./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2678124183
<...>
Warning: Permanently added '10.128.1.117' (ECDSA) to the list of known hosts.
execve("./syz-executor2678124183", ["./syz-executor2678124183"], 0x7ffd2328ec60 /* 10 vars */) = 0
brk(NULL) = 0x555556645000
brk(0x555556645c40) = 0x555556645c40
arch_prctl(ARCH_SET_FS, 0x555556645300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2678124183", 4096) = 28
brk(0x555556666c40) = 0x555556666c40
brk(0x555556667000) = 0x555556667000
mprotect(0x7f5e11dfc000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 5073
mkdir("./syzkaller.PJweqL", 0700) = 0
chmod("./syzkaller.PJweqL", 0777) = 0
chdir("./syzkaller.PJweqL") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5074
./strace-static-x86_64: Process 5074 attached
[pid 5074] chdir("./0") = 0
[pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5074] setpgid(0, 0) = 0
[pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5074] write(3, "1000", 4) = 4
[pid 5074] close(3) = 0
[pid 5074] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5074] memfd_create("syzkaller", 0) = 3
[pid 5074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5074] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5074] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5074] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5074] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5074] close(3) = 0
[pid 5074] mkdir("./file0", 0777) = 0
syzkaller login: [ 53.855874][ T5074] loop0: detected capacity change from 0 to 32768
[ 53.868616][ T5074] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor267 (5074)
[ 53.887907][ T5074] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[pid 5074] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5074] chdir("./file0") = 0
[pid 5074] ioctl(4, LOOP_CLR_FD) = 0
[pid 5074] close(4) = 0
[pid 5074] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5074] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[ 53.896993][ T5074] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 53.907894][ T5074] BTRFS info (device loop0): using free space tree
[ 53.930031][ T5074] BTRFS info (device loop0): enabling ssd optimizations
[ 53.937204][ T5074] BTRFS info (device loop0): auto enabling async discard
[pid 5074] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5074] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5074] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5074] write(6, "69", 2) = 2
[pid 5074] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5074] exit_group(0) = ?
[pid 5074] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=19 /* 0.19 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5104
./strace-static-x86_64: Process 5104 attached
[pid 5104] chdir("./1") = 0
[pid 5104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5104] setpgid(0, 0) = 0
[pid 5104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5104] write(3, "1000", 4) = 4
[pid 5104] close(3) = 0
[pid 5104] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5104] memfd_create("syzkaller", 0) = 3
[pid 5104] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5104] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5104] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5104] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5104] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5104] close(3) = 0
[pid 5104] mkdir("./file0", 0777) = 0
[ 54.357938][ T5104] loop0: detected capacity change from 0 to 32768
[ 54.373342][ T5104] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 54.382176][ T5104] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 54.393147][ T5104] BTRFS info (device loop0): using free space tree
[pid 5104] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5104] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5104] chdir("./file0") = 0
[pid 5104] ioctl(4, LOOP_CLR_FD) = 0
[pid 5104] close(4) = 0
[pid 5104] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5104] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5104] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5104] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5104] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[ 54.410156][ T5104] BTRFS info (device loop0): enabling ssd optimizations
[ 54.417249][ T5104] BTRFS info (device loop0): auto enabling async discard
[pid 5104] write(6, "69", 2) = 2
[pid 5104] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5104] exit_group(0) = ?
[pid 5104] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5104, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5122
./strace-static-x86_64: Process 5122 attached
[pid 5122] chdir("./2") = 0
[pid 5122] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5122] setpgid(0, 0) = 0
[pid 5122] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5122] write(3, "1000", 4) = 4
[pid 5122] close(3) = 0
[pid 5122] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5122] memfd_create("syzkaller", 0) = 3
[pid 5122] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5122] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5122] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5122] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5122] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5122] close(3) = 0
[pid 5122] mkdir("./file0", 0777) = 0
[ 54.802878][ T5122] loop0: detected capacity change from 0 to 32768
[ 54.816872][ T5122] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 54.825611][ T5122] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 54.837052][ T5122] BTRFS info (device loop0): using free space tree
[pid 5122] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5122] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5122] chdir("./file0") = 0
[pid 5122] ioctl(4, LOOP_CLR_FD) = 0
[pid 5122] close(4) = 0
[pid 5122] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5122] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5122] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5122] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5122] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5122] write(6, "69", 2) = 2
[ 54.855973][ T5122] BTRFS info (device loop0): enabling ssd optimizations
[ 54.862988][ T5122] BTRFS info (device loop0): auto enabling async discard
[pid 5122] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5122] exit_group(0) = ?
[pid 5122] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5122, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=16 /* 0.16 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./2/binderfs") = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5140
./strace-static-x86_64: Process 5140 attached
[pid 5140] chdir("./3") = 0
[pid 5140] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5140] setpgid(0, 0) = 0
[pid 5140] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5140] write(3, "1000", 4) = 4
[pid 5140] close(3) = 0
[pid 5140] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5140] memfd_create("syzkaller", 0) = 3
[pid 5140] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5140] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5140] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5140] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5140] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5140] close(3) = 0
[pid 5140] mkdir("./file0", 0777) = 0
[ 55.259874][ T5140] loop0: detected capacity change from 0 to 32768
[ 55.273223][ T5140] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 55.282154][ T5140] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 55.293059][ T5140] BTRFS info (device loop0): using free space tree
[pid 5140] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5140] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5140] chdir("./file0") = 0
[pid 5140] ioctl(4, LOOP_CLR_FD) = 0
[pid 5140] close(4) = 0
[pid 5140] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5140] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5140] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5140] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5140] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5140] write(6, "69", 2) = 2
[pid 5140] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[ 55.312430][ T5140] BTRFS info (device loop0): enabling ssd optimizations
[ 55.319656][ T5140] BTRFS info (device loop0): auto enabling async discard
[pid 5140] exit_group(0) = ?
[pid 5140] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5140, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=19 /* 0.19 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./3/binderfs") = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./3/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./3") = 0
mkdir("./4", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5159
./strace-static-x86_64: Process 5159 attached
[pid 5159] chdir("./4") = 0
[pid 5159] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5159] setpgid(0, 0) = 0
[pid 5159] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5159] write(3, "1000", 4) = 4
[pid 5159] close(3) = 0
[pid 5159] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5159] memfd_create("syzkaller", 0) = 3
[pid 5159] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5159] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5159] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5159] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5159] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5159] close(3) = 0
[pid 5159] mkdir("./file0", 0777) = 0
[ 55.710849][ T5159] loop0: detected capacity change from 0 to 32768
[ 55.724479][ T5159] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 55.733299][ T5159] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 55.744169][ T5159] BTRFS info (device loop0): using free space tree
[pid 5159] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5159] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5159] chdir("./file0") = 0
[pid 5159] ioctl(4, LOOP_CLR_FD) = 0
[pid 5159] close(4) = 0
[pid 5159] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5159] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5159] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5159] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5159] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5159] write(6, "69", 2) = 2
[pid 5159] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5159] exit_group(0) = ?
[pid 5159] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5159, si_uid=0, si_status=0, si_utime=7 /* 0.07 s */, si_stime=21 /* 0.21 s */} ---
[ 55.761953][ T5159] BTRFS info (device loop0): enabling ssd optimizations
[ 55.769193][ T5159] BTRFS info (device loop0): auto enabling async discard
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./4/binderfs") = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./4/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./4") = 0
mkdir("./5", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5177
./strace-static-x86_64: Process 5177 attached
[pid 5177] chdir("./5") = 0
[pid 5177] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5177] setpgid(0, 0) = 0
[pid 5177] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5177] write(3, "1000", 4) = 4
[pid 5177] close(3) = 0
[pid 5177] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5177] memfd_create("syzkaller", 0) = 3
[pid 5177] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5177] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5177] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5177] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5177] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5177] close(3) = 0
[pid 5177] mkdir("./file0", 0777) = 0
[ 56.157426][ T5177] loop0: detected capacity change from 0 to 32768
[ 56.169566][ T5177] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 56.178337][ T5177] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 56.189448][ T5177] BTRFS info (device loop0): using free space tree
[pid 5177] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5177] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5177] chdir("./file0") = 0
[pid 5177] ioctl(4, LOOP_CLR_FD) = 0
[pid 5177] close(4) = 0
[pid 5177] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5177] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5177] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5177] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5177] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5177] write(6, "69", 2) = 2
[pid 5177] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5177] exit_group(0) = ?
[ 56.207504][ T5177] BTRFS info (device loop0): enabling ssd optimizations
[ 56.214517][ T5177] BTRFS info (device loop0): auto enabling async discard
[pid 5177] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5177, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=17 /* 0.17 s */} ---
umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./5/binderfs") = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./5/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./5") = 0
mkdir("./6", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5195
./strace-static-x86_64: Process 5195 attached
[pid 5195] chdir("./6") = 0
[pid 5195] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5195] setpgid(0, 0) = 0
[pid 5195] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5195] write(3, "1000", 4) = 4
[pid 5195] close(3) = 0
[pid 5195] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5195] memfd_create("syzkaller", 0) = 3
[pid 5195] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5195] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5195] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5195] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5195] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5195] close(3) = 0
[pid 5195] mkdir("./file0", 0777) = 0
[ 56.592715][ T5195] loop0: detected capacity change from 0 to 32768
[ 56.607239][ T5195] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 56.615978][ T5195] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 56.626818][ T5195] BTRFS info (device loop0): using free space tree
[pid 5195] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5195] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5195] chdir("./file0") = 0
[pid 5195] ioctl(4, LOOP_CLR_FD) = 0
[pid 5195] close(4) = 0
[pid 5195] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5195] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5195] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5195] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5195] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5195] write(6, "69", 2) = 2
[pid 5195] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5195] exit_group(0) = ?
[ 56.645301][ T5195] BTRFS info (device loop0): enabling ssd optimizations
[ 56.652299][ T5195] BTRFS info (device loop0): auto enabling async discard
[pid 5195] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5195, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=16 /* 0.16 s */} ---
umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./6/binderfs") = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./6/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./6") = 0
mkdir("./7", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5215
./strace-static-x86_64: Process 5215 attached
[pid 5215] chdir("./7") = 0
[pid 5215] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5215] setpgid(0, 0) = 0
[pid 5215] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5215] write(3, "1000", 4) = 4
[pid 5215] close(3) = 0
[pid 5215] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5215] memfd_create("syzkaller", 0) = 3
[pid 5215] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5215] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5215] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5215] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5215] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5215] close(3) = 0
[pid 5215] mkdir("./file0", 0777) = 0
[ 57.044461][ T5215] loop0: detected capacity change from 0 to 32768
[ 57.058052][ T5215] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 57.066801][ T5215] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 57.077669][ T5215] BTRFS info (device loop0): using free space tree
[pid 5215] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5215] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5215] chdir("./file0") = 0
[pid 5215] ioctl(4, LOOP_CLR_FD) = 0
[pid 5215] close(4) = 0
[pid 5215] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5215] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5215] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[ 57.095638][ T5215] BTRFS info (device loop0): enabling ssd optimizations
[ 57.102656][ T5215] BTRFS info (device loop0): auto enabling async discard
[pid 5215] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5215] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5215] write(6, "69", 2) = 2
[pid 5215] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5215] exit_group(0) = ?
[pid 5215] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5215, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=19 /* 0.19 s */} ---
umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./7/binderfs") = 0
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./7/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./7/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./7/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./7") = 0
mkdir("./8", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5233
./strace-static-x86_64: Process 5233 attached
[pid 5233] chdir("./8") = 0
[pid 5233] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5233] setpgid(0, 0) = 0
[pid 5233] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5233] write(3, "1000", 4) = 4
[pid 5233] close(3) = 0
[pid 5233] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5233] memfd_create("syzkaller", 0) = 3
[pid 5233] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5233] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5233] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5233] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5233] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5233] close(3) = 0
[pid 5233] mkdir("./file0", 0777) = 0
[ 57.475078][ T5233] loop0: detected capacity change from 0 to 32768
[ 57.490668][ T5233] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 57.499490][ T5233] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 57.510339][ T5233] BTRFS info (device loop0): using free space tree
[pid 5233] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5233] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5233] chdir("./file0") = 0
[pid 5233] ioctl(4, LOOP_CLR_FD) = 0
[pid 5233] close(4) = 0
[pid 5233] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5233] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5233] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5233] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5233] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5233] write(6, "69", 2) = 2
[pid 5233] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5233] exit_group(0) = ?
[pid 5233] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5233, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=15 /* 0.15 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
[ 57.527315][ T5233] BTRFS info (device loop0): enabling ssd optimizations
[ 57.534323][ T5233] BTRFS info (device loop0): auto enabling async discard
umount2("./8", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./8/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./8/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./8/binderfs") = 0
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./8/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./8/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./8/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./8/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./8") = 0
mkdir("./9", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = 0
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5251
./strace-static-x86_64: Process 5251 attached
[pid 5251] chdir("./9") = 0
[pid 5251] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5251] setpgid(0, 0) = 0
[pid 5251] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5251] write(3, "1000", 4) = 4
[pid 5251] close(3) = 0
[pid 5251] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5251] memfd_create("syzkaller", 0) = 3
[pid 5251] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5251] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5251] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5251] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5251] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5251] close(3) = 0
[pid 5251] mkdir("./file0", 0777) = 0
[ 57.927540][ T5251] loop0: detected capacity change from 0 to 32768
[ 57.942942][ T5251] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 57.951777][ T5251] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 57.962817][ T5251] BTRFS info (device loop0): using free space tree
[pid 5251] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5251] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5251] chdir("./file0") = 0
[pid 5251] ioctl(4, LOOP_CLR_FD) = 0
[pid 5251] close(4) = 0
[pid 5251] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5251] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5251] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5251] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5251] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5251] write(6, "69", 2) = 2
[ 57.981062][ T5251] BTRFS info (device loop0): enabling ssd optimizations
[ 57.988324][ T5251] BTRFS info (device loop0): auto enabling async discard
[ 58.042106][ T5251] FAULT_INJECTION: forcing a failure.
[ 58.042106][ T5251] name failslab, interval 1, probability 0, space 0, times 0
[ 58.055096][ T5251] CPU: 0 PID: 5251 Comm: syz-executor267 Not tainted 6.2.0-rc4-syzkaller-00379-gf883675bf652 #0
[ 58.065547][ T5251] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 58.075620][ T5251] Call Trace:
[ 58.078912][ T5251]
[ 58.081859][ T5251] dump_stack_lvl+0x1b1/0x290
[ 58.086582][ T5251] ? nf_tcp_handle_invalid+0x630/0x630
[ 58.092064][ T5251] ? panic+0x710/0x710
[ 58.096153][ T5251] ? __might_sleep+0xc0/0xc0
[ 58.100771][ T5251] should_fail_ex+0x3aa/0x4e0
[ 58.105471][ T5251] ? kvmalloc_node+0x6e/0x180
[ 58.110172][ T5251] should_failslab+0x5/0x20
[ 58.114687][ T5251] __kmem_cache_alloc_node+0x68/0x340
[ 58.121006][ T5251] ? btrfs_page_assert_not_dirty+0x173/0x630
[ 58.128568][ T5251] ? kvmalloc_node+0x6e/0x180
[ 58.134472][ T5251] __kmalloc_node+0x9e/0x190
[ 58.139329][ T5251] ? uncharge_batch+0x550/0x550
[ 58.144182][ T5251] kvmalloc_node+0x6e/0x180
[ 58.148686][ T5251] btrfs_csum_one_bio+0x259/0x1210
[ 58.153819][ T5251] ? lru_cache_disable+0x30/0x30
[ 58.158753][ T5251] ? btrfs_lookup_csums_bitmap+0x1550/0x1550
[ 58.164739][ T5251] ? extent_write_locked_range+0xdd0/0xdd0
[ 58.170548][ T5251] ? btrfs_add_delayed_iput+0xc8/0x2e0
[ 58.176023][ T5251] ? extent_write_cache_pages+0x10a7/0x1220
[ 58.181919][ T5251] ? rcu_lock_release+0x5/0x20
[ 58.186697][ T5251] ? extent_writepages+0x540/0x540
[ 58.191828][ T5251] ? find_kallsyms_symbol_value+0x100/0x290
[ 58.197727][ T5251] btrfs_submit_data_write_bio+0x339/0x4a0
[ 58.203538][ T5251] submit_one_bio+0x353/0x490
[ 58.208216][ T5251] extent_writepages+0x306/0x540
[ 58.213167][ T5251] ? __extent_writepage+0x14e0/0x14e0
[ 58.218548][ T5251] ? rcu_read_lock_sched_held+0x87/0x110
[ 58.224183][ T5251] ? __unlock_for_delalloc+0x110/0x110
[ 58.229647][ T5251] ? wbc_attach_and_unlock_inode+0x2fe/0x540
[ 58.235625][ T5251] ? acls_after_inode_item+0x5e0/0x5e0
[ 58.241087][ T5251] do_writepages+0x3c3/0x680
[ 58.245686][ T5251] ? __writepage+0x120/0x120
[ 58.250278][ T5251] ? __lock_acquire+0x1f60/0x1f60
[ 58.255299][ T5251] ? lockdep_hardirqs_on_prepare+0x428/0x790
[ 58.261284][ T5251] ? do_raw_spin_lock+0x147/0x3a0
[ 58.266316][ T5251] ? do_raw_spin_unlock+0x134/0x8a0
[ 58.271524][ T5251] ? wbc_attach_and_unlock_inode+0x350/0x540
[ 58.277505][ T5251] filemap_fdatawrite_wbc+0x11e/0x170
[ 58.282880][ T5251] filemap_fdatawrite_range+0x175/0x200
[ 58.288428][ T5251] ? filemap_fdatawrite+0x1d0/0x1d0
[ 58.293633][ T5251] ? __up_read+0x690/0x690
[ 58.298062][ T5251] ? blk_start_plug+0x95/0x110
[ 58.302826][ T5251] btrfs_sync_file+0x383/0x1190
[ 58.307695][ T5251] ? btrfs_release_file+0x120/0x120
[ 58.312903][ T5251] ? __lock_acquire+0x1f60/0x1f60
[ 58.317933][ T5251] ? do_raw_spin_lock+0x147/0x3a0
[ 58.322978][ T5251] ? do_raw_spin_unlock+0x134/0x8a0
[ 58.328185][ T5251] btrfs_do_write_iter+0xcd3/0x1280
[ 58.333393][ T5251] ? rcu_read_lock_any_held+0xb1/0x130
[ 58.338854][ T5251] ? btrfs_check_nocow_unlock+0x40/0x40
[ 58.344411][ T5251] vfs_write+0x7dc/0xc50
[ 58.348675][ T5251] ? file_end_write+0x230/0x230
[ 58.353519][ T5251] ? ptrace_stop+0x74d/0x970
[ 58.358119][ T5251] ? _raw_spin_unlock_irq+0x2a/0x40
[ 58.363319][ T5251] ? __fdget_pos+0x252/0x2e0
[ 58.367914][ T5251] ksys_write+0x177/0x2a0
[ 58.372242][ T5251] ? __ia32_sys_read+0x80/0x80
[ 58.377006][ T5251] ? syscall_enter_from_user_mode+0x2e/0x1d0
[ 58.382986][ T5251] ? syscall_enter_from_user_mode+0x86/0x1d0
[ 58.388963][ T5251] do_syscall_64+0x3d/0xb0
[ 58.393380][ T5251] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.399283][ T5251] RIP: 0033:0x7f5e11d88ab9
[ 58.403699][ T5251] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 58.423295][ T5251] RSP: 002b:00007ffc233556b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 58.431708][ T5251] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f5e11d88ab9
[pid 5251] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = -1 EIO (Input/output error)
[pid 5251] exit_group(0) = ?
[pid 5251] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5251, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=28 /* 0.28 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./9", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x555556646620 /* 4 entries */, 32768) = 112
umount2("./9/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./9/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./9/binderfs") = 0
[ 58.439696][ T5251] RDX: 000000000000fea7 RSI: 00000000200001c0 RDI: 0000000000000004
[ 58.447676][ T5251] RBP: 00007ffc233556e0 R08: 0000000000000002 R09: 00007ffc233556f0
[ 58.455639][ T5251] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 58.463601][ T5251] R13: 00007ffc23355720 R14: 00007ffc23355700 R15: 0000000000000009
[ 58.471591][ T5251]
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./9/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./9/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./9/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x55555664e660 /* 2 entries */, 32768) = 48
getdents64(4, 0x55555664e660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./9/file0") = 0
getdents64(3, 0x555556646620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./9") = 0
mkdir("./10", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566455d0) = 5275
./strace-static-x86_64: Process 5275 attached
[pid 5275] chdir("./10") = 0
[pid 5275] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5275] setpgid(0, 0) = 0
[pid 5275] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5275] write(3, "1000", 4) = 4
[pid 5275] close(3) = 0
[pid 5275] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5275] memfd_create("syzkaller", 0) = 3
[pid 5275] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5e0993b000
[pid 5275] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5275] munmap(0x7f5e0993b000, 16777216) = 0
[pid 5275] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5275] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5275] close(3) = 0
[pid 5275] mkdir("./file0", 0777) = 0
[ 58.774618][ T5275] loop0: detected capacity change from 0 to 32768
[ 58.789118][ T5275] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 58.797940][ T5275] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11
[ 58.808794][ T5275] BTRFS info (device loop0): using free space tree
[pid 5275] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0
[pid 5275] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5275] chdir("./file0") = 0
[pid 5275] ioctl(4, LOOP_CLR_FD) = 0
[pid 5275] close(4) = 0
[pid 5275] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid 5275] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 5
[pid 5275] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65191) = 65191
[pid 5275] ioctl(5, _IOC(_IOC_WRITE, 0x58, 0x39, 0x30), 0x20000100) = 0
[pid 5275] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 6
[pid 5275] write(6, "69", 2) = 2
[ 58.825246][ T5275] BTRFS info (device loop0): enabling ssd optimizations
[ 58.832201][ T5275] BTRFS info (device loop0): auto enabling async discard
[ 58.877260][ T5275] FAULT_INJECTION: forcing a failure.
[ 58.877260][ T5275] name failslab, interval 1, probability 0, space 0, times 0
[ 58.890424][ T5275] CPU: 1 PID: 5275 Comm: syz-executor267 Not tainted 6.2.0-rc4-syzkaller-00379-gf883675bf652 #0
[ 58.900862][ T5275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 58.910933][ T5275] Call Trace:
[ 58.914229][ T5275]
[ 58.917175][ T5275] dump_stack_lvl+0x1b1/0x290
[ 58.921882][ T5275] ? nf_tcp_handle_invalid+0x630/0x630
[ 58.927366][ T5275] ? panic+0x710/0x710
[ 58.931457][ T5275] ? do_raw_spin_lock+0x147/0x3a0
[ 58.936504][ T5275] ? __might_sleep+0xc0/0xc0
[ 58.941118][ T5275] ? btrfs_csum_one_bio+0x7ba/0x1210
[ 58.946434][ T5275] should_fail_ex+0x3aa/0x4e0
[ 58.951146][ T5275] ? kvmalloc_node+0x6e/0x180
[ 58.955840][ T5275] should_failslab+0x5/0x20
[ 58.960368][ T5275] __kmem_cache_alloc_node+0x68/0x340
[ 58.965774][ T5275] ? kvmalloc_node+0x6e/0x180
[ 58.970472][ T5275] __kmalloc_node+0x9e/0x190
[ 58.975086][ T5275] kvmalloc_node+0x6e/0x180
[ 58.979609][ T5275] btrfs_csum_one_bio+0x8d1/0x1210
[ 58.984771][ T5275] ? btrfs_lookup_csums_bitmap+0x1550/0x1550
[ 58.990770][ T5275] ? extent_write_locked_range+0xdd0/0xdd0
[ 58.996604][ T5275] ? btrfs_add_delayed_iput+0xc8/0x2e0
[ 59.002083][ T5275] ? extent_write_cache_pages+0x10a7/0x1220
[ 59.007965][ T5275] ? rcu_lock_release+0x5/0x20
[ 59.012727][ T5275] ? extent_writepages+0x540/0x540
[ 59.017844][ T5275] ? find_kallsyms_symbol_value+0x100/0x290
[ 59.023730][ T5275] btrfs_submit_data_write_bio+0x339/0x4a0
[ 59.029531][ T5275] submit_one_bio+0x353/0x490
[ 59.034196][ T5275] extent_writepages+0x306/0x540
[ 59.039138][ T5275] ? __extent_writepage+0x14e0/0x14e0
[ 59.044509][ T5275] ? rcu_read_lock_sched_held+0x87/0x110
[ 59.050139][ T5275] ? __unlock_for_delalloc+0x110/0x110
[ 59.055593][ T5275] ? wbc_attach_and_unlock_inode+0x2fe/0x540
[ 59.061565][ T5275] ? acls_after_inode_item+0x5e0/0x5e0
[ 59.067012][ T5275] do_writepages+0x3c3/0x680
[ 59.071594][ T5275] ? __writepage+0x120/0x120
[ 59.076174][ T5275] ? __lock_acquire+0x1f60/0x1f60
[ 59.081188][ T5275] ? lockdep_hardirqs_on_prepare+0x428/0x790
[ 59.087156][ T5275] ? do_raw_spin_lock+0x147/0x3a0
[ 59.092169][ T5275] ? do_raw_spin_unlock+0x134/0x8a0
[ 59.097358][ T5275] ? wbc_attach_and_unlock_inode+0x350/0x540
[ 59.103324][ T5275] filemap_fdatawrite_wbc+0x11e/0x170
[ 59.108686][ T5275] filemap_fdatawrite_range+0x175/0x200
[ 59.114237][ T5275] ? filemap_fdatawrite+0x1d0/0x1d0
[ 59.119443][ T5275] ? __up_read+0x690/0x690
[ 59.123845][ T5275] ? blk_start_plug+0x95/0x110
[ 59.128609][ T5275] btrfs_sync_file+0x383/0x1190
[ 59.133458][ T5275] ? btrfs_release_file+0x120/0x120
[ 59.138650][ T5275] ? __lock_acquire+0x1f60/0x1f60
[ 59.143657][ T5275] ? do_raw_spin_lock+0x147/0x3a0
[ 59.148675][ T5275] ? do_raw_spin_unlock+0x134/0x8a0
[ 59.153863][ T5275] btrfs_do_write_iter+0xcd3/0x1280
[ 59.159054][ T5275] ? rcu_read_lock_any_held+0xb1/0x130
[ 59.164500][ T5275] ? btrfs_check_nocow_unlock+0x40/0x40
[ 59.170036][ T5275] vfs_write+0x7dc/0xc50
[ 59.174270][ T5275] ? file_end_write+0x230/0x230
[ 59.179102][ T5275] ? ptrace_stop+0x74d/0x970
[ 59.183682][ T5275] ? _raw_spin_unlock_irq+0x2a/0x40
[ 59.188868][ T5275] ? __fdget_pos+0x252/0x2e0
[ 59.193447][ T5275] ksys_write+0x177/0x2a0
[ 59.197764][ T5275] ? __ia32_sys_read+0x80/0x80
[ 59.202513][ T5275] ? syscall_enter_from_user_mode+0x2e/0x1d0
[ 59.208480][ T5275] ? syscall_enter_from_user_mode+0x86/0x1d0
[ 59.214461][ T5275] do_syscall_64+0x3d/0xb0
[ 59.218867][ T5275] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 59.224746][ T5275] RIP: 0033:0x7f5e11d88ab9
[ 59.229143][ T5275] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 59.248749][ T5275] RSP: 002b:00007ffc233556b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 59.257160][ T5275] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f5e11d88ab9
[ 59.265112][ T5275] RDX: 000000000000fea7 RSI: 00000000200001c0 RDI: 0000000000000004
[ 59.273065][ T5275] RBP: 00007ffc233556e0 R08: 0000000000000002 R09: 00007ffc233556f0
[ 59.281020][ T5275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 59.288989][ T5275] R13: 00007ffc23355720 R14: 00007ffc23355700 R15: 000000000000000a
[ 59.296956][ T5275]
[ 59.303699][ T5275] ------------[ cut here ]------------
[ 59.309272][ T5275] kernel BUG at fs/btrfs/file-item.c:871!
[ 59.315161][ T5275] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 59.321227][ T5275] CPU: 0 PID: 5275 Comm: syz-executor267 Not tainted 6.2.0-rc4-syzkaller-00379-gf883675bf652 #0
[ 59.331622][ T5275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/12/2023
[ 59.341677][ T5275] RIP: 0010:btrfs_csum_one_bio+0x11bd/0x1210
[ 59.347658][ T5275] Code: 8b 5c 24 20 e9 85 f2 ff ff e8 0f fa 02 fe 48 c7 c7 e0 88 84 8d 4c 89 f6 48 89 da e8 9d 83 f7 00 e9 4b f0 ff ff e8 f3 f9 02 fe <0f> 0b 44 89 f9 80 e1 07 38 c1 0f 8c 89 fd ff ff be 08 00 00 00 4c
[ 59.367247][ T5275] RSP: 0018:ffffc90004a2f120 EFLAGS: 00010293
[ 59.373292][ T5275] RAX: ffffffff8388e1fd RBX: 0000000000400140 RCX: ffff88801fd43a80
[ 59.381255][ T5275] RDX: 0000000000000000 RSI: 1ffff11003fa8755 RDI: ffff88801fd43aac
[ 59.389326][ T5275] RBP: ffffc90004a2f458 R08: ffffffff81c50a8e R09: 00000000ffffffff
[ 59.397280][ T5275] R10: fffffbfff1a83333 R11: 1ffffffff1a83332 R12: 1ffff1100fba540c
[ 59.405235][ T5275] R13: dffffc0000000000 R14: 000000000000005c R15: 000000000000f000
[ 59.413188][ T5275] FS: 0000555556645300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 59.422114][ T5275] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 59.428702][ T5275] CR2: 000055a1244ffb38 CR3: 0000000021b63000 CR4: 00000000003506f0
[ 59.436676][ T5275] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 59.444646][ T5275] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 59.452608][ T5275] Call Trace:
[ 59.455875][ T5275]
[ 59.458800][ T5275] ? btrfs_lookup_csums_bitmap+0x1550/0x1550
[ 59.464775][ T5275] ? extent_write_locked_range+0xdd0/0xdd0
[ 59.470578][ T5275] ? btrfs_add_delayed_iput+0xc8/0x2e0
[ 59.476029][ T5275] ? extent_write_cache_pages+0x10a7/0x1220
[ 59.481906][ T5275] ? rcu_lock_release+0x5/0x20
[ 59.486664][ T5275] ? extent_writepages+0x540/0x540
[ 59.491761][ T5275] ? find_kallsyms_symbol_value+0x100/0x290
[ 59.497650][ T5275] btrfs_submit_data_write_bio+0x339/0x4a0
[ 59.503466][ T5275] submit_one_bio+0x353/0x490
[ 59.508131][ T5275] extent_writepages+0x306/0x540
[ 59.513060][ T5275] ? __extent_writepage+0x14e0/0x14e0
[ 59.518420][ T5275] ? rcu_read_lock_sched_held+0x87/0x110
[ 59.524039][ T5275] ? __unlock_for_delalloc+0x110/0x110
[ 59.529503][ T5275] ? wbc_attach_and_unlock_inode+0x2fe/0x540
[ 59.535470][ T5275] ? acls_after_inode_item+0x5e0/0x5e0
[ 59.540912][ T5275] do_writepages+0x3c3/0x680
[ 59.545496][ T5275] ? __writepage+0x120/0x120
[ 59.550071][ T5275] ? __lock_acquire+0x1f60/0x1f60
[ 59.555076][ T5275] ? lockdep_hardirqs_on_prepare+0x428/0x790
[ 59.561038][ T5275] ? do_raw_spin_lock+0x147/0x3a0
[ 59.566043][ T5275] ? do_raw_spin_unlock+0x134/0x8a0
[ 59.571236][ T5275] ? wbc_attach_and_unlock_inode+0x350/0x540
[ 59.577221][ T5275] filemap_fdatawrite_wbc+0x11e/0x170
[ 59.582579][ T5275] filemap_fdatawrite_range+0x175/0x200
[ 59.588110][ T5275] ? filemap_fdatawrite+0x1d0/0x1d0
[ 59.593301][ T5275] ? __up_read+0x690/0x690
[ 59.597719][ T5275] ? blk_start_plug+0x95/0x110
[ 59.602462][ T5275] btrfs_sync_file+0x383/0x1190
[ 59.607299][ T5275] ? btrfs_release_file+0x120/0x120
[ 59.612482][ T5275] ? __lock_acquire+0x1f60/0x1f60
[ 59.617485][ T5275] ? do_raw_spin_lock+0x147/0x3a0
[ 59.622496][ T5275] ? do_raw_spin_unlock+0x134/0x8a0
[ 59.627676][ T5275] btrfs_do_write_iter+0xcd3/0x1280
[ 59.632861][ T5275] ? rcu_read_lock_any_held+0xb1/0x130
[ 59.638304][ T5275] ? btrfs_check_nocow_unlock+0x40/0x40
[ 59.643834][ T5275] vfs_write+0x7dc/0xc50
[ 59.648062][ T5275] ? file_end_write+0x230/0x230
[ 59.652894][ T5275] ? ptrace_stop+0x74d/0x970
[ 59.657470][ T5275] ? _raw_spin_unlock_irq+0x2a/0x40
[ 59.662660][ T5275] ? __fdget_pos+0x252/0x2e0
[ 59.667239][ T5275] ksys_write+0x177/0x2a0
[ 59.671552][ T5275] ? __ia32_sys_read+0x80/0x80
[ 59.676299][ T5275] ? syscall_enter_from_user_mode+0x2e/0x1d0
[ 59.682259][ T5275] ? syscall_enter_from_user_mode+0x86/0x1d0
[ 59.688221][ T5275] do_syscall_64+0x3d/0xb0
[ 59.692625][ T5275] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 59.698501][ T5275] RIP: 0033:0x7f5e11d88ab9
[ 59.702901][ T5275] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 59.722507][ T5275] RSP: 002b:00007ffc233556b8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 59.730908][ T5275] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f5e11d88ab9
[ 59.738859][ T5275] RDX: 000000000000fea7 RSI: 00000000200001c0 RDI: 0000000000000004
[ 59.746812][ T5275] RBP: 00007ffc233556e0 R08: 0000000000000002 R09: 00007ffc233556f0
[ 59.754760][ T5275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[ 59.762708][ T5275] R13: 00007ffc23355720 R14: 00007ffc23355700 R15: 000000000000000a
[ 59.770665][ T5275]
[ 59.773666][ T5275] Modules linked in:
[ 59.780169][ T5275] ---[ end trace 0000000000000000 ]---
[ 59.785830][ T5275] RIP: 0010:btrfs_csum_one_bio+0x11bd/0x1210
[ 59.791804][ T5275] Code: 8b 5c 24 20 e9 85 f2 ff ff e8 0f fa 02 fe 48 c7 c7 e0 88 84 8d 4c 89 f6 48 89 da e8 9d 83 f7 00 e9 4b f0 ff ff e8 f3 f9 02 fe <0f> 0b 44 89 f9 80 e1 07 38 c1 0f 8c 89 fd ff ff be 08 00 00 00 4c
[ 59.811568][ T5275] RSP: 0018:ffffc90004a2f120 EFLAGS: 00010293
[ 59.817751][ T5275] RAX: ffffffff8388e1fd RBX: 0000000000400140 RCX: ffff88801fd43a80
[ 59.826409][ T5275] RDX: 0000000000000000 RSI: 1ffff11003fa8755 RDI: ffff88801fd43aac
[ 59.834375][ T5275] RBP: ffffc90004a2f458 R08: ffffffff81c50a8e R09: 00000000ffffffff
[ 59.842530][ T5275] R10: fffffbfff1a83333 R11: 1ffffffff1a83332 R12: 1ffff1100fba540c
[ 59.850634][ T5275] R13: dffffc0000000000 R14: 000000000000005c R15: 000000000000f000
[ 59.858851][ T5275] FS: 0000555556645300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 59.867927][ T5275] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 59.874506][ T5275] CR2: 000055cbc1e980c8 CR3: 0000000021b63000 CR4: 00000000003506f0
[ 59.882587][ T5275] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 59.890761][ T5275] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 59.898895][ T5275] Kernel panic - not syncing: Fatal exception
[ 59.905119][ T5275] Kernel Offset: disabled
[ 59.909441][ T5275] Rebooting in 86400 seconds..