid(0, 0 [pid 5617] <... write resumed>) = 4 [pid 5617] close(3) = 0 [pid 5617] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5617] write(1, "executing program\n", 18) = 18 [pid 5617] memfd_create("syzkaller", 0) = 3 [pid 5616] <... setpgid resumed>) = 0 [pid 5617] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5616] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5616] write(3, "1000", 4) = 4 [pid 5616] close(3) = 0 [pid 5616] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5616] write(1, "executing program\n", 18executing program ) = 18 [pid 5616] memfd_create("syzkaller", 0) = 3 [pid 5616] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5613] <... write resumed>) = 4243456 [pid 5613] exit_group(0) = ? [pid 5613] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5613, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./70/binderfs") = 0 [pid 5246] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5614] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./70/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./70") = 0 [pid 5246] mkdir("./71", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5615] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5617] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5618 ./strace-static-x86_64: Process 5618 attached [pid 5618] set_robust_list(0x55555b590660, 24) = 0 [pid 5618] chdir("./71") = 0 [pid 5618] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5618] setpgid(0, 0) = 0 [pid 5618] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5618] write(3, "1000", 4) = 4 [pid 5618] close(3) = 0 executing program [pid 5618] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5618] write(1, "executing program\n", 18) = 18 [pid 5618] memfd_create("syzkaller", 0) = 3 [pid 5618] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5616] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5614] <... write resumed>) = 16777216 [pid 5614] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5614] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5614] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5614] close(3) = 0 [pid 5614] close(4) = 0 [pid 5614] mkdir("./file0", 0777) = 0 [ 432.149649][ T5614] loop1: detected capacity change from 0 to 32768 [pid 5614] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5615] <... write resumed>) = 16777216 [pid 5615] munmap(0x7f6c8ae00000, 138412032 [pid 5614] <... mount resumed>) = 0 [pid 5614] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5614] chdir("./file0") = 0 [pid 5614] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5617] <... write resumed>) = 16777216 [pid 5617] munmap(0x7f6c8ae00000, 138412032 [pid 5614] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5614] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5615] <... munmap resumed>) = 0 [pid 5614] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5615] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5615] ioctl(4, LOOP_SET_FD, 3 [pid 5617] <... munmap resumed>) = 0 [pid 5617] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5615] <... ioctl resumed>) = 0 [pid 5617] <... openat resumed>) = 4 [pid 5615] close(3 [pid 5617] ioctl(4, LOOP_SET_FD, 3 [pid 5615] <... close resumed>) = 0 [pid 5615] close(4) = 0 [pid 5615] mkdir("./file0", 0777) = 0 [pid 5615] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5617] <... ioctl resumed>) = 0 [pid 5617] close(3) = 0 [ 432.277348][ T5615] loop4: detected capacity change from 0 to 32768 [ 432.290419][ T5617] loop2: detected capacity change from 0 to 32768 [pid 5617] close(4) = 0 [pid 5617] mkdir("./file0", 0777) = 0 [pid 5617] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5615] <... mount resumed>) = 0 [pid 5615] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5615] chdir("./file0") = 0 [pid 5615] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5615] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5615] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5617] <... mount resumed>) = 0 [pid 5615] <... openat resumed>) = 5 [pid 5615] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5617] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5617] chdir("./file0") = 0 [pid 5617] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5617] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5618] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5617] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5617] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5616] <... write resumed>) = 16777216 [pid 5616] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5616] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5616] ioctl(4, LOOP_SET_FD, 3 [pid 5614] <... write resumed>) = 4243456 [pid 5616] <... ioctl resumed>) = 0 [pid 5614] exit_group(0 [pid 5616] close(3 [pid 5614] <... exit_group resumed>) = ? [pid 5616] <... close resumed>) = 0 [pid 5616] close(4) = 0 [pid 5614] +++ exited with 0 +++ [pid 5616] mkdir("./file0", 0777 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5614, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=30 /* 0.30 s */} --- [pid 5616] <... mkdir resumed>) = 0 [pid 5616] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 432.527518][ T5616] loop0: detected capacity change from 0 to 32768 [pid 5244] getdents64(3, [pid 5615] <... write resumed>) = 4243456 [pid 5615] exit_group(0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5615] <... exit_group resumed>) = ? [pid 5244] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./71/binderfs", [pid 5616] <... mount resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5616] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5617] <... write resumed>) = 4243456 [pid 5244] unlink("./71/binderfs" [pid 5616] <... openat resumed>) = 3 [pid 5615] +++ exited with 0 +++ [pid 5617] exit_group(0 [pid 5616] chdir("./file0" [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5615, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=26 /* 0.26 s */} --- [pid 5244] <... unlink resumed>) = 0 [pid 5617] <... exit_group resumed>) = ? [pid 5616] <... chdir resumed>) = 0 [pid 5617] +++ exited with 0 +++ [pid 5616] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5247] umount2("./70", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5616] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5617, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5616] <... openat resumed>) = 4 [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5616] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] openat(AT_FDCWD, "./70", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5616] <... openat resumed>) = 5 [pid 5247] <... openat resumed>) = 3 [pid 5616] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./70/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./70/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] unlink("./70/binderfs") = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... umount2 resumed>) = 0 [pid 5245] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] newfstatat(AT_FDCWD, "./71/binderfs", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./71/binderfs" [pid 5244] newfstatat(AT_FDCWD, "./71/file0", [pid 5245] <... unlink resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./71/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./71") = 0 [pid 5244] mkdir("./72", 0777 [pid 5245] <... umount2 resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5247] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./71/file0", [pid 5247] newfstatat(AT_FDCWD, "./70/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./70/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./70/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... openat resumed>) = 4 [pid 5245] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", [pid 5245] newfstatat(4, "", [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5245] getdents64(4, [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] getdents64(4, [pid 5247] close(4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... close resumed>) = 0 [pid 5245] close(4 [pid 5247] rmdir("./70/file0" [pid 5245] <... close resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] rmdir("./71/file0" [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5247] close(3 [pid 5245] getdents64(3, [pid 5247] <... close resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5247] rmdir("./70" [pid 5245] rmdir("./71") = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5245] mkdir("./72", 0777) = 0 [pid 5247] mkdir("./71", 0777 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5247] <... mkdir resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... ioctl resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5245] close(3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5618] <... write resumed>) = 16777216 [pid 5247] close(3 [pid 5618] munmap(0x7f6c8ae00000, 138412032 [pid 5616] <... write resumed>) = 4243456 [pid 5618] <... munmap resumed>) = 0 [pid 5616] exit_group(0) = ? [pid 5616] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5616, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=30 /* 0.30 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5618] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] <... restart_syscall resumed>) = 0 [pid 5618] <... openat resumed>) = 4 [pid 5618] ioctl(4, LOOP_SET_FD, 3 [pid 5243] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./72/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./72/binderfs") = 0 [pid 5243] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5618] <... ioctl resumed>) = 0 [pid 5618] close(3) = 0 [pid 5618] close(4) = 0 [pid 5618] mkdir("./file0", 0777) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [ 432.860023][ T5618] loop3: detected capacity change from 0 to 32768 [pid 5243] newfstatat(AT_FDCWD, "./72/file0", [pid 5618] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./72/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5618] <... mount resumed>) = 0 [pid 5243] close(3 [pid 5618] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... close resumed>) = 0 [pid 5618] <... openat resumed>) = 3 [pid 5243] rmdir("./72" [pid 5618] chdir("./file0" [pid 5243] <... rmdir resumed>) = 0 [pid 5618] <... chdir resumed>) = 0 [pid 5243] mkdir("./73", 0777 [pid 5618] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] <... mkdir resumed>) = 0 [pid 5618] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5618] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5618] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5618] <... openat resumed>) = 5 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5618] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5619 ./strace-static-x86_64: Process 5619 attached [pid 5619] set_robust_list(0x55555b590660, 24) = 0 [pid 5619] chdir("./72") = 0 [pid 5619] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5619] setpgid(0, 0) = 0 [pid 5619] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5619] write(3, "1000", 4) = 4 [pid 5619] close(3) = 0 [pid 5619] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5619] write(1, "executing program\n", 18executing program ) = 18 [pid 5619] memfd_create("syzkaller", 0) = 3 [pid 5619] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5620 attached [pid 5620] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5620 [pid 5620] <... set_robust_list resumed>) = 0 [pid 5620] chdir("./71") = 0 [pid 5620] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5620] setpgid(0, 0) = 0 [pid 5620] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5245] <... close resumed>) = 0 [pid 5620] write(3, "1000", 4 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5620] <... write resumed>) = 4 [pid 5620] close(3) = 0 [pid 5620] symlink("/dev/binderfs", "./binderfs" [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5621 ./strace-static-x86_64: Process 5621 attached [pid 5621] set_robust_list(0x55555b590660, 24 [pid 5620] <... symlink resumed>) = 0 [pid 5621] <... set_robust_list resumed>) = 0 [pid 5621] chdir("./72") = 0 [pid 5621] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5621] setpgid(0, 0) = 0 executing program executing program [pid 5621] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5620] write(1, "executing program\n", 18) = 18 [pid 5621] <... openat resumed>) = 3 [pid 5621] write(3, "1000", 4) = 4 [pid 5621] close(3) = 0 [pid 5621] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5621] write(1, "executing program\n", 18) = 18 [pid 5621] memfd_create("syzkaller", 0 [pid 5620] memfd_create("syzkaller", 0 [pid 5621] <... memfd_create resumed>) = 3 [pid 5621] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5620] <... memfd_create resumed>) = 3 [pid 5620] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5618] <... write resumed>) = 4243456 [pid 5243] <... close resumed>) = 0 [pid 5618] exit_group(0) = ? [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5618] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5618, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 ./strace-static-x86_64: Process 5622 attached [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5622] set_robust_list(0x55555b590660, 24 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./71/binderfs", [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5622 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./71/binderfs") = 0 [pid 5622] <... set_robust_list resumed>) = 0 [pid 5622] chdir("./73" [pid 5246] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5622] <... chdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./71/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5622] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5622] setpgid(0, 0) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5622] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./71/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./71") = 0 [pid 5246] mkdir("./72", 0777 [pid 5622] write(3, "1000", 4 [pid 5246] <... mkdir resumed>) = 0 [pid 5622] <... write resumed>) = 4 [pid 5622] close(3) = 0 [pid 5622] symlink("/dev/binderfs", "./binderfs" [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5622] <... symlink resumed>) = 0 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3executing program [pid 5622] write(1, "executing program\n", 18) = 18 [pid 5622] memfd_create("syzkaller", 0) = 3 [pid 5622] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5619] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5621] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5623 ./strace-static-x86_64: Process 5623 attached [pid 5623] set_robust_list(0x55555b590660, 24) = 0 [pid 5623] chdir("./72") = 0 [pid 5623] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5623] setpgid(0, 0) = 0 [pid 5623] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5623] write(3, "1000", 4) = 4 [pid 5623] close(3) = 0 [pid 5623] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5623] write(1, "executing program\n", 18) = 18 [pid 5623] memfd_create("syzkaller", 0) = 3 [pid 5623] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5620] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5622] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5621] <... write resumed>) = 16777216 [pid 5621] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5621] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5621] ioctl(4, LOOP_SET_FD, 3 [pid 5623] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5621] <... ioctl resumed>) = 0 [pid 5621] close(3) = 0 [pid 5621] close(4) = 0 [pid 5621] mkdir("./file0", 0777) = 0 [pid 5621] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5619] <... write resumed>) = 16777216 [ 433.876097][ T5621] loop2: detected capacity change from 0 to 32768 [pid 5619] munmap(0x7f6c8ae00000, 138412032 [pid 5621] <... mount resumed>) = 0 [pid 5621] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5621] chdir("./file0") = 0 [pid 5621] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5621] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5621] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5619] <... munmap resumed>) = 0 [pid 5619] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5621] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5619] <... openat resumed>) = 4 [pid 5619] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5619] close(3) = 0 [pid 5619] close(4) = 0 [pid 5619] mkdir("./file0", 0777 [pid 5620] <... write resumed>) = 16777216 [pid 5619] <... mkdir resumed>) = 0 [pid 5619] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5620] munmap(0x7f6c8ae00000, 138412032 [pid 5622] <... write resumed>) = 16777216 [ 433.971248][ T5619] loop1: detected capacity change from 0 to 32768 [pid 5622] munmap(0x7f6c8ae00000, 138412032 [pid 5620] <... munmap resumed>) = 0 [pid 5620] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5619] <... mount resumed>) = 0 [pid 5619] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5620] ioctl(4, LOOP_SET_FD, 3 [pid 5619] <... openat resumed>) = 3 [pid 5619] chdir("./file0") = 0 [pid 5619] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5622] <... munmap resumed>) = 0 [pid 5620] <... ioctl resumed>) = 0 [pid 5619] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5622] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5619] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5622] <... openat resumed>) = 4 [pid 5622] ioctl(4, LOOP_SET_FD, 3 [pid 5619] <... openat resumed>) = 4 [pid 5620] close(3 [pid 5619] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5620] <... close resumed>) = 0 [pid 5620] close(4) = 0 [pid 5619] <... openat resumed>) = 5 [pid 5620] mkdir("./file0", 0777) = 0 [pid 5619] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5620] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5622] <... ioctl resumed>) = 0 [pid 5622] close(3) = 0 [pid 5622] close(4 [pid 5620] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5620] chdir("./file0") = 0 [pid 5620] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5620] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5620] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 434.060009][ T5620] loop4: detected capacity change from 0 to 32768 [ 434.086523][ T5622] loop0: detected capacity change from 0 to 32768 [pid 5620] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5622] <... close resumed>) = 0 [pid 5622] mkdir("./file0", 0777) = 0 [pid 5622] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5621] <... write resumed>) = 4243456 [pid 5621] exit_group(0) = ? [pid 5622] <... mount resumed>) = 0 [pid 5621] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5621, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=35 /* 0.35 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5622] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... restart_syscall resumed>) = 0 [pid 5622] <... openat resumed>) = 3 [pid 5622] chdir("./file0" [pid 5245] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5622] <... chdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5622] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] <... openat resumed>) = 3 [pid 5622] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] newfstatat(3, "", [pid 5622] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, [pid 5622] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5622] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] newfstatat(AT_FDCWD, "./72/binderfs", [pid 5622] <... openat resumed>) = 5 [pid 5622] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./72/binderfs") = 0 [pid 5245] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5623] <... write resumed>) = 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5623] munmap(0x7f6c8ae00000, 138412032 [pid 5245] newfstatat(AT_FDCWD, "./72/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./72/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5623] <... munmap resumed>) = 0 [pid 5245] rmdir("./72") = 0 [pid 5245] mkdir("./73", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5623] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5245] <... openat resumed>) = 3 [pid 5623] <... openat resumed>) = 4 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5623] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5623] <... ioctl resumed>) = 0 [pid 5623] close(3) = 0 [pid 5623] close(4) = 0 [pid 5623] mkdir("./file0", 0777 [pid 5619] <... write resumed>) = 4243456 [pid 5619] exit_group(0) = ? [pid 5623] <... mkdir resumed>) = 0 [pid 5623] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5619] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5619, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [ 434.325155][ T5623] loop3: detected capacity change from 0 to 32768 [pid 5623] <... mount resumed>) = 0 [pid 5620] <... write resumed>) = 4243456 [pid 5244] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5623] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5620] exit_group(0 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./72/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./72/binderfs") = 0 [pid 5244] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5623] <... openat resumed>) = 3 [pid 5620] <... exit_group resumed>) = ? [pid 5620] +++ exited with 0 +++ [pid 5623] chdir("./file0" [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5620, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5623] <... chdir resumed>) = 0 [pid 5623] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5623] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5623] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5623] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./71", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./71", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./71/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./71/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./71/binderfs") = 0 [pid 5247] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./72/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./71/file0", [pid 5244] <... openat resumed>) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5622] <... write resumed>) = 4243456 [pid 5247] umount2("./71/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5622] exit_group(0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] getdents64(4, [pid 5622] <... exit_group resumed>) = ? [pid 5247] openat(AT_FDCWD, "./71/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... openat resumed>) = 4 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./72/file0" [pid 5247] newfstatat(4, "", [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(4, [pid 5244] close(3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] close(4 [pid 5244] rmdir("./72" [pid 5247] <... close resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] rmdir("./71/file0") = 0 [pid 5244] mkdir("./73", 0777 [pid 5622] +++ exited with 0 +++ [pid 5244] <... mkdir resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5622, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=25 /* 0.25 s */} --- [pid 5247] getdents64(3, [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5247] close(3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5243] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... ioctl resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... close resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5247] rmdir("./71" [pid 5244] close(3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] <... rmdir resumed>) = 0 [pid 5243] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] mkdir("./72", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] newfstatat(AT_FDCWD, "./73/binderfs", [pid 5247] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./73/binderfs") = 0 [pid 5243] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./73/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./73") = 0 [pid 5243] mkdir("./74", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5623] <... write resumed>) = 4243456 [pid 5623] exit_group(0) = ? [pid 5623] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5623, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=28 /* 0.28 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./72/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./72/binderfs") = 0 [pid 5246] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5624 ./strace-static-x86_64: Process 5624 attached [pid 5624] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5624] chdir("./73" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./72/file0", [pid 5624] <... chdir resumed>) = 0 [pid 5624] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5624] <... prctl resumed>) = 0 [pid 5246] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5624] setpgid(0, 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5624] <... setpgid resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5624] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... openat resumed>) = 4 [pid 5624] <... openat resumed>) = 3 [pid 5246] newfstatat(4, "", [pid 5624] write(3, "1000", 4) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5624] close(3 [pid 5246] getdents64(4, [pid 5624] <... close resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5624] symlink("/dev/binderfs", "./binderfs" [pid 5246] getdents64(4, [pid 5624] <... symlink resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 executing program [pid 5246] close(4 [pid 5624] write(1, "executing program\n", 18 [pid 5246] <... close resumed>) = 0 [pid 5624] <... write resumed>) = 18 [pid 5246] rmdir("./72/file0" [pid 5624] memfd_create("syzkaller", 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5624] <... memfd_create resumed>) = 3 [pid 5246] close(3 [pid 5624] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... close resumed>) = 0 [pid 5624] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] rmdir("./72") = 0 [pid 5246] mkdir("./73", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5247] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5625 attached [pid 5625] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5625 [pid 5625] <... set_robust_list resumed>) = 0 [pid 5625] chdir("./72") = 0 [pid 5625] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5625] setpgid(0, 0) = 0 [pid 5625] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5625] <... openat resumed>) = 3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5625] write(3, "1000", 4./strace-static-x86_64: Process 5627 attached [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5627 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5626 [pid 5627] set_robust_list(0x55555b590660, 24./strace-static-x86_64: Process 5626 attached ) = 0 [pid 5627] chdir("./73" [pid 5626] set_robust_list(0x55555b590660, 24 [pid 5627] <... chdir resumed>) = 0 [pid 5626] <... set_robust_list resumed>) = 0 [pid 5627] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5625] <... write resumed>) = 4 [pid 5627] <... prctl resumed>) = 0 [pid 5627] setpgid(0, 0 [pid 5626] chdir("./74" [pid 5627] <... setpgid resumed>) = 0 [pid 5626] <... chdir resumed>) = 0 [pid 5627] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5626] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5625] close(3 [pid 5627] <... openat resumed>) = 3 [pid 5626] <... prctl resumed>) = 0 [pid 5627] write(3, "1000", 4 [pid 5626] setpgid(0, 0 [pid 5625] <... close resumed>) = 0 [pid 5627] <... write resumed>) = 4 [pid 5625] symlink("/dev/binderfs", "./binderfs" [pid 5627] close(3 [pid 5626] <... setpgid resumed>) = 0 [pid 5625] <... symlink resumed>) = 0 [pid 5627] <... close resumed>) = 0 [pid 5627] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5626] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC executing program [pid 5625] write(1, "executing program\n", 18 [pid 5627] write(1, "executing program\n", 18executing program ) = 18 [pid 5626] <... openat resumed>) = 3 [pid 5625] <... write resumed>) = 18 [pid 5626] write(3, "1000", 4) = 4 [pid 5626] close(3) = 0 [pid 5627] memfd_create("syzkaller", 0 [pid 5626] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5625] memfd_create("syzkaller", 0 [pid 5627] <... memfd_create resumed>) = 3 [pid 5627] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5626] write(1, "executing program\n", 18 [pid 5625] <... memfd_create resumed>) = 3 executing program [pid 5627] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5626] <... write resumed>) = 18 [pid 5626] memfd_create("syzkaller", 0) = 3 [pid 5625] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5626] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5625] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5628 attached , child_tidptr=0x55555b590650) = 5628 [pid 5628] set_robust_list(0x55555b590660, 24) = 0 [pid 5628] chdir("./73") = 0 [pid 5628] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5628] setpgid(0, 0) = 0 [pid 5628] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5628] write(3, "1000", 4) = 4 [pid 5628] close(3) = 0 [pid 5628] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5628] write(1, "executing program\n", 18) = 18 [pid 5628] memfd_create("syzkaller", 0) = 3 [pid 5628] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5624] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5626] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5627] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5625] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5628] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5624] <... write resumed>) = 16777216 [pid 5624] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5624] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5624] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5624] close(3) = 0 [pid 5624] close(4) = 0 [pid 5624] mkdir("./file0", 0777) = 0 [pid 5624] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 435.544703][ T5624] loop2: detected capacity change from 0 to 32768 [pid 5624] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5624] chdir("./file0") = 0 [pid 5624] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5624] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5624] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5626] <... write resumed>) = 16777216 [pid 5624] <... openat resumed>) = 5 [pid 5626] munmap(0x7f6c8ae00000, 138412032 [pid 5624] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5626] <... munmap resumed>) = 0 [pid 5626] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5626] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5626] close(3) = 0 [pid 5626] close(4) = 0 [pid 5626] mkdir("./file0", 0777) = 0 [pid 5626] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5627] <... write resumed>) = 16777216 [ 435.659061][ T5626] loop0: detected capacity change from 0 to 32768 [pid 5627] munmap(0x7f6c8ae00000, 138412032 [pid 5626] <... mount resumed>) = 0 [pid 5626] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5626] chdir("./file0") = 0 [pid 5626] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5626] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5626] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5626] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5627] <... munmap resumed>) = 0 [pid 5627] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5625] <... write resumed>) = 16777216 [pid 5627] <... openat resumed>) = 4 [pid 5625] munmap(0x7f6c8ae00000, 138412032 [pid 5627] ioctl(4, LOOP_SET_FD, 3 [pid 5628] <... write resumed>) = 16777216 [pid 5627] <... ioctl resumed>) = 0 [pid 5625] <... munmap resumed>) = 0 [pid 5627] close(3 [pid 5625] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5627] <... close resumed>) = 0 [pid 5625] <... openat resumed>) = 4 [pid 5627] close(4 [pid 5625] ioctl(4, LOOP_SET_FD, 3 [pid 5627] <... close resumed>) = 0 [pid 5627] mkdir("./file0", 0777) = 0 [pid 5627] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5628] munmap(0x7f6c8ae00000, 138412032 [pid 5627] <... mount resumed>) = 0 [pid 5624] <... write resumed>) = 4243456 [pid 5624] exit_group(0) = ? [pid 5627] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5624] +++ exited with 0 +++ [pid 5627] <... openat resumed>) = 3 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5624, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=36 /* 0.36 s */} --- [pid 5627] chdir("./file0" [pid 5245] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5625] <... ioctl resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5625] close(3 [pid 5245] newfstatat(3, "", [pid 5625] <... close resumed>) = 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5625] close(4 [pid 5245] getdents64(3, [pid 5625] <... close resumed>) = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5625] mkdir("./file0", 0777 [ 435.782811][ T5627] loop1: detected capacity change from 0 to 32768 [ 435.809528][ T5625] loop4: detected capacity change from 0 to 32768 [pid 5245] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5627] <... chdir resumed>) = 0 [pid 5625] <... mkdir resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5627] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] newfstatat(AT_FDCWD, "./73/binderfs", [pid 5627] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5625] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5627] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./73/binderfs") = 0 [pid 5245] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5628] <... munmap resumed>) = 0 [pid 5627] <... openat resumed>) = 4 [pid 5625] <... mount resumed>) = 0 [pid 5627] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5625] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5627] <... openat resumed>) = 5 [pid 5625] <... openat resumed>) = 3 [pid 5625] chdir("./file0" [pid 5627] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5625] <... chdir resumed>) = 0 [pid 5625] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5625] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5628] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5628] ioctl(4, LOOP_SET_FD, 3 [pid 5625] <... openat resumed>) = 4 [pid 5625] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5628] <... ioctl resumed>) = 0 [pid 5625] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... umount2 resumed>) = 0 [pid 5628] close(3 [pid 5245] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5628] <... close resumed>) = 0 [pid 5245] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5628] close(4 [pid 5245] <... openat resumed>) = 4 [pid 5628] <... close resumed>) = 0 [pid 5245] newfstatat(4, "", [pid 5628] mkdir("./file0", 0777 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5628] <... mkdir resumed>) = 0 [pid 5245] close(4) = 0 [ 435.887603][ T5628] loop3: detected capacity change from 0 to 32768 [pid 5245] rmdir("./73/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./73") = 0 [pid 5245] mkdir("./74", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5628] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... openat resumed>) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5626] <... write resumed>) = 4243456 [pid 5626] exit_group(0) = ? [pid 5626] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5626, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=36 /* 0.36 s */} --- [pid 5243] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5628] <... mount resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5628] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] newfstatat(AT_FDCWD, "./74/binderfs", [pid 5628] <... openat resumed>) = 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5628] chdir("./file0" [pid 5243] unlink("./74/binderfs" [pid 5628] <... chdir resumed>) = 0 [pid 5628] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5243] <... unlink resumed>) = 0 [pid 5628] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5628] <... openat resumed>) = 4 [pid 5628] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5628] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./74/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./74") = 0 [pid 5243] mkdir("./75", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5625] <... write resumed>) = 4243456 [pid 5625] exit_group(0) = ? [pid 5625] +++ exited with 0 +++ [pid 5627] <... write resumed>) = 4243456 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5625, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] umount2("./72", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5627] exit_group(0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5627] <... exit_group resumed>) = ? [pid 5247] openat(AT_FDCWD, "./72", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5627] +++ exited with 0 +++ [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5627, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./73/binderfs", [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./73/binderfs" [pid 5247] umount2("./72/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... unlink resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./72/binderfs", [pid 5244] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./72/binderfs") = 0 [pid 5247] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./73/file0") = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./73" [pid 5245] <... close resumed>) = 0 [pid 5247] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... rmdir resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] mkdir("./74", 0777./strace-static-x86_64: Process 5629 attached [pid 5628] <... write resumed>) = 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5628] exit_group(0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5629 [pid 5628] <... exit_group resumed>) = ? [pid 5629] set_robust_list(0x55555b590660, 24 [pid 5247] newfstatat(AT_FDCWD, "./72/file0", [pid 5244] <... mkdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5629] <... set_robust_list resumed>) = 0 [pid 5247] umount2("./72/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5629] chdir("./74" [pid 5247] openat(AT_FDCWD, "./72/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5629] <... chdir resumed>) = 0 [pid 5247] getdents64(4, [pid 5629] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5629] setpgid(0, 0 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5247] close(4 [pid 5629] <... setpgid resumed>) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./72/file0" [pid 5244] <... ioctl resumed>) = 0 [pid 5628] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5628, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] <... rmdir resumed>) = 0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5247] getdents64(3, [pid 5244] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5629] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5247] close(3 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5629] write(3, "1000", 4 [pid 5247] <... close resumed>) = 0 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, [pid 5247] rmdir("./72" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5629] <... write resumed>) = 4 [pid 5247] mkdir("./73", 0777 [pid 5246] newfstatat(AT_FDCWD, "./73/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./73/binderfs") = 0 [pid 5246] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5629] close(3) = 0 [pid 5629] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... mkdir resumed>) = 0 [pid 5629] <... symlink resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5629] write(1, "executing program\n", 18executing program ) = 18 [pid 5629] memfd_create("syzkaller", 0 [pid 5247] <... openat resumed>) = 3 [pid 5629] <... memfd_create resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5629] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5629] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5630 attached [pid 5246] <... umount2 resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5630 [pid 5246] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5630] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./73/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", [pid 5630] chdir("./75" [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5630] <... chdir resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5630] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./73/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./73" [pid 5630] <... prctl resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] mkdir("./74", 0777 [pid 5630] setpgid(0, 0) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5630] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5630] <... openat resumed>) = 3 [pid 5630] write(3, "1000", 4) = 4 [pid 5630] close(3) = 0 [pid 5630] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5630] write(1, "executing program\n", 18) = 18 [pid 5630] memfd_create("syzkaller", 0) = 3 [pid 5630] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5631 attached [pid 5631] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5631 [pid 5631] <... set_robust_list resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5631] chdir("./74" [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5632 attached [pid 5631] <... chdir resumed>) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5632 [pid 5631] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5632] set_robust_list(0x55555b590660, 24) = 0 [pid 5631] setpgid(0, 0 [pid 5632] chdir("./73" [pid 5631] <... setpgid resumed>) = 0 [pid 5632] <... chdir resumed>) = 0 [pid 5632] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5631] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5632] <... prctl resumed>) = 0 [pid 5631] <... openat resumed>) = 3 [pid 5632] setpgid(0, 0 [pid 5631] write(3, "1000", 4) = 4 [pid 5631] close(3executing program ) = 0 [pid 5631] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5631] write(1, "executing program\n", 18) = 18 [pid 5631] memfd_create("syzkaller", 0 [pid 5632] <... setpgid resumed>) = 0 [pid 5631] <... memfd_create resumed>) = 3 [pid 5632] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5631] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5632] <... openat resumed>) = 3 [pid 5632] write(3, "1000", 4) = 4 [pid 5632] close(3) = 0 [pid 5632] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5632] write(1, "executing program\n", 18executing program ) = 18 [pid 5632] memfd_create("syzkaller", 0) = 3 [pid 5632] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 executing program [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5633 ./strace-static-x86_64: Process 5633 attached [pid 5633] set_robust_list(0x55555b590660, 24) = 0 [pid 5633] chdir("./74") = 0 [pid 5633] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5633] setpgid(0, 0) = 0 [pid 5633] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5633] write(3, "1000", 4) = 4 [pid 5633] close(3) = 0 [pid 5633] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5633] write(1, "executing program\n", 18) = 18 [pid 5633] memfd_create("syzkaller", 0) = 3 [pid 5633] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5629] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5630] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5632] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5631] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5633] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5629] <... write resumed>) = 16777216 [pid 5629] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5629] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5629] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5629] close(3) = 0 [pid 5629] close(4) = 0 [pid 5629] mkdir("./file0", 0777) = 0 [ 437.119985][ T5629] loop2: detected capacity change from 0 to 32768 [pid 5629] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5629] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5629] chdir("./file0") = 0 [pid 5629] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5629] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5629] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5629] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5630] <... write resumed>) = 16777216 [pid 5630] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5630] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5630] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5630] close(3) = 0 [pid 5630] close(4) = 0 [pid 5630] mkdir("./file0", 0777) = 0 [ 437.339152][ T5630] loop0: detected capacity change from 0 to 32768 [pid 5630] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5633] <... write resumed>) = 16777216 [pid 5630] <... mount resumed>) = 0 [pid 5629] <... write resumed>) = 4243456 [pid 5630] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5630] chdir("./file0") = 0 [pid 5629] exit_group(0 [pid 5630] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5629] <... exit_group resumed>) = ? [pid 5630] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5630] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5629] +++ exited with 0 +++ [pid 5633] munmap(0x7f6c8ae00000, 138412032 [pid 5630] <... openat resumed>) = 4 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5629, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5630] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5245] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./74/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./74/binderfs" [pid 5630] <... openat resumed>) = 5 [pid 5245] <... unlink resumed>) = 0 [pid 5245] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5630] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5633] <... munmap resumed>) = 0 [pid 5631] <... write resumed>) = 16777216 [pid 5633] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5633] ioctl(4, LOOP_SET_FD, 3 [pid 5632] <... write resumed>) = 16777216 [pid 5631] munmap(0x7f6c8ae00000, 138412032 [pid 5633] <... ioctl resumed>) = 0 [pid 5632] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = 0 [pid 5633] close(3) = 0 [pid 5633] close(4) = 0 [pid 5633] mkdir("./file0", 0777) = 0 [pid 5245] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5633] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./74/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./74") = 0 [pid 5245] mkdir("./75", 0777 [pid 5631] <... munmap resumed>) = 0 [pid 5633] <... mount resumed>) = 0 [pid 5633] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5245] <... mkdir resumed>) = 0 [pid 5633] chdir("./file0") = 0 [pid 5631] openat(AT_FDCWD, "/dev/loop1", O_RDWR [ 437.459595][ T5633] loop3: detected capacity change from 0 to 32768 [pid 5633] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5631] <... openat resumed>) = 4 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5633] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5631] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... openat resumed>) = 3 [pid 5633] <... openat resumed>) = 4 [pid 5633] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5632] <... munmap resumed>) = 0 [pid 5633] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5632] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5632] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5631] <... ioctl resumed>) = 0 [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5631] close(3) = 0 [pid 5631] close(4) = 0 [pid 5632] close(3 [pid 5631] mkdir("./file0", 0777 [pid 5632] <... close resumed>) = 0 [pid 5631] <... mkdir resumed>) = 0 [pid 5632] close(4 [pid 5631] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5632] <... close resumed>) = 0 [ 437.509960][ T5631] loop1: detected capacity change from 0 to 32768 [ 437.520622][ T5632] loop4: detected capacity change from 0 to 32768 [pid 5632] mkdir("./file0", 0777) = 0 [pid 5632] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5631] <... mount resumed>) = 0 [pid 5632] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5631] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5632] <... openat resumed>) = 3 [pid 5631] <... openat resumed>) = 3 [pid 5631] chdir("./file0") = 0 [pid 5632] chdir("./file0" [pid 5631] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5632] <... chdir resumed>) = 0 [pid 5631] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5632] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5631] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5632] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5631] <... openat resumed>) = 4 [pid 5632] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5631] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5632] <... openat resumed>) = 4 [pid 5631] <... openat resumed>) = 5 [pid 5632] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5631] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5632] <... openat resumed>) = 5 [pid 5632] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5630] <... write resumed>) = 4243456 [pid 5630] exit_group(0) = ? [pid 5630] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5630, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5243] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./75/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./75/binderfs") = 0 [pid 5243] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./75/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5633] <... write resumed>) = 4243456 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5633] exit_group(0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5633] <... exit_group resumed>) = ? [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./75/file0" [pid 5633] +++ exited with 0 +++ [pid 5243] <... rmdir resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5633, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./75") = 0 [pid 5243] mkdir("./76", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5246] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./74/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] <... close resumed>) = 0 [pid 5246] unlink("./74/binderfs") = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5634 attached [pid 5246] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5634] set_robust_list(0x55555b590660, 24) = 0 [pid 5634] chdir("./75" [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5634 [pid 5634] <... chdir resumed>) = 0 [pid 5634] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5634] setpgid(0, 0) = 0 [pid 5634] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = 0 [pid 5634] <... openat resumed>) = 3 [pid 5631] <... write resumed>) = 4243456 [pid 5634] write(3, "1000", 4) = 4 [pid 5631] exit_group(0 [pid 5634] close(3 [pid 5631] <... exit_group resumed>) = ? [pid 5634] <... close resumed>) = 0 [pid 5246] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5634] symlink("/dev/binderfs", "./binderfs" [pid 5631] +++ exited with 0 +++ [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5634] <... symlink resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5631, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5634] write(1, "executing program\n", 18 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 executing program [pid 5634] <... write resumed>) = 18 [pid 5246] rmdir("./74/file0") = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5634] memfd_create("syzkaller", 0 [pid 5246] getdents64(3, [pid 5244] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] close(3) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5246] rmdir("./74" [pid 5244] newfstatat(3, "", [pid 5634] <... memfd_create resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] mkdir("./75", 0777 [pid 5244] getdents64(3, [pid 5634] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... mkdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5632] <... write resumed>) = 4243456 [pid 5244] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5632] exit_group(0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./74/binderfs", [pid 5632] <... exit_group resumed>) = ? [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./74/binderfs") = 0 [pid 5244] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5632] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5632, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=38 /* 0.38 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./73", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./73", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./73/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./73/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./73/binderfs") = 0 [pid 5247] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./74/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5247] <... umount2 resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5247] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] close(4 [pid 5247] newfstatat(AT_FDCWD, "./73/file0", [pid 5244] <... close resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] rmdir("./74/file0" [pid 5247] umount2("./73/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./73/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5244] getdents64(3, [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(4, [pid 5244] close(3 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... close resumed>) = 0 [pid 5247] getdents64(4, [pid 5244] rmdir("./74" [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./75", 0777 [pid 5247] rmdir("./73/file0") = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5247] rmdir("./73") = 0 [pid 5244] <... openat resumed>) = 3 [pid 5247] mkdir("./74", 0777 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5247] <... mkdir resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5635 ./strace-static-x86_64: Process 5635 attached [pid 5635] set_robust_list(0x55555b590660, 24) = 0 [pid 5635] chdir("./76") = 0 [pid 5635] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5635] setpgid(0, 0) = 0 [pid 5635] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5635] write(3, "1000", 4) = 4 [pid 5635] close(3) = 0 [pid 5635] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5635] write(1, "executing program\n", 18) = 18 [pid 5635] memfd_create("syzkaller", 0) = 3 [pid 5635] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5636 attached [pid 5636] set_robust_list(0x55555b590660, 24) = 0 [pid 5636] chdir("./75") = 0 [pid 5636] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5636] setpgid(0, 0) = 0 [pid 5636] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5636 [pid 5636] write(3, "1000", 4) = 4 [pid 5636] close(3) = 0 [pid 5636] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5636] write(1, "executing program\n", 18) = 18 [pid 5636] memfd_create("syzkaller", 0) = 3 [pid 5636] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5637 attached [pid 5637] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5637 [pid 5637] <... set_robust_list resumed>) = 0 [pid 5637] chdir("./75") = 0 [pid 5634] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5637] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5637] setpgid(0, 0) = 0 [pid 5637] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5637] write(3, "1000", 4) = 4 [pid 5637] close(3) = 0 [pid 5637] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5637] write(1, "executing program\n", 18) = 18 [pid 5637] memfd_create("syzkaller", 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5638 attached [pid 5637] <... memfd_create resumed>) = 3 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5638 [pid 5637] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5638] set_robust_list(0x55555b590660, 24 [pid 5637] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5638] <... set_robust_list resumed>) = 0 [pid 5638] chdir("./74") = 0 [pid 5638] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5638] setpgid(0, 0) = 0 [pid 5638] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5638] write(3, "1000", 4) = 4 [pid 5638] close(3) = 0 [pid 5638] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5638] write(1, "executing program\n", 18) = 18 [pid 5638] memfd_create("syzkaller", 0) = 3 [pid 5638] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5635] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5636] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5638] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5637] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5634] <... write resumed>) = 16777216 [pid 5634] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5634] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5634] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5634] close(3) = 0 [pid 5634] close(4) = 0 [pid 5634] mkdir("./file0", 0777) = 0 [ 438.799797][ T5634] loop2: detected capacity change from 0 to 32768 [pid 5634] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5634] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5634] chdir("./file0") = 0 [pid 5634] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5634] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5634] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5634] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5635] <... write resumed>) = 16777216 [pid 5635] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5635] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5635] ioctl(4, LOOP_SET_FD, 3 [pid 5636] <... write resumed>) = 16777216 [pid 5635] <... ioctl resumed>) = 0 [pid 5638] <... write resumed>) = 16777216 [pid 5635] close(3) = 0 [pid 5635] close(4 [pid 5638] munmap(0x7f6c8ae00000, 138412032 [pid 5635] <... close resumed>) = 0 [pid 5635] mkdir("./file0", 0777) = 0 [pid 5636] munmap(0x7f6c8ae00000, 138412032 [ 439.007908][ T5635] loop0: detected capacity change from 0 to 32768 [pid 5635] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5635] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5635] chdir("./file0") = 0 [pid 5635] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5637] <... write resumed>) = 16777216 [pid 5635] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5637] munmap(0x7f6c8ae00000, 138412032 [pid 5635] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5638] <... munmap resumed>) = 0 [pid 5635] <... openat resumed>) = 5 [pid 5635] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5638] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5636] <... munmap resumed>) = 0 [pid 5638] <... openat resumed>) = 4 [pid 5636] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5638] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5636] ioctl(4, LOOP_SET_FD, 3 [pid 5637] <... munmap resumed>) = 0 [pid 5638] close(3) = 0 [pid 5638] close(4) = 0 [pid 5634] <... write resumed>) = 4243456 [pid 5636] <... ioctl resumed>) = 0 [pid 5637] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5638] mkdir("./file0", 0777 [pid 5636] close(3 [pid 5634] exit_group(0 [pid 5638] <... mkdir resumed>) = 0 [pid 5637] <... openat resumed>) = 4 [pid 5636] <... close resumed>) = 0 [pid 5634] <... exit_group resumed>) = ? [pid 5638] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 439.109595][ T5638] loop4: detected capacity change from 0 to 32768 [ 439.128459][ T5636] loop3: detected capacity change from 0 to 32768 [pid 5637] ioctl(4, LOOP_SET_FD, 3 [pid 5636] close(4 [pid 5637] <... ioctl resumed>) = 0 [pid 5637] close(3 [pid 5636] <... close resumed>) = 0 [pid 5637] <... close resumed>) = 0 [pid 5636] mkdir("./file0", 0777 [pid 5637] close(4) = 0 [pid 5637] mkdir("./file0", 0777 [pid 5636] <... mkdir resumed>) = 0 [pid 5637] <... mkdir resumed>) = 0 [pid 5637] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5636] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5634] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5634, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5638] <... mount resumed>) = 0 [pid 5245] newfstatat(3, "", [pid 5638] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5638] <... openat resumed>) = 3 [pid 5245] getdents64(3, [pid 5638] chdir("./file0") = 0 [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5638] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5638] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5638] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5637] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5638] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5638] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5637] <... openat resumed>) = 3 [pid 5245] newfstatat(AT_FDCWD, "./75/binderfs", [pid 5637] chdir("./file0" [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5637] <... chdir resumed>) = 0 [pid 5637] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] unlink("./75/binderfs" [pid 5637] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... unlink resumed>) = 0 [pid 5637] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5637] <... openat resumed>) = 4 [ 439.161055][ T5637] loop1: detected capacity change from 0 to 32768 [pid 5636] <... mount resumed>) = 0 [pid 5637] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5636] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5637] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5636] <... openat resumed>) = 3 [pid 5636] chdir("./file0") = 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5636] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5636] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5636] <... openat resumed>) = 4 [pid 5245] newfstatat(AT_FDCWD, "./75/file0", [pid 5636] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5636] <... openat resumed>) = 5 [pid 5245] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5636] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./75/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./75") = 0 [pid 5245] mkdir("./76", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5635] <... write resumed>) = 4243456 [pid 5635] exit_group(0) = ? [pid 5635] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5635, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=28 /* 0.28 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./76/binderfs") = 0 [pid 5243] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./76/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5637] <... write resumed>) = 4243456 [pid 5243] close(4 [pid 5637] exit_group(0) = ? [pid 5243] <... close resumed>) = 0 [pid 5638] <... write resumed>) = 4243456 [pid 5243] rmdir("./76/file0" [pid 5638] exit_group(0) = ? [pid 5243] <... rmdir resumed>) = 0 [pid 5637] +++ exited with 0 +++ [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5637, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5243] close(3 [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./76" [pid 5244] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... rmdir resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5243] mkdir("./77", 0777 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./75/binderfs", [pid 5243] <... mkdir resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./75/binderfs" [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5638] +++ exited with 0 +++ [pid 5244] <... unlink resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5638, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5244] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... openat resumed>) = 3 [pid 5636] <... write resumed>) = 4243456 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5636] exit_group(0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5636] <... exit_group resumed>) = ? [pid 5243] close(3 [pid 5636] +++ exited with 0 +++ [pid 5244] <... umount2 resumed>) = 0 [pid 5247] umount2("./74", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5636, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} --- [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] openat(AT_FDCWD, "./74", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./75/file0", [pid 5247] newfstatat(3, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] getdents64(3, [pid 5244] <... openat resumed>) = 4 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] umount2("./74/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(4, [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] newfstatat(AT_FDCWD, "./74/binderfs", [pid 5244] getdents64(4, [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] unlink("./74/binderfs" [pid 5244] close(4) = 0 [pid 5244] rmdir("./75/file0" [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, ./strace-static-x86_64: Process 5640 attached [pid 5640] set_robust_list(0x55555b590660, 24 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5246] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5640] <... set_robust_list resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5640 [pid 5247] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(AT_FDCWD, "./75/binderfs", [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] close(3) = 0 [pid 5246] unlink("./75/binderfs" [pid 5640] chdir("./76" [pid 5244] rmdir("./75" [pid 5246] <... unlink resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5246] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5640] <... chdir resumed>) = 0 [pid 5244] mkdir("./76", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5640] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] <... umount2 resumed>) = 0 [pid 5640] <... prctl resumed>) = 0 [pid 5640] setpgid(0, 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5640] <... setpgid resumed>) = 0 [pid 5247] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5640] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./75/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] newfstatat(AT_FDCWD, "./74/file0", [pid 5246] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] umount2("./74/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 4 [pid 5247] openat(AT_FDCWD, "./74/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] newfstatat(4, "", [pid 5247] <... openat resumed>) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] newfstatat(4, "", [pid 5246] getdents64(4, [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5247] getdents64(4, [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5247] close(4 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./75/file0" [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./74/file0" [pid 5246] <... rmdir resumed>) = 0 [pid 5640] <... openat resumed>) = 3 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, [pid 5640] write(3, "1000", 4 [pid 5247] getdents64(3, [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./75" [pid 5247] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] mkdir("./76", 0777 [pid 5247] rmdir("./74" [pid 5246] <... mkdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] mkdir("./75", 0777) = 0 [pid 5640] <... write resumed>) = 4 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5640] close(3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] <... ioctl resumed>) = 0 [pid 5640] <... close resumed>) = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5640] symlink("/dev/binderfs", "./binderfs" [pid 5247] close(3 [pid 5640] <... symlink resumed>) = 0 [pid 5640] write(1, "executing program\n", 18executing program ) = 18 [pid 5640] memfd_create("syzkaller", 0) = 3 [pid 5640] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5641 attached , child_tidptr=0x55555b590650) = 5641 [pid 5641] set_robust_list(0x55555b590660, 24) = 0 [pid 5641] chdir("./77") = 0 [pid 5641] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5641] setpgid(0, 0) = 0 [pid 5641] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5641] write(3, "1000", 4) = 4 [pid 5641] close(3) = 0 [pid 5641] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5641] write(1, "executing program\n", 18) = 18 [pid 5641] memfd_create("syzkaller", 0) = 3 [pid 5641] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5642 ./strace-static-x86_64: Process 5642 attached [pid 5244] <... close resumed>) = 0 [pid 5642] set_robust_list(0x55555b590660, 24) = 0 [pid 5642] chdir("./75") = 0 [pid 5642] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5642] setpgid(0, 0) = 0 [pid 5642] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5642] write(3, "1000", 4) = 4 [pid 5642] close(3) = 0 [pid 5642] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program [pid 5642] write(1, "executing program\n", 18) = 18 ./strace-static-x86_64: Process 5643 attached [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5643 [pid 5643] set_robust_list(0x55555b590660, 24) = 0 [pid 5643] chdir("./76") = 0 [pid 5643] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5643] setpgid(0, 0 [pid 5642] memfd_create("syzkaller", 0 [pid 5643] <... setpgid resumed>) = 0 [pid 5643] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5642] <... memfd_create resumed>) = 3 [pid 5642] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5643] write(3, "1000", 4 [pid 5642] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5643] <... write resumed>) = 4 [pid 5246] <... close resumed>) = 0 [pid 5643] close(3) = 0 [pid 5643] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5643] write(1, "executing program\n", 18executing program ) = 18 [pid 5643] memfd_create("syzkaller", 0./strace-static-x86_64: Process 5644 attached [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5644 [pid 5644] set_robust_list(0x55555b590660, 24) = 0 [pid 5644] chdir("./76" [pid 5643] <... memfd_create resumed>) = 3 [pid 5644] <... chdir resumed>) = 0 [pid 5643] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5644] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5643] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5644] setpgid(0, 0) = 0 [pid 5644] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5644] write(3, "1000", 4) = 4 [pid 5644] close(3executing program ) = 0 [pid 5644] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5644] write(1, "executing program\n", 18) = 18 [pid 5644] memfd_create("syzkaller", 0) = 3 [pid 5644] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5640] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5641] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5642] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5643] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5644] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5640] <... write resumed>) = 16777216 [pid 5640] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5640] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5640] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5640] close(3) = 0 [pid 5641] <... write resumed>) = 16777216 [pid 5640] close(4 [pid 5641] munmap(0x7f6c8ae00000, 138412032 [pid 5640] <... close resumed>) = 0 [ 440.509910][ T5640] loop2: detected capacity change from 0 to 32768 [pid 5640] mkdir("./file0", 0777) = 0 [pid 5640] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5641] <... munmap resumed>) = 0 [pid 5640] <... mount resumed>) = 0 [pid 5641] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5641] ioctl(4, LOOP_SET_FD, 3 [pid 5640] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5640] chdir("./file0") = 0 [pid 5640] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5640] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5640] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5640] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5641] <... ioctl resumed>) = 0 [pid 5641] close(3) = 0 [pid 5641] close(4) = 0 [pid 5641] mkdir("./file0", 0777) = 0 [pid 5641] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5641] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5641] chdir("./file0") = 0 [pid 5641] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5641] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5641] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 440.601812][ T5641] loop0: detected capacity change from 0 to 32768 [pid 5641] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5642] <... write resumed>) = 16777216 [pid 5644] <... write resumed>) = 16777216 [pid 5642] munmap(0x7f6c8ae00000, 138412032 [pid 5644] munmap(0x7f6c8ae00000, 138412032 [pid 5643] <... write resumed>) = 16777216 [pid 5643] munmap(0x7f6c8ae00000, 138412032 [pid 5642] <... munmap resumed>) = 0 [pid 5642] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5644] <... munmap resumed>) = 0 [pid 5642] <... openat resumed>) = 4 [pid 5642] ioctl(4, LOOP_SET_FD, 3 [pid 5640] <... write resumed>) = 4243456 [pid 5640] exit_group(0) = ? [pid 5644] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5643] <... munmap resumed>) = 0 [pid 5642] <... ioctl resumed>) = 0 [pid 5640] +++ exited with 0 +++ [pid 5644] ioctl(4, LOOP_SET_FD, 3 [pid 5642] close(3) = 0 [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5640, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5642] close(4 [pid 5644] <... ioctl resumed>) = 0 [pid 5643] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5644] close(3) = 0 [pid 5642] <... close resumed>) = 0 [pid 5642] mkdir("./file0", 0777 [pid 5644] close(4 [pid 5643] <... openat resumed>) = 4 [pid 5642] <... mkdir resumed>) = 0 [pid 5642] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5644] <... close resumed>) = 0 [pid 5642] <... mount resumed>) = 0 [pid 5642] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5642] chdir("./file0") = 0 [pid 5642] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5642] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5644] mkdir("./file0", 0777 [pid 5643] ioctl(4, LOOP_SET_FD, 3 [pid 5642] <... openat resumed>) = 4 [pid 5642] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5644] <... mkdir resumed>) = 0 [pid 5643] <... ioctl resumed>) = 0 [pid 5245] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5642] <... openat resumed>) = 5 [pid 5642] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5644] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5643] close(3 [pid 5641] <... write resumed>) = 4243456 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5641] exit_group(0) = ? [pid 5643] <... close resumed>) = 0 [pid 5641] +++ exited with 0 +++ [pid 5245] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5643] close(4 [pid 5245] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5641, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5643] <... close resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5643] mkdir("./file0", 0777) = 0 [pid 5245] getdents64(3, [pid 5643] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5644] <... mount resumed>) = 0 [ 440.823111][ T5642] loop4: detected capacity change from 0 to 32768 [ 440.841932][ T5644] loop3: detected capacity change from 0 to 32768 [ 440.860186][ T5643] loop1: detected capacity change from 0 to 32768 [pid 5644] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5643] <... mount resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5644] <... openat resumed>) = 3 [pid 5644] chdir("./file0") = 0 [pid 5644] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5644] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5644] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5644] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5643] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./76/binderfs", [pid 5243] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5643] <... openat resumed>) = 3 [pid 5643] chdir("./file0" [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5643] <... chdir resumed>) = 0 [pid 5245] unlink("./76/binderfs" [pid 5243] newfstatat(3, "", [pid 5643] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5245] <... unlink resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5643] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] getdents64(3, [pid 5643] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5643] <... openat resumed>) = 4 [pid 5245] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5643] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./77/binderfs" [pid 5245] <... umount2 resumed>) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5643] <... openat resumed>) = 5 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./76/file0", [pid 5643] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./76/file0") = 0 [pid 5243] newfstatat(AT_FDCWD, "./77/file0", [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./76") = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] mkdir("./77", 0777 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5243] <... openat resumed>) = 4 [pid 5245] <... openat resumed>) = 3 [pid 5243] newfstatat(4, "", [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] close(3 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./77/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5642] <... write resumed>) = 4243456 [pid 5243] <... close resumed>) = 0 [pid 5642] exit_group(0 [pid 5243] rmdir("./77") = 0 [pid 5243] mkdir("./78", 0777 [pid 5642] <... exit_group resumed>) = ? [pid 5642] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5642, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./75", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... mkdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5247] openat(AT_FDCWD, "./75", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5247] newfstatat(3, "", [pid 5243] <... ioctl resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] close(3 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./75/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./75/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./75/binderfs") = 0 [pid 5247] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./75/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./75/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5644] <... write resumed>) = 4243456 [pid 5644] exit_group(0) = ? [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./75/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", [pid 5644] +++ exited with 0 +++ [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5644, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=28 /* 0.28 s */} --- [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./75/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5246] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] rmdir("./75" [pid 5246] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5247] mkdir("./76", 0777 [pid 5246] newfstatat(3, "", [pid 5247] <... mkdir resumed>) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] getdents64(3, [pid 5247] <... openat resumed>) = 3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... ioctl resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] close(3 [pid 5246] newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./76/binderfs") = 0 [pid 5246] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5643] <... write resumed>) = 4243456 [pid 5245] <... close resumed>) = 0 [pid 5643] exit_group(0) = ? [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... umount2 resumed>) = 0 ./strace-static-x86_64: Process 5645 attached [pid 5643] +++ exited with 0 +++ [pid 5246] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5645 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./76/file0", [pid 5645] set_robust_list(0x55555b590660, 24 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5645] <... set_robust_list resumed>) = 0 [pid 5246] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5645] chdir("./77" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5645] <... chdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5643, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./76/file0") = 0 [pid 5645] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5246] getdents64(3, [pid 5645] setpgid(0, 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./76" [pid 5645] <... setpgid resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5645] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] mkdir("./77", 0777 [pid 5645] <... openat resumed>) = 3 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5645] write(3, "1000", 4) = 4 [pid 5246] <... openat resumed>) = 3 [pid 5645] close(3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5645] <... close resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5645] symlink("/dev/binderfs", "./binderfs" [pid 5246] close(3executing program [pid 5645] <... symlink resumed>) = 0 [pid 5244] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5645] write(1, "executing program\n", 18) = 18 [pid 5645] memfd_create("syzkaller", 0) = 3 [pid 5645] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./76/binderfs") = 0 [pid 5244] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./76/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... close resumed>) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./76/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] rmdir("./76") = 0 [pid 5244] mkdir("./77", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5646 ./strace-static-x86_64: Process 5646 attached [pid 5646] set_robust_list(0x55555b590660, 24executing program ) = 0 [pid 5646] chdir("./78") = 0 [pid 5646] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5646] setpgid(0, 0) = 0 [pid 5646] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5646] write(3, "1000", 4) = 4 [pid 5646] close(3) = 0 [pid 5646] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5646] write(1, "executing program\n", 18) = 18 [pid 5646] memfd_create("syzkaller", 0) = 3 [pid 5646] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5647 attached [pid 5647] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5647 [pid 5647] <... set_robust_list resumed>) = 0 [pid 5647] chdir("./76") = 0 [pid 5647] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5647] setpgid(0, 0) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5647] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5648 [pid 5647] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5648 attached [pid 5647] write(3, "1000", 4 [pid 5648] set_robust_list(0x55555b590660, 24 [pid 5647] <... write resumed>) = 4 [pid 5648] <... set_robust_list resumed>) = 0 [pid 5647] close(3 [pid 5648] chdir("./77" [pid 5647] <... close resumed>) = 0 [pid 5648] <... chdir resumed>) = 0 [pid 5647] symlink("/dev/binderfs", "./binderfs" [pid 5648] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5647] <... symlink resumed>) = 0 executing program [pid 5648] setpgid(0, 0 [pid 5647] write(1, "executing program\n", 18 [pid 5244] <... close resumed>) = 0 [pid 5648] <... setpgid resumed>) = 0 [pid 5647] <... write resumed>) = 18 [pid 5648] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5647] memfd_create("syzkaller", 0 [pid 5648] <... openat resumed>) = 3 [pid 5648] write(3, "1000", 4 [pid 5647] <... memfd_create resumed>) = 3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5648] <... write resumed>) = 4 [pid 5647] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5648] close(3) = 0 [pid 5647] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5648] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 5649 attached [pid 5649] set_robust_list(0x55555b590660, 24 [pid 5648] <... symlink resumed>) = 0 [pid 5649] <... set_robust_list resumed>) = 0 [pid 5649] chdir("./77") = 0 executing program [pid 5649] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5648] write(1, "executing program\n", 18 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5649 [pid 5649] <... prctl resumed>) = 0 [pid 5648] <... write resumed>) = 18 [pid 5649] setpgid(0, 0) = 0 [pid 5649] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5649] write(3, "1000", 4) = 4 [pid 5649] close(3) = 0 [pid 5649] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5649] write(1, "executing program\n", 18) = 18 [pid 5649] memfd_create("syzkaller", 0 [pid 5648] memfd_create("syzkaller", 0 [pid 5649] <... memfd_create resumed>) = 3 [pid 5648] <... memfd_create resumed>) = 3 [pid 5649] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5648] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5649] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5648] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5645] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5646] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5648] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5647] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5649] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5645] <... write resumed>) = 16777216 [pid 5645] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5645] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5645] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5645] close(3) = 0 [pid 5645] close(4) = 0 [pid 5645] mkdir("./file0", 0777) = 0 [pid 5645] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5645] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5645] chdir("./file0") = 0 [pid 5645] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5645] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5645] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 442.148058][ T5645] loop2: detected capacity change from 0 to 32768 [pid 5645] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5646] <... write resumed>) = 16777216 [pid 5646] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5646] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5646] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5646] close(3) = 0 [pid 5646] close(4) = 0 [pid 5646] mkdir("./file0", 0777) = 0 [pid 5646] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5646] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5646] chdir("./file0") = 0 [pid 5646] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5646] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5646] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 442.291431][ T5646] loop0: detected capacity change from 0 to 32768 [pid 5646] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5645] <... write resumed>) = 4243456 [pid 5645] exit_group(0) = ? [pid 5645] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5645, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./77/binderfs") = 0 [pid 5245] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5648] <... write resumed>) = 16777216 [pid 5245] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5648] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", [pid 5647] <... write resumed>) = 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./77/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./77") = 0 [pid 5245] mkdir("./78", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5648] <... munmap resumed>) = 0 [pid 5647] munmap(0x7f6c8ae00000, 138412032 [pid 5648] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5648] ioctl(4, LOOP_SET_FD, 3 [pid 5646] <... write resumed>) = 4243456 [pid 5648] <... ioctl resumed>) = 0 [pid 5648] close(3 [pid 5646] exit_group(0 [pid 5648] <... close resumed>) = 0 [pid 5646] <... exit_group resumed>) = ? [pid 5648] close(4) = 0 [pid 5648] mkdir("./file0", 0777 [pid 5647] <... munmap resumed>) = 0 [pid 5648] <... mkdir resumed>) = 0 [pid 5647] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5648] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5647] <... openat resumed>) = 4 [pid 5647] ioctl(4, LOOP_SET_FD, 3 [pid 5648] <... mount resumed>) = 0 [pid 5646] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5646, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5648] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5648] <... openat resumed>) = 3 [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./78/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5649] <... write resumed>) = 16777216 [pid 5648] chdir("./file0" [pid 5647] <... ioctl resumed>) = 0 [pid 5243] unlink("./78/binderfs" [pid 5648] <... chdir resumed>) = 0 [pid 5647] close(3 [pid 5243] <... unlink resumed>) = 0 [pid 5648] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5648] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5647] <... close resumed>) = 0 [pid 5649] munmap(0x7f6c8ae00000, 138412032 [pid 5648] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5647] close(4 [pid 5648] <... openat resumed>) = 4 [pid 5647] <... close resumed>) = 0 [pid 5648] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5647] mkdir("./file0", 0777 [pid 5648] <... openat resumed>) = 5 [pid 5647] <... mkdir resumed>) = 0 [ 442.513711][ T5648] loop3: detected capacity change from 0 to 32768 [ 442.552543][ T5647] loop4: detected capacity change from 0 to 32768 [pid 5648] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5647] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5649] <... munmap resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5649] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5649] ioctl(4, LOOP_SET_FD, 3 [pid 5647] <... mount resumed>) = 0 [pid 5647] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5647] chdir("./file0" [pid 5243] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5647] <... chdir resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5647] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] newfstatat(AT_FDCWD, "./78/file0", [pid 5647] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5647] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5647] <... openat resumed>) = 4 [pid 5243] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5647] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] getdents64(4, [pid 5647] <... openat resumed>) = 5 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5647] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./78/file0") = 0 [pid 5649] <... ioctl resumed>) = 0 [pid 5649] close(3 [pid 5243] getdents64(3, [pid 5649] <... close resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5649] close(4 [pid 5243] close(3 [pid 5649] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [ 442.623782][ T5649] loop1: detected capacity change from 0 to 32768 [pid 5649] mkdir("./file0", 0777) = 0 [pid 5243] rmdir("./78" [pid 5649] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./79", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5649] <... mount resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5649] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5649] <... openat resumed>) = 3 [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5649] chdir("./file0") = 0 [pid 5649] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5649] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5649] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5649] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5650 ./strace-static-x86_64: Process 5650 attached [pid 5650] set_robust_list(0x55555b590660, 24) = 0 [pid 5650] chdir("./78") = 0 [pid 5650] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5650] setpgid(0, 0) = 0 [pid 5650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5650] write(3, "1000", 4) = 4 [pid 5650] close(3) = 0 [pid 5650] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5650] write(1, "executing program\n", 18) = 18 [pid 5650] memfd_create("syzkaller", 0) = 3 [pid 5650] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5647] <... write resumed>) = 4243456 [pid 5647] exit_group(0) = ? [pid 5647] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5647, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./76", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./76", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5648] <... write resumed>) = 4243456 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5648] exit_group(0 [pid 5247] umount2("./76/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5648] <... exit_group resumed>) = ? [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./76/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./76/binderfs") = 0 [pid 5247] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5648] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5648, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./77/binderfs") = 0 [pid 5246] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./76/file0", [pid 5246] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5247] umount2("./76/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(4, "", [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] openat(AT_FDCWD, "./76/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... close resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5246] getdents64(4, [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] getdents64(4, [pid 5246] close(4 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./77/file0" [pid 5247] getdents64(4, [pid 5246] <... rmdir resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5246] getdents64(3, ./strace-static-x86_64: Process 5651 attached [pid 5247] rmdir("./76/file0" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5651] set_robust_list(0x55555b590660, 24 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] close(3 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5651 [pid 5246] <... close resumed>) = 0 [pid 5651] <... set_robust_list resumed>) = 0 [pid 5246] rmdir("./77" [pid 5651] chdir("./79" [pid 5247] getdents64(3, [pid 5246] <... rmdir resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5651] <... chdir resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5651] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] rmdir("./76" [pid 5246] mkdir("./78", 0777 [pid 5651] <... prctl resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5651] setpgid(0, 0) = 0 [pid 5649] <... write resumed>) = 4243456 [pid 5651] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5649] exit_group(0) = ? [pid 5247] mkdir("./77", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5651] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5651] write(3, "1000", 4 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5651] <... write resumed>) = 4 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... ioctl resumed>) = 0 [pid 5651] close(3 [pid 5649] +++ exited with 0 +++ [pid 5247] <... openat resumed>) = 3 [pid 5246] close(3 [pid 5651] <... close resumed>) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5649, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5651] symlink("/dev/binderfs", "./binderfs" [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5651] <... symlink resumed>) = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5247] close(3executing program [pid 5651] write(1, "executing program\n", 18) = 18 [pid 5651] memfd_create("syzkaller", 0) = 3 [pid 5244] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5651] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5651] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5244] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./77/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./77/binderfs") = 0 [pid 5244] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./77/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./77") = 0 [pid 5244] mkdir("./78", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5650] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5652 ./strace-static-x86_64: Process 5652 attached [pid 5652] set_robust_list(0x55555b590660, 24) = 0 [pid 5652] chdir("./77") = 0 [pid 5652] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5652] setpgid(0, 0) = 0 [pid 5652] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5652] write(3, "1000", 4) = 4 [pid 5652] close(3) = 0 [pid 5652] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5652] write(1, "executing program\n", 18) = 18 [pid 5652] memfd_create("syzkaller", 0) = 3 [pid 5652] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5653 attached , child_tidptr=0x55555b590650) = 5653 [pid 5653] set_robust_list(0x55555b590660, 24) = 0 [pid 5653] chdir("./78") = 0 [pid 5653] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5653] setpgid(0, 0) = 0 [pid 5653] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5653] write(3, "1000", 4) = 4 [pid 5653] close(3executing program ) = 0 [pid 5653] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5653] write(1, "executing program\n", 18) = 18 [pid 5653] memfd_create("syzkaller", 0) = 3 [pid 5653] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5654 attached , child_tidptr=0x55555b590650) = 5654 [pid 5654] set_robust_list(0x55555b590660, 24) = 0 [pid 5654] chdir("./78") = 0 [pid 5654] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5654] setpgid(0, 0) = 0 [pid 5654] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5654] write(3, "1000", 4) = 4 [pid 5654] close(3) = 0 [pid 5654] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5654] write(1, "executing program\n", 18) = 18 [pid 5654] memfd_create("syzkaller", 0) = 3 [pid 5654] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5651] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5650] <... write resumed>) = 16777216 [pid 5650] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5650] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5650] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5650] close(3) = 0 [pid 5650] close(4) = 0 [pid 5650] mkdir("./file0", 0777) = 0 [pid 5650] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5650] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5650] chdir("./file0") = 0 [pid 5650] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5650] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5650] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 443.606843][ T5650] loop2: detected capacity change from 0 to 32768 [pid 5650] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5652] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5653] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5654] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5651] <... write resumed>) = 16777216 [pid 5651] munmap(0x7f6c8ae00000, 138412032 [pid 5650] <... write resumed>) = 4243456 [pid 5650] exit_group(0) = ? [pid 5650] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5650, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5651] <... munmap resumed>) = 0 [pid 5651] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5651] ioctl(4, LOOP_SET_FD, 3 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./78/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./78/binderfs") = 0 [pid 5245] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5651] <... ioctl resumed>) = 0 [pid 5651] close(3) = 0 [pid 5651] close(4) = 0 [pid 5651] mkdir("./file0", 0777) = 0 [pid 5651] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./78/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./78/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3 [pid 5651] <... mount resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] rmdir("./78" [pid 5651] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5245] <... rmdir resumed>) = 0 [pid 5651] <... openat resumed>) = 3 [pid 5651] chdir("./file0" [pid 5245] mkdir("./79", 0777 [pid 5651] <... chdir resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5651] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5651] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5245] <... openat resumed>) = 3 [pid 5651] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5651] <... openat resumed>) = 4 [pid 5651] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 443.927800][ T5651] loop0: detected capacity change from 0 to 32768 [pid 5651] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5654] <... write resumed>) = 16777216 [pid 5654] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5653] <... write resumed>) = 16777216 [pid 5654] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5653] munmap(0x7f6c8ae00000, 138412032 [pid 5652] <... write resumed>) = 16777216 [pid 5654] <... openat resumed>) = 4 [pid 5654] ioctl(4, LOOP_SET_FD, 3 [pid 5652] munmap(0x7f6c8ae00000, 138412032 [pid 5654] <... ioctl resumed>) = 0 [pid 5654] close(3 [pid 5651] <... write resumed>) = 4243456 [pid 5654] <... close resumed>) = 0 [pid 5651] exit_group(0 [pid 5654] close(4 [pid 5651] <... exit_group resumed>) = ? [pid 5654] <... close resumed>) = 0 [pid 5651] +++ exited with 0 +++ [pid 5654] mkdir("./file0", 0777 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5651, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5654] <... mkdir resumed>) = 0 [pid 5654] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./79/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./79/binderfs") = 0 [pid 5245] <... close resumed>) = 0 [pid 5243] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5653] <... munmap resumed>) = 0 ./strace-static-x86_64: Process 5655 attached [ 444.209170][ T5654] loop1: detected capacity change from 0 to 32768 [pid 5653] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5655] set_robust_list(0x55555b590660, 24 [pid 5653] <... openat resumed>) = 4 [pid 5653] ioctl(4, LOOP_SET_FD, 3 [pid 5655] <... set_robust_list resumed>) = 0 [pid 5654] <... mount resumed>) = 0 [pid 5652] <... munmap resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5655] chdir("./79" [pid 5654] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5652] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5655 [pid 5654] <... openat resumed>) = 3 [pid 5655] <... chdir resumed>) = 0 [pid 5654] chdir("./file0" [pid 5652] <... openat resumed>) = 4 [pid 5655] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5654] <... chdir resumed>) = 0 [pid 5655] <... prctl resumed>) = 0 [pid 5652] ioctl(4, LOOP_SET_FD, 3 [pid 5654] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5655] setpgid(0, 0 [pid 5243] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5655] <... setpgid resumed>) = 0 [pid 5654] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5652] <... ioctl resumed>) = 0 [pid 5243] getdents64(4, [pid 5655] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5654] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5653] <... ioctl resumed>) = 0 [pid 5652] close(3 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5655] <... openat resumed>) = 3 [pid 5654] <... openat resumed>) = 4 [pid 5653] close(3 [pid 5652] <... close resumed>) = 0 [pid 5243] getdents64(4, [pid 5655] write(3, "1000", 4 [pid 5654] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5653] <... close resumed>) = 0 [pid 5652] close(4 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5655] <... write resumed>) = 4 [pid 5654] <... openat resumed>) = 5 [pid 5653] close(4 [pid 5652] <... close resumed>) = 0 [pid 5243] close(4 [pid 5655] close(3 [pid 5654] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5653] <... close resumed>) = 0 [pid 5652] mkdir("./file0", 0777 [pid 5243] <... close resumed>) = 0 [pid 5655] <... close resumed>) = 0 [pid 5243] rmdir("./79/file0" [pid 5655] symlink("/dev/binderfs", "./binderfs" [pid 5653] mkdir("./file0", 0777 [pid 5652] <... mkdir resumed>) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5653] <... mkdir resumed>) = 0 [pid 5652] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5655] <... symlink resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5655] write(1, "executing program\n", 18 executing program [pid 5653] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5655] <... write resumed>) = 18 [pid 5243] close(3) = 0 [pid 5243] rmdir("./79" [pid 5655] memfd_create("syzkaller", 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5655] <... memfd_create resumed>) = 3 [ 444.252521][ T5653] loop3: detected capacity change from 0 to 32768 [ 444.270233][ T5652] loop4: detected capacity change from 0 to 32768 [pid 5243] mkdir("./80", 0777 [pid 5655] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5652] <... mount resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5655] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5652] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5652] <... openat resumed>) = 3 [pid 5243] <... openat resumed>) = 3 [pid 5652] chdir("./file0") = 0 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5652] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] close(3 [pid 5652] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5652] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5652] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5652] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5653] <... mount resumed>) = 0 [pid 5653] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5653] chdir("./file0") = 0 [pid 5653] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5653] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5653] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5653] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5654] <... write resumed>) = 4243456 [pid 5654] exit_group(0) = ? [pid 5653] <... write resumed>) = 4243456 [pid 5653] exit_group(0) = ? [pid 5653] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5653, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5654] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5654, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=37 /* 0.37 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5652] <... write resumed>) = 4243456 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5652] exit_group(0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5652] <... exit_group resumed>) = ? [pid 5246] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] newfstatat(3, "", [pid 5244] <... openat resumed>) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] newfstatat(3, "", [pid 5246] getdents64(3, [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] getdents64(3, [pid 5246] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(AT_FDCWD, "./78/binderfs", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] newfstatat(AT_FDCWD, "./78/binderfs", [pid 5246] unlink("./78/binderfs" [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5244] unlink("./78/binderfs" [pid 5246] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5652] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5652, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5247] umount2("./77", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./77", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./77/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] newfstatat(AT_FDCWD, "./77/binderfs", [pid 5246] newfstatat(AT_FDCWD, "./78/file0", [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./77/binderfs" [pid 5246] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5656 attached [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5656] set_robust_list(0x55555b590660, 24 [pid 5246] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5656 [pid 5656] <... set_robust_list resumed>) = 0 [pid 5656] chdir("./80" [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5244] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./77/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./77/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./78/file0", [pid 5247] openat(AT_FDCWD, "./77/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... openat resumed>) = 4 [pid 5244] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(4, "", [pid 5244] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... openat resumed>) = 4 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] newfstatat(4, "", [pid 5247] getdents64(4, [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] getdents64(4, [pid 5247] close(4 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] <... close resumed>) = 0 [pid 5244] getdents64(4, [pid 5247] rmdir("./77/file0" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5656] <... chdir resumed>) = 0 [pid 5244] close(4 [pid 5656] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./78/file0" [pid 5656] setpgid(0, 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5656] <... setpgid resumed>) = 0 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5656] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] getdents64(4, [pid 5656] <... openat resumed>) = 3 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(3, [pid 5656] write(3, "1000", 4) = 4 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5656] close(3) = 0 [pid 5247] getdents64(3, [pid 5246] getdents64(4, [pid 5244] close(3 [pid 5656] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... close resumed>) = 0 [pid 5247] close(3 [pid 5246] close(4 [pid 5244] rmdir("./78" [pid 5656] <... symlink resumed>) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5247] rmdir("./77" [pid 5246] rmdir("./78/file0" [pid 5244] <... rmdir resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] mkdir("./79", 0777 [pid 5656] write(1, "executing program\n", 18 [pid 5247] mkdir("./78", 0777 [pid 5246] getdents64(3, executing program [pid 5656] <... write resumed>) = 18 [pid 5247] <... mkdir resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5656] memfd_create("syzkaller", 0 [pid 5246] close(3) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] rmdir("./78" [pid 5656] <... memfd_create resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5656] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5244] <... openat resumed>) = 3 [pid 5656] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5655] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] mkdir("./79", 0777 [pid 5247] <... ioctl resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5244] close(3 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5657 attached , child_tidptr=0x55555b590650) = 5657 [pid 5244] <... close resumed>) = 0 [pid 5657] set_robust_list(0x55555b590660, 24) = 0 [pid 5657] chdir("./78") = 0 [pid 5657] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5657] setpgid(0, 0) = 0 [pid 5657] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5657] write(3, "1000", 4) = 4 [pid 5657] close(3) = 0 [pid 5657] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5657] write(1, "executing program\n", 18) = 18 [pid 5657] memfd_create("syzkaller", 0) = 3 [pid 5657] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5658 attached , child_tidptr=0x55555b590650) = 5658 [pid 5658] set_robust_list(0x55555b590660, 24) = 0 [pid 5658] chdir("./79") = 0 [pid 5246] <... close resumed>) = 0 [pid 5658] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5658] setpgid(0, 0) = 0 [pid 5658] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5658] <... openat resumed>) = 3 [pid 5658] write(3, "1000", 4 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5659 [pid 5658] <... write resumed>) = 4 [pid 5658] close(3) = 0 [pid 5658] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5658] write(1, "executing program\n", 18./strace-static-x86_64: Process 5659 attached [pid 5655] <... write resumed>) = 16777216 executing program [pid 5658] <... write resumed>) = 18 [pid 5659] set_robust_list(0x55555b590660, 24 [pid 5658] memfd_create("syzkaller", 0 [pid 5659] <... set_robust_list resumed>) = 0 [pid 5659] chdir("./79" [pid 5658] <... memfd_create resumed>) = 3 [pid 5659] <... chdir resumed>) = 0 [pid 5659] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5658] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5659] setpgid(0, 0 [pid 5658] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5659] <... setpgid resumed>) = 0 [pid 5659] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5655] munmap(0x7f6c8ae00000, 138412032 [pid 5659] write(3, "1000", 4) = 4 [pid 5659] close(3) = 0 [pid 5659] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5659] write(1, "executing program\n", 18) = 18 [pid 5659] memfd_create("syzkaller", 0) = 3 [pid 5659] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5656] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5655] <... munmap resumed>) = 0 [pid 5655] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5655] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5655] close(3) = 0 [pid 5655] close(4) = 0 [pid 5655] mkdir("./file0", 0777) = 0 [pid 5655] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5655] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5655] chdir("./file0") = 0 [pid 5655] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5655] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5655] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 445.089837][ T5655] loop2: detected capacity change from 0 to 32768 [pid 5655] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5658] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5655] <... write resumed>) = 4243456 [pid 5655] exit_group(0) = ? [pid 5655] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5655, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5657] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./79/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./79/binderfs") = 0 [pid 5245] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5656] <... write resumed>) = 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5656] munmap(0x7f6c8ae00000, 138412032 [pid 5245] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./79/file0", [pid 5659] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5656] <... munmap resumed>) = 0 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5656] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] getdents64(4, [pid 5656] <... openat resumed>) = 4 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, [pid 5656] ioctl(4, LOOP_SET_FD, 3 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5656] <... ioctl resumed>) = 0 [pid 5245] rmdir("./79/file0" [pid 5656] close(3) = 0 [pid 5656] close(4) = 0 [pid 5245] <... rmdir resumed>) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5656] mkdir("./file0", 0777 [pid 5245] rmdir("./79" [pid 5656] <... mkdir resumed>) = 0 [pid 5656] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... rmdir resumed>) = 0 [pid 5245] mkdir("./80", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5656] <... mount resumed>) = 0 [pid 5245] <... openat resumed>) = 3 [pid 5656] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5656] chdir("./file0" [pid 5245] <... ioctl resumed>) = 0 [pid 5656] <... chdir resumed>) = 0 [pid 5245] close(3 [ 445.543547][ T5656] loop0: detected capacity change from 0 to 32768 [pid 5656] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5656] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5656] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5656] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5658] <... write resumed>) = 16777216 [pid 5656] <... write resumed>) = 4243456 [pid 5656] exit_group(0) = ? [pid 5656] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5656, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5658] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5658] <... munmap resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./80/binderfs", [pid 5658] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5658] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./80/binderfs" [pid 5658] <... ioctl resumed>) = 0 [pid 5658] close(3 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5658] <... close resumed>) = 0 [pid 5658] close(4) = 0 [pid 5657] <... write resumed>) = 16777216 [pid 5658] mkdir("./file0", 0777 [pid 5657] munmap(0x7f6c8ae00000, 138412032 [pid 5658] <... mkdir resumed>) = 0 [pid 5658] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5658] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5658] chdir("./file0") = 0 [pid 5658] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5658] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5658] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5658] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5245] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 445.833192][ T5658] loop1: detected capacity change from 0 to 32768 [pid 5243] newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 ./strace-static-x86_64: Process 5660 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5660 [pid 5660] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5660] chdir("./80" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5660] <... chdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5660] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5657] <... munmap resumed>) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5660] setpgid(0, 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5660] <... setpgid resumed>) = 0 [pid 5243] getdents64(4, [pid 5660] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5657] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5660] <... openat resumed>) = 3 [pid 5657] <... openat resumed>) = 4 [pid 5243] close(4 [pid 5660] write(3, "1000", 4 [pid 5243] <... close resumed>) = 0 [pid 5660] <... write resumed>) = 4 [pid 5657] ioctl(4, LOOP_SET_FD, 3 [pid 5243] rmdir("./80/file0" [pid 5660] close(3 [pid 5243] <... rmdir resumed>) = 0 [pid 5660] <... close resumed>) = 0 [pid 5660] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5660] write(1, "executing program\n", 18) = 18 [pid 5660] memfd_create("syzkaller", 0) = 3 [pid 5243] getdents64(3, [pid 5660] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5660] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5657] <... ioctl resumed>) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./80") = 0 [pid 5657] close(3 [pid 5243] mkdir("./81", 0777 [pid 5657] <... close resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5657] close(4) = 0 [pid 5659] <... write resumed>) = 16777216 [pid 5657] mkdir("./file0", 0777 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5659] munmap(0x7f6c8ae00000, 138412032 [pid 5657] <... mkdir resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [ 445.919207][ T5657] loop4: detected capacity change from 0 to 32768 [pid 5243] close(3 [pid 5657] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5657] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5657] chdir("./file0") = 0 [pid 5657] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5657] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5657] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5657] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5659] <... munmap resumed>) = 0 [pid 5659] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5659] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5659] close(3) = 0 [pid 5658] <... write resumed>) = 4243456 [pid 5659] close(4 [pid 5658] exit_group(0) = ? [pid 5658] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5658, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=28 /* 0.28 s */} --- [pid 5659] <... close resumed>) = 0 [ 446.059794][ T5659] loop3: detected capacity change from 0 to 32768 [pid 5659] mkdir("./file0", 0777) = 0 [pid 5659] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5659] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5659] <... openat resumed>) = 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5659] chdir("./file0" [pid 5244] <... openat resumed>) = 3 [pid 5659] <... chdir resumed>) = 0 [pid 5244] newfstatat(3, "", [pid 5659] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5659] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5244] getdents64(3, [pid 5659] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5659] <... openat resumed>) = 4 [pid 5244] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5659] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] newfstatat(AT_FDCWD, "./79/binderfs", [pid 5659] <... openat resumed>) = 5 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5659] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] unlink("./79/binderfs") = 0 [pid 5244] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./79/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./79") = 0 [pid 5244] mkdir("./80", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5657] <... write resumed>) = 4243456 [pid 5657] exit_group(0) = ? [pid 5657] +++ exited with 0 +++ [pid 5243] <... close resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5657, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] umount2("./78", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5661 attached [pid 5661] set_robust_list(0x55555b590660, 24 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5661 [pid 5247] openat(AT_FDCWD, "./78", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5661] <... set_robust_list resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5661] chdir("./81" [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5661] <... chdir resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./78/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5661] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5661] <... prctl resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./78/binderfs", [pid 5661] setpgid(0, 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5661] <... setpgid resumed>) = 0 [pid 5247] unlink("./78/binderfs" [pid 5661] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... unlink resumed>) = 0 [pid 5247] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5661] <... openat resumed>) = 3 [pid 5661] write(3, "1000", 4) = 4 [pid 5661] close(3) = 0 [pid 5661] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5661] write(1, "executing program\n", 18) = 18 [pid 5661] memfd_create("syzkaller", 0) = 3 [pid 5661] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5659] <... write resumed>) = 4243456 [pid 5660] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5659] exit_group(0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5659] <... exit_group resumed>) = ? [pid 5247] newfstatat(AT_FDCWD, "./78/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5659] +++ exited with 0 +++ [pid 5247] umount2("./78/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5659, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] openat(AT_FDCWD, "./78/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4 [pid 5246] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] rmdir("./78/file0" [pid 5246] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... rmdir resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5247] getdents64(3, [pid 5246] newfstatat(3, "", [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] <... close resumed>) = 0 [pid 5246] getdents64(3, [pid 5247] rmdir("./78" [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] <... rmdir resumed>) = 0 [pid 5246] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] mkdir("./79", 0777 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] <... mkdir resumed>) = 0 [pid 5246] newfstatat(AT_FDCWD, "./79/binderfs", [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5246] unlink("./79/binderfs") = 0 [pid 5247] <... ioctl resumed>) = 0 [pid 5246] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5662 attached [pid 5662] set_robust_list(0x55555b590660, 24) = 0 [pid 5662] chdir("./80") = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5662 [pid 5662] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5662] setpgid(0, 0) = 0 [pid 5662] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5662] write(3, "1000", 4) = 4 [pid 5662] close(3) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5662] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5662] write(1, "executing program\n", 18) = 18 [pid 5662] memfd_create("syzkaller", 0) = 3 [pid 5662] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./79/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./79") = 0 [pid 5246] mkdir("./80", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5663 attached [pid 5663] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5663 [pid 5663] <... set_robust_list resumed>) = 0 [pid 5663] chdir("./79") = 0 [pid 5663] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5663] setpgid(0, 0) = 0 [pid 5663] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5663] write(3, "1000", 4) = 4 [pid 5663] close(3) = 0 [pid 5663] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5663] write(1, "executing program\n", 18) = 18 [pid 5663] memfd_create("syzkaller", 0) = 3 [pid 5663] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5661] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5660] <... write resumed>) = 16777216 [pid 5660] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5660] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5660] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5660] close(3) = 0 [pid 5660] close(4) = 0 [pid 5660] mkdir("./file0", 0777) = 0 [pid 5246] <... close resumed>) = 0 [pid 5660] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5660] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5660] chdir("./file0") = 0 [pid 5660] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5660] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5660] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5660] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456./strace-static-x86_64: Process 5664 attached [pid 5664] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5664 [pid 5664] <... set_robust_list resumed>) = 0 [pid 5664] chdir("./80") = 0 [pid 5664] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 446.812244][ T5660] loop2: detected capacity change from 0 to 32768 executing program [pid 5664] setpgid(0, 0) = 0 [pid 5664] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5664] write(3, "1000", 4) = 4 [pid 5664] close(3) = 0 [pid 5664] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5664] write(1, "executing program\n", 18) = 18 [pid 5664] memfd_create("syzkaller", 0) = 3 [pid 5664] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5662] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5660] <... write resumed>) = 4243456 [pid 5660] exit_group(0) = ? [pid 5660] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5660, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./80/binderfs") = 0 [pid 5245] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5663] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, [pid 5661] <... write resumed>) = 16777216 [pid 5245] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5661] munmap(0x7f6c8ae00000, 138412032 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./80/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./80") = 0 [pid 5661] <... munmap resumed>) = 0 [pid 5245] mkdir("./81", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5661] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5661] <... openat resumed>) = 4 [pid 5661] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5661] close(3) = 0 [pid 5661] close(4) = 0 [pid 5661] mkdir("./file0", 0777) = 0 [pid 5664] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5662] <... write resumed>) = 16777216 [pid 5661] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 447.247162][ T5661] loop0: detected capacity change from 0 to 32768 [pid 5662] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5661] <... mount resumed>) = 0 [pid 5662] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5661] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5662] <... openat resumed>) = 4 [pid 5661] <... openat resumed>) = 3 [pid 5662] ioctl(4, LOOP_SET_FD, 3 [pid 5661] chdir("./file0") = 0 [pid 5661] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5661] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5662] <... ioctl resumed>) = 0 [pid 5661] <... openat resumed>) = 4 [pid 5661] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5661] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5662] close(3) = 0 [pid 5662] close(4) = 0 [pid 5662] mkdir("./file0", 0777) = 0 [ 447.351881][ T5662] loop1: detected capacity change from 0 to 32768 [pid 5662] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5662] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5662] chdir("./file0") = 0 [pid 5662] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5662] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5662] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5245] <... close resumed>) = 0 [pid 5662] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5665 attached , child_tidptr=0x55555b590650) = 5665 [pid 5665] set_robust_list(0x55555b590660, 24) = 0 [pid 5665] chdir("./81") = 0 [pid 5665] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5665] setpgid(0, 0) = 0 [pid 5665] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5665] write(3, "1000", 4) = 4 [pid 5665] close(3) = 0 [pid 5665] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5665] write(1, "executing program\n", 18executing program ) = 18 [pid 5665] memfd_create("syzkaller", 0) = 3 [pid 5665] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5663] <... write resumed>) = 16777216 [pid 5663] munmap(0x7f6c8ae00000, 138412032 [pid 5661] <... write resumed>) = 4243456 [pid 5661] exit_group(0) = ? [pid 5661] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5661, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5663] <... munmap resumed>) = 0 [pid 5243] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5663] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] <... openat resumed>) = 3 [pid 5663] <... openat resumed>) = 4 [pid 5243] newfstatat(3, "", [pid 5663] ioctl(4, LOOP_SET_FD, 3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5663] <... ioctl resumed>) = 0 [pid 5243] getdents64(3, [pid 5663] close(3) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5663] close(4 [pid 5243] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./81/binderfs") = 0 [pid 5243] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5663] <... close resumed>) = 0 [pid 5663] mkdir("./file0", 0777) = 0 [pid 5663] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5663] <... mount resumed>) = 0 [ 447.622426][ T5663] loop4: detected capacity change from 0 to 32768 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./81/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5663] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] rmdir("./81") = 0 [pid 5243] mkdir("./82", 0777 [pid 5663] <... openat resumed>) = 3 [pid 5243] <... mkdir resumed>) = 0 [pid 5663] chdir("./file0" [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5663] <... chdir resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5663] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] <... ioctl resumed>) = 0 [pid 5663] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5663] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] close(3 [pid 5663] <... openat resumed>) = 4 [pid 5663] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5663] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5664] <... write resumed>) = 16777216 [pid 5662] <... write resumed>) = 4243456 [pid 5664] munmap(0x7f6c8ae00000, 138412032 [pid 5662] exit_group(0) = ? [pid 5662] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5662, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=27 /* 0.27 s */} --- [pid 5244] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./80/binderfs") = 0 [pid 5244] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5664] <... munmap resumed>) = 0 [pid 5664] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5664] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5664] close(3) = 0 [pid 5244] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5664] close(4 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./80/file0", [pid 5664] <... close resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5664] mkdir("./file0", 0777 [pid 5244] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5664] <... mkdir resumed>) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./80/file0" [pid 5664] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./80") = 0 [pid 5244] mkdir("./81", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5664] <... mount resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5664] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 447.799131][ T5664] loop3: detected capacity change from 0 to 32768 [pid 5664] chdir("./file0") = 0 [pid 5664] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5664] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5664] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5664] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5665] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5663] <... write resumed>) = 4243456 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5666 ./strace-static-x86_64: Process 5666 attached [pid 5663] exit_group(0 [pid 5666] set_robust_list(0x55555b590660, 24 [pid 5663] <... exit_group resumed>) = ? [pid 5666] <... set_robust_list resumed>) = 0 [pid 5663] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5663, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5666] chdir("./82" [pid 5247] umount2("./79", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5666] <... chdir resumed>) = 0 [pid 5666] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5666] <... prctl resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./79", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5666] setpgid(0, 0 [pid 5247] <... openat resumed>) = 3 [pid 5666] <... setpgid resumed>) = 0 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5666] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./79/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./79/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./79/binderfs") = 0 [pid 5247] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5666] <... openat resumed>) = 3 [pid 5247] <... umount2 resumed>) = 0 [pid 5666] write(3, "1000", 4) = 4 [pid 5666] close(3) = 0 [pid 5666] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5666] write(1, "executing program\n", 18executing program [pid 5664] <... write resumed>) = 4243456 [pid 5247] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5666] <... write resumed>) = 18 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./79/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./79/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5666] memfd_create("syzkaller", 0 [pid 5664] exit_group(0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5666] <... memfd_create resumed>) = 3 [pid 5247] openat(AT_FDCWD, "./79/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5666] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5664] <... exit_group resumed>) = ? [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", [pid 5666] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./79/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./79") = 0 [pid 5247] mkdir("./80", 0777 [pid 5664] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5664, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=40 /* 0.40 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./80/binderfs") = 0 [pid 5246] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5247] close(3 [pid 5246] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./80/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./80") = 0 [pid 5246] mkdir("./81", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5667 attached [pid 5667] set_robust_list(0x55555b590660, 24 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5667 [pid 5667] <... set_robust_list resumed>) = 0 [pid 5667] chdir("./81") = 0 [pid 5667] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5667] setpgid(0, 0) = 0 [pid 5667] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5667] write(3, "1000", 4) = 4 [pid 5667] close(3) = 0 [pid 5667] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5667] write(1, "executing program\n", 18executing program ) = 18 [pid 5667] memfd_create("syzkaller", 0) = 3 [pid 5667] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5665] <... write resumed>) = 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5668 attached [pid 5668] set_robust_list(0x55555b590660, 24) = 0 ./strace-static-x86_64: Process 5669 attached [pid 5665] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5668 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5669 [pid 5669] set_robust_list(0x55555b590660, 24 [pid 5668] chdir("./80") = 0 [pid 5668] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5669] <... set_robust_list resumed>) = 0 [pid 5669] chdir("./81" [pid 5668] <... prctl resumed>) = 0 [pid 5669] <... chdir resumed>) = 0 [pid 5668] setpgid(0, 0 [pid 5669] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5668] <... setpgid resumed>) = 0 [pid 5669] <... prctl resumed>) = 0 [pid 5668] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5668] write(3, "1000", 4 [pid 5666] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5669] setpgid(0, 0) = 0 [pid 5669] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5669] write(3, "1000", 4) = 4 [pid 5669] close(3) = 0 [pid 5669] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5669] write(1, "executing program\n", 18) = 18 [pid 5669] memfd_create("syzkaller", 0 [pid 5668] <... write resumed>) = 4 [pid 5669] <... memfd_create resumed>) = 3 [pid 5669] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5668] close(3) = 0 [pid 5668] symlink("/dev/binderfs", "./binderfs" [pid 5665] <... munmap resumed>) = 0 [pid 5668] <... symlink resumed>) = 0 [pid 5668] write(1, "executing program\n", 18 [pid 5665] openat(AT_FDCWD, "/dev/loop2", O_RDWRexecuting program ) = 4 [pid 5665] ioctl(4, LOOP_SET_FD, 3 [pid 5668] <... write resumed>) = 18 [pid 5665] <... ioctl resumed>) = 0 [pid 5668] memfd_create("syzkaller", 0 [pid 5665] close(3) = 0 [pid 5665] close(4) = 0 [pid 5668] <... memfd_create resumed>) = 3 [pid 5668] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5665] mkdir("./file0", 0777) = 0 [pid 5665] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5665] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5665] chdir("./file0") = 0 [ 448.449934][ T5665] loop2: detected capacity change from 0 to 32768 [pid 5665] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5665] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5665] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5667] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5665] <... openat resumed>) = 5 [pid 5665] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5665] exit_group(0) = ? [pid 5665] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5665, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=34 /* 0.34 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./81/binderfs") = 0 [pid 5245] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./81/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./81") = 0 [pid 5245] mkdir("./82", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5669] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5668] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5666] <... write resumed>) = 16777216 [pid 5666] munmap(0x7f6c8ae00000, 138412032 [pid 5667] <... write resumed>) = 16777216 [pid 5666] <... munmap resumed>) = 0 [pid 5666] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5667] munmap(0x7f6c8ae00000, 138412032 [pid 5666] <... openat resumed>) = 4 [pid 5666] ioctl(4, LOOP_SET_FD, 3 [pid 5667] <... munmap resumed>) = 0 [pid 5666] <... ioctl resumed>) = 0 [pid 5667] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5666] close(3 [pid 5667] <... openat resumed>) = 4 [pid 5666] <... close resumed>) = 0 [pid 5667] ioctl(4, LOOP_SET_FD, 3 [pid 5666] close(4) = 0 [pid 5666] mkdir("./file0", 0777) = 0 [pid 5245] <... close resumed>) = 0 [pid 5666] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5670 attached [pid 5667] <... ioctl resumed>) = 0 [pid 5667] close(3) = 0 [pid 5667] close(4) = 0 [pid 5667] mkdir("./file0", 0777 [pid 5670] set_robust_list(0x55555b590660, 24 [pid 5667] <... mkdir resumed>) = 0 [pid 5670] <... set_robust_list resumed>) = 0 [pid 5670] chdir("./82" [pid 5667] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5670 [pid 5670] <... chdir resumed>) = 0 [pid 5670] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5670] setpgid(0, 0) = 0 [pid 5670] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5670] write(3, "1000", 4) = 4 [pid 5670] close(3) = 0 [ 449.002127][ T5666] loop0: detected capacity change from 0 to 32768 [ 449.020492][ T5667] loop1: detected capacity change from 0 to 32768 [pid 5670] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5670] write(1, "executing program\n", 18) = 18 [pid 5670] memfd_create("syzkaller", 0) = 3 [pid 5670] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5666] <... mount resumed>) = 0 [pid 5666] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5666] chdir("./file0" [pid 5667] <... mount resumed>) = 0 [pid 5666] <... chdir resumed>) = 0 [pid 5666] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5666] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5667] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5666] <... openat resumed>) = 4 [pid 5667] <... openat resumed>) = 3 [pid 5666] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5667] chdir("./file0" [pid 5666] <... openat resumed>) = 5 [pid 5667] <... chdir resumed>) = 0 [pid 5666] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5667] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5667] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5667] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5667] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5669] <... write resumed>) = 16777216 [pid 5669] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5666] <... write resumed>) = 4243456 [pid 5666] exit_group(0 [pid 5669] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5666] <... exit_group resumed>) = ? [pid 5666] +++ exited with 0 +++ [pid 5669] <... openat resumed>) = 4 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5666, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=41 /* 0.41 s */} --- [pid 5669] ioctl(4, LOOP_SET_FD, 3 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5669] <... ioctl resumed>) = 0 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5669] close(3 [pid 5243] newfstatat(AT_FDCWD, "./82/binderfs", [pid 5669] <... close resumed>) = 0 [pid 5669] close(4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5669] <... close resumed>) = 0 [pid 5243] unlink("./82/binderfs" [pid 5669] mkdir("./file0", 0777 [pid 5243] <... unlink resumed>) = 0 [pid 5669] <... mkdir resumed>) = 0 [pid 5243] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5669] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5667] <... write resumed>) = 4243456 [pid 5243] <... umount2 resumed>) = 0 [pid 5667] exit_group(0 [pid 5243] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5669] <... mount resumed>) = 0 [pid 5667] <... exit_group resumed>) = ? [pid 5669] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 449.319670][ T5669] loop3: detected capacity change from 0 to 32768 [pid 5243] newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5669] <... openat resumed>) = 3 [pid 5667] +++ exited with 0 +++ [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5669] chdir("./file0") = 0 [pid 5669] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5667, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=27 /* 0.27 s */} --- [pid 5669] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5669] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5669] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 4 [pid 5244] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] newfstatat(4, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] getdents64(4, [pid 5244] newfstatat(3, "", [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5244] getdents64(3, [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] close(4 [pid 5244] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] rmdir("./82/file0" [pid 5669] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] newfstatat(AT_FDCWD, "./81/binderfs", [pid 5243] <... rmdir resumed>) = 0 [pid 5669] <... openat resumed>) = 5 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(3, [pid 5669] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] unlink("./81/binderfs" [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5243] close(3 [pid 5244] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./82") = 0 [pid 5243] mkdir("./83", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5668] <... write resumed>) = 16777216 [pid 5668] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... umount2 resumed>) = 0 [pid 5244] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./81/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./81") = 0 [pid 5244] mkdir("./82", 0777 [pid 5668] <... munmap resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5668] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5668] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5668] close(3) = 0 [pid 5668] close(4) = 0 [pid 5668] mkdir("./file0", 0777) = 0 [pid 5668] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5668] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5670] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5668] <... openat resumed>) = 3 [pid 5668] chdir("./file0") = 0 [pid 5668] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [ 449.531763][ T5668] loop4: detected capacity change from 0 to 32768 [pid 5668] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5668] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5668] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5669] <... write resumed>) = 4243456 [pid 5669] exit_group(0) = ? [pid 5669] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5669, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=38 /* 0.38 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./81/binderfs") = 0 [pid 5246] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./81/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./81") = 0 [pid 5246] mkdir("./82", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5671 ./strace-static-x86_64: Process 5671 attached [pid 5671] set_robust_list(0x55555b590660, 24) = 0 [pid 5671] chdir("./83") = 0 [pid 5671] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5671] setpgid(0, 0) = 0 [pid 5671] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5671] write(3, "1000", 4 [pid 5244] <... close resumed>) = 0 [pid 5671] <... write resumed>) = 4 [pid 5671] close(3 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5671] <... close resumed>) = 0 [pid 5671] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 5672 attached [pid 5672] set_robust_list(0x55555b590660, 24 [pid 5671] <... symlink resumed>) = 0 [pid 5672] <... set_robust_list resumed>) = 0 [pid 5671] write(1, "executing program\n", 18 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5672 executing program [pid 5672] chdir("./82" [pid 5671] <... write resumed>) = 18 [pid 5671] memfd_create("syzkaller", 0 [pid 5672] <... chdir resumed>) = 0 [pid 5672] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5671] <... memfd_create resumed>) = 3 [pid 5672] <... prctl resumed>) = 0 [pid 5672] setpgid(0, 0 [pid 5671] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5672] <... setpgid resumed>) = 0 [pid 5672] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5672] write(3, "1000", 4 [pid 5671] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5672] <... write resumed>) = 4 [pid 5672] close(3) = 0 executing program [pid 5672] symlink("/dev/binderfs", "./binderfs" [pid 5668] <... write resumed>) = 4243456 [pid 5668] exit_group(0 [pid 5672] <... symlink resumed>) = 0 [pid 5668] <... exit_group resumed>) = ? [pid 5672] write(1, "executing program\n", 18 [pid 5668] +++ exited with 0 +++ [pid 5672] <... write resumed>) = 18 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5668, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5672] memfd_create("syzkaller", 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5672] <... memfd_create resumed>) = 3 [pid 5672] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] umount2("./80", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5672] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./80", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./80/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./80/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./80/binderfs") = 0 [pid 5247] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./80/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./80/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./80/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, [pid 5246] <... close resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./80/file0") = 0 [pid 5247] getdents64(3, [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 ./strace-static-x86_64: Process 5673 attached [pid 5247] rmdir("./80" [pid 5673] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5673 [pid 5673] <... set_robust_list resumed>) = 0 [pid 5673] chdir("./82" [pid 5247] <... rmdir resumed>) = 0 [pid 5673] <... chdir resumed>) = 0 [pid 5673] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5247] mkdir("./81", 0777 [pid 5673] setpgid(0, 0) = 0 [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5673] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5673] <... openat resumed>) = 3 [pid 5247] close(3 [pid 5673] write(3, "1000", 4) = 4 [pid 5673] close(3) = 0 [pid 5673] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5673] write(1, "executing program\n", 18) = 18 [pid 5673] memfd_create("syzkaller", 0) = 3 [pid 5673] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5670] <... write resumed>) = 16777216 [pid 5670] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5670] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5670] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5670] close(3) = 0 [pid 5670] close(4) = 0 [pid 5670] mkdir("./file0", 0777) = 0 [pid 5670] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5670] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5670] chdir("./file0") = 0 [ 450.112281][ T5670] loop2: detected capacity change from 0 to 32768 [pid 5670] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5670] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5670] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5670] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5671] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5674 attached [pid 5674] set_robust_list(0x55555b590660, 24) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5674 [pid 5674] chdir("./81") = 0 [pid 5674] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5674] setpgid(0, 0) = 0 [pid 5674] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5674] write(3, "1000", 4) = 4 [pid 5674] close(3) = 0 executing program [pid 5674] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5674] write(1, "executing program\n", 18) = 18 [pid 5674] memfd_create("syzkaller", 0) = 3 [pid 5674] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5672] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5673] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5670] <... write resumed>) = 4243456 [pid 5670] exit_group(0) = ? [pid 5670] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5670, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./82/binderfs") = 0 [pid 5245] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./82/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./82") = 0 [pid 5245] mkdir("./83", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5671] <... write resumed>) = 16777216 [pid 5671] munmap(0x7f6c8ae00000, 138412032 [pid 5674] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5671] <... munmap resumed>) = 0 [pid 5672] <... write resumed>) = 16777216 [pid 5672] munmap(0x7f6c8ae00000, 138412032 [pid 5671] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5671] ioctl(4, LOOP_SET_FD, 3 [pid 5672] <... munmap resumed>) = 0 [pid 5671] <... ioctl resumed>) = 0 [pid 5671] close(3) = 0 [pid 5671] close(4) = 0 [pid 5671] mkdir("./file0", 0777 [pid 5672] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5671] <... mkdir resumed>) = 0 [pid 5672] <... openat resumed>) = 4 [ 450.730430][ T5671] loop0: detected capacity change from 0 to 32768 [pid 5671] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5672] ioctl(4, LOOP_SET_FD, 3 [pid 5671] <... mount resumed>) = 0 [pid 5671] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5671] chdir("./file0") = 0 [pid 5671] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5671] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5672] <... ioctl resumed>) = 0 [pid 5671] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5672] close(3 [pid 5671] <... openat resumed>) = 5 [pid 5672] <... close resumed>) = 0 [pid 5672] close(4 [pid 5671] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5672] <... close resumed>) = 0 [pid 5672] mkdir("./file0", 0777) = 0 [pid 5672] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5672] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5672] chdir("./file0") = 0 [pid 5672] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5672] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5672] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 450.780290][ T5672] loop1: detected capacity change from 0 to 32768 [pid 5672] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5675 attached , child_tidptr=0x55555b590650) = 5675 [pid 5675] set_robust_list(0x55555b590660, 24) = 0 [pid 5675] chdir("./83") = 0 [pid 5675] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5675] setpgid(0, 0) = 0 [pid 5675] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5675] write(3, "1000", 4) = 4 [pid 5675] close(3) = 0 executing program [pid 5675] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5675] write(1, "executing program\n", 18) = 18 [pid 5675] memfd_create("syzkaller", 0) = 3 [pid 5675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5673] <... write resumed>) = 16777216 [pid 5673] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5673] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5673] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5673] close(3) = 0 [pid 5673] close(4) = 0 [pid 5672] <... write resumed>) = 4243456 [pid 5673] mkdir("./file0", 0777 [pid 5672] exit_group(0 [pid 5673] <... mkdir resumed>) = 0 [pid 5672] <... exit_group resumed>) = ? [pid 5673] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5672] +++ exited with 0 +++ [ 451.050473][ T5673] loop3: detected capacity change from 0 to 32768 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5672, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./82/binderfs") = 0 [pid 5244] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5671] <... write resumed>) = 4243456 [pid 5671] exit_group(0) = ? [pid 5673] <... mount resumed>) = 0 [pid 5673] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5673] chdir("./file0") = 0 [pid 5673] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5671] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5671, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=35 /* 0.35 s */} --- [pid 5673] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5673] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5244] <... umount2 resumed>) = 0 [pid 5673] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5244] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... restart_syscall resumed>) = 0 [pid 5673] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] <... openat resumed>) = 3 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] newfstatat(3, "", [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] getdents64(3, [pid 5244] close(4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... close resumed>) = 0 [pid 5243] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] rmdir("./82/file0" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... rmdir resumed>) = 0 [pid 5243] newfstatat(AT_FDCWD, "./83/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] unlink("./83/binderfs" [pid 5244] close(3) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5244] rmdir("./82" [pid 5243] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./83", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./83/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./83") = 0 [pid 5243] mkdir("./84", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5674] <... write resumed>) = 16777216 [pid 5674] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5674] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5674] ioctl(4, LOOP_SET_FD, 3 [pid 5675] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5674] <... ioctl resumed>) = 0 [pid 5674] close(3) = 0 [pid 5674] close(4) = 0 [pid 5674] mkdir("./file0", 0777) = 0 [pid 5674] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5674] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5674] chdir("./file0") = 0 [pid 5674] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [ 451.418628][ T5674] loop4: detected capacity change from 0 to 32768 [pid 5674] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5673] <... write resumed>) = 4243456 [pid 5674] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5674] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5673] exit_group(0) = ? [pid 5673] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5673, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... close resumed>) = 0 [pid 5246] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./82/binderfs") = 0 [pid 5246] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) executing program [pid 5246] newfstatat(AT_FDCWD, "./82/file0", [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5676 ./strace-static-x86_64: Process 5676 attached [pid 5676] set_robust_list(0x55555b590660, 24) = 0 [pid 5676] chdir("./83") = 0 [pid 5676] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5676] setpgid(0, 0) = 0 [pid 5676] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5676] write(3, "1000", 4) = 4 [pid 5676] close(3) = 0 [pid 5676] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5676] write(1, "executing program\n", 18) = 18 [pid 5676] memfd_create("syzkaller", 0) = 3 [pid 5676] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./82/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./82") = 0 [pid 5246] mkdir("./83", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5677 ./strace-static-x86_64: Process 5677 attached [pid 5677] set_robust_list(0x55555b590660, 24) = 0 [pid 5677] chdir("./84") = 0 [pid 5677] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5677] setpgid(0, 0) = 0 [pid 5677] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5677] write(3, "1000", 4executing program ) = 4 [pid 5677] close(3) = 0 [pid 5677] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5677] write(1, "executing program\n", 18) = 18 [pid 5677] memfd_create("syzkaller", 0) = 3 [pid 5677] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5674] <... write resumed>) = 4243456 [pid 5674] exit_group(0) = ? [pid 5674] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5674, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] umount2("./81", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./81", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./81/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./81/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./81/binderfs") = 0 [pid 5247] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./81/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./81/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./81/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./81/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./81") = 0 [pid 5247] mkdir("./82", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5678 attached [pid 5678] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5678 [pid 5678] <... set_robust_list resumed>) = 0 [pid 5678] chdir("./83" [pid 5675] <... write resumed>) = 16777216 [pid 5678] <... chdir resumed>) = 0 [pid 5675] munmap(0x7f6c8ae00000, 138412032 [pid 5678] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5678] setpgid(0, 0) = 0 [pid 5678] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5678] write(3, "1000", 4) = 4 [pid 5678] close(3) = 0 [pid 5678] symlink("/dev/binderfs", "./binderfs" [pid 5675] <... munmap resumed>) = 0 [pid 5678] <... symlink resumed>) = 0 [pid 5675] openat(AT_FDCWD, "/dev/loop2", O_RDWR executing program [pid 5678] write(1, "executing program\n", 18 [pid 5675] <... openat resumed>) = 4 [pid 5678] <... write resumed>) = 18 [pid 5675] ioctl(4, LOOP_SET_FD, 3 [pid 5678] memfd_create("syzkaller", 0 [pid 5675] <... ioctl resumed>) = 0 [pid 5678] <... memfd_create resumed>) = 3 [pid 5678] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5675] close(3) = 0 [pid 5675] close(4 [pid 5676] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5675] <... close resumed>) = 0 [pid 5675] mkdir("./file0", 0777) = 0 [ 452.010580][ T5675] loop2: detected capacity change from 0 to 32768 [pid 5675] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5675] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5675] chdir("./file0") = 0 [pid 5675] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5675] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5675] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5247] <... close resumed>) = 0 [pid 5675] <... openat resumed>) = 5 [pid 5675] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5679 attached [pid 5679] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5679 [pid 5679] <... set_robust_list resumed>) = 0 [pid 5679] chdir("./82") = 0 [pid 5679] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5679] setpgid(0, 0) = 0 [pid 5679] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5679] write(3, "1000", 4) = 4 [pid 5677] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5679] close(3) = 0 [pid 5679] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5679] write(1, "executing program\n", 18executing program ) = 18 [pid 5679] memfd_create("syzkaller", 0) = 3 [pid 5679] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5675] <... write resumed>) = 4243456 [pid 5675] exit_group(0) = ? [pid 5675] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5675, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5245] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./83/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./83/binderfs") = 0 [pid 5245] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./83/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./83") = 0 [pid 5245] mkdir("./84", 0777) = 0 [pid 5678] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5676] <... write resumed>) = 16777216 [pid 5676] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5676] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5676] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5676] close(3) = 0 [pid 5676] close(4) = 0 [pid 5676] mkdir("./file0", 0777) = 0 [pid 5676] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5677] <... write resumed>) = 16777216 [ 452.561223][ T5676] loop1: detected capacity change from 0 to 32768 [pid 5677] munmap(0x7f6c8ae00000, 138412032 [pid 5676] <... mount resumed>) = 0 [pid 5676] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5676] chdir("./file0") = 0 [pid 5676] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5676] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5676] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5676] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5679] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5677] <... munmap resumed>) = 0 [pid 5677] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5677] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5677] close(3) = 0 [pid 5677] close(4) = 0 [pid 5677] mkdir("./file0", 0777) = 0 [pid 5677] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... close resumed>) = 0 [pid 5677] <... mount resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5677] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY./strace-static-x86_64: Process 5680 attached [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5680 [pid 5677] <... openat resumed>) = 3 [pid 5677] chdir("./file0" [pid 5680] set_robust_list(0x55555b590660, 24 [pid 5677] <... chdir resumed>) = 0 [pid 5680] <... set_robust_list resumed>) = 0 [pid 5677] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5680] chdir("./84" [pid 5677] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5680] <... chdir resumed>) = 0 [pid 5677] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5680] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5677] <... openat resumed>) = 4 [pid 5680] <... prctl resumed>) = 0 [pid 5677] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [ 452.656283][ T5677] loop0: detected capacity change from 0 to 32768 [pid 5680] setpgid(0, 0) = 0 [pid 5677] <... openat resumed>) = 5 [pid 5680] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5677] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5680] <... openat resumed>) = 3 [pid 5680] write(3, "1000", 4) = 4 [pid 5680] close(3executing program ) = 0 [pid 5680] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5680] write(1, "executing program\n", 18) = 18 [pid 5680] memfd_create("syzkaller", 0) = 3 [pid 5680] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5678] <... write resumed>) = 16777216 [pid 5678] munmap(0x7f6c8ae00000, 138412032 [pid 5676] <... write resumed>) = 4243456 [pid 5676] exit_group(0) = ? [pid 5676] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5676, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./83/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./83/binderfs") = 0 [pid 5244] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5678] <... munmap resumed>) = 0 [pid 5678] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5678] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5677] <... write resumed>) = 4243456 [pid 5677] exit_group(0) = ? [pid 5677] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5677, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... umount2 resumed>) = 0 [pid 5678] close(3 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] newfstatat(3, "", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5678] <... close resumed>) = 0 [pid 5244] newfstatat(AT_FDCWD, "./83/file0", [pid 5243] getdents64(3, [pid 5678] close(4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5678] <... close resumed>) = 0 [pid 5243] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./84/binderfs") = 0 [pid 5243] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5678] mkdir("./file0", 0777 [pid 5244] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5678] <... mkdir resumed>) = 0 [pid 5678] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./83/file0" [pid 5243] <... umount2 resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] newfstatat(AT_FDCWD, "./84/file0", [pid 5244] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... close resumed>) = 0 [pid 5243] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW [ 452.939973][ T5678] loop3: detected capacity change from 0 to 32768 [pid 5244] rmdir("./83") = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] mkdir("./84", 0777) = 0 [pid 5243] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... openat resumed>) = 4 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] newfstatat(4, "", [pid 5244] <... ioctl resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] close(3 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./84/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./84") = 0 [pid 5678] <... mount resumed>) = 0 [pid 5678] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5678] chdir("./file0") = 0 [pid 5678] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] mkdir("./85", 0777 [pid 5678] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] <... mkdir resumed>) = 0 [pid 5678] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5678] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... ioctl resumed>) = 0 [pid 5678] <... openat resumed>) = 5 [pid 5243] close(3 [pid 5678] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5679] <... write resumed>) = 16777216 [pid 5679] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5679] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5679] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5679] close(3) = 0 [pid 5679] close(4) = 0 [pid 5679] mkdir("./file0", 0777) = 0 [pid 5679] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 453.129574][ T5679] loop4: detected capacity change from 0 to 32768 [pid 5679] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5679] chdir("./file0") = 0 [pid 5679] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5679] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5679] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5679] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5680] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5681 attached [pid 5678] <... write resumed>) = 4243456 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5681 [pid 5678] exit_group(0 [pid 5681] set_robust_list(0x55555b590660, 24) = 0 ./strace-static-x86_64: Process 5682 attached [pid 5681] chdir("./85" [pid 5678] <... exit_group resumed>) = ? [pid 5681] <... chdir resumed>) = 0 [pid 5681] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5681] setpgid(0, 0) = 0 [pid 5681] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5682] set_robust_list(0x55555b590660, 24 [pid 5681] <... openat resumed>) = 3 [pid 5678] +++ exited with 0 +++ [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5682 [pid 5682] <... set_robust_list resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5678, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=37 /* 0.37 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5681] write(3, "1000", 4 [pid 5682] chdir("./84") = 0 [pid 5681] <... write resumed>) = 4 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5682] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5682] setpgid(0, 0 [pid 5246] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5682] <... setpgid resumed>) = 0 [pid 5681] close(3 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5681] <... close resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5682] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5681] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... openat resumed>) = 3 [pid 5682] <... openat resumed>) = 3 [pid 5681] <... symlink resumed>) = 0 [pid 5246] newfstatat(3, "", [pid 5682] write(3, "1000", 4 [pid 5681] write(1, "executing program\n", 18 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5682] <... write resumed>) = 4 [pid 5246] getdents64(3, executing program [pid 5682] close(3 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5682] <... close resumed>) = 0 [pid 5681] <... write resumed>) = 18 [pid 5246] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5682] symlink("/dev/binderfs", "./binderfs" [pid 5681] memfd_create("syzkaller", 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5681] <... memfd_create resumed>) = 3 [pid 5246] newfstatat(AT_FDCWD, "./83/binderfs", [pid 5682] <... symlink resumed>) = 0 [pid 5681] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5682] write(1, "executing program\n", 18 [pid 5681] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5246] unlink("./83/binderfs"executing program [pid 5682] <... write resumed>) = 18 [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5682] memfd_create("syzkaller", 0) = 3 [pid 5682] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./83/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./83") = 0 [pid 5246] mkdir("./84", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5679] <... write resumed>) = 4243456 [pid 5679] exit_group(0) = ? [pid 5679] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5679, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] umount2("./82", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./82", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./82/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./82/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./82/binderfs") = 0 [pid 5247] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./82/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./82/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./82/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./82/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./82") = 0 [pid 5247] mkdir("./83", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5680] <... write resumed>) = 16777216 [pid 5680] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5246] <... close resumed>) = 0 [pid 5680] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5680] <... openat resumed>) = 4 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5683 ./strace-static-x86_64: Process 5683 attached [pid 5680] ioctl(4, LOOP_SET_FD, 3 [pid 5683] set_robust_list(0x55555b590660, 24) = 0 [pid 5683] chdir("./84" [pid 5680] <... ioctl resumed>) = 0 [pid 5683] <... chdir resumed>) = 0 [pid 5680] close(3 [pid 5683] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5680] <... close resumed>) = 0 [pid 5683] <... prctl resumed>) = 0 [pid 5680] close(4 [pid 5683] setpgid(0, 0 [pid 5680] <... close resumed>) = 0 [pid 5683] <... setpgid resumed>) = 0 [pid 5680] mkdir("./file0", 0777 [pid 5683] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5680] <... mkdir resumed>) = 0 [pid 5683] <... openat resumed>) = 3 [pid 5680] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5683] write(3, "1000", 4) = 4 [pid 5683] close(3) = 0 [pid 5683] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5680] <... mount resumed>) = 0 [pid 5683] write(1, "executing program\n", 18 [pid 5680] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5683] <... write resumed>) = 18 [pid 5680] <... openat resumed>) = 3 [pid 5683] memfd_create("syzkaller", 0 [pid 5682] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5680] chdir("./file0" [pid 5683] <... memfd_create resumed>) = 3 [pid 5680] <... chdir resumed>) = 0 [pid 5683] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5680] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5680] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5680] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 453.692562][ T5680] loop2: detected capacity change from 0 to 32768 [pid 5680] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5681] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5684 attached , child_tidptr=0x55555b590650) = 5684 [pid 5684] set_robust_list(0x55555b590660, 24) = 0 [pid 5684] chdir("./83") = 0 [pid 5684] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5684] setpgid(0, 0) = 0 [pid 5684] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5684] write(3, "1000", 4) = 4 [pid 5684] close(3) = 0 [pid 5684] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5684] write(1, "executing program\n", 18) = 18 [pid 5684] memfd_create("syzkaller", 0) = 3 [pid 5684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5680] <... write resumed>) = 4243456 [pid 5680] exit_group(0) = ? [pid 5680] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5680, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./84/binderfs") = 0 [pid 5245] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./84/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./84") = 0 [pid 5245] mkdir("./85", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5683] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5682] <... write resumed>) = 16777216 [pid 5682] munmap(0x7f6c8ae00000, 138412032 [pid 5681] <... write resumed>) = 16777216 [pid 5682] <... munmap resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5681] munmap(0x7f6c8ae00000, 138412032 [pid 5682] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5682] ioctl(4, LOOP_SET_FD, 3 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5685 ./strace-static-x86_64: Process 5685 attached [pid 5682] <... ioctl resumed>) = 0 [pid 5684] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5681] <... munmap resumed>) = 0 [pid 5682] close(3) = 0 [pid 5682] close(4) = 0 [pid 5681] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5681] ioctl(4, LOOP_SET_FD, 3 [pid 5685] set_robust_list(0x55555b590660, 24 [pid 5682] mkdir("./file0", 0777 [pid 5681] <... ioctl resumed>) = 0 [pid 5682] <... mkdir resumed>) = 0 [pid 5685] <... set_robust_list resumed>) = 0 [pid 5682] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5685] chdir("./85") = 0 [pid 5685] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5681] close(3) = 0 [pid 5685] setpgid(0, 0) = 0 [pid 5681] close(4) = 0 [pid 5681] mkdir("./file0", 0777 [pid 5685] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5681] <... mkdir resumed>) = 0 [pid 5682] <... mount resumed>) = 0 [pid 5685] <... openat resumed>) = 3 [pid 5682] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5685] write(3, "1000", 4) = 4 [pid 5682] <... openat resumed>) = 3 [pid 5681] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5685] close(3 [pid 5682] chdir("./file0" [pid 5685] <... close resumed>) = 0 [pid 5685] symlink("/dev/binderfs", "./binderfs" [pid 5682] <... chdir resumed>) = 0 [ 454.251042][ T5682] loop1: detected capacity change from 0 to 32768 [ 454.269383][ T5681] loop0: detected capacity change from 0 to 32768 executing program [pid 5685] <... symlink resumed>) = 0 [pid 5682] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5681] <... mount resumed>) = 0 [pid 5685] write(1, "executing program\n", 18 [pid 5681] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5685] <... write resumed>) = 18 [pid 5682] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5681] <... openat resumed>) = 3 [pid 5681] chdir("./file0" [pid 5685] memfd_create("syzkaller", 0 [pid 5682] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5681] <... chdir resumed>) = 0 [pid 5685] <... memfd_create resumed>) = 3 [pid 5682] <... openat resumed>) = 4 [pid 5681] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5685] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5682] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5681] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5685] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5681] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5682] <... openat resumed>) = 5 [pid 5681] <... openat resumed>) = 4 [pid 5682] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5681] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5681] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456) = 4243456 [pid 5681] exit_group(0) = ? [pid 5681] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5681, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=37 /* 0.37 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./85/binderfs") = 0 [pid 5243] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./85/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./85/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./85") = 0 [pid 5243] mkdir("./86", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5683] <... write resumed>) = 16777216 [pid 5683] munmap(0x7f6c8ae00000, 138412032 [pid 5682] <... write resumed>) = 4243456 [pid 5682] exit_group(0) = ? [pid 5682] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5682, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5683] <... munmap resumed>) = 0 [pid 5244] getdents64(3, [pid 5683] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5683] <... openat resumed>) = 4 [pid 5244] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5683] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./84/binderfs" [pid 5683] <... ioctl resumed>) = 0 [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5683] close(3 [pid 5244] getdents64(4, [pid 5683] <... close resumed>) = 0 [pid 5683] close(4 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5683] <... close resumed>) = 0 [pid 5684] <... write resumed>) = 16777216 [pid 5683] mkdir("./file0", 0777 [pid 5244] getdents64(4, [pid 5684] munmap(0x7f6c8ae00000, 138412032 [pid 5683] <... mkdir resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5683] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./84/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [ 454.681300][ T5683] loop3: detected capacity change from 0 to 32768 [pid 5244] rmdir("./84" [pid 5684] <... munmap resumed>) = 0 [pid 5683] <... mount resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5683] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] mkdir("./85", 0777 [pid 5683] <... openat resumed>) = 3 [pid 5683] chdir("./file0" [pid 5244] <... mkdir resumed>) = 0 [pid 5684] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5683] <... chdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5683] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5244] <... openat resumed>) = 3 [pid 5683] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5684] <... openat resumed>) = 4 [pid 5683] <... openat resumed>) = 4 [pid 5244] <... ioctl resumed>) = 0 [pid 5683] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5684] ioctl(4, LOOP_SET_FD, 3 [pid 5683] <... openat resumed>) = 5 [pid 5244] close(3 [pid 5683] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5684] <... ioctl resumed>) = 0 [pid 5684] close(3) = 0 [pid 5684] close(4) = 0 [pid 5684] mkdir("./file0", 0777) = 0 [pid 5684] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 454.768003][ T5684] loop4: detected capacity change from 0 to 32768 [pid 5685] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5684] <... mount resumed>) = 0 [pid 5684] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5684] chdir("./file0") = 0 [pid 5684] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5684] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5684] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5684] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5686 attached , child_tidptr=0x55555b590650) = 5686 [pid 5686] set_robust_list(0x55555b590660, 24) = 0 [pid 5686] chdir("./86") = 0 [pid 5686] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5686] setpgid(0, 0) = 0 [pid 5686] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5686] write(3, "1000", 4) = 4 [pid 5686] close(3) = 0 [pid 5686] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5686] write(1, "executing program\n", 18executing program ) = 18 [pid 5686] memfd_create("syzkaller", 0) = 3 [pid 5686] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5683] <... write resumed>) = 4243456 [pid 5683] exit_group(0) = ? [pid 5683] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5683, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./84/binderfs") = 0 [pid 5246] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5684] <... write resumed>) = 4243456 [pid 5684] exit_group(0) = ? [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5684] +++ exited with 0 +++ [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5684, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=26 /* 0.26 s */} --- [pid 5246] close(4 [pid 5244] <... close resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./84/file0" [pid 5247] <... restart_syscall resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] umount2("./83", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] close(3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... close resumed>) = 0 [pid 5247] openat(AT_FDCWD, "./83", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] rmdir("./84" [pid 5247] <... openat resumed>) = 3 [pid 5246] <... rmdir resumed>) = 0 [pid 5247] newfstatat(3, "", ./strace-static-x86_64: Process 5687 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5687] set_robust_list(0x55555b590660, 24 [pid 5247] getdents64(3, [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5687 [pid 5687] <... set_robust_list resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./83/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./83/binderfs", [pid 5687] chdir("./85" [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] mkdir("./85", 0777 [pid 5247] unlink("./83/binderfs" [pid 5687] <... chdir resumed>) = 0 [pid 5247] <... unlink resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [pid 5247] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5687] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5687] <... prctl resumed>) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5687] setpgid(0, 0 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5687] <... setpgid resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5687] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] close(3 [pid 5687] <... openat resumed>) = 3 [pid 5687] write(3, "1000", 4) = 4 [pid 5687] close(3) = 0 [pid 5687] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5687] write(1, "executing program\n", 18) = 18 [pid 5687] memfd_create("syzkaller", 0) = 3 [pid 5687] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./83/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./83/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./83/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./83/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./83") = 0 [pid 5247] mkdir("./84", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5685] <... write resumed>) = 16777216 [pid 5247] <... openat resumed>) = 3 [pid 5685] munmap(0x7f6c8ae00000, 138412032 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5685] <... munmap resumed>) = 0 [pid 5685] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5685] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5686] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5246] <... close resumed>) = 0 [pid 5685] close(3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5688 attached [pid 5685] <... close resumed>) = 0 [pid 5685] close(4 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5688 [pid 5688] set_robust_list(0x55555b590660, 24 [pid 5685] <... close resumed>) = 0 [pid 5688] <... set_robust_list resumed>) = 0 [pid 5688] chdir("./85" [pid 5685] mkdir("./file0", 0777 [pid 5688] <... chdir resumed>) = 0 [pid 5688] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5685] <... mkdir resumed>) = 0 [pid 5688] setpgid(0, 0) = 0 [pid 5688] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5685] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5688] <... openat resumed>) = 3 [pid 5688] write(3, "1000", 4) = 4 [pid 5688] close(3) = 0 [pid 5688] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5688] write(1, "executing program\n", 18executing program ) = 18 [ 455.319428][ T5685] loop2: detected capacity change from 0 to 32768 [pid 5688] memfd_create("syzkaller", 0) = 3 [pid 5685] <... mount resumed>) = 0 [pid 5688] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5685] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5688] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5685] <... openat resumed>) = 3 [pid 5685] chdir("./file0") = 0 [pid 5685] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5685] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5685] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5685] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5687] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5689 ./strace-static-x86_64: Process 5689 attached [pid 5689] set_robust_list(0x55555b590660, 24) = 0 [pid 5689] chdir("./84") = 0 [pid 5689] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5689] setpgid(0, 0) = 0 [pid 5689] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5689] write(3, "1000", 4) = 4 [pid 5689] close(3) = 0 [pid 5689] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5689] write(1, "executing program\n", 18) = 18 [pid 5689] memfd_create("syzkaller", 0) = 3 [pid 5689] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5685] <... write resumed>) = 4243456 [pid 5685] exit_group(0) = ? [pid 5685] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5685, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./85/binderfs") = 0 [pid 5245] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./85/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./85/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./85") = 0 [pid 5245] mkdir("./86", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5688] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5686] <... write resumed>) = 16777216 [pid 5686] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5686] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5686] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5686] close(3) = 0 [pid 5686] close(4) = 0 [pid 5686] mkdir("./file0", 0777) = 0 [pid 5686] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5686] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 455.811932][ T5686] loop0: detected capacity change from 0 to 32768 [pid 5686] chdir("./file0") = 0 [pid 5686] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5686] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5686] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5686] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5687] <... write resumed>) = 16777216 [pid 5687] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5690 executing program ./strace-static-x86_64: Process 5690 attached [pid 5690] set_robust_list(0x55555b590660, 24) = 0 [pid 5690] chdir("./86") = 0 [pid 5690] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5690] setpgid(0, 0) = 0 [pid 5690] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5690] write(3, "1000", 4) = 4 [pid 5690] close(3) = 0 [pid 5690] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5690] write(1, "executing program\n", 18) = 18 [pid 5690] memfd_create("syzkaller", 0 [pid 5687] <... munmap resumed>) = 0 [pid 5687] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5690] <... memfd_create resumed>) = 3 [pid 5687] ioctl(4, LOOP_SET_FD, 3 [pid 5690] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5689] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5687] <... ioctl resumed>) = 0 [pid 5687] close(3) = 0 [pid 5687] close(4) = 0 [pid 5687] mkdir("./file0", 0777) = 0 [ 456.014267][ T5687] loop1: detected capacity change from 0 to 32768 [pid 5687] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5687] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5687] chdir("./file0") = 0 [pid 5687] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5687] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5687] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5687] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5686] <... write resumed>) = 4243456 [pid 5686] exit_group(0) = ? [pid 5686] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5686, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=32 /* 0.32 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./86/binderfs") = 0 [pid 5243] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5688] <... write resumed>) = 16777216 [pid 5688] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5688] <... munmap resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5688] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./86/file0" [pid 5688] <... openat resumed>) = 4 [pid 5243] <... rmdir resumed>) = 0 [pid 5688] ioctl(4, LOOP_SET_FD, 3 [pid 5243] getdents64(3, [pid 5688] <... ioctl resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5688] close(3 [pid 5243] close(3) = 0 [pid 5243] rmdir("./86" [pid 5688] <... close resumed>) = 0 [pid 5688] close(4) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5688] mkdir("./file0", 0777) = 0 [pid 5688] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] mkdir("./87", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5688] <... mount resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5688] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5688] chdir("./file0") = 0 [pid 5688] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5688] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5688] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5688] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [ 456.251913][ T5688] loop3: detected capacity change from 0 to 32768 [pid 5243] close(3 [pid 5687] <... write resumed>) = 4243456 [pid 5687] exit_group(0) = ? [pid 5687] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5687, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./85/binderfs") = 0 [pid 5244] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./85/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5690] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./85/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./85") = 0 [pid 5244] mkdir("./86", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5689] <... write resumed>) = 16777216 [pid 5689] munmap(0x7f6c8ae00000, 138412032 [pid 5688] <... write resumed>) = 4243456 [pid 5688] exit_group(0) = ? [pid 5688] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5688, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./85/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./85/binderfs") = 0 [pid 5246] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5689] <... munmap resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5689] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] newfstatat(AT_FDCWD, "./85/file0", [pid 5689] <... openat resumed>) = 4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5689] ioctl(4, LOOP_SET_FD, 3 [pid 5246] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5689] <... ioctl resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./85/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./85" [pid 5689] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] mkdir("./86", 0777 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5691 [pid 5246] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5691 attached ) = 0 [pid 5689] <... close resumed>) = 0 [pid 5689] close(4 [pid 5246] close(3 [pid 5689] <... close resumed>) = 0 [pid 5691] set_robust_list(0x55555b590660, 24) = 0 [pid 5691] chdir("./87") = 0 [pid 5691] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5691] setpgid(0, 0) = 0 [pid 5691] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 456.588785][ T5689] loop4: detected capacity change from 0 to 32768 [pid 5691] write(3, "1000", 4 [pid 5689] mkdir("./file0", 0777 [pid 5691] <... write resumed>) = 4 [pid 5689] <... mkdir resumed>) = 0 [pid 5691] close(3) = 0 [pid 5691] symlink("/dev/binderfs", "./binderfs" [pid 5689] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5691] <... symlink resumed>) = 0 [pid 5691] write(1, "executing program\n", 18executing program ) = 18 [pid 5691] memfd_create("syzkaller", 0) = 3 [pid 5691] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5689] <... mount resumed>) = 0 [pid 5689] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5689] chdir("./file0") = 0 [pid 5689] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5689] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5689] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5689] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program , child_tidptr=0x55555b590650) = 5692 ./strace-static-x86_64: Process 5692 attached [pid 5692] set_robust_list(0x55555b590660, 24) = 0 [pid 5692] chdir("./86") = 0 [pid 5692] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5692] setpgid(0, 0) = 0 [pid 5692] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5692] write(3, "1000", 4) = 4 [pid 5692] close(3) = 0 [pid 5692] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5692] write(1, "executing program\n", 18) = 18 [pid 5692] memfd_create("syzkaller", 0) = 3 [pid 5692] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5690] <... write resumed>) = 16777216 [pid 5690] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5690] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5690] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5690] close(3) = 0 [pid 5690] close(4) = 0 [pid 5690] mkdir("./file0", 0777) = 0 [pid 5690] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5690] <... mount resumed>) = 0 [pid 5690] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5690] <... openat resumed>) = 3 [ 456.858633][ T5690] loop2: detected capacity change from 0 to 32768 [pid 5690] chdir("./file0"./strace-static-x86_64: Process 5693 attached ) = 0 [pid 5690] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5693 [pid 5693] set_robust_list(0x55555b590660, 24 [pid 5690] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5693] <... set_robust_list resumed>) = 0 [pid 5690] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5693] chdir("./86" [pid 5690] <... openat resumed>) = 4 [pid 5693] <... chdir resumed>) = 0 [pid 5690] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5693] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5690] <... openat resumed>) = 5 [pid 5693] <... prctl resumed>) = 0 [pid 5690] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5693] setpgid(0, 0) = 0 [pid 5693] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5689] <... write resumed>) = 4243456 [pid 5693] <... openat resumed>) = 3 [pid 5693] write(3, "1000", 4) = 4 [pid 5693] close(3) = 0 [pid 5693] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5693] write(1, "executing program\n", 18) = 18 [pid 5693] memfd_create("syzkaller", 0) = 3 [pid 5693] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5689] exit_group(0) = ? [pid 5689] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5689, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./84", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./84", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./84/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./84/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./84/binderfs") = 0 [pid 5247] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./84/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./84/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./84/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./84/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./84") = 0 [pid 5247] mkdir("./85", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5691] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... ioctl resumed>) = 0 [pid 5247] close(3 [pid 5690] <... write resumed>) = 4243456 [pid 5690] exit_group(0) = ? [pid 5692] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5690] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5690, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./86/binderfs") = 0 [pid 5245] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./86/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./86") = 0 [pid 5245] mkdir("./87", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5694 attached [pid 5694] set_robust_list(0x55555b590660, 24) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5694 [pid 5694] chdir("./85") = 0 [pid 5694] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5694] setpgid(0, 0) = 0 [pid 5694] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5693] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5694] write(3, "1000", 4) = 4 [pid 5694] close(3) = 0 [pid 5694] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5694] write(1, "executing program\n", 18) = 18 [pid 5694] memfd_create("syzkaller", 0) = 3 [pid 5694] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5695 attached [pid 5695] set_robust_list(0x55555b590660, 24) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5695 [pid 5695] chdir("./87") = 0 [pid 5695] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5695] setpgid(0, 0) = 0 [pid 5695] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5695] write(3, "1000", 4) = 4 [pid 5695] close(3) = 0 [pid 5695] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5695] write(1, "executing program\n", 18) = 18 [pid 5695] memfd_create("syzkaller", 0) = 3 [pid 5695] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5691] <... write resumed>) = 16777216 [pid 5691] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5691] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5691] ioctl(4, LOOP_SET_FD, 3 [pid 5692] <... write resumed>) = 16777216 [pid 5691] <... ioctl resumed>) = 0 [pid 5692] munmap(0x7f6c8ae00000, 138412032 [pid 5691] close(3) = 0 [pid 5691] close(4) = 0 [pid 5691] mkdir("./file0", 0777) = 0 [pid 5691] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5692] <... munmap resumed>) = 0 [pid 5691] <... mount resumed>) = 0 [pid 5692] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5691] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5692] <... openat resumed>) = 4 [pid 5691] <... openat resumed>) = 3 [pid 5691] chdir("./file0" [pid 5692] ioctl(4, LOOP_SET_FD, 3 [pid 5691] <... chdir resumed>) = 0 [ 457.605908][ T5691] loop0: detected capacity change from 0 to 32768 [pid 5694] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5691] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5692] <... ioctl resumed>) = 0 [pid 5692] close(3 [pid 5691] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5692] <... close resumed>) = 0 [pid 5691] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5692] close(4 [pid 5691] <... openat resumed>) = 4 [pid 5692] <... close resumed>) = 0 [pid 5691] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5692] mkdir("./file0", 0777 [pid 5691] <... openat resumed>) = 5 [pid 5692] <... mkdir resumed>) = 0 [pid 5692] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5691] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5692] <... mount resumed>) = 0 [ 457.663224][ T5692] loop1: detected capacity change from 0 to 32768 [pid 5692] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5692] chdir("./file0") = 0 [pid 5692] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5692] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5692] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5692] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5693] <... write resumed>) = 16777216 [pid 5693] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5693] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5693] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5693] close(3) = 0 [pid 5693] close(4) = 0 [pid 5693] mkdir("./file0", 0777) = 0 [pid 5693] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5693] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5693] chdir("./file0") = 0 [ 457.838477][ T5693] loop3: detected capacity change from 0 to 32768 [pid 5693] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5693] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5693] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5693] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5691] <... write resumed>) = 4243456 [pid 5692] <... write resumed>) = 4243456 [pid 5692] exit_group(0) = ? [pid 5691] exit_group(0) = ? [pid 5692] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5692, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=34 /* 0.34 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5695] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5691] +++ exited with 0 +++ [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5691, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=27 /* 0.27 s */} --- [pid 5244] <... openat resumed>) = 3 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5244] newfstatat(3, "", [pid 5243] <... restart_syscall resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./86/binderfs", [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] getdents64(3, [pid 5244] unlink("./86/binderfs" [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... unlink resumed>) = 0 [pid 5243] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./87/binderfs") = 0 [pid 5243] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5244] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(4, "", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./87/file0", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] getdents64(4, [pid 5243] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] close(4 [pid 5243] newfstatat(4, "", [pid 5244] <... close resumed>) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] rmdir("./86/file0" [pid 5243] getdents64(4, [pid 5244] <... rmdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5244] getdents64(3, [pid 5243] <... close resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] rmdir("./87/file0" [pid 5244] close(3) = 0 [pid 5244] rmdir("./86" [pid 5243] <... rmdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] getdents64(3, [pid 5244] mkdir("./87", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./87") = 0 [pid 5243] mkdir("./88", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5693] <... write resumed>) = 4243456 [pid 5693] exit_group(0) = ? [pid 5693] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5693, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5694] <... write resumed>) = 16777216 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5694] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./86/binderfs") = 0 [pid 5246] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5246] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5694] <... munmap resumed>) = 0 [pid 5694] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5694] <... openat resumed>) = 4 [pid 5246] newfstatat(AT_FDCWD, "./86/file0", [pid 5694] ioctl(4, LOOP_SET_FD, 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5694] <... ioctl resumed>) = 0 [pid 5246] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... close resumed>) = 0 [pid 5694] close(3 [pid 5246] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", [pid 5694] <... close resumed>) = 0 [pid 5694] close(4 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5694] <... close resumed>) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, ./strace-static-x86_64: Process 5696 attached [pid 5694] mkdir("./file0", 0777 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5696 [pid 5696] set_robust_list(0x55555b590660, 24 [pid 5694] <... mkdir resumed>) = 0 [pid 5246] close(4 [pid 5696] <... set_robust_list resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./86/file0" [pid 5694] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5696] chdir("./87" [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5696] <... chdir resumed>) = 0 [pid 5246] close(3 [pid 5696] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... close resumed>) = 0 [pid 5696] <... prctl resumed>) = 0 [ 458.251971][ T5694] loop4: detected capacity change from 0 to 32768 [pid 5246] rmdir("./86" [pid 5696] setpgid(0, 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5696] <... setpgid resumed>) = 0 [pid 5246] mkdir("./87", 0777 [pid 5694] <... mount resumed>) = 0 [pid 5694] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] <... mkdir resumed>) = 0 [pid 5696] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5694] <... openat resumed>) = 3 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5694] chdir("./file0" [pid 5246] <... openat resumed>) = 3 [pid 5694] <... chdir resumed>) = 0 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5694] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... ioctl resumed>) = 0 [pid 5696] <... openat resumed>) = 3 [pid 5694] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] close(3 [pid 5694] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5694] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5696] write(3, "1000", 4 [pid 5694] <... openat resumed>) = 5 [pid 5694] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5696] <... write resumed>) = 4 [pid 5696] close(3) = 0 [pid 5243] <... close resumed>) = 0 [pid 5696] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5696] write(1, "executing program\n", 18) = 18 [pid 5696] memfd_create("syzkaller", 0) = 3 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5696] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 5697 attached ) = 0x7f6c8ae00000 [pid 5697] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5697 [pid 5697] chdir("./88") = 0 [pid 5697] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5697] setpgid(0, 0) = 0 [pid 5697] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5695] <... write resumed>) = 16777216 [pid 5697] write(3, "1000", 4) = 4 [pid 5697] close(3) = 0 [pid 5697] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5695] munmap(0x7f6c8ae00000, 138412032 [pid 5697] write(1, "executing program\n", 18) = 18 [pid 5697] memfd_create("syzkaller", 0) = 3 [pid 5697] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5695] <... munmap resumed>) = 0 [pid 5695] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5695] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5695] close(3) = 0 [pid 5695] close(4) = 0 [pid 5695] mkdir("./file0", 0777) = 0 [ 458.469708][ T5695] loop2: detected capacity change from 0 to 32768 [pid 5695] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5695] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5695] chdir("./file0") = 0 [pid 5695] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5694] <... write resumed>) = 4243456 [pid 5695] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5694] exit_group(0 [pid 5695] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5694] <... exit_group resumed>) = ? [pid 5695] <... openat resumed>) = 4 [pid 5695] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5694] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5694, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] umount2("./85", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./85", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5695] <... openat resumed>) = 5 [pid 5247] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./85/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5695] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... close resumed>) = 0 [pid 5247] newfstatat(AT_FDCWD, "./85/binderfs", [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./85/binderfs") = 0 [pid 5247] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5698 attached [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5698 [pid 5247] <... umount2 resumed>) = 0 [pid 5698] set_robust_list(0x55555b590660, 24) = 0 [pid 5247] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./85/file0", [pid 5698] chdir("./87" [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5698] <... chdir resumed>) = 0 [pid 5247] umount2("./85/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5698] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5698] setpgid(0, 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./85/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./85/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./85" [pid 5698] <... setpgid resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5698] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] mkdir("./86", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5698] <... openat resumed>) = 3 [pid 5698] write(3, "1000", 4) = 4 [pid 5698] close(3) = 0 [pid 5698] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5698] write(1, "executing program\n", 18) = 18 [pid 5698] memfd_create("syzkaller", 0) = 3 [pid 5698] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5696] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5695] <... write resumed>) = 4243456 [pid 5695] exit_group(0) = ? [pid 5695] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5695, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=35 /* 0.35 s */} --- [pid 5245] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5697] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./87/binderfs") = 0 [pid 5245] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5699 attached , child_tidptr=0x55555b590650) = 5699 [pid 5699] set_robust_list(0x55555b590660, 24) = 0 [pid 5699] chdir("./86") = 0 [pid 5699] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5699] setpgid(0, 0) = 0 [pid 5699] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5245] <... umount2 resumed>) = 0 [pid 5699] write(3, "1000", 4) = 4 [pid 5699] close(3) = 0 [pid 5699] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5699] write(1, "executing program\n", 18) = 18 [pid 5699] memfd_create("syzkaller", 0) = 3 [pid 5245] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./87/file0", [pid 5699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5699] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5245] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./87/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./87") = 0 [pid 5245] mkdir("./88", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5698] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5696] <... write resumed>) = 16777216 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5700 attached [pid 5696] munmap(0x7f6c8ae00000, 138412032 [pid 5700] set_robust_list(0x55555b590660, 24 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5700 [pid 5700] <... set_robust_list resumed>) = 0 [pid 5700] chdir("./88") = 0 [pid 5700] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5700] setpgid(0, 0) = 0 [pid 5700] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5700] write(3, "1000", 4) = 4 [pid 5696] <... munmap resumed>) = 0 [pid 5700] close(3 [pid 5697] <... write resumed>) = 16777216 [pid 5700] <... close resumed>) = 0 [pid 5700] symlink("/dev/binderfs", "./binderfs" [pid 5696] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5697] munmap(0x7f6c8ae00000, 138412032 [pid 5700] <... symlink resumed>) = 0 [pid 5696] ioctl(4, LOOP_SET_FD, 3 [pid 5700] write(1, "executing program\n", 18executing program ) = 18 [pid 5700] memfd_create("syzkaller", 0) = 3 [pid 5700] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5699] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5696] <... ioctl resumed>) = 0 [pid 5700] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5696] close(3) = 0 [pid 5697] <... munmap resumed>) = 0 [pid 5696] close(4) = 0 [pid 5697] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5696] mkdir("./file0", 0777 [pid 5697] <... openat resumed>) = 4 [pid 5696] <... mkdir resumed>) = 0 [pid 5697] ioctl(4, LOOP_SET_FD, 3 [ 459.249471][ T5696] loop1: detected capacity change from 0 to 32768 [pid 5696] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5696] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5696] chdir("./file0") = 0 [pid 5696] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5697] <... ioctl resumed>) = 0 [pid 5696] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5696] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5697] close(3 [pid 5696] <... openat resumed>) = 4 [pid 5697] <... close resumed>) = 0 [pid 5696] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5697] close(4 [pid 5696] <... openat resumed>) = 5 [pid 5697] <... close resumed>) = 0 [pid 5696] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5697] mkdir("./file0", 0777) = 0 [ 459.303888][ T5697] loop0: detected capacity change from 0 to 32768 [pid 5697] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5697] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5697] chdir("./file0") = 0 [pid 5697] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5698] <... write resumed>) = 16777216 [pid 5697] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5698] munmap(0x7f6c8ae00000, 138412032 [pid 5697] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5697] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5697] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5698] <... munmap resumed>) = 0 [pid 5698] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5698] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5698] close(3) = 0 [pid 5698] close(4) = 0 [pid 5698] mkdir("./file0", 0777) = 0 [ 459.466717][ T5698] loop3: detected capacity change from 0 to 32768 [pid 5698] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5700] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5696] <... write resumed>) = 4243456 [pid 5696] exit_group(0) = ? [pid 5698] <... mount resumed>) = 0 [pid 5698] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5696] +++ exited with 0 +++ [pid 5698] chdir("./file0" [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5696, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5698] <... chdir resumed>) = 0 [pid 5698] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5698] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5698] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5698] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5244] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./87/binderfs") = 0 [pid 5244] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5697] <... write resumed>) = 4243456 [pid 5697] exit_group(0) = ? [pid 5697] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5697, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=40 /* 0.40 s */} --- [pid 5244] <... umount2 resumed>) = 0 [pid 5243] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... openat resumed>) = 3 [pid 5244] newfstatat(AT_FDCWD, "./87/file0", [pid 5243] newfstatat(3, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, [pid 5244] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(4, "", [pid 5243] newfstatat(AT_FDCWD, "./88/binderfs", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] getdents64(4, [pid 5243] unlink("./88/binderfs" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... unlink resumed>) = 0 [pid 5244] getdents64(4, [pid 5243] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./87/file0") = 0 [pid 5699] <... write resumed>) = 16777216 [pid 5244] getdents64(3, [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./88/file0" [pid 5699] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5244] close(3 [pid 5243] getdents64(3, [pid 5244] <... close resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] rmdir("./87" [pid 5243] close(3) = 0 [pid 5243] rmdir("./88" [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./88", 0777 [pid 5243] <... rmdir resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] mkdir("./89", 0777 [pid 5244] <... openat resumed>) = 3 [pid 5243] <... mkdir resumed>) = 0 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5699] <... munmap resumed>) = 0 [pid 5698] <... write resumed>) = 4243456 [pid 5698] exit_group(0) = ? [pid 5698] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5698, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./87/binderfs") = 0 [pid 5246] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5699] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5699] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5699] close(3) = 0 [pid 5699] close(4) = 0 [pid 5699] mkdir("./file0", 0777) = 0 [ 459.815401][ T5699] loop4: detected capacity change from 0 to 32768 [pid 5699] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./87/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5699] <... mount resumed>) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5699] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] close(4) = 0 [pid 5699] <... openat resumed>) = 3 [pid 5246] rmdir("./87/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./87") = 0 [pid 5246] mkdir("./88", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5699] chdir("./file0" [pid 5246] close(3 [pid 5699] <... chdir resumed>) = 0 [pid 5699] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5699] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5699] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5699] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5701 attached [pid 5701] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5701 [pid 5701] <... set_robust_list resumed>) = 0 [pid 5701] chdir("./89") = 0 [pid 5701] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5701] setpgid(0, 0) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5701] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5701] write(3, "1000", 4) = 4 ./strace-static-x86_64: Process 5702 attached [pid 5701] close(3) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5702 [pid 5702] set_robust_list(0x55555b590660, 24 [pid 5701] symlink("/dev/binderfs", "./binderfs" [pid 5702] <... set_robust_list resumed>) = 0 [pid 5701] <... symlink resumed>) = 0 executing program [pid 5702] chdir("./88" [pid 5701] write(1, "executing program\n", 18 [pid 5702] <... chdir resumed>) = 0 [pid 5701] <... write resumed>) = 18 [pid 5702] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5701] memfd_create("syzkaller", 0 [pid 5702] <... prctl resumed>) = 0 [pid 5702] setpgid(0, 0 [pid 5701] <... memfd_create resumed>) = 3 [pid 5702] <... setpgid resumed>) = 0 [pid 5701] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5702] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5700] <... write resumed>) = 16777216 [pid 5702] <... openat resumed>) = 3 [pid 5700] munmap(0x7f6c8ae00000, 138412032 [pid 5702] write(3, "1000", 4) = 4 [pid 5702] close(3) = 0 [pid 5702] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5702] write(1, "executing program\n", 18) = 18 [pid 5702] memfd_create("syzkaller", 0) = 3 [pid 5702] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5700] <... munmap resumed>) = 0 [pid 5700] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5700] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5700] close(3) = 0 [pid 5700] close(4) = 0 [pid 5700] mkdir("./file0", 0777) = 0 [pid 5700] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5700] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5700] chdir("./file0") = 0 [pid 5700] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5700] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5700] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5700] <... openat resumed>) = 5 [pid 5700] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5699] <... write resumed>) = 4243456 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5703 [pid 5699] exit_group(0) = ? [ 460.130232][ T5700] loop2: detected capacity change from 0 to 32768 [pid 5699] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5699, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=26 /* 0.26 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./86", MNT_FORCE|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 5703 attached ) = -1 EINVAL (Invalid argument) [pid 5703] set_robust_list(0x55555b590660, 24 [pid 5247] openat(AT_FDCWD, "./86", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5703] <... set_robust_list resumed>) = 0 [pid 5703] chdir("./88" [pid 5247] <... openat resumed>) = 3 [pid 5703] <... chdir resumed>) = 0 [pid 5247] newfstatat(3, "", [pid 5703] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5703] <... prctl resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./86/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./86/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5703] setpgid(0, 0 [pid 5247] unlink("./86/binderfs" [pid 5703] <... setpgid resumed>) = 0 [pid 5703] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... unlink resumed>) = 0 [pid 5703] <... openat resumed>) = 3 [pid 5247] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5703] write(3, "1000", 4) = 4 [pid 5703] close(3) = 0 [pid 5703] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5703] write(1, "executing program\n", 18) = 18 [pid 5703] memfd_create("syzkaller", 0) = 3 [pid 5703] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./86/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./86/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./86/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./86/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./86") = 0 [pid 5247] mkdir("./87", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5700] <... write resumed>) = 4243456 [pid 5700] exit_group(0) = ? [pid 5700] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5700, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=35 /* 0.35 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./88/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./88/binderfs") = 0 [pid 5245] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./88/file0", [pid 5701] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./88/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./88") = 0 [pid 5245] mkdir("./89", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5702] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5703] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5704 ./strace-static-x86_64: Process 5704 attached [pid 5704] set_robust_list(0x55555b590660, 24) = 0 [pid 5704] chdir("./87") = 0 [pid 5704] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5704] setpgid(0, 0) = 0 [pid 5704] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5704] write(3, "1000", 4) = 4 [pid 5704] close(3) = 0 [pid 5704] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5704] write(1, "executing program\n", 18) = 18 [pid 5704] memfd_create("syzkaller", 0) = 3 [pid 5704] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5705 ./strace-static-x86_64: Process 5705 attached [pid 5705] set_robust_list(0x55555b590660, 24) = 0 [pid 5705] chdir("./89") = 0 [pid 5705] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 executing program [pid 5705] setpgid(0, 0) = 0 [pid 5705] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5705] write(3, "1000", 4) = 4 [pid 5705] close(3) = 0 [pid 5705] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5705] write(1, "executing program\n", 18) = 18 [pid 5705] memfd_create("syzkaller", 0) = 3 [pid 5705] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5703] <... write resumed>) = 16777216 [pid 5701] <... write resumed>) = 16777216 [pid 5703] munmap(0x7f6c8ae00000, 138412032 [pid 5701] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5703] <... munmap resumed>) = 0 [pid 5702] <... write resumed>) = 16777216 [pid 5703] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5701] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5703] <... openat resumed>) = 4 [pid 5701] <... openat resumed>) = 4 [pid 5703] ioctl(4, LOOP_SET_FD, 3 [pid 5702] munmap(0x7f6c8ae00000, 138412032 [pid 5701] ioctl(4, LOOP_SET_FD, 3 [pid 5704] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5703] <... ioctl resumed>) = 0 [pid 5701] <... ioctl resumed>) = 0 [pid 5703] close(3 [pid 5701] close(3 [pid 5703] <... close resumed>) = 0 [pid 5701] <... close resumed>) = 0 [pid 5703] close(4 [pid 5701] close(4 [pid 5703] <... close resumed>) = 0 [pid 5702] <... munmap resumed>) = 0 [pid 5701] <... close resumed>) = 0 [pid 5703] mkdir("./file0", 0777 [pid 5701] mkdir("./file0", 0777 [pid 5703] <... mkdir resumed>) = 0 [pid 5702] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5701] <... mkdir resumed>) = 0 [pid 5703] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5702] <... openat resumed>) = 4 [pid 5701] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 460.983309][ T5703] loop3: detected capacity change from 0 to 32768 [ 460.990434][ T5701] loop0: detected capacity change from 0 to 32768 [pid 5702] ioctl(4, LOOP_SET_FD, 3 [pid 5701] <... mount resumed>) = 0 [pid 5701] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5703] <... mount resumed>) = 0 [pid 5701] <... openat resumed>) = 3 [pid 5701] chdir("./file0" [pid 5703] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5701] <... chdir resumed>) = 0 [pid 5703] <... openat resumed>) = 3 [pid 5701] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5703] chdir("./file0") = 0 [pid 5702] <... ioctl resumed>) = 0 [pid 5701] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5703] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5701] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5702] close(3) = 0 [pid 5702] close(4) = 0 [pid 5701] <... openat resumed>) = 4 [pid 5703] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5701] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5703] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5702] mkdir("./file0", 0777 [pid 5703] <... openat resumed>) = 4 [pid 5703] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5702] <... mkdir resumed>) = 0 [pid 5703] <... openat resumed>) = 5 [pid 5702] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5701] <... openat resumed>) = 5 [pid 5703] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5701] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5702] <... mount resumed>) = 0 [pid 5702] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5702] chdir("./file0") = 0 [pid 5702] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5702] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5702] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 461.031149][ T5702] loop1: detected capacity change from 0 to 32768 [pid 5702] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5705] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5701] <... write resumed>) = 4243456 [pid 5701] exit_group(0) = ? [pid 5702] <... write resumed>) = 4243456 [pid 5702] exit_group(0) = ? [pid 5702] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5702, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5701] +++ exited with 0 +++ [pid 5244] <... restart_syscall resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5701, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] <... restart_syscall resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5703] <... write resumed>) = 4243456 [pid 5244] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5703] exit_group(0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5703] <... exit_group resumed>) = ? [pid 5244] newfstatat(AT_FDCWD, "./88/binderfs", [pid 5703] +++ exited with 0 +++ [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./88/binderfs") = 0 [pid 5244] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5703, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} --- [pid 5243] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./89/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./89/binderfs" [pid 5244] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... unlink resumed>) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./88/file0") = 0 [pid 5244] getdents64(3, [pid 5246] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./89/file0", [pid 5246] <... openat resumed>) = 3 [pid 5246] newfstatat(3, "", [pid 5244] close(3 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(3, [pid 5244] <... close resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] rmdir("./88" [pid 5243] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] <... rmdir resumed>) = 0 [pid 5243] <... openat resumed>) = 4 [pid 5246] newfstatat(AT_FDCWD, "./88/binderfs", [pid 5243] newfstatat(4, "", [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] mkdir("./89", 0777 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] unlink("./88/binderfs" [pid 5243] getdents64(4, [pid 5246] <... unlink resumed>) = 0 [pid 5244] <... mkdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] getdents64(4, [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] close(4 [pid 5244] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5243] <... close resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5243] rmdir("./89/file0" [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... rmdir resumed>) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./88/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./89") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] mkdir("./90", 0777 [pid 5246] close(3 [pid 5243] <... mkdir resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./88") = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5246] mkdir("./89", 0777 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] <... mkdir resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5704] <... write resumed>) = 16777216 [pid 5704] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5704] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5704] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5705] <... write resumed>) = 16777216 [pid 5704] close(3) = 0 [pid 5704] close(4) = 0 [pid 5704] mkdir("./file0", 0777) = 0 [pid 5704] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5705] munmap(0x7f6c8ae00000, 138412032 [pid 5704] <... mount resumed>) = 0 [pid 5704] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5704] chdir("./file0") = 0 [pid 5704] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5704] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5704] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 461.589961][ T5704] loop4: detected capacity change from 0 to 32768 [pid 5704] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5705] <... munmap resumed>) = 0 [pid 5705] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5705] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5705] close(3) = 0 [pid 5705] close(4) = 0 [pid 5705] mkdir("./file0", 0777) = 0 [pid 5705] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5705] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5705] chdir("./file0") = 0 [pid 5705] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5705] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [ 461.674601][ T5705] loop2: detected capacity change from 0 to 32768 [pid 5705] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5706 attached [pid 5705] <... openat resumed>) = 5 [pid 5706] set_robust_list(0x55555b590660, 24 [pid 5705] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5706 [pid 5706] <... set_robust_list resumed>) = 0 [pid 5706] chdir("./89") = 0 [pid 5706] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5706] setpgid(0, 0) = 0 [pid 5706] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5246] <... close resumed>) = 0 [pid 5706] write(3, "1000", 4) = 4 [pid 5706] close(3 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5706] <... close resumed>) = 0 [pid 5706] symlink("/dev/binderfs", "./binderfs" [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5707 ./strace-static-x86_64: Process 5707 attached [pid 5706] <... symlink resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5706] write(1, "executing program\n", 18) = 18 executing program [pid 5707] set_robust_list(0x55555b590660, 24) = 0 [pid 5707] chdir("./89" [pid 5706] memfd_create("syzkaller", 0 [pid 5707] <... chdir resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program ./strace-static-x86_64: Process 5708 attached [pid 5707] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5706] <... memfd_create resumed>) = 3 [pid 5707] <... prctl resumed>) = 0 [pid 5707] setpgid(0, 0) = 0 [pid 5707] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5707] write(3, "1000", 4) = 4 [pid 5707] close(3) = 0 [pid 5707] symlink("/dev/binderfs", "./binderfs" [pid 5708] set_robust_list(0x55555b590660, 24 [pid 5707] <... symlink resumed>) = 0 [pid 5707] write(1, "executing program\n", 18 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5708 [pid 5707] <... write resumed>) = 18 [pid 5708] <... set_robust_list resumed>) = 0 [pid 5707] memfd_create("syzkaller", 0 [pid 5708] chdir("./90") = 0 [pid 5707] <... memfd_create resumed>) = 3 [pid 5708] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5707] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5708] <... prctl resumed>) = 0 [pid 5706] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5704] <... write resumed>) = 4243456 [pid 5708] setpgid(0, 0) = 0 [pid 5708] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5706] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5704] exit_group(0) = ? [pid 5708] write(3, "1000", 4) = 4 [pid 5708] close(3) = 0 [pid 5708] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5708] write(1, "executing program\n", 18) = 18 [pid 5704] +++ exited with 0 +++ [pid 5708] memfd_create("syzkaller", 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5704, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=30 /* 0.30 s */} --- [pid 5708] <... memfd_create resumed>) = 3 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5708] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5247] umount2("./87", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./87", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./87/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./87/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./87/binderfs") = 0 [pid 5247] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./87/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./87/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./87/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./87/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./87") = 0 [pid 5247] mkdir("./88", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5705] <... write resumed>) = 4243456 [pid 5705] exit_group(0) = ? [pid 5705] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5705, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=37 /* 0.37 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./89/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./89/binderfs") = 0 [pid 5245] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./89/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./89/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./89") = 0 [pid 5245] mkdir("./90", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5706] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5707] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5709 ./strace-static-x86_64: Process 5709 attached [pid 5709] set_robust_list(0x55555b590660, 24 [pid 5708] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5709] <... set_robust_list resumed>) = 0 [pid 5709] chdir("./88") = 0 [pid 5709] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5709] setpgid(0, 0) = 0 [pid 5709] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5709] write(3, "1000", 4) = 4 [pid 5709] close(3) = 0 [pid 5709] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5709] write(1, "executing program\n", 18 [pid 5245] <... close resumed>) = 0 [pid 5709] <... write resumed>) = 18 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5710 attached [pid 5709] memfd_create("syzkaller", 0 [pid 5710] set_robust_list(0x55555b590660, 24 [pid 5709] <... memfd_create resumed>) = 3 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5710 [pid 5710] <... set_robust_list resumed>) = 0 [pid 5709] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5710] chdir("./90" [pid 5709] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5710] <... chdir resumed>) = 0 [pid 5710] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5710] setpgid(0, 0) = 0 [pid 5710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5710] write(3, "1000", 4) = 4 [pid 5710] close(3) = 0 [pid 5710] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5710] write(1, "executing program\n", 18executing program ) = 18 [pid 5710] memfd_create("syzkaller", 0) = 3 [pid 5710] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5706] <... write resumed>) = 16777216 [pid 5706] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5706] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5706] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5706] close(3) = 0 [pid 5706] close(4) = 0 [pid 5706] mkdir("./file0", 0777) = 0 [pid 5706] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 462.564290][ T5706] loop1: detected capacity change from 0 to 32768 [pid 5706] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5706] chdir("./file0") = 0 [pid 5706] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5706] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5706] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5706] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5707] <... write resumed>) = 16777216 [pid 5708] <... write resumed>) = 16777216 [pid 5707] munmap(0x7f6c8ae00000, 138412032 [pid 5708] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5707] <... munmap resumed>) = 0 [pid 5708] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5707] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5708] <... openat resumed>) = 4 [pid 5708] ioctl(4, LOOP_SET_FD, 3 [pid 5707] ioctl(4, LOOP_SET_FD, 3 [pid 5708] <... ioctl resumed>) = 0 [pid 5708] close(3) = 0 [pid 5708] close(4) = 0 [pid 5708] mkdir("./file0", 0777) = 0 [pid 5708] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5709] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5710] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5708] <... mount resumed>) = 0 [pid 5707] <... ioctl resumed>) = 0 [pid 5708] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5708] chdir("./file0" [pid 5707] close(3 [pid 5708] <... chdir resumed>) = 0 [pid 5707] <... close resumed>) = 0 [pid 5708] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5707] close(4 [pid 5708] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5707] <... close resumed>) = 0 [pid 5708] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5707] mkdir("./file0", 0777 [pid 5708] <... openat resumed>) = 4 [pid 5707] <... mkdir resumed>) = 0 [pid 5707] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5708] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 462.740888][ T5708] loop0: detected capacity change from 0 to 32768 [ 462.741199][ T5707] loop3: detected capacity change from 0 to 32768 [pid 5708] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5707] <... mount resumed>) = 0 [pid 5707] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5707] chdir("./file0") = 0 [pid 5707] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5707] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5707] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5707] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5706] <... write resumed>) = 4243456 [pid 5706] exit_group(0) = ? [pid 5706] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5706, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5244] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./89/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./89/binderfs") = 0 [pid 5244] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./89/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./89/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./89") = 0 [pid 5244] mkdir("./90", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5708] <... write resumed>) = 4243456 [pid 5708] exit_group(0) = ? [pid 5708] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5708, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=40 /* 0.40 s */} --- [pid 5243] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./90/binderfs") = 0 [pid 5243] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5707] <... write resumed>) = 4243456 [pid 5707] exit_group(0) = ? [pid 5707] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5707, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=35 /* 0.35 s */} --- [pid 5246] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./89/binderfs", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./89/binderfs" [pid 5243] newfstatat(AT_FDCWD, "./90/file0", [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] <... umount2 resumed>) = 0 [pid 5243] newfstatat(4, "", [pid 5246] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./89/file0", [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] rmdir("./90/file0" [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... rmdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] getdents64(3, [pid 5246] <... openat resumed>) = 4 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] newfstatat(4, "", [pid 5243] close(3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5243] <... close resumed>) = 0 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] rmdir("./90" [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... rmdir resumed>) = 0 [pid 5246] close(4 [pid 5243] mkdir("./91", 0777 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./89/file0") = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5246] getdents64(3, [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] rmdir("./89" [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5709] <... write resumed>) = 16777216 [pid 5709] munmap(0x7f6c8ae00000, 138412032 [pid 5710] <... write resumed>) = 16777216 [pid 5246] mkdir("./90", 0777 [pid 5710] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5709] <... munmap resumed>) = 0 [pid 5709] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5246] <... openat resumed>) = 3 [pid 5709] <... openat resumed>) = 4 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5709] ioctl(4, LOOP_SET_FD, 3 [pid 5710] <... munmap resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5710] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] close(3 [pid 5710] <... openat resumed>) = 4 [pid 5709] <... ioctl resumed>) = 0 [pid 5710] ioctl(4, LOOP_SET_FD, 3 [pid 5709] close(3) = 0 [pid 5709] close(4) = 0 [pid 5709] mkdir("./file0", 0777) = 0 [pid 5709] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5709] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5709] chdir("./file0") = 0 [pid 5709] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5709] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5709] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5709] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5710] <... ioctl resumed>) = 0 [pid 5710] close(3) = 0 [pid 5710] close(4 [pid 5244] <... close resumed>) = 0 [pid 5710] <... close resumed>) = 0 [pid 5710] mkdir("./file0", 0777 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5711 attached , child_tidptr=0x55555b590650) = 5711 [pid 5711] set_robust_list(0x55555b590660, 24 [pid 5710] <... mkdir resumed>) = 0 [pid 5711] <... set_robust_list resumed>) = 0 [pid 5711] chdir("./90") = 0 [pid 5711] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 463.253471][ T5709] loop4: detected capacity change from 0 to 32768 [ 463.283433][ T5710] loop2: detected capacity change from 0 to 32768 [pid 5711] setpgid(0, 0) = 0 [pid 5710] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5711] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5711] write(3, "1000", 4) = 4 [pid 5711] close(3) = 0 [pid 5711] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5711] write(1, "executing program\n", 18) = 18 [pid 5710] <... mount resumed>) = 0 [pid 5711] memfd_create("syzkaller", 0) = 3 [pid 5711] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5710] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5710] chdir("./file0") = 0 [pid 5710] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5710] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5710] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5710] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5709] <... write resumed>) = 4243456 [pid 5709] exit_group(0./strace-static-x86_64: Process 5712 attached ) = ? [pid 5712] set_robust_list(0x55555b590660, 24 [pid 5709] +++ exited with 0 +++ [pid 5712] <... set_robust_list resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5712 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5709, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5712] chdir("./91" [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5712] <... chdir resumed>) = 0 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5712] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5712] setpgid(0, 0 [pid 5247] umount2("./88", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5712] <... setpgid resumed>) = 0 [pid 5712] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./88", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5712] <... openat resumed>) = 3 [pid 5247] <... openat resumed>) = 3 [pid 5712] write(3, "1000", 4 [pid 5247] newfstatat(3, "", [pid 5712] <... write resumed>) = 4 [pid 5712] close(3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5712] <... close resumed>) = 0 [pid 5247] getdents64(3, [pid 5712] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 executing program [pid 5712] write(1, "executing program\n", 18 [pid 5247] umount2("./88/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5712] <... write resumed>) = 18 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./88/binderfs", [pid 5712] memfd_create("syzkaller", 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./88/binderfs") = 0 [pid 5247] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5712] <... memfd_create resumed>) = 3 [pid 5712] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5247] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./88/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./88/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5713 attached [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5713 [pid 5713] set_robust_list(0x55555b590660, 24 [pid 5247] openat(AT_FDCWD, "./88/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5713] <... set_robust_list resumed>) = 0 [pid 5713] chdir("./90" [pid 5247] <... openat resumed>) = 4 [pid 5713] <... chdir resumed>) = 0 [pid 5247] newfstatat(4, "", [pid 5713] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5713] setpgid(0, 0 [pid 5247] getdents64(4, [pid 5713] <... setpgid resumed>) = 0 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, [pid 5713] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5713] <... openat resumed>) = 3 [pid 5713] write(3, "1000", 4 [pid 5247] close(4 [pid 5713] <... write resumed>) = 4 [pid 5713] close(3) = 0 [pid 5247] <... close resumed>) = 0 executing program [pid 5713] symlink("/dev/binderfs", "./binderfs" [pid 5247] rmdir("./88/file0" [pid 5713] <... symlink resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5713] write(1, "executing program\n", 18 [pid 5247] getdents64(3, [pid 5713] <... write resumed>) = 18 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5713] memfd_create("syzkaller", 0 [pid 5247] rmdir("./88" [pid 5713] <... memfd_create resumed>) = 3 [pid 5710] <... write resumed>) = 4243456 [pid 5247] <... rmdir resumed>) = 0 [pid 5713] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] mkdir("./89", 0777 [pid 5713] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5710] exit_group(0 [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5710] <... exit_group resumed>) = ? [pid 5710] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5710, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./90/binderfs") = 0 [pid 5245] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./90/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./90/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./90") = 0 [pid 5245] mkdir("./91", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5711] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5712] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5714 attached [pid 5714] set_robust_list(0x55555b590660, 24) = 0 [pid 5714] chdir("./89") = 0 [pid 5714] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5714] setpgid(0, 0) = 0 [pid 5714] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5714] write(3, "1000", 4) = 4 [pid 5714] close(3executing program ) = 0 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5714 [pid 5714] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5714] write(1, "executing program\n", 18) = 18 [pid 5714] memfd_create("syzkaller", 0) = 3 [pid 5714] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5713] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5715 attached , child_tidptr=0x55555b590650) = 5715 [pid 5715] set_robust_list(0x55555b590660, 24) = 0 [pid 5715] chdir("./91") = 0 [pid 5715] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5715] setpgid(0, 0) = 0 [pid 5715] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5715] write(3, "1000", 4) = 4 [pid 5715] close(3) = 0 [pid 5715] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5715] write(1, "executing program\n", 18) = 18 [pid 5715] memfd_create("syzkaller", 0) = 3 [pid 5715] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5712] <... write resumed>) = 16777216 [pid 5712] munmap(0x7f6c8ae00000, 138412032 [pid 5714] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5711] <... write resumed>) = 16777216 [pid 5712] <... munmap resumed>) = 0 [pid 5712] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5712] ioctl(4, LOOP_SET_FD, 3 [ 464.338242][ T5712] loop0: detected capacity change from 0 to 32768 [pid 5711] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5712] <... ioctl resumed>) = 0 [pid 5712] close(3 [pid 5711] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5712] <... close resumed>) = 0 [pid 5711] <... openat resumed>) = 4 [pid 5713] <... write resumed>) = 16777216 [pid 5712] close(4 [pid 5713] munmap(0x7f6c8ae00000, 138412032 [pid 5712] <... close resumed>) = 0 [pid 5711] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5711] close(3) = 0 [pid 5711] close(4) = 0 [pid 5711] mkdir("./file0", 0777 [pid 5712] mkdir("./file0", 0777 [pid 5711] <... mkdir resumed>) = 0 [pid 5712] <... mkdir resumed>) = 0 [pid 5711] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5712] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5715] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5713] <... munmap resumed>) = 0 [pid 5713] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 464.382078][ T5711] loop1: detected capacity change from 0 to 32768 [pid 5713] ioctl(4, LOOP_SET_FD, 3 [pid 5711] <... mount resumed>) = 0 [pid 5713] <... ioctl resumed>) = 0 [pid 5711] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5711] chdir("./file0") = 0 [pid 5711] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5711] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5713] close(3) = 0 [pid 5713] close(4 [pid 5712] <... mount resumed>) = 0 [pid 5713] <... close resumed>) = 0 [pid 5712] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5713] mkdir("./file0", 0777 [pid 5712] <... openat resumed>) = 3 [pid 5712] chdir("./file0" [pid 5713] <... mkdir resumed>) = 0 [pid 5712] <... chdir resumed>) = 0 [pid 5711] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5713] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5712] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5711] <... openat resumed>) = 5 [pid 5711] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5712] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5712] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5713] <... mount resumed>) = 0 [pid 5712] <... openat resumed>) = 4 [pid 5712] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 464.432182][ T5713] loop3: detected capacity change from 0 to 32768 [pid 5713] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5712] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5713] <... openat resumed>) = 3 [pid 5713] chdir("./file0") = 0 [pid 5713] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5713] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5713] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5713] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5711] <... write resumed>) = 4243456 [pid 5711] exit_group(0) = ? [pid 5711] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5711, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5712] <... write resumed>) = 4243456 [pid 5712] exit_group(0) = ? [pid 5712] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5712, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5244] <... restart_syscall resumed>) = 0 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5244] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./90/binderfs" [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] <... unlink resumed>) = 0 [pid 5243] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./91/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./91/binderfs" [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./90/file0", [pid 5243] newfstatat(AT_FDCWD, "./91/file0", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5713] <... write resumed>) = 4243456 [pid 5244] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5713] exit_group(0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5713] <... exit_group resumed>) = ? [pid 5244] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 4 [pid 5244] newfstatat(4, "", [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5244] getdents64(4, [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5243] getdents64(4, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5243] close(4 [pid 5244] <... close resumed>) = 0 [pid 5713] +++ exited with 0 +++ [pid 5244] rmdir("./90/file0" [pid 5243] <... close resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5713, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=27 /* 0.27 s */} --- [pid 5244] <... rmdir resumed>) = 0 [pid 5243] rmdir("./91/file0") = 0 [pid 5244] getdents64(3, [pid 5243] getdents64(3, [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3 [pid 5243] close(3 [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./90" [pid 5243] <... close resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] rmdir("./91") = 0 [pid 5246] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./90/binderfs") = 0 [pid 5246] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] mkdir("./91", 0777 [pid 5243] mkdir("./92", 0777 [pid 5244] <... mkdir resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5246] <... umount2 resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5243] <... openat resumed>) = 3 [pid 5246] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5714] <... write resumed>) = 16777216 [pid 5246] newfstatat(AT_FDCWD, "./90/file0", [pid 5244] <... ioctl resumed>) = 0 [pid 5243] <... ioctl resumed>) = 0 [pid 5244] close(3 [pid 5243] close(3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5714] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./90/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./90") = 0 [pid 5246] mkdir("./91", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5714] <... munmap resumed>) = 0 [pid 5714] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5714] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5714] close(3) = 0 [pid 5714] close(4) = 0 [pid 5714] mkdir("./file0", 0777) = 0 [ 464.845885][ T5714] loop4: detected capacity change from 0 to 32768 [pid 5714] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5714] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5714] chdir("./file0") = 0 [pid 5714] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5714] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5714] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5715] <... write resumed>) = 16777216 [pid 5714] <... openat resumed>) = 5 [pid 5714] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5715] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5715] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5715] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5715] close(3) = 0 [pid 5715] close(4) = 0 [ 464.971086][ T5715] loop2: detected capacity change from 0 to 32768 [pid 5715] mkdir("./file0", 0777) = 0 [pid 5715] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5715] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5715] chdir("./file0") = 0 [pid 5715] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5716 attached [pid 5716] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5716 [pid 5716] <... set_robust_list resumed>) = 0 [pid 5716] chdir("./91") = 0 [pid 5716] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5716] setpgid(0, 0) = 0 [pid 5716] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5716] write(3, "1000", 4) = 4 [pid 5716] close(3 [pid 5715] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5716] <... close resumed>) = 0 executing program [pid 5716] symlink("/dev/binderfs", "./binderfs" [pid 5715] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5716] <... symlink resumed>) = 0 [pid 5716] write(1, "executing program\n", 18 [pid 5715] <... openat resumed>) = 4 [pid 5716] <... write resumed>) = 18 [pid 5715] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5716] memfd_create("syzkaller", 0 [pid 5715] <... openat resumed>) = 5 [pid 5716] <... memfd_create resumed>) = 3 [pid 5715] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5716] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5717 attached [pid 5717] set_robust_list(0x55555b590660, 24 [pid 5243] <... close resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5717 [pid 5717] <... set_robust_list resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5714] <... write resumed>) = 4243456 [pid 5714] exit_group(0) = ? ./strace-static-x86_64: Process 5718 attached [pid 5714] +++ exited with 0 +++ [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5718 [pid 5718] set_robust_list(0x55555b590660, 24 [pid 5717] chdir("./91" [pid 5718] <... set_robust_list resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5714, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=34 /* 0.34 s */} --- [pid 5718] chdir("./92" [pid 5717] <... chdir resumed>) = 0 [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5718] <... chdir resumed>) = 0 [pid 5718] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5717] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5718] <... prctl resumed>) = 0 [pid 5717] <... prctl resumed>) = 0 [pid 5718] setpgid(0, 0) = 0 [pid 5717] setpgid(0, 0) = 0 [pid 5718] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5717] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... restart_syscall resumed>) = 0 [pid 5718] <... openat resumed>) = 3 [pid 5717] <... openat resumed>) = 3 [pid 5717] write(3, "1000", 4 [pid 5247] umount2("./89", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5717] <... write resumed>) = 4 [pid 5718] write(3, "1000", 4 [pid 5717] close(3 [pid 5247] openat(AT_FDCWD, "./89", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5718] <... write resumed>) = 4 [pid 5717] <... close resumed>) = 0 [pid 5718] close(3 [pid 5717] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... openat resumed>) = 3 [pid 5718] <... close resumed>) = 0 [pid 5717] <... symlink resumed>) = 0 executing program executing program [pid 5718] symlink("/dev/binderfs", "./binderfs" [pid 5717] write(1, "executing program\n", 18 [pid 5247] newfstatat(3, "", [pid 5718] <... symlink resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5718] write(1, "executing program\n", 18 [pid 5247] getdents64(3, [pid 5718] <... write resumed>) = 18 [pid 5717] <... write resumed>) = 18 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5718] memfd_create("syzkaller", 0 [pid 5717] memfd_create("syzkaller", 0 [pid 5247] umount2("./89/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5718] <... memfd_create resumed>) = 3 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5718] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] newfstatat(AT_FDCWD, "./89/binderfs", [pid 5718] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5717] <... memfd_create resumed>) = 3 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./89/binderfs" [pid 5717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... unlink resumed>) = 0 [pid 5717] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./89/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./89/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./89/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./89/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./89") = 0 [pid 5247] mkdir("./90", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5715] <... write resumed>) = 4243456 [pid 5715] exit_group(0) = ? [pid 5715] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5715, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=26 /* 0.26 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./91/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./91/binderfs") = 0 [pid 5245] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./91/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./91/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./91") = 0 [pid 5245] mkdir("./92", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5716] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5719 attached , child_tidptr=0x55555b590650) = 5719 [pid 5719] set_robust_list(0x55555b590660, 24) = 0 [pid 5719] chdir("./90") = 0 [pid 5719] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5719] setpgid(0, 0) = 0 [pid 5719] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5719] write(3, "1000", 4) = 4 [pid 5719] close(3) = 0 [pid 5719] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5719] write(1, "executing program\n", 18executing program ) = 18 [pid 5717] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5719] memfd_create("syzkaller", 0) = 3 [pid 5719] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5718] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5720 attached [pid 5720] set_robust_list(0x55555b590660, 24) = 0 [pid 5720] chdir("./92") = 0 [pid 5720] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5720 [pid 5720] <... prctl resumed>) = 0 [pid 5720] setpgid(0, 0) = 0 [pid 5720] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5720] write(3, "1000", 4) = 4 [pid 5720] close(3) = 0 [pid 5720] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5720] write(1, "executing program\n", 18) = 18 [pid 5720] memfd_create("syzkaller", 0) = 3 [pid 5720] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5716] <... write resumed>) = 16777216 [pid 5716] munmap(0x7f6c8ae00000, 138412032 [pid 5719] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5716] <... munmap resumed>) = 0 [pid 5716] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5716] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5716] close(3) = 0 [pid 5716] close(4) = 0 [pid 5716] mkdir("./file0", 0777) = 0 [pid 5717] <... write resumed>) = 16777216 [pid 5716] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5717] munmap(0x7f6c8ae00000, 138412032 [pid 5716] <... mount resumed>) = 0 [pid 5716] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5716] chdir("./file0") = 0 [ 465.969242][ T5716] loop3: detected capacity change from 0 to 32768 [pid 5716] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5716] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5716] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5717] <... munmap resumed>) = 0 [pid 5717] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5717] ioctl(4, LOOP_SET_FD, 3 [pid 5716] <... openat resumed>) = 5 [pid 5716] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5718] <... write resumed>) = 16777216 [pid 5717] <... ioctl resumed>) = 0 [pid 5717] close(3) = 0 [pid 5717] close(4) = 0 [pid 5717] mkdir("./file0", 0777) = 0 [pid 5717] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5718] munmap(0x7f6c8ae00000, 138412032 [pid 5717] <... mount resumed>) = 0 [pid 5717] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5717] chdir("./file0") = 0 [pid 5717] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5717] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5717] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 466.050608][ T5717] loop1: detected capacity change from 0 to 32768 [pid 5717] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5718] <... munmap resumed>) = 0 [pid 5718] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5718] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5718] close(3) = 0 [pid 5718] close(4) = 0 [pid 5718] mkdir("./file0", 0777) = 0 [ 466.140309][ T5718] loop0: detected capacity change from 0 to 32768 [pid 5718] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5718] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5718] chdir("./file0") = 0 [pid 5718] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5718] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5718] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5718] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5720] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5716] <... write resumed>) = 4243456 [pid 5716] exit_group(0) = ? [pid 5716] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5716, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=31 /* 0.31 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5717] <... write resumed>) = 4243456 [pid 5717] exit_group(0) = ? [pid 5717] +++ exited with 0 +++ [pid 5246] <... restart_syscall resumed>) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5717, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] newfstatat(3, "", [pid 5244] <... openat resumed>) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] newfstatat(3, "", [pid 5246] getdents64(3, [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] getdents64(3, [pid 5246] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(AT_FDCWD, "./91/binderfs", [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] newfstatat(AT_FDCWD, "./91/binderfs", [pid 5246] unlink("./91/binderfs" [pid 5244] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5244] unlink("./91/binderfs" [pid 5246] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... unlink resumed>) = 0 [pid 5244] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./91/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./91/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./91") = 0 [pid 5246] mkdir("./92", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5244] <... umount2 resumed>) = 0 [pid 5718] <... write resumed>) = 4243456 [pid 5244] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./91/file0", [pid 5718] exit_group(0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5718] <... exit_group resumed>) = ? [pid 5718] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5718, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=29 /* 0.29 s */} --- [pid 5244] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... openat resumed>) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(4, "", [pid 5243] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] getdents64(4, [pid 5243] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./92/binderfs") = 0 [pid 5244] getdents64(4, [pid 5243] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./91/file0" [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... rmdir resumed>) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./92/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] close(3 [pid 5243] getdents64(4, [pid 5244] <... close resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] rmdir("./91" [pid 5243] close(4) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] rmdir("./92/file0" [pid 5244] mkdir("./92", 0777 [pid 5243] <... rmdir resumed>) = 0 [pid 5719] <... write resumed>) = 16777216 [pid 5244] <... mkdir resumed>) = 0 [pid 5243] getdents64(3, [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5719] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] close(3 [pid 5244] <... ioctl resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5244] close(3 [pid 5243] rmdir("./92") = 0 [pid 5243] mkdir("./93", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5719] <... munmap resumed>) = 0 [pid 5719] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5719] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5719] close(3) = 0 [pid 5719] close(4) = 0 [pid 5719] mkdir("./file0", 0777) = 0 [pid 5719] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5719] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5719] chdir("./file0") = 0 [pid 5719] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5719] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5719] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 466.575688][ T5719] loop4: detected capacity change from 0 to 32768 [pid 5719] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5720] <... write resumed>) = 16777216 [pid 5720] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5721 attached [pid 5721] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5721 [pid 5721] <... set_robust_list resumed>) = 0 [pid 5721] chdir("./92") = 0 [pid 5721] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5721] setpgid(0, 0) = 0 [pid 5721] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5720] <... munmap resumed>) = 0 [pid 5721] <... openat resumed>) = 3 [pid 5720] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5721] write(3, "1000", 4) = 4 [pid 5721] close(3) = 0 [pid 5721] symlink("/dev/binderfs", "./binderfs" [pid 5720] <... openat resumed>) = 4 [pid 5721] <... symlink resumed>) = 0 [pid 5721] write(1, "executing program\n", 18executing program ) = 18 [pid 5720] ioctl(4, LOOP_SET_FD, 3 [pid 5721] memfd_create("syzkaller", 0 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5720] <... ioctl resumed>) = 0 ./strace-static-x86_64: Process 5722 attached [pid 5721] <... memfd_create resumed>) = 3 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5722 [pid 5720] close(3 [pid 5722] set_robust_list(0x55555b590660, 24 [pid 5721] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5720] <... close resumed>) = 0 [pid 5720] close(4executing program [pid 5721] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5720] <... close resumed>) = 0 [pid 5722] <... set_robust_list resumed>) = 0 [pid 5722] chdir("./92") = 0 [pid 5722] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5722] setpgid(0, 0) = 0 [pid 5722] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5720] mkdir("./file0", 0777 [pid 5722] write(3, "1000", 4 [pid 5720] <... mkdir resumed>) = 0 [pid 5722] <... write resumed>) = 4 [pid 5722] close(3) = 0 [pid 5722] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5722] write(1, "executing program\n", 18) = 18 [pid 5720] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5722] memfd_create("syzkaller", 0 [pid 5720] <... mount resumed>) = 0 [pid 5722] <... memfd_create resumed>) = 3 [pid 5720] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5722] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 466.748641][ T5720] loop2: detected capacity change from 0 to 32768 [pid 5720] chdir("./file0") = 0 [pid 5720] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5720] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5720] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5720] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5723 attached [pid 5723] set_robust_list(0x55555b590660, 24) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5723 [pid 5723] chdir("./93") = 0 [pid 5723] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5723] setpgid(0, 0) = 0 [pid 5723] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5723] write(3, "1000", 4) = 4 [pid 5723] close(3) = 0 [pid 5719] <... write resumed>) = 4243456 executing program [pid 5723] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5723] write(1, "executing program\n", 18) = 18 [pid 5723] memfd_create("syzkaller", 0 [pid 5719] exit_group(0 [pid 5723] <... memfd_create resumed>) = 3 [pid 5723] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5719] <... exit_group resumed>) = ? [pid 5723] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5719] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5719, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./90", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./90", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./90/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./90/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./90/binderfs") = 0 [pid 5247] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5720] <... write resumed>) = 4243456 [pid 5247] newfstatat(AT_FDCWD, "./90/file0", [pid 5720] exit_group(0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5720] <... exit_group resumed>) = ? [pid 5247] umount2("./90/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5720] +++ exited with 0 +++ [pid 5247] openat(AT_FDCWD, "./90/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5720, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=37 /* 0.37 s */} --- [pid 5247] <... openat resumed>) = 4 [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./90/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] rmdir("./90") = 0 [pid 5245] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] mkdir("./91", 0777 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5247] <... mkdir resumed>) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... openat resumed>) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... openat resumed>) = 3 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] newfstatat(AT_FDCWD, "./92/binderfs", [pid 5247] close(3 [pid 5245] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./92/binderfs") = 0 [pid 5245] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5721] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] <... umount2 resumed>) = 0 [pid 5245] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./92/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./92/file0") = 0 [pid 5722] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./92") = 0 [pid 5245] mkdir("./93", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5724 ./strace-static-x86_64: Process 5724 attached [pid 5723] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5724] set_robust_list(0x55555b590660, 24) = 0 [pid 5724] chdir("./91") = 0 [pid 5724] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5724] setpgid(0, 0) = 0 [pid 5724] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5724] write(3, "1000", 4) = 4 [pid 5724] close(3) = 0 [pid 5724] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5724] write(1, "executing program\n", 18) = 18 [pid 5724] memfd_create("syzkaller", 0) = 3 [pid 5724] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5725 attached , child_tidptr=0x55555b590650) = 5725 [pid 5725] set_robust_list(0x55555b590660, 24) = 0 [pid 5725] chdir("./93") = 0 [pid 5725] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5725] setpgid(0, 0) = 0 [pid 5725] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5725] write(3, "1000", 4) = 4 [pid 5725] close(3) = 0 [pid 5725] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5725] write(1, "executing program\n", 18) = 18 [pid 5725] memfd_create("syzkaller", 0) = 3 [pid 5725] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5722] <... write resumed>) = 16777216 [pid 5722] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5722] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5722] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5722] close(3) = 0 [pid 5722] close(4) = 0 [pid 5722] mkdir("./file0", 0777) = 0 [pid 5722] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5722] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5722] chdir("./file0") = 0 [pid 5722] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5722] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5721] <... write resumed>) = 16777216 [pid 5722] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 467.530934][ T5722] loop1: detected capacity change from 0 to 32768 [pid 5722] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5721] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5721] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5721] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5721] close(3) = 0 [pid 5721] close(4) = 0 [pid 5721] mkdir("./file0", 0777) = 0 [pid 5721] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5721] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [ 467.640403][ T5721] loop3: detected capacity change from 0 to 32768 [pid 5721] chdir("./file0") = 0 [pid 5721] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5721] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5721] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5721] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5723] <... write resumed>) = 16777216 [pid 5723] munmap(0x7f6c8ae00000, 138412032 [pid 5724] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5725] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5723] <... munmap resumed>) = 0 [pid 5722] <... write resumed>) = 4243456 [pid 5722] exit_group(0) = ? [pid 5723] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5722] +++ exited with 0 +++ [pid 5723] ioctl(4, LOOP_SET_FD, 3 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5722, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=36 /* 0.36 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./92/binderfs") = 0 [pid 5244] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5721] <... write resumed>) = 4243456 [pid 5723] <... ioctl resumed>) = 0 [pid 5244] <... umount2 resumed>) = 0 [pid 5723] close(3) = 0 [ 467.869208][ T5723] loop0: detected capacity change from 0 to 32768 [pid 5723] close(4 [pid 5721] exit_group(0 [pid 5244] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5723] <... close resumed>) = 0 [pid 5721] <... exit_group resumed>) = ? [pid 5721] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5721, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=29 /* 0.29 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5723] mkdir("./file0", 0777 [pid 5244] newfstatat(AT_FDCWD, "./92/file0", [pid 5723] <... mkdir resumed>) = 0 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5723] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] unlink("./92/binderfs") = 0 [pid 5244] <... openat resumed>) = 4 [pid 5246] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5723] <... mount resumed>) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5244] newfstatat(4, "", [pid 5723] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5723] <... openat resumed>) = 3 [pid 5723] chdir("./file0" [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5723] <... chdir resumed>) = 0 [pid 5244] getdents64(4, [pid 5723] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5723] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5246] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] close(4 [pid 5723] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5244] <... close resumed>) = 0 [pid 5723] <... openat resumed>) = 4 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] rmdir("./92/file0" [pid 5723] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5246] newfstatat(AT_FDCWD, "./92/file0", [pid 5723] <... openat resumed>) = 5 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5723] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] getdents64(3, [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./92" [pid 5246] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... rmdir resumed>) = 0 [pid 5246] <... openat resumed>) = 4 [pid 5244] mkdir("./93", 0777 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] <... mkdir resumed>) = 0 [pid 5246] getdents64(4, [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5244] <... openat resumed>) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5246] <... close resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5246] rmdir("./92/file0" [pid 5244] close(3 [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./92") = 0 [pid 5246] mkdir("./93", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5723] <... write resumed>) = 4243456 [pid 5723] exit_group(0) = ? [pid 5723] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5723, si_uid=0, si_status=0, si_utime=17 /* 0.17 s */, si_stime=27 /* 0.27 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5243] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./93/binderfs") = 0 [pid 5243] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./93/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./93") = 0 [pid 5243] mkdir("./94", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5725] <... write resumed>) = 16777216 [pid 5724] <... write resumed>) = 16777216 [pid 5246] <... close resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5725] munmap(0x7f6c8ae00000, 138412032 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5724] munmap(0x7f6c8ae00000, 138412032./strace-static-x86_64: Process 5726 attached [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5726] set_robust_list(0x55555b590660, 24) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5727 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5726 ./strace-static-x86_64: Process 5727 attached [pid 5726] chdir("./93" [pid 5727] set_robust_list(0x55555b590660, 24 [pid 5726] <... chdir resumed>) = 0 [pid 5727] <... set_robust_list resumed>) = 0 [pid 5726] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5727] chdir("./93" [pid 5726] <... prctl resumed>) = 0 [pid 5727] <... chdir resumed>) = 0 [pid 5726] setpgid(0, 0 [pid 5727] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5726] <... setpgid resumed>) = 0 [pid 5727] <... prctl resumed>) = 0 [pid 5727] setpgid(0, 0 [pid 5726] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5727] <... setpgid resumed>) = 0 [pid 5727] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5726] <... openat resumed>) = 3 [pid 5727] <... openat resumed>) = 3 [pid 5727] write(3, "1000", 4) = 4 [pid 5727] close(3) = 0 [pid 5727] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5727] write(1, "executing program\n", 18) = 18 [pid 5727] memfd_create("syzkaller", 0) = 3 [pid 5726] write(3, "1000", 4 [pid 5727] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5726] <... write resumed>) = 4 [pid 5727] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5725] <... munmap resumed>) = 0 [pid 5726] close(3 [pid 5724] <... munmap resumed>) = 0 [pid 5726] <... close resumed>) = 0 [pid 5724] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5726] symlink("/dev/binderfs", "./binderfs" [pid 5724] <... openat resumed>) = 4 [pid 5725] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5724] ioctl(4, LOOP_SET_FD, 3 [pid 5726] <... symlink resumed>) = 0 [pid 5725] <... openat resumed>) = 4 [pid 5725] ioctl(4, LOOP_SET_FD, 3executing program [pid 5726] write(1, "executing program\n", 18 [pid 5724] <... ioctl resumed>) = 0 [pid 5726] <... write resumed>) = 18 [pid 5724] close(3 [pid 5726] memfd_create("syzkaller", 0 [pid 5724] <... close resumed>) = 0 [pid 5726] <... memfd_create resumed>) = 3 [pid 5724] close(4 [pid 5726] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5724] <... close resumed>) = 0 [pid 5724] mkdir("./file0", 0777 [pid 5726] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5724] <... mkdir resumed>) = 0 [pid 5724] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5725] <... ioctl resumed>) = 0 [pid 5725] close(3) = 0 [pid 5725] close(4) = 0 [ 468.368406][ T5724] loop4: detected capacity change from 0 to 32768 [ 468.369671][ T5725] loop2: detected capacity change from 0 to 32768 [pid 5725] mkdir("./file0", 0777) = 0 [pid 5243] <... close resumed>) = 0 [pid 5725] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5724] <... mount resumed>) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5728 [pid 5724] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5725] <... mount resumed>) = 0 [pid 5724] <... openat resumed>) = 3 [pid 5725] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5724] chdir("./file0"./strace-static-x86_64: Process 5728 attached [pid 5725] <... openat resumed>) = 3 [pid 5724] <... chdir resumed>) = 0 [pid 5725] chdir("./file0" [pid 5724] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5725] <... chdir resumed>) = 0 [pid 5724] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5725] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5724] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5725] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5724] <... openat resumed>) = 4 [pid 5725] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5724] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5725] <... openat resumed>) = 4 [pid 5724] <... openat resumed>) = 5 [pid 5728] set_robust_list(0x55555b590660, 24 [pid 5725] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5728] <... set_robust_list resumed>) = 0 [pid 5725] <... openat resumed>) = 5 [pid 5724] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5728] chdir("./94" [pid 5725] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5728] <... chdir resumed>) = 0 [pid 5728] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5728] setpgid(0, 0) = 0 [pid 5728] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5728] write(3, "1000", 4) = 4 [pid 5728] close(3) = 0 [pid 5728] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5728] write(1, "executing program\n", 18executing program ) = 18 [pid 5728] memfd_create("syzkaller", 0) = 3 [pid 5728] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5726] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5724] <... write resumed>) = 4243456 [pid 5724] exit_group(0) = ? [pid 5724] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5724, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=33 /* 0.33 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./91", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./91", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./91/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./91/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./91/binderfs") = 0 [pid 5247] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5725] <... write resumed>) = 4243456 [pid 5725] exit_group(0 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./91/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5725] <... exit_group resumed>) = ? [pid 5247] umount2("./91/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5725] +++ exited with 0 +++ [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./91/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5725, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=40 /* 0.40 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...> [pid 5247] <... openat resumed>) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./91/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./91") = 0 [pid 5247] mkdir("./92", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5245] <... restart_syscall resumed>) = 0 [pid 5247] <... openat resumed>) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD [pid 5245] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5247] <... ioctl resumed>) = 0 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] close(3 [pid 5245] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./93/binderfs") = 0 [pid 5245] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5727] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./93/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./93") = 0 [pid 5245] mkdir("./94", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5728] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5729 ./strace-static-x86_64: Process 5729 attached [pid 5729] set_robust_list(0x55555b590660, 24) = 0 [pid 5729] chdir("./92") = 0 [pid 5729] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5729] setpgid(0, 0) = 0 [pid 5729] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5729] write(3, "1000", 4) = 4 [pid 5729] close(3) = 0 [pid 5729] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5729] write(1, "executing program\n", 18) = 18 [pid 5729] memfd_create("syzkaller", 0) = 3 [pid 5729] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5726] <... write resumed>) = 16777216 [pid 5726] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5730 attached , child_tidptr=0x55555b590650) = 5730 [pid 5730] set_robust_list(0x55555b590660, 24 [pid 5726] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5730] <... set_robust_list resumed>) = 0 [pid 5730] chdir("./94" [pid 5726] <... openat resumed>) = 4 [pid 5730] <... chdir resumed>) = 0 [pid 5726] ioctl(4, LOOP_SET_FD, 3 [pid 5730] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5726] <... ioctl resumed>) = 0 [pid 5730] setpgid(0, 0 [pid 5726] close(3 [pid 5730] <... setpgid resumed>) = 0 [pid 5726] <... close resumed>) = 0 [pid 5730] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5726] close(4 [pid 5730] <... openat resumed>) = 3 [pid 5730] write(3, "1000", 4 [pid 5726] <... close resumed>) = 0 [pid 5730] <... write resumed>) = 4 [pid 5730] close(3 [pid 5726] mkdir("./file0", 0777 [pid 5730] <... close resumed>) = 0 [pid 5730] symlink("/dev/binderfs", "./binderfs" [pid 5726] <... mkdir resumed>) = 0 [pid 5730] <... symlink resumed>) = 0 [pid 5726] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"executing program [pid 5730] write(1, "executing program\n", 18) = 18 [pid 5730] memfd_create("syzkaller", 0) = 3 [pid 5730] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [ 469.182139][ T5726] loop1: detected capacity change from 0 to 32768 [pid 5727] <... write resumed>) = 16777216 [pid 5727] munmap(0x7f6c8ae00000, 138412032 [pid 5726] <... mount resumed>) = 0 [pid 5726] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5726] chdir("./file0") = 0 [pid 5727] <... munmap resumed>) = 0 [pid 5726] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5726] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5726] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5726] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5727] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5727] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5728] <... write resumed>) = 16777216 [pid 5728] munmap(0x7f6c8ae00000, 138412032 [pid 5729] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5727] close(3) = 0 [pid 5727] close(4 [pid 5728] <... munmap resumed>) = 0 [pid 5727] <... close resumed>) = 0 [pid 5727] mkdir("./file0", 0777 [pid 5728] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5727] <... mkdir resumed>) = 0 [pid 5728] <... openat resumed>) = 4 [pid 5727] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [ 469.330249][ T5727] loop3: detected capacity change from 0 to 32768 [pid 5728] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5728] close(3) = 0 [pid 5728] close(4) = 0 [pid 5727] <... mount resumed>) = 0 [pid 5728] mkdir("./file0", 0777 [pid 5727] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5728] <... mkdir resumed>) = 0 [pid 5728] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5727] <... openat resumed>) = 3 [pid 5727] chdir("./file0") = 0 [pid 5727] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5727] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5728] <... mount resumed>) = 0 [pid 5728] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5727] <... openat resumed>) = 4 [pid 5728] <... openat resumed>) = 3 [pid 5727] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5728] chdir("./file0") = 0 [pid 5727] <... openat resumed>) = 5 [pid 5728] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5727] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5728] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5728] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5728] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [ 469.391167][ T5728] loop0: detected capacity change from 0 to 32768 [pid 5728] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5726] <... write resumed>) = 4243456 [pid 5726] exit_group(0) = ? [pid 5726] +++ exited with 0 +++ [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5726, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./93/binderfs") = 0 [pid 5244] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./93/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./93") = 0 [pid 5730] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] mkdir("./94", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5727] <... write resumed>) = 4243456 [pid 5727] exit_group(0) = ? [pid 5727] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5727, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=33 /* 0.33 s */} --- [pid 5246] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./93/binderfs" [pid 5728] <... write resumed>) = 4243456 [pid 5728] exit_group(0) = ? [pid 5246] <... unlink resumed>) = 0 [pid 5246] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5728] +++ exited with 0 +++ [pid 5246] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5728, si_uid=0, si_status=0, si_utime=12 /* 0.12 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 3 [pid 5246] newfstatat(4, "", [pid 5243] newfstatat(3, "", [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5243] getdents64(3, [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] getdents64(4, [pid 5243] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./94/binderfs", [pid 5246] close(4 [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... close resumed>) = 0 [pid 5243] unlink("./94/binderfs" [pid 5246] rmdir("./93/file0" [pid 5243] <... unlink resumed>) = 0 [pid 5246] <... rmdir resumed>) = 0 [pid 5243] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./93") = 0 [pid 5246] mkdir("./94", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5243] <... umount2 resumed>) = 0 [pid 5243] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./94/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5729] <... write resumed>) = 16777216 [pid 5729] munmap(0x7f6c8ae00000, 138412032 [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5729] <... munmap resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./94/file0") = 0 [pid 5729] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5729] <... openat resumed>) = 4 [pid 5243] <... close resumed>) = 0 [pid 5729] ioctl(4, LOOP_SET_FD, 3 [pid 5243] rmdir("./94") = 0 [pid 5243] mkdir("./95", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5729] <... ioctl resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5729] close(3) = 0 [pid 5729] close(4) = 0 [ 469.910267][ T5729] loop4: detected capacity change from 0 to 32768 [pid 5729] mkdir("./file0", 0777) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5729] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 ./strace-static-x86_64: Process 5731 attached [pid 5729] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5731 [pid 5731] set_robust_list(0x55555b590660, 24 [pid 5729] <... openat resumed>) = 3 [pid 5731] <... set_robust_list resumed>) = 0 [pid 5729] chdir("./file0" [pid 5731] chdir("./94" [pid 5729] <... chdir resumed>) = 0 [pid 5729] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5731] <... chdir resumed>) = 0 [pid 5729] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5731] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5729] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5731] <... prctl resumed>) = 0 [pid 5729] <... openat resumed>) = 4 [pid 5731] setpgid(0, 0 [pid 5729] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5731] <... setpgid resumed>) = 0 [pid 5729] <... openat resumed>) = 5 [pid 5731] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5729] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5731] <... openat resumed>) = 3 [pid 5246] <... close resumed>) = 0 [pid 5731] write(3, "1000", 4) = 4 [pid 5731] close(3) = 0 [pid 5731] symlink("/dev/binderfs", "./binderfs" [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5731] <... symlink resumed>) = 0 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5732 ./strace-static-x86_64: Process 5732 attached [pid 5731] write(1, "executing program\n", 18 [pid 5732] set_robust_list(0x55555b590660, 24executing program ) = 0 [pid 5731] <... write resumed>) = 18 [pid 5732] chdir("./94") = 0 [pid 5731] memfd_create("syzkaller", 0 [pid 5732] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5731] <... memfd_create resumed>) = 3 [pid 5732] setpgid(0, 0 [pid 5731] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5732] <... setpgid resumed>) = 0 [pid 5731] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5732] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5732] write(3, "1000", 4) = 4 [pid 5732] close(3) = 0 [pid 5732] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5732] write(1, "executing program\n", 18) = 18 [pid 5732] memfd_create("syzkaller", 0) = 3 [pid 5732] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5730] <... write resumed>) = 16777216 [pid 5730] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5730] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5730] ioctl(4, LOOP_SET_FD, 3 [pid 5729] <... write resumed>) = 4243456 [pid 5729] exit_group(0) = ? [pid 5243] <... close resumed>) = 0 [pid 5729] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5729, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5730] <... ioctl resumed>) = 0 [pid 5730] close(3 [pid 5247] <... restart_syscall resumed>) = 0 [pid 5730] <... close resumed>) = 0 [pid 5730] close(4) = 0 [pid 5730] mkdir("./file0", 0777 [pid 5247] umount2("./92", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./92", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", [pid 5730] <... mkdir resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5733 [pid 5730] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 ./strace-static-x86_64: Process 5733 attached [pid 5247] umount2("./92/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5733] set_robust_list(0x55555b590660, 24 [pid 5247] newfstatat(AT_FDCWD, "./92/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./92/binderfs") = 0 [pid 5733] <... set_robust_list resumed>) = 0 [pid 5247] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5733] chdir("./95") = 0 [pid 5733] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5733] setpgid(0, 0) = 0 [pid 5733] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5733] write(3, "1000", 4) = 4 [pid 5733] close(3) = 0 [pid 5733] symlink("/dev/binderfs", "./binderfs" [pid 5730] <... mount resumed>) = 0 [pid 5733] <... symlink resumed>) = 0 [pid 5730] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] <... umount2 resumed>) = 0 [pid 5730] <... openat resumed>) = 3 [pid 5730] chdir("./file0" [pid 5733] write(1, "executing program\n", 18 [pid 5730] <... chdir resumed>) = 0 [pid 5730] openat(AT_FDCWD, "/dev/loop2", O_RDWRexecuting program [pid 5733] <... write resumed>) = 18 [pid 5730] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5730] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5247] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5733] memfd_create("syzkaller", 0 [pid 5730] <... openat resumed>) = 4 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5730] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [ 470.186685][ T5730] loop2: detected capacity change from 0 to 32768 [pid 5247] newfstatat(AT_FDCWD, "./92/file0", [pid 5733] <... memfd_create resumed>) = 3 [pid 5730] <... openat resumed>) = 5 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5730] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5733] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] umount2("./92/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5733] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./92/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./92/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./92") = 0 [pid 5247] mkdir("./93", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5731] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5732] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5730] <... write resumed>) = 4243456 [pid 5730] exit_group(0) = ? [pid 5730] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5730, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./94/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] unlink("./94/binderfs"./strace-static-x86_64: Process 5734 attached [pid 5734] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5734 [pid 5245] <... unlink resumed>) = 0 [pid 5734] <... set_robust_list resumed>) = 0 [pid 5245] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5734] chdir("./93") = 0 [pid 5734] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5734] setpgid(0, 0) = 0 [pid 5734] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5734] write(3, "1000", 4) = 4 [pid 5734] close(3) = 0 [pid 5734] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5734] write(1, "executing program\n", 18) = 18 [pid 5734] memfd_create("syzkaller", 0 [pid 5245] <... umount2 resumed>) = 0 [pid 5734] <... memfd_create resumed>) = 3 [pid 5245] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5734] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5245] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./94/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./94/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./94") = 0 [pid 5245] mkdir("./95", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5733] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5732] <... write resumed>) = 16777216 [pid 5732] munmap(0x7f6c8ae00000, 138412032 [pid 5731] <... write resumed>) = 16777216 [pid 5731] munmap(0x7f6c8ae00000, 138412032 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5735 ./strace-static-x86_64: Process 5735 attached [pid 5735] set_robust_list(0x55555b590660, 24) = 0 [pid 5735] chdir("./95") = 0 [pid 5735] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5735] setpgid(0, 0) = 0 [pid 5735] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXECexecuting program ) = 3 [pid 5735] write(3, "1000", 4) = 4 [pid 5735] close(3) = 0 [pid 5735] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5735] write(1, "executing program\n", 18) = 18 [pid 5735] memfd_create("syzkaller", 0) = 3 [pid 5735] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5734] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5732] <... munmap resumed>) = 0 [pid 5731] <... munmap resumed>) = 0 [pid 5732] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5732] ioctl(4, LOOP_SET_FD, 3 [pid 5731] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5732] <... ioctl resumed>) = 0 [pid 5731] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5731] close(3 [pid 5732] close(3 [pid 5731] <... close resumed>) = 0 [pid 5732] <... close resumed>) = 0 [pid 5731] close(4) = 0 [pid 5732] close(4 [pid 5731] mkdir("./file0", 0777) = 0 [pid 5732] <... close resumed>) = 0 [pid 5732] mkdir("./file0", 0777 [pid 5731] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5732] <... mkdir resumed>) = 0 [pid 5732] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5733] <... write resumed>) = 16777216 [pid 5732] <... mount resumed>) = 0 [pid 5732] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5732] chdir("./file0") = 0 [pid 5732] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [ 470.949740][ T5732] loop3: detected capacity change from 0 to 32768 [ 470.959390][ T5731] loop1: detected capacity change from 0 to 32768 [pid 5732] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5731] <... mount resumed>) = 0 [pid 5732] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5732] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5731] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5731] chdir("./file0") = 0 [pid 5733] munmap(0x7f6c8ae00000, 138412032 [pid 5731] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5731] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5731] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5733] <... munmap resumed>) = 0 [pid 5731] <... openat resumed>) = 5 [pid 5733] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5731] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5733] <... openat resumed>) = 4 [pid 5733] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5733] close(3) = 0 [pid 5733] close(4) = 0 [pid 5733] mkdir("./file0", 0777) = 0 [ 471.071928][ T5733] loop0: detected capacity change from 0 to 32768 [pid 5733] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5733] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5733] chdir("./file0") = 0 [pid 5733] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5733] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5733] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5733] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5732] <... write resumed>) = 4243456 [pid 5732] exit_group(0) = ? [pid 5732] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5732, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=36 /* 0.36 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./94/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./94/binderfs") = 0 [pid 5246] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5731] <... write resumed>) = 4243456 [pid 5246] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./94/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5731] exit_group(0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./94/file0" [pid 5731] <... exit_group resumed>) = ? [pid 5246] <... rmdir resumed>) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./94") = 0 [pid 5246] mkdir("./95", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5731] +++ exited with 0 +++ [pid 5733] <... write resumed>) = 4243456 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5731, si_uid=0, si_status=0, si_utime=11 /* 0.11 s */, si_stime=30 /* 0.30 s */} --- [pid 5733] exit_group(0 [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5733] <... exit_group resumed>) = ? [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5733] +++ exited with 0 +++ [pid 5244] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5733, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5244] <... openat resumed>) = 3 [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./94/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./94/binderfs") = 0 [pid 5244] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./95/binderfs") = 0 [pid 5243] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5244] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] newfstatat(AT_FDCWD, "./94/file0", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] newfstatat(AT_FDCWD, "./95/file0", [pid 5244] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", [pid 5243] newfstatat(4, "", [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, [pid 5243] getdents64(4, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, [pid 5243] getdents64(4, [pid 5244] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4 [pid 5243] close(4 [pid 5244] <... close resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5244] rmdir("./94/file0" [pid 5243] rmdir("./95/file0" [pid 5244] <... rmdir resumed>) = 0 [pid 5735] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5244] getdents64(3, [pid 5243] <... rmdir resumed>) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3 [pid 5244] close(3 [pid 5243] <... close resumed>) = 0 [pid 5243] rmdir("./95" [pid 5244] <... close resumed>) = 0 [pid 5244] rmdir("./94" [pid 5243] <... rmdir resumed>) = 0 [pid 5244] <... rmdir resumed>) = 0 [pid 5243] mkdir("./96", 0777 [pid 5244] mkdir("./95", 0777 [pid 5243] <... mkdir resumed>) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... mkdir resumed>) = 0 [pid 5243] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5243] <... ioctl resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5244] close(3 [pid 5734] <... write resumed>) = 16777216 [pid 5734] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5734] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5734] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5734] close(3) = 0 [pid 5734] close(4) = 0 [pid 5734] mkdir("./file0", 0777) = 0 [pid 5734] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5246] <... close resumed>) = 0 [pid 5734] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5734] <... openat resumed>) = 3 [pid 5734] chdir("./file0") = 0 [pid 5734] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5736 [pid 5734] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000./strace-static-x86_64: Process 5736 attached ) = 4 [ 471.511524][ T5734] loop4: detected capacity change from 0 to 32768 [pid 5734] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5736] set_robust_list(0x55555b590660, 24 [pid 5734] <... openat resumed>) = 5 [pid 5736] <... set_robust_list resumed>) = 0 [pid 5734] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5736] chdir("./95") = 0 [pid 5736] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5736] setpgid(0, 0) = 0 [pid 5736] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5736] write(3, "1000", 4) = 4 [pid 5736] close(3) = 0 [pid 5736] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5736] write(1, "executing program\n", 18) = 18 [pid 5736] memfd_create("syzkaller", 0) = 3 [pid 5736] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5737 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5738 attached [pid 5738] set_robust_list(0x55555b590660, 24) = 0 [pid 5738] chdir("./96" [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5738 ./strace-static-x86_64: Process 5737 attached [pid 5738] <... chdir resumed>) = 0 [pid 5738] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5738] setpgid(0, 0) = 0 [pid 5737] set_robust_list(0x55555b590660, 24 [pid 5734] <... write resumed>) = 4243456 [pid 5737] <... set_robust_list resumed>) = 0 [pid 5734] exit_group(0 [pid 5737] chdir("./95" [pid 5734] <... exit_group resumed>) = ? [pid 5738] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5737] <... chdir resumed>) = 0 [pid 5738] <... openat resumed>) = 3 [pid 5737] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5734] +++ exited with 0 +++ [pid 5737] <... prctl resumed>) = 0 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5734, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=30 /* 0.30 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...> [pid 5737] setpgid(0, 0 [pid 5738] write(3, "1000", 4 [pid 5737] <... setpgid resumed>) = 0 [pid 5738] <... write resumed>) = 4 [pid 5738] close(3) = 0 [pid 5737] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5738] symlink("/dev/binderfs", "./binderfs" [pid 5737] <... openat resumed>) = 3 [pid 5738] <... symlink resumed>) = 0 [pid 5737] write(3, "1000", 4executing program [pid 5738] write(1, "executing program\n", 18 [pid 5737] <... write resumed>) = 4 [pid 5738] <... write resumed>) = 18 [pid 5737] close(3 [pid 5738] memfd_create("syzkaller", 0 [pid 5737] <... close resumed>) = 0 executing program [pid 5737] symlink("/dev/binderfs", "./binderfs" [pid 5247] <... restart_syscall resumed>) = 0 [pid 5737] <... symlink resumed>) = 0 [pid 5737] write(1, "executing program\n", 18) = 18 [pid 5247] umount2("./93", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5738] <... memfd_create resumed>) = 3 [pid 5737] memfd_create("syzkaller", 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5738] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5737] <... memfd_create resumed>) = 3 [pid 5247] openat(AT_FDCWD, "./93", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5738] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5737] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] <... openat resumed>) = 3 [pid 5735] <... write resumed>) = 16777216 [pid 5737] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5735] munmap(0x7f6c8ae00000, 138412032 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./93/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./93/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./93/binderfs") = 0 [pid 5247] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5247] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./93/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./93/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./93/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./93/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./93") = 0 [pid 5247] mkdir("./94", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5735] <... munmap resumed>) = 0 [pid 5735] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5735] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5735] close(3) = 0 [pid 5735] close(4) = 0 [ 471.877501][ T5735] loop2: detected capacity change from 0 to 32768 [pid 5735] mkdir("./file0", 0777) = 0 [pid 5735] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5735] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5735] chdir("./file0") = 0 [pid 5735] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5735] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5735] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5735] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5739 attached , child_tidptr=0x55555b590650) = 5739 [pid 5739] set_robust_list(0x55555b590660, 24) = 0 [pid 5739] chdir("./94") = 0 [pid 5739] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5739] setpgid(0, 0) = 0 [pid 5739] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5739] write(3, "1000", 4) = 4 [pid 5739] close(3 [pid 5736] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5739] <... close resumed>) = 0 [pid 5739] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5739] write(1, "executing program\n", 18) = 18 [pid 5739] memfd_create("syzkaller", 0) = 3 [pid 5739] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5738] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5735] <... write resumed>) = 4243456 [pid 5735] exit_group(0) = ? [pid 5737] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5735] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5735, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=31 /* 0.31 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./95/binderfs") = 0 [pid 5245] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./95/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./95") = 0 [pid 5245] mkdir("./96", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5736] <... write resumed>) = 16777216 [pid 5736] munmap(0x7f6c8ae00000, 138412032 [pid 5739] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5736] <... munmap resumed>) = 0 [pid 5736] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5736] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5736] close(3) = 0 [pid 5736] close(4) = 0 [pid 5736] mkdir("./file0", 0777) = 0 [ 472.497715][ T5736] loop3: detected capacity change from 0 to 32768 [pid 5736] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5736] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5736] chdir("./file0") = 0 [pid 5736] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5736] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5736] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5736] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5740 attached , child_tidptr=0x55555b590650) = 5740 [pid 5740] set_robust_list(0x55555b590660, 24) = 0 [pid 5740] chdir("./96") = 0 [pid 5740] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5740] setpgid(0, 0) = 0 [pid 5740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5740] write(3, "1000", 4) = 4 [pid 5740] close(3) = 0 [pid 5740] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5740] write(1, "executing program\n", 18) = 18 [pid 5740] memfd_create("syzkaller", 0) = 3 [pid 5740] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5738] <... write resumed>) = 16777216 [pid 5738] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5738] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5737] <... write resumed>) = 16777216 [pid 5738] <... openat resumed>) = 4 [pid 5738] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5737] munmap(0x7f6c8ae00000, 138412032 [pid 5738] close(3) = 0 [pid 5738] close(4) = 0 [pid 5738] mkdir("./file0", 0777) = 0 [pid 5738] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5737] <... munmap resumed>) = 0 [pid 5737] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 472.731990][ T5738] loop0: detected capacity change from 0 to 32768 [pid 5737] ioctl(4, LOOP_SET_FD, 3 [pid 5738] <... mount resumed>) = 0 [pid 5738] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5738] chdir("./file0") = 0 [pid 5738] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5738] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5738] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5738] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5736] <... write resumed>) = 4243456 [pid 5736] exit_group(0) = ? [pid 5736] +++ exited with 0 +++ [pid 5737] <... ioctl resumed>) = 0 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5736, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=39 /* 0.39 s */} --- [pid 5737] close(3 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5737] <... close resumed>) = 0 [pid 5737] close(4) = 0 [pid 5737] mkdir("./file0", 0777 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5737] <... mkdir resumed>) = 0 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [ 472.782423][ T5737] loop1: detected capacity change from 0 to 32768 [pid 5737] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./95/binderfs") = 0 [pid 5246] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5737] <... mount resumed>) = 0 [pid 5737] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5737] chdir("./file0") = 0 [pid 5737] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5737] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5737] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5737] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5739] <... write resumed>) = 16777216 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, [pid 5739] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./95/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./95") = 0 [pid 5246] mkdir("./96", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5246] ioctl(3, LOOP_CLR_FD) = 0 [pid 5246] close(3 [pid 5738] <... write resumed>) = 4243456 [pid 5738] exit_group(0) = ? [pid 5739] <... munmap resumed>) = 0 [pid 5739] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5739] ioctl(4, LOOP_SET_FD, 3 [pid 5738] +++ exited with 0 +++ [pid 5740] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5739] <... ioctl resumed>) = 0 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5738, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=35 /* 0.35 s */} --- [pid 5243] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5739] close(3 [pid 5243] <... openat resumed>) = 3 [pid 5739] <... close resumed>) = 0 [pid 5243] newfstatat(3, "", [pid 5739] close(4) = 0 [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5739] mkdir("./file0", 0777 [pid 5243] getdents64(3, [pid 5739] <... mkdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5739] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5243] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./96/binderfs") = 0 [pid 5243] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5739] <... mount resumed>) = 0 [pid 5243] <... umount2 resumed>) = 0 [pid 5739] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5243] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5739] <... openat resumed>) = 3 [pid 5739] chdir("./file0" [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5739] <... chdir resumed>) = 0 [pid 5739] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5243] newfstatat(AT_FDCWD, "./96/file0", [pid 5739] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5739] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5243] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5739] <... openat resumed>) = 4 [pid 5243] <... openat resumed>) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, [pid 5739] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5243] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5739] <... openat resumed>) = 5 [pid 5243] close(4) = 0 [ 473.051961][ T5739] loop4: detected capacity change from 0 to 32768 [pid 5243] rmdir("./96/file0") = 0 [pid 5739] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5737] <... write resumed>) = 4243456 [pid 5243] getdents64(3, [pid 5737] exit_group(0) = ? [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5737] +++ exited with 0 +++ [pid 5243] close(3) = 0 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5737, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=31 /* 0.31 s */} --- [pid 5243] rmdir("./96" [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5243] <... rmdir resumed>) = 0 [pid 5243] mkdir("./97", 0777 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5243] <... mkdir resumed>) = 0 [pid 5244] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5244] <... openat resumed>) = 3 [pid 5243] <... openat resumed>) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5244] getdents64(3, [pid 5243] <... ioctl resumed>) = 0 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] close(3 [pid 5244] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./95/binderfs") = 0 [pid 5244] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./95/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./95") = 0 [pid 5244] mkdir("./96", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5741 attached , child_tidptr=0x55555b590650) = 5741 [pid 5741] set_robust_list(0x55555b590660, 24) = 0 [pid 5741] chdir("./96") = 0 [pid 5741] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5741] setpgid(0, 0) = 0 [pid 5741] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5741] write(3, "1000", 4) = 4 [pid 5243] <... close resumed>) = 0 [pid 5741] close(3) = 0 [pid 5741] symlink("/dev/binderfs", "./binderfs" [pid 5739] <... write resumed>) = 4243456 [pid 5739] exit_group(0) = ? [pid 5741] <... symlink resumed>) = 0 [pid 5741] write(1, "executing program\n", 18 [pid 5739] +++ exited with 0 +++ executing program [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5741] <... write resumed>) = 18 [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5739, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=27 /* 0.27 s */} --- ./strace-static-x86_64: Process 5742 attached [pid 5741] memfd_create("syzkaller", 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5742 [pid 5742] set_robust_list(0x55555b590660, 24) = 0 [pid 5742] chdir("./97" [pid 5247] umount2("./94", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5742] <... chdir resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5742] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5742] setpgid(0, 0) = 0 [pid 5742] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5247] openat(AT_FDCWD, "./94", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5741] <... memfd_create resumed>) = 3 [pid 5742] write(3, "1000", 4 [pid 5247] <... openat resumed>) = 3 [pid 5741] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5247] newfstatat(3, "", [pid 5742] <... write resumed>) = 4 [pid 5741] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, [pid 5742] close(3 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5742] <... close resumed>) = 0 [pid 5247] umount2("./94/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5742] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./94/binderfs", [pid 5742] write(1, "executing program\n", 18executing program ) = 18 [pid 5742] memfd_create("syzkaller", 0) = 3 [pid 5742] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./94/binderfs") = 0 [pid 5247] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... close resumed>) = 0 [pid 5247] <... umount2 resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5247] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5743 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./94/file0", ./strace-static-x86_64: Process 5743 attached {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5743] set_robust_list(0x55555b590660, 24 [pid 5247] umount2("./94/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5743] <... set_robust_list resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5743] chdir("./96" [pid 5247] openat(AT_FDCWD, "./94/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5743] <... chdir resumed>) = 0 [pid 5247] <... openat resumed>) = 4 [pid 5743] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5247] newfstatat(4, "", [pid 5743] <... prctl resumed>) = 0 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5743] setpgid(0, 0 [pid 5247] getdents64(4, [pid 5743] <... setpgid resumed>) = 0 [pid 5743] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5247] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5743] <... openat resumed>) = 3 [pid 5247] getdents64(4, [pid 5743] write(3, "1000", 4 [pid 5247] <... getdents64 resumed>0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5743] <... write resumed>) = 4 [pid 5247] close(4 [pid 5743] close(3 [pid 5247] <... close resumed>) = 0 [pid 5743] <... close resumed>) = 0 [pid 5247] rmdir("./94/file0" [pid 5743] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5740] <... write resumed>) = 16777216 [pid 5247] getdents64(3, executing program [pid 5740] munmap(0x7f6c8ae00000, 138412032 [pid 5247] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5743] write(1, "executing program\n", 18 [pid 5247] close(3 [pid 5743] <... write resumed>) = 18 [pid 5743] memfd_create("syzkaller", 0) = 3 [pid 5743] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5247] <... close resumed>) = 0 [pid 5247] rmdir("./94" [pid 5740] <... munmap resumed>) = 0 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] mkdir("./95", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5740] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 5740] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5740] close(3) = 0 [pid 5740] close(4) = 0 [pid 5740] mkdir("./file0", 0777) = 0 [ 473.616611][ T5740] loop2: detected capacity change from 0 to 32768 [pid 5740] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5740] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5740] chdir("./file0") = 0 [pid 5740] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5740] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5740] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5740] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5742] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5741] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555b590650) = 5744 ./strace-static-x86_64: Process 5744 attached [pid 5744] set_robust_list(0x55555b590660, 24) = 0 [pid 5744] chdir("./95") = 0 [pid 5744] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5744] setpgid(0, 0) = 0 [pid 5744] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5744] write(3, "1000", 4) = 4 [pid 5744] close(3) = 0 [pid 5744] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5744] write(1, "executing program\n", 18executing program ) = 18 [pid 5744] memfd_create("syzkaller", 0) = 3 [pid 5744] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5740] <... write resumed>) = 4243456 [pid 5740] exit_group(0) = ? [pid 5743] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5740] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5740, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5245] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./96/binderfs") = 0 [pid 5245] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./96/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./96/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./96") = 0 [pid 5245] mkdir("./97", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5742] <... write resumed>) = 16777216 [pid 5744] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5742] munmap(0x7f6c8ae00000, 138412032 [pid 5741] <... write resumed>) = 16777216 [pid 5741] munmap(0x7f6c8ae00000, 138412032 [pid 5742] <... munmap resumed>) = 0 [pid 5742] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5742] ioctl(4, LOOP_SET_FD, 3 [pid 5741] <... munmap resumed>) = 0 [pid 5741] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5741] ioctl(4, LOOP_SET_FD, 3 [pid 5742] <... ioctl resumed>) = 0 [pid 5245] <... close resumed>) = 0 [pid 5743] <... write resumed>) = 16777216 [pid 5742] close(3 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5743] munmap(0x7f6c8ae00000, 138412032 [pid 5742] <... close resumed>) = 0 ./strace-static-x86_64: Process 5745 attached [pid 5742] close(4 [pid 5745] set_robust_list(0x55555b590660, 24 [pid 5742] <... close resumed>) = 0 [pid 5745] <... set_robust_list resumed>) = 0 [pid 5745] chdir("./97" [pid 5742] mkdir("./file0", 0777 [pid 5745] <... chdir resumed>) = 0 [pid 5745] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5742] <... mkdir resumed>) = 0 [pid 5745] <... prctl resumed>) = 0 [pid 5742] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5745 [pid 5745] setpgid(0, 0) = 0 [pid 5745] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5745] write(3, "1000", 4) = 4 [pid 5745] close(3) = 0 [pid 5745] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5745] write(1, "executing program\n", 18) = 18 [pid 5745] memfd_create("syzkaller", 0) = 3 [pid 5745] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5742] <... mount resumed>) = 0 [pid 5741] <... ioctl resumed>) = 0 [pid 5742] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5741] close(3 [pid 5742] <... openat resumed>) = 3 [pid 5741] <... close resumed>) = 0 [ 474.287325][ T5742] loop0: detected capacity change from 0 to 32768 [ 474.291750][ T5741] loop3: detected capacity change from 0 to 32768 [pid 5741] close(4 [pid 5742] chdir("./file0" [pid 5741] <... close resumed>) = 0 [pid 5743] <... munmap resumed>) = 0 [pid 5742] <... chdir resumed>) = 0 [pid 5741] mkdir("./file0", 0777 [pid 5743] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5742] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5743] <... openat resumed>) = 4 [pid 5742] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5743] ioctl(4, LOOP_SET_FD, 3 [pid 5742] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5742] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5741] <... mkdir resumed>) = 0 [pid 5741] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5742] <... openat resumed>) = 5 [pid 5742] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5743] <... ioctl resumed>) = 0 [pid 5743] close(3) = 0 [pid 5743] close(4) = 0 [pid 5743] mkdir("./file0", 0777) = 0 [ 474.355499][ T5743] loop1: detected capacity change from 0 to 32768 [pid 5743] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5741] <... mount resumed>) = 0 [pid 5741] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5741] chdir("./file0") = 0 [pid 5743] <... mount resumed>) = 0 [pid 5741] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5743] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5741] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5743] <... openat resumed>) = 3 [pid 5741] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5743] chdir("./file0" [pid 5741] <... openat resumed>) = 4 [pid 5743] <... chdir resumed>) = 0 [pid 5741] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5743] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5741] <... openat resumed>) = 5 [pid 5743] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5741] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5743] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5743] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5743] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5742] <... write resumed>) = 4243456 [pid 5742] exit_group(0) = ? [pid 5742] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5742, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=25 /* 0.25 s */} --- [pid 5243] umount2("./97", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./97/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./97/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./97/binderfs") = 0 [pid 5243] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4) = 0 [pid 5243] rmdir("./97/file0") = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] close(3) = 0 [pid 5243] rmdir("./97") = 0 [pid 5243] mkdir("./98", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD [pid 5745] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5243] <... ioctl resumed>) = 0 [pid 5243] close(3 [pid 5743] <... write resumed>) = 4243456 [pid 5743] exit_group(0) = ? [pid 5741] <... write resumed>) = 4243456 [pid 5741] exit_group(0) = ? [pid 5741] +++ exited with 0 +++ [pid 5743] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5741, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=33 /* 0.33 s */} --- [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5743, si_uid=0, si_status=0, si_utime=14 /* 0.14 s */, si_stime=32 /* 0.32 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5244] restart_syscall(<... resuming interrupted clone ...> [pid 5744] <... write resumed>) = 16777216 [pid 5246] <... restart_syscall resumed>) = 0 [pid 5244] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 3 [pid 5244] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5246] newfstatat(3, "", [pid 5244] <... openat resumed>) = 3 [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] newfstatat(3, "", [pid 5246] getdents64(3, [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5744] munmap(0x7f6c8ae00000, 138412032 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] getdents64(3, [pid 5246] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./96/binderfs" [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... unlink resumed>) = 0 [pid 5244] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./96/binderfs") = 0 [pid 5244] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./96/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5244] <... umount2 resumed>) = 0 [pid 5744] <... munmap resumed>) = 0 [pid 5244] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5744] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5244] newfstatat(AT_FDCWD, "./96/file0", [pid 5744] <... openat resumed>) = 4 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5744] ioctl(4, LOOP_SET_FD, 3 [pid 5244] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] <... openat resumed>) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] close(4) = 0 [pid 5246] rmdir("./96/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./96") = 0 [pid 5246] mkdir("./97", 0777) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5744] <... ioctl resumed>) = 0 [pid 5244] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5744] close(3) = 0 [pid 5246] <... openat resumed>) = 3 [pid 5244] <... openat resumed>) = 4 [pid 5744] close(4 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5244] newfstatat(4, "", [pid 5744] <... close resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5244] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] close(3 [pid 5744] mkdir("./file0", 0777 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5744] <... mkdir resumed>) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [ 474.820581][ T5744] loop4: detected capacity change from 0 to 32768 [pid 5243] <... close resumed>) = 0 [pid 5744] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5244] rmdir("./96/file0" [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5746 attached [pid 5244] <... rmdir resumed>) = 0 [pid 5244] getdents64(3, [pid 5746] set_robust_list(0x55555b590660, 24 [pid 5244] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5746 [pid 5244] close(3 [pid 5746] <... set_robust_list resumed>) = 0 [pid 5244] <... close resumed>) = 0 [pid 5746] chdir("./98") = 0 [pid 5746] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5746] setpgid(0, 0 [pid 5244] rmdir("./96" [pid 5746] <... setpgid resumed>) = 0 [pid 5746] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] <... rmdir resumed>) = 0 [pid 5244] mkdir("./97", 0777 [pid 5746] <... openat resumed>) = 3 [pid 5746] write(3, "1000", 4) = 4 [pid 5244] <... mkdir resumed>) = 0 [pid 5746] close(3 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5746] <... close resumed>) = 0 [pid 5244] <... openat resumed>) = 3 [pid 5746] symlink("/dev/binderfs", "./binderfs" [pid 5244] ioctl(3, LOOP_CLR_FD [pid 5746] <... symlink resumed>) = 0 [pid 5244] <... ioctl resumed>) = 0 [pid 5746] write(1, "executing program\n", 18 [pid 5244] close(3executing program [pid 5746] <... write resumed>) = 18 [pid 5746] memfd_create("syzkaller", 0) = 3 [pid 5746] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5744] <... mount resumed>) = 0 [pid 5744] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5744] chdir("./file0") = 0 [pid 5744] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5744] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5744] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5744] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5747 attached [pid 5747] set_robust_list(0x55555b590660, 24 [pid 5246] <... clone resumed>, child_tidptr=0x55555b590650) = 5747 [pid 5747] <... set_robust_list resumed>) = 0 [pid 5747] chdir("./97") = 0 [pid 5747] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5747] setpgid(0, 0) = 0 [pid 5747] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5747] write(3, "1000", 4) = 4 [pid 5747] close(3) = 0 [pid 5747] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5747] write(1, "executing program\n", 18) = 18 [pid 5747] memfd_create("syzkaller", 0) = 3 [pid 5747] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5745] <... write resumed>) = 16777216 [pid 5745] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... close resumed>) = 0 [pid 5745] <... munmap resumed>) = 0 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5745] openat(AT_FDCWD, "/dev/loop2", O_RDWR./strace-static-x86_64: Process 5748 attached ) = 4 [pid 5745] ioctl(4, LOOP_SET_FD, 3 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5748 [pid 5748] set_robust_list(0x55555b590660, 24) = 0 [pid 5748] chdir("./97") = 0 [pid 5748] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5748] setpgid(0, 0) = 0 [pid 5748] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5745] <... ioctl resumed>) = 0 [pid 5745] close(3 [pid 5748] write(3, "1000", 4 [pid 5745] <... close resumed>) = 0 [pid 5748] <... write resumed>) = 4 [pid 5745] close(4 [pid 5748] close(3) = 0 [pid 5745] <... close resumed>) = 0 [pid 5748] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5748] write(1, "executing program\n", 18) = 18 [pid 5748] memfd_create("syzkaller", 0) = 3 [pid 5748] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5745] mkdir("./file0", 0777) = 0 [pid 5745] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5744] <... write resumed>) = 4243456 [pid 5744] exit_group(0) = ? [ 475.199405][ T5745] loop2: detected capacity change from 0 to 32768 [pid 5744] +++ exited with 0 +++ [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5744, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=32 /* 0.32 s */} --- [pid 5247] umount2("./95", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5745] <... mount resumed>) = 0 [pid 5247] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5745] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] openat(AT_FDCWD, "./95", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5745] <... openat resumed>) = 3 [pid 5247] newfstatat(3, "", [pid 5745] chdir("./file0") = 0 [pid 5745] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5745] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5247] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5745] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5745] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./95/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./95/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] unlink("./95/binderfs") = 0 [pid 5247] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5746] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./95/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./95/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./95/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./95/file0" [pid 5747] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5247] <... rmdir resumed>) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./95") = 0 [pid 5247] mkdir("./96", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5745] <... write resumed>) = 4243456 [pid 5745] exit_group(0) = ? [pid 5745] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5745, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=36 /* 0.36 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./97", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./97/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./97/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./97/binderfs") = 0 [pid 5245] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5748] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5245] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./97/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./97") = 0 [pid 5245] mkdir("./98", 0777 [pid 5247] <... close resumed>) = 0 [pid 5245] <... mkdir resumed>) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5245] <... ioctl resumed>) = 0 [pid 5245] close(3 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5749 ./strace-static-x86_64: Process 5749 attached [pid 5749] set_robust_list(0x55555b590660, 24) = 0 [pid 5749] chdir("./96") = 0 [pid 5749] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5749] setpgid(0, 0) = 0 [pid 5749] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5749] write(3, "1000", 4) = 4 [pid 5749] close(3) = 0 [pid 5749] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5749] write(1, "executing program\n", 18executing program ) = 18 [pid 5749] memfd_create("syzkaller", 0) = 3 [pid 5749] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5746] <... write resumed>) = 16777216 [pid 5746] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5746] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5746] ioctl(4, LOOP_SET_FD, 3 [pid 5747] <... write resumed>) = 16777216 [pid 5747] munmap(0x7f6c8ae00000, 138412032 [pid 5746] <... ioctl resumed>) = 0 [pid 5746] close(3) = 0 [ 475.820963][ T5746] loop0: detected capacity change from 0 to 32768 [pid 5746] close(4) = 0 [pid 5245] <... close resumed>) = 0 [pid 5746] mkdir("./file0", 0777 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5746] <... mkdir resumed>) = 0 [pid 5746] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,"./strace-static-x86_64: Process 5750 attached [pid 5750] set_robust_list(0x55555b590660, 24 [pid 5245] <... clone resumed>, child_tidptr=0x55555b590650) = 5750 [pid 5750] <... set_robust_list resumed>) = 0 [pid 5750] chdir("./98") = 0 [pid 5747] <... munmap resumed>) = 0 [pid 5750] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5746] <... mount resumed>) = 0 [pid 5750] <... prctl resumed>) = 0 [pid 5746] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5750] setpgid(0, 0 [pid 5747] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5746] <... openat resumed>) = 3 [pid 5750] <... setpgid resumed>) = 0 [pid 5747] <... openat resumed>) = 4 [pid 5746] chdir("./file0" [pid 5750] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5747] ioctl(4, LOOP_SET_FD, 3 [pid 5750] <... openat resumed>) = 3 [pid 5746] <... chdir resumed>) = 0 [pid 5750] write(3, "1000", 4 [pid 5746] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5750] <... write resumed>) = 4 [pid 5750] close(3 [pid 5746] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5750] <... close resumed>) = 0 [pid 5746] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000 [pid 5750] symlink("/dev/binderfs", "./binderfs" [pid 5746] <... openat resumed>) = 4 executing program [pid 5750] <... symlink resumed>) = 0 [pid 5746] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5750] write(1, "executing program\n", 18) = 18 [pid 5746] <... openat resumed>) = 5 [pid 5750] memfd_create("syzkaller", 0 [pid 5746] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5750] <... memfd_create resumed>) = 3 [pid 5747] <... ioctl resumed>) = 0 [pid 5750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5747] close(3 [pid 5750] <... mmap resumed>) = 0x7f6c8ae00000 [pid 5747] <... close resumed>) = 0 [pid 5747] close(4) = 0 [pid 5747] mkdir("./file0", 0777) = 0 [ 475.939850][ T5747] loop3: detected capacity change from 0 to 32768 [pid 5747] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5747] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5747] chdir("./file0") = 0 [pid 5747] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5747] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5747] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5747] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5749] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5748] <... write resumed>) = 16777216 [pid 5748] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5748] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5748] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5748] close(3) = 0 [pid 5748] close(4) = 0 [pid 5748] mkdir("./file0", 0777) = 0 [pid 5748] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [ 476.141416][ T5748] loop1: detected capacity change from 0 to 32768 [pid 5748] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5748] chdir("./file0" [pid 5747] <... write resumed>) = 4243456 [pid 5747] exit_group(0) = ? [pid 5748] <... chdir resumed>) = 0 [pid 5748] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5748] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5748] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5747] +++ exited with 0 +++ [pid 5748] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5746] <... write resumed>) = 4243456 [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5747, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=33 /* 0.33 s */} --- [pid 5746] exit_group(0 [pid 5246] restart_syscall(<... resuming interrupted clone ...> [pid 5746] <... exit_group resumed>) = ? [pid 5246] <... restart_syscall resumed>) = 0 [pid 5246] umount2("./97", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5746] +++ exited with 0 +++ [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5746, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=27 /* 0.27 s */} --- [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5243] umount2("./98", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] <... openat resumed>) = 3 [pid 5243] openat(AT_FDCWD, "./98", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", [pid 5243] newfstatat(3, "", [pid 5246] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, [pid 5243] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] getdents64(3, [pid 5246] umount2("./97/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5243] umount2("./98/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5246] newfstatat(AT_FDCWD, "./97/binderfs", [pid 5243] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5246] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] newfstatat(AT_FDCWD, "./98/binderfs", [pid 5246] unlink("./97/binderfs" [pid 5243] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] <... unlink resumed>) = 0 [pid 5243] unlink("./98/binderfs" [pid 5246] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5243] <... unlink resumed>) = 0 [pid 5243] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5243] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./98/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./98/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5243] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5243] close(4 [pid 5246] <... umount2 resumed>) = 0 [pid 5243] <... close resumed>) = 0 [pid 5246] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5243] rmdir("./98/file0" [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4 [pid 5243] <... rmdir resumed>) = 0 [pid 5246] <... close resumed>) = 0 [pid 5246] rmdir("./97/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./97") = 0 [pid 5246] mkdir("./98", 0777 [pid 5243] getdents64(3, [pid 5246] <... mkdir resumed>) = 0 [pid 5243] <... getdents64 resumed>0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5243] close(3 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5243] <... close resumed>) = 0 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5243] rmdir("./98") = 0 [pid 5243] mkdir("./99", 0777) = 0 [pid 5243] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5243] ioctl(3, LOOP_CLR_FD) = 0 [pid 5243] close(3 [pid 5750] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5748] <... write resumed>) = 4243456 [pid 5748] exit_group(0) = ? [pid 5748] +++ exited with 0 +++ [pid 5749] <... write resumed>) = 16777216 [pid 5244] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5748, si_uid=0, si_status=0, si_utime=13 /* 0.13 s */, si_stime=35 /* 0.35 s */} --- [pid 5244] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5244] umount2("./97", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./97", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5244] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5244] umount2("./97/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./97/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] unlink("./97/binderfs") = 0 [pid 5244] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5244] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5749] munmap(0x7f6c8ae00000, 138412032 [pid 5244] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5244] newfstatat(AT_FDCWD, "./97/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5244] umount2("./97/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5244] openat(AT_FDCWD, "./97/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5244] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5244] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5244] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5244] close(4) = 0 [pid 5244] rmdir("./97/file0") = 0 [pid 5244] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5244] close(3) = 0 [pid 5244] rmdir("./97") = 0 [pid 5244] mkdir("./98", 0777) = 0 [pid 5244] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5244] ioctl(3, LOOP_CLR_FD) = 0 [pid 5244] close(3 [pid 5749] <... munmap resumed>) = 0 [pid 5749] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5749] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5749] close(3) = 0 [pid 5749] close(4) = 0 [pid 5749] mkdir("./file0", 0777) = 0 [ 476.579269][ T5749] loop4: detected capacity change from 0 to 32768 [pid 5749] mount("/dev/loop4", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5751 attached , child_tidptr=0x55555b590650) = 5751 [pid 5243] <... close resumed>) = 0 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5749] <... mount resumed>) = 0 [pid 5749] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5749] chdir("./file0"./strace-static-x86_64: Process 5752 attached ) = 0 [pid 5749] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5749] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5749] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5751] set_robust_list(0x55555b590660, 24 [pid 5749] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5751] <... set_robust_list resumed>) = 0 [pid 5752] set_robust_list(0x55555b590660, 24 [pid 5243] <... clone resumed>, child_tidptr=0x55555b590650) = 5752 [pid 5752] <... set_robust_list resumed>) = 0 [pid 5751] chdir("./98" [pid 5752] chdir("./99" [pid 5751] <... chdir resumed>) = 0 [pid 5752] <... chdir resumed>) = 0 [pid 5752] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5751] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5752] setpgid(0, 0 [pid 5751] <... prctl resumed>) = 0 [pid 5751] setpgid(0, 0) = 0 [pid 5751] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5751] write(3, "1000", 4) = 4 [pid 5752] <... setpgid resumed>) = 0 [pid 5751] close(3 [pid 5752] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5751] <... close resumed>) = 0 [pid 5752] <... openat resumed>) = 3 [pid 5751] symlink("/dev/binderfs", "./binderfs" [pid 5752] write(3, "1000", 4 [pid 5751] <... symlink resumed>) = 0 [pid 5752] <... write resumed>) = 4 executing program [pid 5752] close(3 [pid 5751] write(1, "executing program\n", 18 [pid 5752] <... close resumed>) = 0 [pid 5751] <... write resumed>) = 18 [pid 5752] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5751] memfd_create("syzkaller", 0 [pid 5752] write(1, "executing program\n", 18executing program ) = 18 [pid 5751] <... memfd_create resumed>) = 3 [pid 5752] memfd_create("syzkaller", 0 [pid 5751] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5752] <... memfd_create resumed>) = 3 [pid 5752] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5244] <... close resumed>) = 0 [pid 5750] <... write resumed>) = 16777216 [pid 5750] munmap(0x7f6c8ae00000, 138412032 [pid 5244] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5753 attached [pid 5750] <... munmap resumed>) = 0 [pid 5244] <... clone resumed>, child_tidptr=0x55555b590650) = 5753 [pid 5750] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5753] set_robust_list(0x55555b590660, 24) = 0 [pid 5753] chdir("./98") = 0 [pid 5750] <... openat resumed>) = 4 [pid 5753] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5753] setpgid(0, 0) = 0 [pid 5753] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5753] write(3, "1000", 4) = 4 [pid 5753] close(3) = 0 [pid 5753] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5750] ioctl(4, LOOP_SET_FD, 3executing program [pid 5753] write(1, "executing program\n", 18) = 18 [pid 5753] memfd_create("syzkaller", 0) = 3 [pid 5753] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5750] <... ioctl resumed>) = 0 [pid 5750] close(3) = 0 [pid 5749] <... write resumed>) = 4243456 [pid 5750] close(4) = 0 [pid 5749] exit_group(0) = ? [pid 5750] mkdir("./file0", 0777) = 0 [pid 5749] +++ exited with 0 +++ [pid 5750] mount("/dev/loop2", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5247] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5749, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=31 /* 0.31 s */} --- [pid 5247] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5247] umount2("./96", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./96", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5247] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5247] umount2("./96/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./96/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [ 476.865124][ T5750] loop2: detected capacity change from 0 to 32768 [pid 5247] unlink("./96/binderfs") = 0 [pid 5750] <... mount resumed>) = 0 [pid 5750] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5247] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5750] <... openat resumed>) = 3 [pid 5750] chdir("./file0") = 0 [pid 5750] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5750] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5750] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5750] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5247] <... umount2 resumed>) = 0 [pid 5247] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] newfstatat(AT_FDCWD, "./96/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5247] umount2("./96/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5247] openat(AT_FDCWD, "./96/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5247] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5247] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5247] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5247] close(4) = 0 [pid 5247] rmdir("./96/file0") = 0 [pid 5247] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5247] close(3) = 0 [pid 5247] rmdir("./96") = 0 [pid 5247] mkdir("./97", 0777) = 0 [pid 5247] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5247] ioctl(3, LOOP_CLR_FD) = 0 [pid 5247] close(3 [pid 5751] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5752] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5750] <... write resumed>) = 4243456 [pid 5750] exit_group(0) = ? [pid 5750] +++ exited with 0 +++ [pid 5245] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5750, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5245] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5245] umount2("./98", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./98", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5245] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5245] umount2("./98/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./98/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] unlink("./98/binderfs") = 0 [pid 5245] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5245] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] newfstatat(AT_FDCWD, "./98/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5245] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5245] openat(AT_FDCWD, "./98/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5245] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5245] getdents64(4, 0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5245] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5245] close(4) = 0 [pid 5245] rmdir("./98/file0") = 0 [pid 5245] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5245] close(3) = 0 [pid 5245] rmdir("./98") = 0 [pid 5245] mkdir("./99", 0777) = 0 [pid 5245] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 5245] ioctl(3, LOOP_CLR_FD) = 0 [pid 5245] close(3 [pid 5247] <... close resumed>) = 0 [pid 5247] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5754 attached [pid 5754] set_robust_list(0x55555b590660, 24 [pid 5247] <... clone resumed>, child_tidptr=0x55555b590650) = 5754 [pid 5754] <... set_robust_list resumed>) = 0 [pid 5754] chdir("./97") = 0 [pid 5754] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5754] setpgid(0, 0) = 0 [pid 5754] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5753] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5754] <... openat resumed>) = 3 [pid 5754] write(3, "1000", 4) = 4 [pid 5754] close(3) = 0 [pid 5754] symlink("/dev/binderfs", "./binderfs") = 0 executing program [pid 5754] write(1, "executing program\n", 18) = 18 [pid 5754] memfd_create("syzkaller", 0) = 3 [pid 5754] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5751] <... write resumed>) = 16777216 [pid 5751] munmap(0x7f6c8ae00000, 138412032) = 0 [pid 5751] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5751] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5751] close(3) = 0 [pid 5751] close(4) = 0 [pid 5751] mkdir("./file0", 0777) = 0 [ 477.446373][ T5751] loop3: detected capacity change from 0 to 32768 [pid 5751] mount("/dev/loop3", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5751] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5751] chdir("./file0") = 0 [pid 5751] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5751] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5751] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5751] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5245] <... close resumed>) = 0 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5755 attached , child_tidptr=0x55555b590650) = 5755 [pid 5755] set_robust_list(0x55555b590660, 24) = 0 [pid 5755] chdir("./99") = 0 [pid 5755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5755] setpgid(0, 0) = 0 [pid 5755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5755] write(3, "1000", 4) = 4 [pid 5755] close(3) = 0 [pid 5755] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5755] write(1, "executing program\n", 18executing program ) = 18 [pid 5755] memfd_create("syzkaller", 0) = 3 [pid 5755] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5752] <... write resumed>) = 16777216 [pid 5752] munmap(0x7f6c8ae00000, 138412032 [pid 5754] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5752] <... munmap resumed>) = 0 [pid 5751] <... write resumed>) = 4243456 [pid 5751] exit_group(0) = ? [pid 5752] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5752] ioctl(4, LOOP_SET_FD, 3 [pid 5751] +++ exited with 0 +++ [pid 5246] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5751, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=34 /* 0.34 s */} --- [pid 5246] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5246] umount2("./98", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] openat(AT_FDCWD, "./98", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5246] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5246] umount2("./98/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./98/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] unlink("./98/binderfs") = 0 [pid 5246] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5752] <... ioctl resumed>) = 0 [pid 5752] close(3) = 0 [pid 5752] close(4) = 0 [pid 5246] <... umount2 resumed>) = 0 [pid 5246] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5246] newfstatat(AT_FDCWD, "./98/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5246] umount2("./98/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5752] mkdir("./file0", 0777 [pid 5246] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5752] <... mkdir resumed>) = 0 [pid 5246] openat(AT_FDCWD, "./98/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5246] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5246] getdents64(4, [pid 5752] mount("/dev/loop0", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard," [pid 5246] <... getdents64 resumed>0x55555b599730 /* 2 entries */, 32768) = 48 [pid 5246] getdents64(4, 0x55555b599730 /* 0 entries */, 32768) = 0 [pid 5246] close(4) = 0 [pid 5246] rmdir("./98/file0") = 0 [pid 5246] getdents64(3, 0x55555b5916f0 /* 0 entries */, 32768) = 0 [pid 5246] close(3) = 0 [pid 5246] rmdir("./98") = 0 [pid 5753] <... write resumed>) = 16777216 [pid 5753] munmap(0x7f6c8ae00000, 138412032 [pid 5246] mkdir("./99", 0777 [pid 5752] <... mount resumed>) = 0 [pid 5246] <... mkdir resumed>) = 0 [ 477.722788][ T5752] loop0: detected capacity change from 0 to 32768 [pid 5752] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5752] chdir("./file0") = 0 [pid 5752] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5246] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5752] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5752] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4 [pid 5246] <... openat resumed>) = 3 [pid 5752] <... openat resumed>) = 5 [pid 5246] ioctl(3, LOOP_CLR_FD [pid 5752] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... ioctl resumed>) = 0 [pid 5246] close(3 [pid 5753] <... munmap resumed>) = 0 [pid 5753] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5753] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5753] close(3) = 0 [pid 5753] close(4) = 0 [ 477.834796][ T5753] loop1: detected capacity change from 0 to 32768 [pid 5753] mkdir("./file0", 0777) = 0 [pid 5753] mount("/dev/loop1", "./file0", "jfs", MS_REC, "quota,discard,discard,iocharset=koi8-ru,discard,") = 0 [pid 5753] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5753] chdir("./file0") = 0 [pid 5753] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5753] openat(AT_FDCWD, "memory.events", O_WRONLY|O_CREAT|O_EXCL|O_TRUNC|O_APPEND|FASYNC|0x20, 000) = 4 [pid 5753] openat(AT_FDCWD, "memory.events", O_WRONLY|O_TRUNC|O_NONBLOCK|O_DSYNC|O_DIRECT|FASYNC|0x4) = 5 [pid 5753] write(5, "\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4243456 [pid 5246] <... close resumed>) = 0 [pid 5246] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5756 attached , child_tidptr=0x55555b590650) = 5756 [pid 5756] set_robust_list(0x55555b590660, 24) = 0 [pid 5756] chdir("./99") = 0 [pid 5756] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5756] setpgid(0, 0) = 0 [pid 5756] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5756] write(3, "1000", 4 [pid 5752] <... write resumed>) = 4243456 [pid 5756] <... write resumed>) = 4 [pid 5752] exit_group(0 [pid 5756] close(3 [pid 5752] <... exit_group resumed>) = ? [pid 5756] <... close resumed>) = 0 [pid 5752] +++ exited with 0 +++ [pid 5756] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5756] write(1, "executing program\n", 18) = 18 [pid 5243] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5752, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=34 /* 0.34 s */} --- [pid 5243] restart_syscall(<... resuming interrupted clone ...> [pid 5756] memfd_create("syzkaller", 0) = 3 [pid 5756] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6c8ae00000 [pid 5243] <... restart_syscall resumed>) = 0 [pid 5243] umount2("./99", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] openat(AT_FDCWD, "./99", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5243] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5243] getdents64(3, 0x55555b5916f0 /* 4 entries */, 32768) = 112 [pid 5243] umount2("./99/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5243] newfstatat(AT_FDCWD, "./99/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5243] unlink("./99/binderfs") = 0 [pid 5243] umount2("./99/file0", MNT_FORCE|UMOUNT_NOFOLLOW) = 0 [pid 5753] <... write resumed>) = 4243456 [ 478.096515][ T113] ================================================================== [ 478.104638][ T113] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x7e0/0xb80 [ 478.112342][ T113] Read of size 4 at addr ffff888031cf8294 by task jfsCommit/113 [ 478.119991][ T113] [ 478.122344][ T113] CPU: 1 UID: 0 PID: 113 Comm: jfsCommit Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0 [ 478.132864][ T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 478.143034][ T113] Call Trace: [ 478.146332][ T113] [ 478.149284][ T113] dump_stack_lvl+0x241/0x360 [ 478.154001][ T113] ? __pfx_dump_stack_lvl+0x10/0x10 [ 478.159239][ T113] ? __pfx__printk+0x10/0x10 [ 478.163850][ T113] ? _printk+0xd5/0x120 [ 478.168017][ T113] ? __virt_addr_valid+0x183/0x530 [ 478.173132][ T113] ? __virt_addr_valid+0x183/0x530 [ 478.178252][ T113] print_report+0x169/0x550 [ 478.182776][ T113] ? __virt_addr_valid+0x183/0x530 [ 478.187892][ T113] ? __virt_addr_valid+0x183/0x530 [ 478.193007][ T113] ? __virt_addr_valid+0x45f/0x530 [ 478.198126][ T113] ? __phys_addr+0xba/0x170 [ 478.202658][ T113] ? jfs_lazycommit+0x7e0/0xb80 [ 478.207521][ T113] kasan_report+0x143/0x180 [ 478.212037][ T113] ? _raw_spin_lock_irqsave+0xe1/0x120 [ 478.217679][ T113] ? jfs_lazycommit+0x7e0/0xb80 [ 478.222542][ T113] jfs_lazycommit+0x7e0/0xb80 [ 478.227234][ T113] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 478.233222][ T113] ? lockdep_hardirqs_on+0x99/0x150 [ 478.238437][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.243642][ T113] ? __pfx_default_wake_function+0x10/0x10 [ 478.249548][ T113] ? __kthread_parkme+0x169/0x1d0 [ 478.254587][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.259791][ T113] kthread+0x2f0/0x390 [ 478.263888][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.269095][ T113] ? __pfx_kthread+0x10/0x10 [ 478.273686][ T113] ret_from_fork+0x4b/0x80 [ 478.278118][ T113] ? __pfx_kthread+0x10/0x10 [ 478.282733][ T113] ret_from_fork_asm+0x1a/0x30 [ 478.287535][ T113] [ 478.290601][ T113] [ 478.292930][ T113] Allocated by task 5752: [ 478.297252][ T113] kasan_save_track+0x3f/0x80 [ 478.301940][ T113] __kasan_kmalloc+0x98/0xb0 [ 478.306566][ T113] __kmalloc_cache_noprof+0x19c/0x2c0 [ 478.311953][ T113] jfs_fill_super+0xff/0xc50 [ 478.316551][ T113] mount_bdev+0x20a/0x2d0 [ 478.320885][ T113] legacy_get_tree+0xee/0x190 [ 478.325571][ T113] vfs_get_tree+0x90/0x2b0 [ 478.330031][ T113] do_new_mount+0x2be/0xb40 [ 478.334542][ T113] __se_sys_mount+0x2d6/0x3c0 [ 478.339320][ T113] do_syscall_64+0xf3/0x230 [ 478.343854][ T113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.349768][ T113] [ 478.352095][ T113] Freed by task 5243: [ 478.356081][ T113] kasan_save_track+0x3f/0x80 [ 478.360778][ T113] kasan_save_free_info+0x40/0x50 [ 478.365814][ T113] __kasan_slab_free+0x59/0x70 [ 478.370592][ T113] kfree+0x1a0/0x440 [ 478.374487][ T113] generic_shutdown_super+0x139/0x2d0 [ 478.379862][ T113] kill_block_super+0x44/0x90 [ 478.384546][ T113] deactivate_locked_super+0xc4/0x130 [ 478.389922][ T113] cleanup_mnt+0x41f/0x4b0 [ 478.394341][ T113] task_work_run+0x24f/0x310 [ 478.398933][ T113] ptrace_notify+0x2d2/0x380 [ 478.403525][ T113] syscall_exit_work+0xc6/0x190 [ 478.408375][ T113] syscall_exit_to_user_mode+0x279/0x370 [ 478.414011][ T113] do_syscall_64+0x100/0x230 [ 478.418601][ T113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.424504][ T113] [ 478.426839][ T113] The buggy address belongs to the object at ffff888031cf8200 [ 478.426839][ T113] which belongs to the cache kmalloc-256 of size 256 [ 478.440912][ T113] The buggy address is located 148 bytes inside of [ 478.440912][ T113] freed 256-byte region [ffff888031cf8200, ffff888031cf8300) [ 478.454708][ T113] [ 478.457027][ T113] The buggy address belongs to the physical page: [ 478.463441][ T113] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31cf8 [ 478.472204][ T113] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 478.480706][ T113] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff) [ 478.488256][ T113] page_type: f5(slab) [ 478.492245][ T113] raw: 00fff00000000040 ffff88801ac41b40 ffffea0000a15e00 dead000000000004 [ 478.500841][ T113] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 478.509424][ T113] head: 00fff00000000040 ffff88801ac41b40 ffffea0000a15e00 dead000000000004 [ 478.518272][ T113] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 478.526946][ T113] head: 00fff00000000001 ffffea0000c73e01 ffffffffffffffff 0000000000000000 [ 478.535644][ T113] head: 0000000000000002 0000000000000000 00000000ffffffff 0000000000000000 [ 478.544335][ T113] page dumped because: kasan: bad access detected [ 478.550767][ T113] page_owner tracks the page as allocated [ 478.556487][ T113] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4675, tgid 4675 (udevadm), ts 25673535802, free_ts 25670769126 [ 478.576660][ T113] post_alloc_hook+0x1f3/0x230 [ 478.581436][ T113] get_page_from_freelist+0x3039/0x3180 [ 478.586993][ T113] __alloc_pages_noprof+0x256/0x6c0 [ 478.592293][ T113] alloc_pages_mpol_noprof+0x3e8/0x680 [ 478.597772][ T113] alloc_slab_page+0x6a/0x120 [ 478.602474][ T113] allocate_slab+0x5a/0x2f0 [ 478.607003][ T113] ___slab_alloc+0xcd1/0x14b0 [ 478.611707][ T113] __slab_alloc+0x58/0xa0 [ 478.616054][ T113] __kmalloc_cache_noprof+0x1d5/0x2c0 [ 478.621437][ T113] smk_fetch+0x92/0x140 [ 478.625604][ T113] smack_d_instantiate+0x840/0xa50 [ 478.630724][ T113] security_d_instantiate+0x107/0x1f0 [ 478.636098][ T113] d_splice_alias+0x6f/0x330 [ 478.640695][ T113] path_openat+0x11a7/0x3590 [ 478.645289][ T113] do_filp_open+0x235/0x490 [ 478.649795][ T113] do_sys_openat2+0x13e/0x1d0 [ 478.654480][ T113] page last free pid 4677 tgid 4677 stack trace: [ 478.660825][ T113] free_unref_page+0xcd0/0xf00 [ 478.665595][ T113] __slab_free+0x31b/0x3d0 [ 478.670017][ T113] qlist_free_all+0x9a/0x140 [ 478.674631][ T113] kasan_quarantine_reduce+0x14f/0x170 [ 478.680095][ T113] __kasan_slab_alloc+0x23/0x80 [ 478.684954][ T113] kmem_cache_alloc_noprof+0x135/0x2a0 [ 478.690417][ T113] getname_flags+0xb7/0x540 [ 478.694919][ T113] __x64_sys_unlink+0x3a/0x50 [ 478.699612][ T113] do_syscall_64+0xf3/0x230 [ 478.704119][ T113] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 478.710030][ T113] [ 478.712352][ T113] Memory state around the buggy address: [ 478.717979][ T113] ffff888031cf8180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 478.726040][ T113] ffff888031cf8200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 478.734103][ T113] >ffff888031cf8280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 478.742159][ T113] ^ [ 478.746747][ T113] ffff888031cf8300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 478.754810][ T113] ffff888031cf8380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 478.762870][ T113] ================================================================== [ 478.770941][ T113] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 478.778132][ T113] CPU: 1 UID: 0 PID: 113 Comm: jfsCommit Not tainted 6.12.0-rc2-syzkaller-00050-g5b7c893ed5ed #0 [ 478.788630][ T113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 478.798688][ T113] Call Trace: [ 478.801969][ T113] [ 478.804901][ T113] dump_stack_lvl+0x241/0x360 [ 478.809585][ T113] ? __pfx_dump_stack_lvl+0x10/0x10 [ 478.814785][ T113] ? __pfx__printk+0x10/0x10 [ 478.819387][ T113] ? rcu_is_watching+0x15/0xb0 [ 478.824157][ T113] ? lock_release+0xbf/0xa30 [ 478.828786][ T113] ? vscnprintf+0x5d/0x90 [ 478.833129][ T113] panic+0x349/0x880 [ 478.837036][ T113] ? check_panic_on_warn+0x21/0xb0 [ 478.842166][ T113] ? __pfx_panic+0x10/0x10 [ 478.846594][ T113] ? do_raw_spin_unlock+0x13c/0x8b0 [ 478.851805][ T113] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 478.857727][ T113] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 478.864063][ T113] ? print_report+0x502/0x550 [ 478.868848][ T113] check_panic_on_warn+0x86/0xb0 [ 478.873882][ T113] ? jfs_lazycommit+0x7e0/0xb80 [ 478.878744][ T113] end_report+0x77/0x160 [ 478.882997][ T113] kasan_report+0x154/0x180 [ 478.887513][ T113] ? _raw_spin_lock_irqsave+0xe1/0x120 [ 478.892997][ T113] ? jfs_lazycommit+0x7e0/0xb80 [ 478.897855][ T113] jfs_lazycommit+0x7e0/0xb80 [ 478.902540][ T113] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 478.908442][ T113] ? lockdep_hardirqs_on+0x99/0x150 [ 478.913655][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.918863][ T113] ? __pfx_default_wake_function+0x10/0x10 [ 478.924686][ T113] ? __kthread_parkme+0x169/0x1d0 [ 478.929725][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.935105][ T113] kthread+0x2f0/0x390 [ 478.939179][ T113] ? __pfx_jfs_lazycommit+0x10/0x10 [ 478.944384][ T113] ? __pfx_kthread+0x10/0x10 [ 478.948980][ T113] ret_from_fork+0x4b/0x80 [ 478.953408][ T113] ? __pfx_kthread+0x10/0x10 [ 478.957998][ T113] ret_from_fork_asm+0x1a/0x30 [ 478.962781][ T113] [ 478.966043][ T113] Kernel Offset: disabled [ 478.970386][ T113] Rebooting in 86400 seconds..