./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3497338958 <...> Warning: Permanently added '10.128.0.30' (ED25519) to the list of known hosts. execve("./syz-executor3497338958", ["./syz-executor3497338958"], 0x7ffcceaa4ed0 /* 10 vars */) = 0 brk(NULL) = 0x55558665a000 brk(0x55558665ad40) = 0x55558665ad40 arch_prctl(ARCH_SET_FS, 0x55558665a3c0) = 0 set_tid_address(0x55558665a690) = 288 set_robust_list(0x55558665a6a0, 24) = 0 rseq(0x55558665ace0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3497338958", 4096) = 28 getrandom("\x77\x51\xce\x2c\xe0\x6f\x48\x4b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558665ad40 brk(0x55558667bd40) = 0x55558667bd40 brk(0x55558667c000) = 0x55558667c000 mprotect(0x7f1a1ee0d000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 289 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 290 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 291 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 292 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 293 ./strace-static-x86_64: Process 293 attached [pid 293] set_robust_list(0x55558665a6a0, 24) = 0 [pid 293] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 293] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 289 attached [pid 293] close(3) = 0 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 294 ./strace-static-x86_64: Process 292 attached [pid 292] set_robust_list(0x55558665a6a0, 24) = 0 [pid 292] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 292] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 292] close(3) = 0 [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 295 ./strace-static-x86_64: Process 295 attached [pid 295] set_robust_list(0x55558665a6a0, 24) = 0 [pid 295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 295] setpgid(0, 0) = 0 [pid 295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 295] write(3, "1000", 4) = 4 [pid 295] close(3) = 0 [pid 295] write(1, "executing program\n", 18executing program ) = 18 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 295] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 295] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 295] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 295] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[296]}, 88) = 296 [pid 295] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 296 attached [pid 296] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 296] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 296] memfd_create("syzkaller", 0) = 3 [pid 296] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 289] set_robust_list(0x55558665a6a0, 24./strace-static-x86_64: Process 291 attached ./strace-static-x86_64: Process 290 attached ) = 0 [pid 290] set_robust_list(0x55558665a6a0, 24 [pid 291] set_robust_list(0x55558665a6a0, 24 [pid 290] <... set_robust_list resumed>) = 0 [pid 289] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 290] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 291] <... set_robust_list resumed>) = 0 [pid 289] <... openat resumed>) = 3 [pid 290] <... openat resumed>) = 3 [pid 289] ioctl(3, LOOP_CLR_FD [pid 291] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 290] ioctl(3, LOOP_CLR_FD [pid 289] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 290] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 291] <... openat resumed>) = 3 [pid 290] close(3 [pid 289] close(3 [pid 291] ioctl(3, LOOP_CLR_FD [pid 290] <... close resumed>) = 0 [pid 289] <... close resumed>) = 0 [pid 291] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 290] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 289] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 290] <... clone resumed>, child_tidptr=0x55558665a690) = 299 [pid 291] close(3 [pid 289] <... clone resumed>, child_tidptr=0x55558665a690) = 300 [pid 291] <... close resumed>) = 0 [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 299 attached [pid 299] set_robust_list(0x55558665a6a0, 24) = 0 [pid 299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 299] setpgid(0, 0./strace-static-x86_64: Process 294 attached [pid 291] <... clone resumed>, child_tidptr=0x55558665a690) = 301 ./strace-static-x86_64: Process 300 attached [pid 294] set_robust_list(0x55558665a6a0, 24 [pid 300] set_robust_list(0x55558665a6a0, 24 [pid 294] <... set_robust_list resumed>) = 0 [pid 300] <... set_robust_list resumed>) = 0 [pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 294] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 300] <... prctl resumed>) = 0 [pid 294] <... prctl resumed>) = 0 [pid 300] setpgid(0, 0 [pid 294] setpgid(0, 0 [pid 300] <... setpgid resumed>) = 0 [pid 294] <... setpgid resumed>) = 0 [pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 300] <... openat resumed>) = 3 executing program executing program [pid 300] write(3, "1000", 4 [pid 294] <... openat resumed>) = 3 [pid 300] <... write resumed>) = 4 [pid 294] write(3, "1000", 4 [pid 300] close(3 [pid 294] <... write resumed>) = 4 [pid 300] <... close resumed>) = 0 [pid 294] close(3 [pid 300] write(1, "executing program\n", 18 [pid 294] <... close resumed>) = 0 [pid 300] <... write resumed>) = 18 [pid 294] write(1, "executing program\n", 18 [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... write resumed>) = 18 [pid 300] <... futex resumed>) = 0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, [pid 294] <... futex resumed>) = 0 [pid 300] <... rt_sigaction resumed>NULL, 8) = 0 [pid 294] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, [pid 300] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 294] <... rt_sigaction resumed>NULL, 8) = 0 [pid 300] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 294] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 300] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 300] <... mmap resumed>) = 0x7f1a1ed24000 [pid 294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 300] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE [pid 294] <... mmap resumed>) = 0x7f1a1ed24000 [pid 300] <... mprotect resumed>) = 0 [pid 294] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE [pid 300] rt_sigprocmask(SIG_BLOCK, ~[], [pid 294] <... mprotect resumed>) = 0 [pid 300] <... rt_sigprocmask resumed>[], 8) = 0 [pid 300] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} [pid 294] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 300] <... clone3 resumed> => {parent_tid=[303]}, 88) = 303 [pid 294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} [pid 300] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 300] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... clone3 resumed> => {parent_tid=[304]}, 88) = 304 [pid 300] <... futex resumed>) = 0 [pid 294] rt_sigprocmask(SIG_SETMASK, [], [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 294] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 299] <... setpgid resumed>) = 0 [pid 299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 299] write(3, "1000", 4) = 4 [pid 299] close(3) = 0 [pid 299] write(1, "executing program\n", 18executing program ) = 18 [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 299] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 299] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 299] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 299] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 299] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 ./strace-static-x86_64: Process 304 attached [pid 299] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[305]}, 88) = 305 [pid 299] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 299] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 301 attached [pid 304] set_robust_list(0x7f1a1ed449a0, 24) = 0 [ 23.207705][ T30] audit: type=1400 audit(1748935762.459:64): avc: denied { execmem } for pid=288 comm="syz-executor349" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 23.227214][ T30] audit: type=1400 audit(1748935762.479:65): avc: denied { read write } for pid=293 comm="syz-executor349" name="loop4" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 304] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 304] memfd_create("syzkaller", 0) = 3 [pid 304] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 301] set_robust_list(0x55558665a6a0, 24) = 0 [pid 301] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 301] setpgid(0, 0) = 0 [pid 301] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 301] write(3, "1000", 4) = 4 [pid 301] close(3) = 0 ./strace-static-x86_64: Process 303 attached [pid 303] set_robust_list(0x7f1a1ed449a0, 24 [pid 301] write(1, "executing program\n", 18 [pid 303] <... set_robust_list resumed>) = 0 executing program [pid 301] <... write resumed>) = 18 [pid 303] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 303] memfd_create("syzkaller", 0 [pid 301] <... futex resumed>) = 0 [pid 301] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 301] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 301] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 301] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 303] <... memfd_create resumed>) = 3 [pid 301] rt_sigprocmask(SIG_BLOCK, ~[], [pid 303] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 301] <... rt_sigprocmask resumed>[], 8) = 0 [pid 301] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[306]}, 88) = 306 [pid 301] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 305 attached [pid 305] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 305] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 305] memfd_create("syzkaller", 0./strace-static-x86_64: Process 306 attached ) = 3 [pid 305] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 306] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 306] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 306] memfd_create("syzkaller", 0) = 3 [pid 306] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [ 23.306261][ T30] audit: type=1400 audit(1748935762.479:66): avc: denied { open } for pid=293 comm="syz-executor349" path="/dev/loop4" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 23.381792][ T30] audit: type=1400 audit(1748935762.479:67): avc: denied { ioctl } for pid=293 comm="syz-executor349" path="/dev/loop4" dev="devtmpfs" ino=120 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 304] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 306] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 296] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 305] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 303] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119 [pid 304] <... write resumed>) = 20699119 [pid 304] munmap(0x7f1a16924000, 138412032) = 0 [pid 304] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 304] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 304] close(3) = 0 [pid 304] close(4) = 0 [pid 304] mkdir("./file2", 0777) = 0 [pid 304] mount("/dev/loop4", "./file2", "f2fs", 0, "noinline_xattr,active_logs=4,active_logs=4,jqfmt=vfsv1,noinline_data,user_xattr,checkpoint=disable,f"... [pid 296] <... write resumed>) = 20699119 [pid 296] munmap(0x7f1a16924000, 138412032) = 0 [pid 296] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [ 23.797420][ T304] loop4: detected capacity change from 0 to 40427 [ 23.819412][ T30] audit: type=1400 audit(1748935763.079:68): avc: denied { mounton } for pid=294 comm="syz-executor349" path="/root/file2" dev="sda1" ino=2024 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [pid 296] ioctl(4, LOOP_SET_FD, 3 [pid 306] <... write resumed>) = 20699119 [pid 306] munmap(0x7f1a16924000, 138412032) = 0 [pid 306] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 306] ioctl(4, LOOP_SET_FD, 3 [pid 296] <... ioctl resumed>) = 0 [pid 296] close(3) = 0 [pid 296] close(4) = 0 [pid 296] mkdir("./file2", 0777) = -1 EEXIST (File exists) [pid 296] mount("/dev/loop3", "./file2", "f2fs", 0, "noinline_xattr,active_logs=4,active_logs=4,jqfmt=vfsv1,noinline_data,user_xattr,checkpoint=disable,f"... [pid 306] <... ioctl resumed>) = 0 [pid 306] close(3) = 0 [pid 306] close(4) = 0 [pid 306] mkdir("./file2", 0777) = -1 EEXIST (File exists) [ 23.873907][ T296] loop3: detected capacity change from 0 to 40427 [ 23.886580][ T306] loop2: detected capacity change from 0 to 40427 [ 23.896011][ T296] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 23.903545][ T304] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 23.908039][ T296] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [pid 306] mount("/dev/loop2", "./file2", "f2fs", 0, "noinline_xattr,active_logs=4,active_logs=4,jqfmt=vfsv1,noinline_data,user_xattr,checkpoint=disable,f"... [pid 305] <... write resumed>) = 20699119 [pid 303] <... write resumed>) = 20699119 [pid 305] munmap(0x7f1a16924000, 138412032 [pid 303] munmap(0x7f1a16924000, 138412032 [pid 305] <... munmap resumed>) = 0 [pid 305] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [ 23.918589][ T304] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 23.919388][ T306] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 23.945090][ T304] F2FS-fs (loop4): invalid crc value [ 23.950408][ T296] F2FS-fs (loop3): invalid crc value [ 23.956122][ T306] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 23.956372][ T305] loop1: detected capacity change from 0 to 40427 [pid 305] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 303] <... munmap resumed>) = 0 [pid 305] close(3 [pid 303] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 305] <... close resumed>) = 0 [pid 303] <... openat resumed>) = 4 [pid 305] close(4 [pid 303] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 303] close(3) = 0 [pid 303] close(4 [pid 305] <... close resumed>) = 0 [pid 303] <... close resumed>) = 0 [pid 305] mkdir("./file2", 0777 [ 23.966970][ T306] F2FS-fs (loop2): invalid crc value [ 23.977624][ T303] loop0: detected capacity change from 0 to 40427 [ 23.978804][ T296] F2FS-fs (loop3): Found nat_bits in checkpoint [ 23.988192][ T306] F2FS-fs (loop2): Found nat_bits in checkpoint [ 23.996890][ T304] F2FS-fs (loop4): Found nat_bits in checkpoint [pid 303] mkdir("./file2", 0777 [pid 305] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 303] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 305] mount("/dev/loop1", "./file2", "f2fs", 0, "noinline_xattr,active_logs=4,active_logs=4,jqfmt=vfsv1,noinline_data,user_xattr,checkpoint=disable,f"... [ 24.021590][ T303] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 24.029895][ T305] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 24.036872][ T305] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 24.045771][ T303] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 24.056576][ T303] F2FS-fs (loop0): invalid crc value [ 24.063085][ T305] F2FS-fs (loop1): invalid crc value [ 24.071023][ T303] F2FS-fs (loop0): Found nat_bits in checkpoint [ 24.094049][ T296] F2FS-fs (loop3): Start checkpoint disabled! [ 24.110175][ T305] F2FS-fs (loop1): Found nat_bits in checkpoint [ 24.118362][ T304] F2FS-fs (loop4): Start checkpoint disabled! [ 24.118428][ T306] F2FS-fs (loop2): Start checkpoint disabled! [ 24.130965][ T303] F2FS-fs (loop0): Start checkpoint disabled! [ 24.137267][ T296] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 24.138546][ T304] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 24.149380][ T296] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 24.151897][ T304] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [pid 303] mount("/dev/loop0", "./file2", "f2fs", 0, "noinline_xattr,active_logs=4,active_logs=4,jqfmt=vfsv1,noinline_data,user_xattr,checkpoint=disable,f"... [pid 296] <... mount resumed>) = 0 [pid 296] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY) = 3 [pid 296] chdir("./file2") = 0 [pid 296] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 296] ioctl(4, LOOP_CLR_FD) = 0 [pid 296] close(4) = 0 [pid 304] <... mount resumed>) = 0 [pid 304] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY) = 3 [pid 304] chdir("./file2") = 0 [pid 304] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 304] ioctl(4, LOOP_CLR_FD) = 0 [pid 304] close(4) = 0 [pid 304] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... futex resumed>) = 0 [pid 294] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 304] <... futex resumed>) = 1 [pid 304] openat(AT_FDCWD, "./file0", O_WRONLY|O_CREAT|O_NOCTTY|O_TRUNC|O_SYNC|O_CLOEXEC|FASYNC, 0202) = 4 [pid 304] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... futex resumed>) = 0 [pid 294] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 304] <... futex resumed>) = 1 [pid 304] ioctl(4, F2FS_IOC_SET_PIN_FILE, 0x200000000180) = 0 [pid 304] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... futex resumed>) = 0 [pid 294] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 304] <... futex resumed>) = 1 [pid 304] ioctl(4, _IOC(_IOC_WRITE, 0x58, 0x28, 0x30), 0x2000000000c0 [pid 296] <... futex resumed>) = 1 [pid 295] <... futex resumed>) = 0 [pid 296] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 295] <... futex resumed>) = 0 [pid 296] openat(AT_FDCWD, "./file0", O_WRONLY|O_CREAT|O_NOCTTY|O_TRUNC|O_SYNC|O_CLOEXEC|FASYNC, 0202 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 296] <... openat resumed>) = 4 [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 295] <... futex resumed>) = 0 [pid 296] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 295] <... futex resumed>) = 0 [pid 296] ioctl(4, F2FS_IOC_SET_PIN_FILE [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 296] <... ioctl resumed>, 0x200000000180) = 0 [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 295] <... futex resumed>) = 0 [pid 296] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 295] <... futex resumed>) = 0 [pid 296] ioctl(4, _IOC(_IOC_WRITE, 0x58, 0x28, 0x30), 0x2000000000c0 [ 24.159111][ T30] audit: type=1400 audit(1748935763.409:69): avc: denied { mount } for pid=295 comm="syz-executor349" name="/" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 24.166726][ T303] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 294] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 294] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed03000 [pid 294] mprotect(0x7f1a1ed04000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 294] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed23990, parent_tid=0x7f1a1ed23990, exit_signal=0, stack=0x7f1a1ed03000, stack_size=0x20300, tls=0x7f1a1ed236c0} => {parent_tid=[321]}, 88) = 321 [pid 294] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 294] futex(0x7f1a1ee13618, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 24.227459][ T303] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 24.235664][ T306] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 24.249426][ T306] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [pid 294] futex(0x7f1a1ee1361c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 321 attached [pid 306] <... mount resumed>) = 0 [pid 304] <... ioctl resumed>) = -1 ENOSPC (No space left on device) [pid 303] <... mount resumed>) = 0 [pid 296] <... ioctl resumed>) = -1 ENOSPC (No space left on device) [pid 295] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 321] set_robust_list(0x7f1a1ed239a0, 24 [pid 306] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY [pid 304] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 303] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 321] <... set_robust_list resumed>) = 0 [pid 303] <... openat resumed>) = 3 [pid 296] <... futex resumed>) = 0 [pid 295] <... futex resumed>) = 0 [pid 321] rt_sigprocmask(SIG_SETMASK, [], [pid 303] chdir("./file2" [pid 296] fspick(AT_FDCWD, ".", 0 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 321] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 303] <... chdir resumed>) = 0 [pid 296] <... fspick resumed>) = 5 [pid 321] fspick(AT_FDCWD, ".", 0 [pid 303] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 321] <... fspick resumed>) = 5 [pid 303] <... openat resumed>) = 4 [pid 296] <... futex resumed>) = 1 [pid 295] <... futex resumed>) = 0 [pid 321] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000 [pid 303] ioctl(4, LOOP_CLR_FD [pid 296] fsconfig(5, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [ 24.260227][ T30] audit: type=1400 audit(1748935763.459:70): avc: denied { write } for pid=294 comm="syz-executor349" name="/" dev="loop4" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 24.280842][ T305] F2FS-fs (loop1): Start checkpoint disabled! [ 24.283264][ T30] audit: type=1400 audit(1748935763.459:71): avc: denied { add_name } for pid=294 comm="syz-executor349" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 24.290859][ T296] F2FS-fs (loop3): switch discard_unit option is not allowed [pid 295] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 321] <... futex resumed>) = 1 [pid 306] <... openat resumed>) = 3 [pid 304] <... futex resumed>) = 0 [pid 303] <... ioctl resumed>) = 0 [pid 295] <... futex resumed>) = 0 [pid 294] <... futex resumed>) = 0 [pid 321] futex(0x7f1a1ee13618, FUTEX_WAIT_PRIVATE, 0, NULL [pid 303] close(4 [pid 295] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 303] <... close resumed>) = 0 [pid 303] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 303] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 306] chdir("./file2" [pid 304] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 300] <... futex resumed>) = 0 [pid 294] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 306] <... chdir resumed>) = 0 [pid 304] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 300] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... fsconfig resumed>) = -1 EINVAL (Invalid argument) [pid 295] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 294] <... futex resumed>) = 0 [pid 306] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 304] fsconfig(5, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 300] <... futex resumed>) = 1 [pid 296] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 295] exit_group(0 [pid 294] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 306] <... openat resumed>) = 4 [pid 305] <... mount resumed>) = 0 [pid 303] <... futex resumed>) = 0 [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 296] <... futex resumed>) = ? [pid 295] <... exit_group resumed>) = ? [pid 306] ioctl(4, LOOP_CLR_FD [pid 303] openat(AT_FDCWD, "./file0", O_WRONLY|O_CREAT|O_NOCTTY|O_TRUNC|O_SYNC|O_CLOEXEC|FASYNC, 0202 [pid 296] +++ exited with 0 +++ [pid 295] +++ exited with 0 +++ [pid 306] <... ioctl resumed>) = 0 [pid 303] <... openat resumed>) = 4 [ 24.309882][ T30] audit: type=1400 audit(1748935763.459:72): avc: denied { create } for pid=294 comm="syz-executor349" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 24.329653][ T305] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 24.337656][ T30] audit: type=1400 audit(1748935763.459:73): avc: denied { write open } for pid=294 comm="syz-executor349" path="/root/file2/file0" dev="loop4" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 24.346945][ T305] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [pid 306] close(4 [pid 303] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 306] <... close resumed>) = 0 [pid 305] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY [pid 304] <... fsconfig resumed>) = -1 EINVAL (Invalid argument) [pid 303] <... futex resumed>) = 1 [pid 292] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=295, si_uid=0, si_status=0, si_utime=11, si_stime=27} --- [pid 303] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 304] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 305] <... openat resumed>) = 3 [pid 304] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 305] chdir("./file2") = 0 [pid 305] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 305] ioctl(4, LOOP_CLR_FD) = 0 [pid 305] close(4) = 0 [pid 305] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 299] <... futex resumed>) = 0 [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] <... futex resumed>) = 0 [pid 299] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... futex resumed>) = 0 [pid 306] <... futex resumed>) = 1 [pid 301] <... futex resumed>) = 0 [pid 300] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 299] <... futex resumed>) = 0 [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] exit_group(0 [pid 306] openat(AT_FDCWD, "./file0", O_WRONLY|O_CREAT|O_NOCTTY|O_TRUNC|O_SYNC|O_CLOEXEC|FASYNC, 0202 [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... futex resumed>) = 1 [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 294] <... exit_group resumed>) = ? [pid 321] <... futex resumed>) = -1 (errno 18446744073709551414) [pid 306] <... openat resumed>) = 4 [pid 303] <... futex resumed>) = 0 [pid 321] +++ exited with 0 +++ [pid 303] ioctl(4, F2FS_IOC_SET_PIN_FILE [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 303] <... ioctl resumed>, 0x200000000180) = 0 [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 306] <... futex resumed>) = 1 [pid 303] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 301] <... futex resumed>) = 0 [pid 300] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 306] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 303] <... futex resumed>) = 0 [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 306] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 303] ioctl(4, _IOC(_IOC_WRITE, 0x58, 0x28, 0x30), 0x2000000000c0 [pid 301] <... futex resumed>) = 0 [pid 300] <... futex resumed>) = 0 [pid 306] ioctl(4, F2FS_IOC_SET_PIN_FILE [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 292] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 292] ioctl(3, LOOP_CLR_FD) = 0 [pid 292] close(3) = 0 [pid 292] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 323 [pid 304] <... futex resumed>) = ? [pid 304] +++ exited with 0 +++ [pid 294] +++ exited with 0 +++ [pid 293] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=294, si_uid=0, si_status=0, si_utime=8, si_stime=33} --- [pid 305] openat(AT_FDCWD, "./file0", O_WRONLY|O_CREAT|O_NOCTTY|O_TRUNC|O_SYNC|O_CLOEXEC|FASYNC, 0202) = 4 ./strace-static-x86_64: Process 323 attached [pid 305] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 299] <... futex resumed>) = 0 [pid 305] <... futex resumed>) = 1 [pid 323] set_robust_list(0x55558665a6a0, 24 [pid 305] ioctl(4, F2FS_IOC_SET_PIN_FILE [pid 299] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 323] <... set_robust_list resumed>) = 0 [pid 305] <... ioctl resumed>, 0x200000000180) = 0 [pid 299] <... futex resumed>) = 0 [pid 305] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 293] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 323] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 305] <... futex resumed>) = 0 [pid 299] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 305] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 299] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 305] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 299] <... futex resumed>) = 0 [pid 305] ioctl(4, _IOC(_IOC_WRITE, 0x58, 0x28, 0x30), 0x2000000000c0 [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 293] <... openat resumed>) = 3 [pid 293] ioctl(3, LOOP_CLR_FD) = 0 [pid 293] close(3) = 0 [pid 293] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 324 ./strace-static-x86_64: Process 324 attached [pid 324] set_robust_list(0x55558665a6a0, 24) = 0 [pid 324] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 324] setpgid(0, 0) = 0 [pid 324] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 324] write(3, "1000", 4) = 4 [pid 324] close(3) = 0 [pid 324] write(1, "executing program\n", 18executing program ) = 18 [pid 324] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 24.369144][ T304] F2FS-fs (loop4): switch discard_unit option is not allowed [pid 324] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, [pid 323] <... prctl resumed>) = 0 [pid 323] setpgid(0, 0) = 0 [pid 324] <... rt_sigaction resumed>NULL, 8) = 0 [pid 324] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 323] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 324] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 324] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 324] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 324] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 324] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[325]}, 88) = 325 [pid 324] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 324] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 323] <... openat resumed>) = 3 [pid 324] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 323] write(3, "1000", 4./strace-static-x86_64: Process 325 attached [pid 325] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 325] rt_sigprocmask(SIG_SETMASK, [], [pid 323] <... write resumed>) = 4 [pid 325] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 325] memfd_create("syzkaller", 0) = 3 [pid 325] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 323] close(3executing program ) = 0 [pid 323] write(1, "executing program\n", 18) = 18 [pid 323] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 323] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 323] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 323] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 323] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 323] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 323] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[326]}, 88) = 326 [pid 323] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 323] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 323] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 306] <... ioctl resumed>, 0x200000000180) = 0 [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 ./strace-static-x86_64: Process 326 attached [pid 301] <... futex resumed>) = 0 [pid 300] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 326] set_robust_list(0x7f1a1ed449a0, 24 [pid 306] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0} [pid 326] <... set_robust_list resumed>) = 0 [pid 301] <... futex resumed>) = 0 [pid 326] rt_sigprocmask(SIG_SETMASK, [], [pid 306] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 326] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 306] ioctl(4, _IOC(_IOC_WRITE, 0x58, 0x28, 0x30), 0x2000000000c0 [pid 300] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000 [pid 306] <... ioctl resumed>) = -1 ENOSPC (No space left on device) [pid 300] <... futex resumed>) = 0 [pid 326] memfd_create("syzkaller", 0 [pid 300] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 326] <... memfd_create resumed>) = 3 [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] <... mmap resumed>) = 0x7f1a1ed03000 [pid 326] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 306] <... futex resumed>) = 1 [pid 301] <... futex resumed>) = 0 [pid 300] mprotect(0x7f1a1ed04000, 131072, PROT_READ|PROT_WRITE [pid 326] <... mmap resumed>) = 0x7f1a16924000 [pid 306] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] <... mprotect resumed>) = 0 [pid 306] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 301] <... futex resumed>) = 0 [pid 300] rt_sigprocmask(SIG_BLOCK, ~[], [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... rt_sigprocmask resumed>[], 8) = 0 [pid 306] fspick(AT_FDCWD, ".", 0 [pid 300] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed23990, parent_tid=0x7f1a1ed23990, exit_signal=0, stack=0x7f1a1ed03000, stack_size=0x20300, tls=0x7f1a1ed236c0} [pid 306] <... fspick resumed>) = 5 [pid 300] <... clone3 resumed> => {parent_tid=[327]}, 88) = 327 [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 306] <... futex resumed>) = 1 [pid 301] <... futex resumed>) = 0 [pid 300] futex(0x7f1a1ee13618, FUTEX_WAKE_PRIVATE, 1000000 [pid 301] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000 [pid 300] <... futex resumed>) = 0 [pid 306] fsconfig(5, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 301] <... futex resumed>) = 0 [pid 300] futex(0x7f1a1ee1361c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 301] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 303] <... ioctl resumed>) = -1 ENOSPC (No space left on device) [pid 303] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 303] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 306] <... fsconfig resumed>) = -1 EINVAL (Invalid argument) [pid 306] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 301] <... futex resumed>) = 0 [pid 301] exit_group(0) = ? [pid 306] +++ exited with 0 +++ [pid 301] +++ exited with 0 +++ [pid 291] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=301, si_uid=0, si_status=0, si_utime=11, si_stime=21} --- [pid 291] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 327 attached [pid 327] set_robust_list(0x7f1a1ed239a0, 24) = 0 [pid 327] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 327] fspick(AT_FDCWD, ".", 0) = 5 [pid 327] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 300] <... futex resumed>) = 0 [pid 300] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 300] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 303] <... futex resumed>) = 0 [pid 303] fsconfig(5, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 299] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 299] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 299] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 299] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed03000 [pid 299] mprotect(0x7f1a1ed04000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 299] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 299] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed23990, parent_tid=0x7f1a1ed23990, exit_signal=0, stack=0x7f1a1ed03000, stack_size=0x20300, tls=0x7f1a1ed236c0}./strace-static-x86_64: Process 328 attached [pid 291] <... restart_syscall resumed>) = 0 [pid 328] set_robust_list(0x7f1a1ed239a0, 24 [pid 299] <... clone3 resumed> => {parent_tid=[328]}, 88) = 328 [pid 328] <... set_robust_list resumed>) = 0 [pid 299] rt_sigprocmask(SIG_SETMASK, [], [pid 328] rt_sigprocmask(SIG_SETMASK, [], [pid 299] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 291] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 328] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 299] futex(0x7f1a1ee13618, FUTEX_WAKE_PRIVATE, 1000000 [pid 291] <... openat resumed>) = 3 [pid 299] <... futex resumed>) = 0 [pid 328] fspick(AT_FDCWD, ".", 0 [pid 299] futex(0x7f1a1ee1361c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 291] ioctl(3, LOOP_CLR_FD [pid 328] <... fspick resumed>) = 5 [pid 291] <... ioctl resumed>) = 0 [pid 328] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000 [pid 291] close(3 [pid 327] futex(0x7f1a1ee13618, FUTEX_WAIT_PRIVATE, 0, NULL [pid 291] <... close resumed>) = 0 [pid 291] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 329 [pid 328] <... futex resumed>) = 1 [pid 299] <... futex resumed>) = 0 [pid 328] fsconfig(5, FSCONFIG_CMD_RECONFIGURE, NULL, NULL, 0 [pid 299] futex(0x7f1a1ee13618, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 329 attached [pid 329] set_robust_list(0x55558665a6a0, 24 [pid 303] <... fsconfig resumed>) = -1 EINVAL (Invalid argument) [pid 303] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000 [pid 329] <... set_robust_list resumed>) = 0 [pid 303] <... futex resumed>) = 1 [pid 329] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 303] futex(0x7f1a1ee13608, FUTEX_WAIT_PRIVATE, 0, NULL [pid 329] <... prctl resumed>) = 0 [pid 329] setpgid(0, 0) = 0 [pid 329] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 329] write(3, "1000", 4) = 4 executing program [pid 329] close(3) = 0 [pid 329] write(1, "executing program\n", 18) = 18 [pid 329] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 329] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 329] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 329] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 329] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 329] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 329] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[330]}, 88) = 330 [pid 329] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 329] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 329] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 299] futex(0x7f1a1ee1361c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 300] <... futex resumed>) = 0 [pid 300] exit_group(0./strace-static-x86_64: Process 330 attached [pid 330] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 330] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 330] memfd_create("syzkaller", 0) = 3 [pid 330] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [ 24.447703][ T306] F2FS-fs (loop2): switch discard_unit option is not allowed [ 24.463014][ T303] F2FS-fs (loop2): switch discard_unit option is not allowed [ 24.480493][ T328] F2FS-fs (loop1): switch discard_unit option is not allowed [pid 300] <... exit_group resumed>) = ? [pid 327] <... futex resumed>) = ? [pid 303] <... futex resumed>) = ? [pid 327] +++ exited with 0 +++ [pid 303] +++ exited with 0 +++ [pid 300] +++ exited with 0 +++ [pid 289] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=300, si_uid=0, si_status=0, si_utime=7, si_stime=26} --- [pid 289] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 289] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 289] ioctl(3, LOOP_CLR_FD) = 0 [pid 289] close(3) = 0 [pid 289] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558665a690) = 331 [ 24.488791][ T305] general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN [ 24.500615][ T305] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 24.509037][ T305] CPU: 1 PID: 305 Comm: syz-executor349 Not tainted 5.15.184-syzkaller-00129-g4032a894ccb2 #0 [ 24.519278][ T305] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 24.529340][ T305] RIP: 0010:update_sit_entry+0x5b4/0xf70 ./strace-static-x86_64: Process 331 attached [pid 331] set_robust_list(0x55558665a6a0, 24) = 0 [pid 331] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 331] setpgid(0, 0) = 0 [ 24.535008][ T305] Code: 00 00 49 8d 5d 18 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 9a 58 92 ff 48 8b 1b 48 03 5d b0 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 a9 08 00 00 44 0f b6 33 44 89 f0 44 8b [ 24.554631][ T305] RSP: 0018:ffffc90000b47280 EFLAGS: 00010206 [ 24.561157][ T305] RAX: 0000000000000003 RBX: 000000000000001b RCX: ffff8881049f13c0 [ 24.569428][ T305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 24.577411][ T305] RBP: ffffc90000b47300 R08: ffff8881049f13c0 R09: 0000000000000003 [ 24.585391][ T305] R10: 00000000ffffffff R11: 0000000000000000 R12: dffffc0000000000 [ 24.593376][ T305] R13: ffff88810a914168 R14: 0000000000000000 R15: ffff88810a88e000 [ 24.601352][ T305] FS: 00007f1a1ed446c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 24.610302][ T305] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.616893][ T305] CR2: 00007f1a1eddad18 CR3: 00000001227e6000 CR4: 00000000003506a0 [ 24.625048][ T305] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.633112][ T305] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.641188][ T305] Call Trace: [ 24.644648][ T305] [ 24.647584][ T305] f2fs_allocate_data_block+0x15e8/0x3240 [ 24.653318][ T305] ? f2fs_mark_inode_dirty_sync+0x13e/0x1c0 [ 24.659232][ T305] __allocate_data_block+0x526/0xa00 [ 24.664529][ T305] ? f2fs_map_blocks+0x38a0/0x38a0 [ 24.669648][ T305] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 24.675465][ T305] ? f2fs_mark_inode_dirty_sync+0x13e/0x1c0 [ 24.681366][ T305] f2fs_map_blocks+0xeea/0x38a0 [ 24.686216][ T305] ? reset_curseg+0x391/0x570 [ 24.690894][ T305] ? f2fs_do_map_lock+0x80/0x80 [ 24.695755][ T305] ? f2fs_down_read+0x9f/0x190 [ 24.700514][ T305] ? __allocate_new_segment+0x5dc/0x7a0 [ 24.706063][ T305] ? up_read+0x56/0x1d0 [ 24.710211][ T305] expand_inode_data+0x4a1/0x870 [ 24.715145][ T305] ? f2fs_insert_range+0x3d0/0x3d0 [ 24.720249][ T305] ? has_not_enough_free_secs+0x2cc/0x8b0 [ 24.725967][ T305] f2fs_fallocate+0x41c/0x880 [ 24.730659][ T305] vfs_fallocate+0x4b4/0x590 [ 24.735249][ T305] do_vfs_ioctl+0x1a96/0x1d00 [ 24.739925][ T305] ? __ia32_compat_sys_ioctl+0x850/0x850 [ 24.745556][ T305] ? ioctl_has_perm+0x394/0x4d0 [ 24.750398][ T305] ? has_cap_mac_admin+0x330/0x330 [ 24.755501][ T305] ? _raw_spin_lock_irq+0x8f/0xe0 [ 24.760532][ T305] ? _raw_spin_lock_irqsave+0x110/0x110 [ 24.766072][ T305] ? cgroup_update_frozen+0x15c/0x970 [ 24.771441][ T305] ? selinux_file_ioctl+0x377/0x480 [ 24.776639][ T305] ? selinux_file_alloc_security+0x120/0x120 [ 24.782614][ T305] ? __fget_files+0x2c4/0x320 [ 24.787288][ T305] ? security_file_ioctl+0x84/0xa0 [ 24.792395][ T305] __se_sys_ioctl+0x9f/0x1a0 [ 24.796982][ T305] __x64_sys_ioctl+0x7b/0x90 [ 24.801566][ T305] x64_sys_call+0x2f/0x9a0 [ 24.805979][ T305] do_syscall_64+0x4c/0xa0 [ 24.810388][ T305] ? clear_bhb_loop+0x50/0xa0 [ 24.815058][ T305] ? clear_bhb_loop+0x50/0xa0 [ 24.819725][ T305] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 24.825617][ T305] RIP: 0033:0x7f1a1ed87739 [ 24.830033][ T305] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 24.849631][ T305] RSP: 002b:00007f1a1ed44218 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 24.858038][ T305] RAX: ffffffffffffffda RBX: 00007f1a1ee13608 RCX: 00007f1a1ed87739 [ 24.866004][ T305] RDX: 00002000000000c0 RSI: 0000000040305828 RDI: 0000000000000004 [ 24.873971][ T305] RBP: 00007f1a1ee13600 R08: 0000000000000000 R09: 0000000000000000 [ 24.881945][ T305] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f1a1ede05f0 [ 24.889909][ T305] R13: 00002000000000c0 R14: 00002000000000e0 R15: 0000200000000000 executing program [pid 331] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 331] write(3, "1000", 4) = 4 [pid 331] close(3) = 0 [pid 331] write(1, "executing program\n", 18) = 18 [pid 331] futex(0x7f1a1ee1360c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 331] rt_sigaction(SIGRT_1, {sa_handler=0x7f1a1edad620, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f1a1ed9ecd0}, NULL, 8) = 0 [pid 331] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 331] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f1a1ed24000 [pid 331] mprotect(0x7f1a1ed25000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 331] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 331] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f1a1ed44990, parent_tid=0x7f1a1ed44990, exit_signal=0, stack=0x7f1a1ed24000, stack_size=0x20300, tls=0x7f1a1ed446c0} => {parent_tid=[332]}, 88) = 332 [pid 331] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 331] futex(0x7f1a1ee13608, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 331] futex(0x7f1a1ee1360c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 332 attached [pid 332] set_robust_list(0x7f1a1ed449a0, 24) = 0 [pid 332] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 332] memfd_create("syzkaller", 0) = 3 [pid 332] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f1a16924000 [pid 299] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 24.897875][ T305] [ 24.900886][ T305] Modules linked in: [pid 328] <... fsconfig resumed>) = -1 EINVAL (Invalid argument) [pid 328] futex(0x7f1a1ee1361c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 24.921333][ T305] ---[ end trace 897f891574e313f4 ]--- [ 24.927012][ T305] RIP: 0010:update_sit_entry+0x5b4/0xf70 [ 24.933100][ T305] Code: 00 00 49 8d 5d 18 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 9a 58 92 ff 48 8b 1b 48 03 5d b0 48 89 d8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 a9 08 00 00 44 0f b6 33 44 89 f0 44 8b [ 24.953028][ T305] RSP: 0018:ffffc90000b47280 EFLAGS: 00010206 [ 24.959123][ T305] RAX: 0000000000000003 RBX: 000000000000001b RCX: ffff8881049f13c0 [pid 328] futex(0x7f1a1ee13618, FUTEX_WAIT_PRIVATE, 0, NULL [pid 299] exit_group(0 [pid 328] <... futex resumed>) = ? [pid 299] <... exit_group resumed>) = ? [pid 328] +++ exited with 0 +++ [ 24.968574][ T305] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 24.977128][ T305] RBP: ffffc90000b47300 R08: ffff8881049f13c0 R09: 0000000000000003 [ 24.987173][ T305] R10: 00000000ffffffff R11: 0000000000000000 R12: dffffc0000000000 [ 25.005591][ T305] R13: ffff88810a914168 R14: 0000000000000000 R15: ffff88810a88e000 [ 25.023388][ T305] FS: 00007f1a1ed446c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 25.039335][ T305] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.056239][ T305] CR2: 00007f1a17173000 CR3: 00000001227e6000 CR4: 00000000003506b0 [ 25.075020][ T305] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.093592][ T305] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.101867][ T305] Kernel panic - not syncing: Fatal exception [ 25.108123][ T305] Kernel Offset: disabled [ 25.112489][ T305] Rebooting in 86400 seconds..