./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1877465727 <...> Warning: Permanently added '10.128.1.57' (ED25519) to the list of known hosts. execve("./syz-executor1877465727", ["./syz-executor1877465727"], 0x7ffff89dac20 /* 10 vars */) = 0 brk(NULL) = 0x55555a9c9000 brk(0x55555a9c9d00) = 0x55555a9c9d00 arch_prctl(ARCH_SET_FS, 0x55555a9c9380) = 0 set_tid_address(0x55555a9c9650) = 5826 set_robust_list(0x55555a9c9660, 24) = 0 rseq(0x55555a9c9ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1877465727", 4096) = 28 getrandom("\x26\xe1\x07\x8b\xe3\xa9\x37\x89", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555a9c9d00 brk(0x55555a9ead00) = 0x55555a9ead00 brk(0x55555a9eb000) = 0x55555a9eb000 mprotect(0x7fed8b4c8000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3 socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 sendto(4, [{nlmsg_len=36, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36 recvfrom(4, [{nlmsg_len=864, nlmsg_type=nlctrl, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5826}, "\x01\x02\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00\x06\x00\x01\x00\x1d\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x30\x00\x00\x00\xe8\x02\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x05\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x03\x00"...], 4096, 0, NULL, NULL) = 864 recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=36, nlmsg_type=nlctrl, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5 ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0 close(5) = 0 sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x06\x00\x0a\x00\xa0\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36 recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5 ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0 close(5) = 0 sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0c\x00\x01\x00\x02\x00\xaa\xaa\xaa\xaa\xaa\xaa"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44 recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 sendto(3, [{nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=0, ifi_flags=0, ifi_change=0}, [[{nla_len=11, nla_type=IFLA_IFNAME}, "lowpan0"...], [{nla_len=16, nla_type=IFLA_LINKINFO}, [{nla_len=10, nla_type=IFLA_INFO_KIND}, "lowpan"...]], [{nla_len=8, nla_type=IFLA_LINK}, 11]]], 68, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 68 recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5 ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0 close(5) = 0 sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x06\x00\x0a\x00\xa1\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36 recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5 ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0 close(5) = 0 sendto(3, [{nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=if_nametoindex("wpan1"), ifi_flags=IFF_UP, ifi_change=0x1}, [{nla_len=12, nla_type=IFLA_ADDRESS}, 02:01:aa:aa:aa:aa:aa]], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44 recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5826}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 close(3) = 0 close(4) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5829 attached , child_tidptr=0x55555a9c9650) = 5829 [pid 5829] set_robust_list(0x55555a9c9660, 24) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5829] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5829] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5830 attached [pid 5826] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5830 [pid 5830] set_robust_list(0x55555a9c9660, 24 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5830] <... set_robust_list resumed>) = 0 [pid 5829] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5831 attached [pid 5830] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5829] close(3 [pid 5826] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5831 [pid 5831] set_robust_list(0x55555a9c9660, 24 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5830] <... openat resumed>) = 3 [pid 5829] <... close resumed>) = 0 [pid 5831] <... set_robust_list resumed>) = 0 [pid 5829] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5831] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5830] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5833 attached ./strace-static-x86_64: Process 5832 attached [pid 5832] set_robust_list(0x55555a9c9660, 24) = 0 [pid 5833] set_robust_list(0x55555a9c9660, 24 [pid 5832] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5830] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5833] <... set_robust_list resumed>) = 0 [pid 5826] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5832 [pid 5833] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5831] <... openat resumed>) = 3 [pid 5830] close(3 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5833] <... prctl resumed>) = 0 [pid 5830] <... close resumed>) = 0 [pid 5833] setpgid(0, 0 [pid 5830] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5829] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5833 executing program [pid 5832] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5835 attached ./strace-static-x86_64: Process 5834 attached [pid 5833] <... setpgid resumed>) = 0 [pid 5831] ioctl(3, LOOP_CLR_FD [pid 5834] set_robust_list(0x55555a9c9660, 24 [pid 5833] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5834] <... set_robust_list resumed>) = 0 [pid 5834] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5834] setpgid(0, 0) = 0 [pid 5834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5834] write(3, "1000", 4) = 4 [pid 5834] close(3) = 0 [pid 5834] write(1, "executing program\n", 18) = 18 [pid 5834] memfd_create("syzkaller", 0 [pid 5826] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5835 [pid 5835] set_robust_list(0x55555a9c9660, 24 [pid 5833] <... openat resumed>) = 3 [pid 5832] ioctl(3, LOOP_CLR_FD [pid 5831] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5830] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5834 [pid 5833] write(3, "1000", 4 [pid 5834] <... memfd_create resumed>) = 3 [pid 5833] <... write resumed>) = 4 [pid 5832] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fed82e00000 [pid 5833] close(3 [pid 5832] close(3 [pid 5831] close(3 [pid 5835] <... set_robust_list resumed>) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLDexecuting program [pid 5835] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5833] <... close resumed>) = 0 [pid 5832] <... close resumed>) = 0 [pid 5831] <... close resumed>) = 0 ./strace-static-x86_64: Process 5836 attached [pid 5835] <... openat resumed>) = 3 [pid 5833] write(1, "executing program\n", 18 [pid 5832] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5831] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5837 attached [pid 5836] set_robust_list(0x55555a9c9660, 24 [pid 5833] <... write resumed>) = 18 [pid 5836] <... set_robust_list resumed>) = 0 [pid 5833] memfd_create("syzkaller", 0./strace-static-x86_64: Process 5838 attached [pid 5826] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5836 [pid 5835] ioctl(3, LOOP_CLR_FD [pid 5833] <... memfd_create resumed>) = 3 [pid 5832] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5837 [pid 5838] set_robust_list(0x55555a9c9660, 24 [pid 5837] set_robust_list(0x55555a9c9660, 24 [pid 5836] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5835] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5833] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5837] <... set_robust_list resumed>) = 0 [pid 5835] close(3 [pid 5833] <... mmap resumed>) = 0x7fed82e00000 [pid 5831] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5838 [pid 5838] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5837] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5836] <... openat resumed>) = 3 [pid 5835] <... close resumed>) = 0 executing program [pid 5835] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5838] <... prctl resumed>) = 0 [pid 5838] setpgid(0, 0) = 0 [pid 5838] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5839 attached ) = 3 [pid 5838] write(3, "1000", 4 [pid 5839] set_robust_list(0x55555a9c9660, 24 [pid 5838] <... write resumed>) = 4 [pid 5838] close(3) = 0 [pid 5838] write(1, "executing program\n", 18) = 18 [pid 5838] memfd_create("syzkaller", 0 [pid 5835] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5839 [pid 5839] <... set_robust_list resumed>) = 0 [pid 5839] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5839] setpgid(0, 0) = 0 [pid 5839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5837] <... prctl resumed>) = 0 [pid 5836] ioctl(3, LOOP_CLR_FD [pid 5839] <... openat resumed>) = 3 [pid 5838] <... memfd_create resumed>) = 3 [pid 5837] setpgid(0, 0 [pid 5836] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fed82e00000 [pid 5839] write(3, "1000", 4 [pid 5837] <... setpgid resumed>) = 0 [pid 5836] close(3executing program [pid 5839] <... write resumed>) = 4 [pid 5837] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5836] <... close resumed>) = 0 [pid 5839] close(3) = 0 [pid 5839] write(1, "executing program\n", 18) = 18 [pid 5839] memfd_create("syzkaller", 0) = 3 [pid 5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fed82e00000 [pid 5836] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached [pid 5837] <... openat resumed>) = 3 [pid 5840] set_robust_list(0x55555a9c9660, 24 [pid 5837] write(3, "1000", 4 [pid 5836] <... clone resumed>, child_tidptr=0x55555a9c9650) = 5840 [pid 5837] <... write resumed>) = 4 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5837] close(3executing program ) = 0 [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5837] write(1, "executing program\n", 18 [pid 5840] <... prctl resumed>) = 0 [pid 5837] <... write resumed>) = 18 [pid 5840] setpgid(0, 0 [pid 5837] memfd_create("syzkaller", 0 [pid 5840] <... setpgid resumed>) = 0 [pid 5837] <... memfd_create resumed>) = 3 [pid 5837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5837] <... mmap resumed>) = 0x7fed82e00000 [pid 5840] <... openat resumed>) = 3 [pid 5840] write(3, "1000", 4) = 4 [pid 5840] close(3) = 0 executing program [pid 5840] write(1, "executing program\n", 18) = 18 [pid 5840] memfd_create("syzkaller", 0) = 3 [pid 5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fed82e00000 [pid 5834] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5833] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5839] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5838] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5837] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [ 91.346593][ T9] cfg80211: failed to load regulatory.db [pid 5840] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5839] <... write resumed>) = 16777216 [pid 5834] <... write resumed>) = 16777216 [pid 5839] munmap(0x7fed82e00000, 138412032 [pid 5834] munmap(0x7fed82e00000, 138412032 [pid 5837] <... write resumed>) = 16777216 [pid 5837] munmap(0x7fed82e00000, 138412032 [pid 5833] <... write resumed>) = 16777216 [pid 5838] <... write resumed>) = 16777216 [pid 5833] munmap(0x7fed82e00000, 138412032 [pid 5838] munmap(0x7fed82e00000, 138412032 [pid 5840] <... write resumed>) = 16777216 [pid 5840] munmap(0x7fed82e00000, 138412032 [pid 5839] <... munmap resumed>) = 0 [pid 5839] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5839] ioctl(4, LOOP_SET_FD, 3 [pid 5834] <... munmap resumed>) = 0 [pid 5839] <... ioctl resumed>) = 0 [pid 5837] <... munmap resumed>) = 0 [pid 5834] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5834] ioctl(4, LOOP_SET_FD, 3 [pid 5838] <... munmap resumed>) = 0 [pid 5839] close(3) = 0 [pid 5839] close(4) = 0 [pid 5839] mkdir("./file1", 0777 [pid 5837] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5839] <... mkdir resumed>) = 0 [pid 5838] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5837] <... openat resumed>) = 4 [pid 5834] <... ioctl resumed>) = 0 [pid 5833] <... munmap resumed>) = 0 [pid 5837] ioctl(4, LOOP_SET_FD, 3 [ 91.819044][ T5839] loop4: detected capacity change from 0 to 32768 [ 91.847261][ T5834] loop1: detected capacity change from 0 to 32768 [pid 5839] mount("/dev/loop4", "./file1", "gfs2", MS_NODIRATIME|MS_STRICTATIME, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5834] close(3) = 0 [pid 5834] close(4) = 0 [pid 5834] mkdir("./file1", 0777) = -1 EEXIST (File exists) [pid 5834] mount("/dev/loop1", "./file1", "gfs2", MS_NODIRATIME|MS_STRICTATIME, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5840] <... munmap resumed>) = 0 [pid 5838] <... openat resumed>) = 4 [pid 5833] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5838] ioctl(4, LOOP_SET_FD, 3 [pid 5833] <... openat resumed>) = 4 [pid 5833] ioctl(4, LOOP_SET_FD, 3 [pid 5837] <... ioctl resumed>) = 0 [pid 5837] close(3) = 0 [pid 5837] close(4) = 0 [pid 5837] mkdir("./file1", 0777) = -1 EEXIST (File exists) [pid 5837] mount("/dev/loop3", "./file1", "gfs2", MS_NODIRATIME|MS_STRICTATIME, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5840] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5833] <... ioctl resumed>) = 0 [pid 5840] <... openat resumed>) = 4 [pid 5840] ioctl(4, LOOP_SET_FD, 3 [pid 5833] close(3) = 0 [pid 5838] <... ioctl resumed>) = 0 [pid 5833] close(4) = 0 [ 91.878702][ T5837] loop3: detected capacity change from 0 to 32768 [ 91.888822][ T5833] loop0: detected capacity change from 0 to 32768 [ 91.896808][ T5838] loop2: detected capacity change from 0 to 32768 [pid 5833] mkdir("./file1", 0777 [pid 5838] close(3 [pid 5833] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5838] <... close resumed>) = 0 [pid 5833] mount("/dev/loop0", "./file1", "gfs2", MS_NODIRATIME|MS_STRICTATIME, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5838] close(4) = 0 [pid 5838] mkdir("./file1", 0777) = -1 EEXIST (File exists) [ 91.932013][ T5834] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 91.966557][ T5839] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.989146][ T5837] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 91.989952][ T5840] loop5: detected capacity change from 0 to 32768 [ 91.994274][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 91.994310][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 91.994325][ T5839] Call Trace: [ 91.994335][ T5839] [ 91.994345][ T5839] dump_stack_lvl+0x189/0x250 [pid 5838] mount("/dev/loop2", "./file1", "gfs2", MS_NODIRATIME|MS_STRICTATIME, "quota_quantum=0x0000000000000004,suiddir,quota,barrier,acl,quota=off,discard,noloccookie,quota=on,lo"... [pid 5840] <... ioctl resumed>) = 0 [pid 5840] close(3) = 0 [pid 5840] close(4) = 0 [pid 5840] mkdir("./file1", 0777) = -1 EEXIST (File exists) [ 91.994413][ T5839] ? kernfs_path_from_node+0x2c/0x260 [ 91.994454][ T5839] ? __pfx_dump_stack_lvl+0x10/0x10 [ 91.994492][ T5839] ? __pfx__printk+0x10/0x10 [ 91.994521][ T5839] ? kernfs_path_from_node+0x2c/0x260 [ 91.994554][ T5839] ? kernfs_path_from_node+0x2c/0x260 [ 91.994591][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.994619][ T5839] ? kernfs_path_from_node+0x22c/0x260 [ 91.994653][ T5839] ? kernfs_path_from_node+0x2c/0x260 [ 91.994692][ T5839] sysfs_create_dir_ns+0x259/0x280 [ 91.994730][ T5839] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 91.994767][ T5839] ? do_raw_spin_unlock+0x122/0x240 [ 91.994810][ T5839] kobject_add_internal+0x59f/0xb40 [ 91.994855][ T5839] kobject_init_and_add+0x125/0x190 [ 91.994892][ T5839] ? __pfx_kobject_init_and_add+0x10/0x10 [ 91.994923][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.994950][ T5839] ? __raw_spin_lock_init+0x45/0x100 [ 91.994987][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995015][ T5839] ? __init_swait_queue_head+0xa9/0x150 [ 91.995056][ T5839] gfs2_sys_fs_add+0x237/0x470 [ 91.995104][ T5839] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 91.995137][ T5839] ? is_dynamic_key+0xd6/0x1c0 [ 91.995162][ T5839] ? __pfx_alloc_workqueue+0x10/0x10 [ 91.995217][ T5839] gfs2_fill_super+0x1348/0x2010 [ 91.995270][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.995300][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995333][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995360][ T5839] ? sb_set_blocksize+0x104/0x180 [ 91.995394][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995421][ T5839] ? setup_bdev_super+0x4c1/0x5b0 [ 91.995454][ T5839] get_tree_bdev_flags+0x40e/0x4d0 [ 91.995483][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 91.995516][ T5839] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 91.995546][ T5839] ? rcu_is_watching+0x15/0xb0 [ 91.995585][ T5839] gfs2_get_tree+0x51/0x1e0 [ 91.995621][ T5839] vfs_get_tree+0x92/0x2b0 [ 91.995653][ T5839] do_new_mount+0x24a/0xa40 [ 91.995696][ T5839] __se_sys_mount+0x317/0x410 [ 91.995736][ T5839] ? __pfx___se_sys_mount+0x10/0x10 [ 91.995766][ T5839] ? rcu_is_watching+0x15/0xb0 [ 91.995802][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995829][ T5839] ? __x64_sys_mount+0x20/0xc0 [ 91.995865][ T5839] do_syscall_64+0xfa/0x3b0 [ 91.995891][ T5839] ? lockdep_hardirqs_on+0x9c/0x150 [ 91.995917][ T5839] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.995939][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 91.995966][ T5839] ? exc_page_fault+0x9f/0xf0 [ 91.995993][ T5839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 91.996016][ T5839] RIP: 0033:0x7fed8b449e0a [ 91.996038][ T5839] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 91.996069][ T5839] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 91.996094][ T5839] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 91.996112][ T5839] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 91.996129][ T5839] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 91.996146][ T5839] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 91.996162][ T5839] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 91.996197][ T5839] [ 91.996231][ T5839] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 92.014300][ T5839] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 92.022361][ T5834] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 92.088655][ T5837] CPU: 0 UID: 0 PID: 5837 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 92.088690][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.088705][ T5837] Call Trace: [ 92.088715][ T5837] [ 92.088725][ T5837] dump_stack_lvl+0x189/0x250 [ 92.088768][ T5837] ? kernfs_path_from_node+0x2c/0x260 [ 92.088807][ T5837] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.088845][ T5837] ? __pfx__printk+0x10/0x10 [ 92.088874][ T5837] ? kernfs_path_from_node+0x2c/0x260 [ 92.088908][ T5837] ? kernfs_path_from_node+0x2c/0x260 [ 92.088944][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.088973][ T5837] ? kernfs_path_from_node+0x22c/0x260 [ 92.089006][ T5837] ? kernfs_path_from_node+0x2c/0x260 [ 92.089046][ T5837] sysfs_create_dir_ns+0x259/0x280 [ 92.089084][ T5837] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 92.089121][ T5837] ? do_raw_spin_unlock+0x122/0x240 [ 92.089165][ T5837] kobject_add_internal+0x59f/0xb40 [ 92.089208][ T5837] kobject_init_and_add+0x125/0x190 [ 92.089245][ T5837] ? __pfx_kobject_init_and_add+0x10/0x10 [ 92.089277][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.089304][ T5837] ? __raw_spin_lock_init+0x45/0x100 [ 92.089346][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.089373][ T5837] ? __init_swait_queue_head+0xa9/0x150 [ 92.089415][ T5837] gfs2_sys_fs_add+0x237/0x470 [ 92.089445][ T5837] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 92.089477][ T5837] ? is_dynamic_key+0xd6/0x1c0 [ 92.089503][ T5837] ? __pfx_alloc_workqueue+0x10/0x10 [ 92.089558][ T5837] gfs2_fill_super+0x1348/0x2010 [ 92.089610][ T5837] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.089640][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.089674][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.089701][ T5837] ? sb_set_blocksize+0x104/0x180 [ 92.089735][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.089762][ T5837] ? setup_bdev_super+0x4c1/0x5b0 [ 92.089795][ T5837] get_tree_bdev_flags+0x40e/0x4d0 [ 92.089824][ T5837] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.089857][ T5837] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.089887][ T5837] ? rcu_is_watching+0x15/0xb0 [ 92.089926][ T5837] gfs2_get_tree+0x51/0x1e0 [ 92.089966][ T5837] vfs_get_tree+0x92/0x2b0 [ 92.089998][ T5837] do_new_mount+0x24a/0xa40 [ 92.090040][ T5837] __se_sys_mount+0x317/0x410 [ 92.090081][ T5837] ? __pfx___se_sys_mount+0x10/0x10 [ 92.090111][ T5837] ? rcu_is_watching+0x15/0xb0 [ 92.090148][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.090175][ T5837] ? __x64_sys_mount+0x20/0xc0 [ 92.090211][ T5837] do_syscall_64+0xfa/0x3b0 [ 92.090237][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.090263][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.090286][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.090313][ T5837] ? exc_page_fault+0x9f/0xf0 [ 92.090344][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.090367][ T5837] RIP: 0033:0x7fed8b449e0a [ 92.090388][ T5837] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.090408][ T5837] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.090433][ T5837] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 92.090450][ T5837] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 92.090467][ T5837] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 92.090484][ T5837] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 92.090500][ T5837] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 92.090536][ T5837] [ 92.092590][ T5837] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 92.129589][ T5838] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 92.135788][ T5837] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 92.236880][ T5838] CPU: 1 UID: 0 PID: 5838 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 92.236917][ T5838] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.236932][ T5838] Call Trace: [ 92.236942][ T5838] [ 92.236952][ T5838] dump_stack_lvl+0x189/0x250 [ 92.236998][ T5838] ? kernfs_path_from_node+0x2c/0x260 [ 92.237037][ T5838] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.237075][ T5838] ? __pfx__printk+0x10/0x10 [ 92.237104][ T5838] ? kernfs_path_from_node+0x2c/0x260 [ 92.237138][ T5838] ? kernfs_path_from_node+0x2c/0x260 [ 92.237174][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.237203][ T5838] ? kernfs_path_from_node+0x22c/0x260 [ 92.237236][ T5838] ? kernfs_path_from_node+0x2c/0x260 [ 92.237276][ T5838] sysfs_create_dir_ns+0x259/0x280 [ 92.237314][ T5838] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 92.237359][ T5838] ? do_raw_spin_unlock+0x122/0x240 [ 92.237403][ T5838] kobject_add_internal+0x59f/0xb40 [ 92.237446][ T5838] kobject_init_and_add+0x125/0x190 [ 92.237484][ T5838] ? __pfx_kobject_init_and_add+0x10/0x10 [ 92.237514][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.237542][ T5838] ? __raw_spin_lock_init+0x45/0x100 [ 92.237579][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.237606][ T5838] ? __init_swait_queue_head+0xa9/0x150 [ 92.237653][ T5838] gfs2_sys_fs_add+0x237/0x470 [ 92.237683][ T5838] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 92.237715][ T5838] ? is_dynamic_key+0xd6/0x1c0 [ 92.237741][ T5838] ? __pfx_alloc_workqueue+0x10/0x10 [ 92.237796][ T5838] gfs2_fill_super+0x1348/0x2010 [ 92.237849][ T5838] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.237879][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.237913][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.237940][ T5838] ? sb_set_blocksize+0x104/0x180 [ 92.237974][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.238001][ T5838] ? setup_bdev_super+0x4c1/0x5b0 [ 92.238035][ T5838] get_tree_bdev_flags+0x40e/0x4d0 [ 92.238063][ T5838] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.238096][ T5838] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.238126][ T5838] ? rcu_is_watching+0x15/0xb0 [ 92.238165][ T5838] gfs2_get_tree+0x51/0x1e0 [ 92.238202][ T5838] vfs_get_tree+0x92/0x2b0 [ 92.238235][ T5838] do_new_mount+0x24a/0xa40 [ 92.238281][ T5838] __se_sys_mount+0x317/0x410 [ 92.238332][ T5838] ? __pfx___se_sys_mount+0x10/0x10 [ 92.238362][ T5838] ? rcu_is_watching+0x15/0xb0 [ 92.238398][ T5838] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.238426][ T5838] ? __x64_sys_mount+0x20/0xc0 [ 92.238461][ T5838] do_syscall_64+0xfa/0x3b0 [ 92.238496][ T5838] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.238519][ T5838] ? asm_common_interrupt+0x26/0x40 [ 92.238548][ T5838] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.238574][ T5838] RIP: 0033:0x7fed8b449e0a [ 92.238603][ T5838] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.238624][ T5838] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.238652][ T5838] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 92.238671][ T5838] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 92.238688][ T5838] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 92.238705][ T5838] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 92.238721][ T5838] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 92.238757][ T5838] [ 92.238795][ T5838] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 92.272178][ T5834] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 92.318860][ T5833] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 92.344570][ T5839] ================================================================== [ 92.435786][ T5833] CPU: 1 UID: 0 PID: 5833 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 92.435821][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.435836][ T5833] Call Trace: [ 92.435846][ T5833] [ 92.435856][ T5833] dump_stack_lvl+0x189/0x250 [ 92.435902][ T5833] ? kernfs_path_from_node+0x2c/0x260 [ 92.435941][ T5833] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.435979][ T5833] ? __pfx__printk+0x10/0x10 [ 92.436008][ T5833] ? kernfs_path_from_node+0x2c/0x260 [ 92.436042][ T5833] ? kernfs_path_from_node+0x2c/0x260 [ 92.436078][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436106][ T5833] ? kernfs_path_from_node+0x22c/0x260 [ 92.436140][ T5833] ? kernfs_path_from_node+0x2c/0x260 [ 92.436179][ T5833] sysfs_create_dir_ns+0x259/0x280 [ 92.436217][ T5833] ? __pfx_sysfs_create_dir_ns+0x10/0x10 [ 92.436254][ T5833] ? do_raw_spin_unlock+0x122/0x240 [ 92.436299][ T5833] kobject_add_internal+0x59f/0xb40 [ 92.436345][ T5833] kobject_init_and_add+0x125/0x190 [ 92.436382][ T5833] ? __pfx_kobject_init_and_add+0x10/0x10 [ 92.436413][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436441][ T5833] ? __raw_spin_lock_init+0x45/0x100 [ 92.436478][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436505][ T5833] ? __init_swait_queue_head+0xa9/0x150 [ 92.436547][ T5833] gfs2_sys_fs_add+0x237/0x470 [ 92.436577][ T5833] ? __pfx_gfs2_sys_fs_add+0x10/0x10 [ 92.436609][ T5833] ? is_dynamic_key+0xd6/0x1c0 [ 92.436635][ T5833] ? __pfx_alloc_workqueue+0x10/0x10 [ 92.436690][ T5833] gfs2_fill_super+0x1348/0x2010 [ 92.436743][ T5833] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.436773][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436807][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436834][ T5833] ? sb_set_blocksize+0x104/0x180 [ 92.436868][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.436895][ T5833] ? setup_bdev_super+0x4c1/0x5b0 [ 92.436928][ T5833] get_tree_bdev_flags+0x40e/0x4d0 [ 92.436958][ T5833] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.436991][ T5833] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.437021][ T5833] ? rcu_is_watching+0x15/0xb0 [ 92.437060][ T5833] gfs2_get_tree+0x51/0x1e0 [ 92.437096][ T5833] vfs_get_tree+0x92/0x2b0 [ 92.437128][ T5833] do_new_mount+0x24a/0xa40 [ 92.437170][ T5833] __se_sys_mount+0x317/0x410 [ 92.437211][ T5833] ? __pfx___se_sys_mount+0x10/0x10 [ 92.437241][ T5833] ? rcu_is_watching+0x15/0xb0 [ 92.437278][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.437305][ T5833] ? __x64_sys_mount+0x20/0xc0 [ 92.437346][ T5833] do_syscall_64+0xfa/0x3b0 [ 92.437373][ T5833] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.437398][ T5833] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.437421][ T5833] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.437448][ T5833] ? exc_page_fault+0x9f/0xf0 [ 92.437475][ T5833] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.437498][ T5833] RIP: 0033:0x7fed8b449e0a [ 92.437520][ T5833] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.437539][ T5833] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.437564][ T5833] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 92.437581][ T5833] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 92.437598][ T5833] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 92.437615][ T5833] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 92.437631][ T5833] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 92.437667][ T5833] [ 92.437695][ T5833] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 92.439357][ T5839] BUG: KASAN: null-ptr-deref in gfs2_drop_inode+0x20c/0x3a0 [ 92.443939][ T5833] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 92.449279][ T5839] Read of size 8 at addr 00000000000000a8 by task syz-executor187/5839 [ 92.449304][ T5839] [ 92.449318][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 92.449345][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.449358][ T5839] Call Trace: [ 92.449372][ T5839] [ 92.449381][ T5839] dump_stack_lvl+0x189/0x250 [ 92.449431][ T5839] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.449468][ T5839] ? _raw_spin_lock_irqsave+0xb3/0xf0 [ 92.449513][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.449547][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.449586][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.449616][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.449652][ T5839] kasan_report+0x118/0x150 [ 92.449690][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.449732][ T5839] kasan_check_range+0x2b0/0x2c0 [ 92.449766][ T5839] gfs2_drop_inode+0x20c/0x3a0 [ 92.449807][ T5839] iput+0x45d/0x9d0 [ 92.449847][ T5839] gfs2_fill_super+0x1418/0x2010 [ 92.449891][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.449922][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.449953][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.449980][ T5839] ? sb_set_blocksize+0x104/0x180 [ 92.450014][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.450041][ T5839] ? setup_bdev_super+0x4c1/0x5b0 [ 92.450072][ T5839] get_tree_bdev_flags+0x40e/0x4d0 [ 92.450109][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.450141][ T5839] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.450169][ T5839] ? rcu_is_watching+0x15/0xb0 [ 92.450208][ T5839] gfs2_get_tree+0x51/0x1e0 [ 92.450244][ T5839] vfs_get_tree+0x92/0x2b0 [ 92.450275][ T5839] do_new_mount+0x24a/0xa40 [ 92.450313][ T5839] __se_sys_mount+0x317/0x410 [ 92.450350][ T5839] ? __pfx___se_sys_mount+0x10/0x10 [ 92.450381][ T5839] ? rcu_is_watching+0x15/0xb0 [ 92.450413][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.450441][ T5839] ? __x64_sys_mount+0x20/0xc0 [ 92.450477][ T5839] do_syscall_64+0xfa/0x3b0 [ 92.450507][ T5839] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.450533][ T5839] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.450556][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.450584][ T5839] ? exc_page_fault+0x9f/0xf0 [ 92.450609][ T5839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.450633][ T5839] RIP: 0033:0x7fed8b449e0a [ 92.450656][ T5839] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.450676][ T5839] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.450702][ T5839] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 92.450720][ T5839] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 92.450737][ T5839] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 92.450754][ T5839] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 92.450771][ T5839] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 92.450797][ T5839] [ 92.450806][ T5839] ================================================================== [ 92.489772][ T5838] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 92.492573][ T5839] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 92.492599][ T5839] CPU: 0 UID: 0 PID: 5839 Comm: syz-executor187 Not tainted 6.15.0-syzkaller-08297-ge0797d3b91de #0 PREEMPT(full) [ 92.492630][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 92.492646][ T5839] Call Trace: [ 92.492660][ T5839] [ 92.492672][ T5839] dump_stack_lvl+0x99/0x250 [ 92.492726][ T5839] ? __asan_memcpy+0x40/0x70 [ 92.492753][ T5839] ? __pfx_dump_stack_lvl+0x10/0x10 [ 92.492791][ T5839] ? __pfx__printk+0x10/0x10 [ 92.492822][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.492856][ T5839] panic+0x2db/0x790 [ 92.492892][ T5839] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.492923][ T5839] ? __pfx_panic+0x10/0x10 [ 92.492962][ T5839] ? _raw_spin_unlock_irqrestore+0xa8/0x110 [ 92.493004][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.493032][ T5839] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 92.493071][ T5839] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 92.493115][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.493146][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.493188][ T5839] check_panic_on_warn+0x89/0xb0 [ 92.493216][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.493253][ T5839] end_report+0x78/0x160 [ 92.493285][ T5839] kasan_report+0x129/0x150 [ 92.493317][ T5839] ? gfs2_drop_inode+0x20c/0x3a0 [ 92.493360][ T5839] kasan_check_range+0x2b0/0x2c0 [ 92.493394][ T5839] gfs2_drop_inode+0x20c/0x3a0 [ 92.493435][ T5839] iput+0x45d/0x9d0 [ 92.493475][ T5839] gfs2_fill_super+0x1418/0x2010 [ 92.493521][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.493552][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.493584][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.493612][ T5839] ? sb_set_blocksize+0x104/0x180 [ 92.493646][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.493674][ T5839] ? setup_bdev_super+0x4c1/0x5b0 [ 92.493706][ T5839] get_tree_bdev_flags+0x40e/0x4d0 [ 92.493735][ T5839] ? __pfx_gfs2_fill_super+0x10/0x10 [ 92.493767][ T5839] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 92.493796][ T5839] ? rcu_is_watching+0x15/0xb0 [ 92.493834][ T5839] gfs2_get_tree+0x51/0x1e0 [ 92.493868][ T5839] vfs_get_tree+0x92/0x2b0 [ 92.493899][ T5839] do_new_mount+0x24a/0xa40 [ 92.493937][ T5839] __se_sys_mount+0x317/0x410 [ 92.493974][ T5839] ? __pfx___se_sys_mount+0x10/0x10 [ 92.494006][ T5839] ? rcu_is_watching+0x15/0xb0 [ 92.494039][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.494067][ T5839] ? __x64_sys_mount+0x20/0xc0 [ 92.494106][ T5839] do_syscall_64+0xfa/0x3b0 [ 92.494140][ T5839] ? lockdep_hardirqs_on+0x9c/0x150 [ 92.494165][ T5839] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.494188][ T5839] ? srso_alias_return_thunk+0x5/0xfbef5 [ 92.494216][ T5839] ? exc_page_fault+0x9f/0xf0 [ 92.494241][ T5839] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 92.494266][ T5839] RIP: 0033:0x7fed8b449e0a [ 92.494288][ T5839] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 ee 08 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 92.494308][ T5839] RSP: 002b:00007ffcc464a4c8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5 [ 92.494335][ T5839] RAX: ffffffffffffffda RBX: 00007ffcc464a4e0 RCX: 00007fed8b449e0a [ 92.494354][ T5839] RDX: 0000200000000240 RSI: 0000200000001c00 RDI: 00007ffcc464a4e0 [ 92.494372][ T5839] RBP: 0000200000001c00 R08: 00007ffcc464a520 R09: 00000000000125dc [ 92.494390][ T5839] R10: 0000000001000800 R11: 0000000000000282 R12: 0000200000000240 [ 92.494407][ T5839] R13: 00007ffcc464a520 R14: 0000000000000003 R15: 0000000001000800 [ 92.494433][ T5839] [ 92.497766][ T5839] Kernel Offset: disabled