./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor239255519

<...>
Warning: Permanently added '10.128.0.64' (ED25519) to the list of known hosts.
execve("./syz-executor239255519", ["./syz-executor239255519"], 0x7fff1ea0ae80 /* 10 vars */) = 0
brk(NULL)                               = 0x55555e140000
brk(0x55555e140e00)                     = 0x55555e140e00
arch_prctl(ARCH_SET_FS, 0x55555e140480) = 0
set_tid_address(0x55555e140750)         = 5237
set_robust_list(0x55555e140760, 24)     = 0
rseq(0x55555e140da0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor239255519", 4096) = 27
getrandom("\xc3\x0a\x59\x18\xc6\xc9\xee\xc6", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555e140e00
brk(0x55555e161e00)                     = 0x55555e161e00
brk(0x55555e162000)                     = 0x55555e162000
mprotect(0x7f92b63cf000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5238 attached
 <unfinished ...>
[pid  5238] set_robust_list(0x55555e140760, 24 <unfinished ...>
[pid  5237] <... clone resumed>, child_tidptr=0x55555e140750) = 5238
[pid  5238] <... set_robust_list resumed>) = 0
[pid  5237] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "10000000000", 11) = 11
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "20", 2)           = 2
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "1", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "0", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "0", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "1", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "100", 3)          = 3
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "0", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "0", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "7 4 1 3", 7)      = 7
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "1", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "1", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "0", 1)            = 1
[pid  5237] close(3)                    = 0
[pid  5237] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3
[pid  5237] write(3, "5238", 4)         = 4
[pid  5237] close(3)                    = 0
[pid  5237] kill(5238, SIGKILL)         = 0
[pid  5238] +++ killed by SIGKILL +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5238, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} ---
mkdir("/syzcgroup", 0777)               = 0
mkdir("/syzcgroup/unified", 0777)       = 0
mount("none", "/syzcgroup/unified", "cgroup2", 0, NULL) = 0
chmod("/syzcgroup/unified", 0777)       = 0
openat(AT_FDCWD, "/syzcgroup/unified/cgroup.subtree_control", O_WRONLY) = 3
write(3, "+cpu", 4)                     = 4
write(3, "+io", 3)                      = 3
write(3, "+pids", 5)                    = 5
close(3)                                = 0
mkdir("/syzcgroup/net", 0777)           = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "net") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "devices") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "blkio") = 0
umount2("/syzcgroup/net", 0)            = 0
[  153.025338][ T5237] cgroup: Unknown subsys name 'net'
mount("none", "/syzcgroup/net", "cgroup", 0, "freezer") = 0
umount2("/syzcgroup/net", 0)            = 0
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = 0
chmod("/syzcgroup/net", 0777)           = 0
mkdir("/syzcgroup/cpu", 0777)           = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "hugetlb") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "rlimit") = -1 EINVAL (Invalid argument)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "memory") = 0
umount2("/syzcgroup/cpu", 0)            = 0
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
[  153.207962][ T5237] cgroup: Unknown subsys name 'cpuset'
[  153.238311][ T5237] cgroup: Unknown subsys name 'rlimit'
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct,hugetlb,memory") = ? ERESTARTNOINTR (To be restarted)
mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct,hugetlb,memory") = 0
chmod("/syzcgroup/cpu", 0777)           = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cgroup.clone_children", O_WRONLY|O_CLOEXEC) = 3
write(3, "1", 1)                        = 1
close(3)                                = 0
openat(AT_FDCWD, "/syzcgroup/cpu/cpuset.memory_pressure_enabled", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f92b631f490, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f92b6328410}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f92b631f490, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f92b6328410}, NULL, 8) = 0
mkdir("./syzkaller.4QopfH", 0700)       = 0
chmod("./syzkaller.4QopfH", 0777)       = 0
chdir("./syzkaller.4QopfH")             = 0
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5239 attached
 <unfinished ...>
[pid  5239] set_robust_list(0x55555e140760, 24 <unfinished ...>
[pid  5237] <... clone resumed>, child_tidptr=0x55555e140750) = 5239
[pid  5239] <... set_robust_list resumed>) = 0
[pid  5239] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5239] setsid()                    = 1
[pid  5239] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5239] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5239] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5239] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5239] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5239] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5239] unshare(CLONE_NEWNS)        = 0
[pid  5239] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] unshare(CLONE_NEWIPC)       = 0
[pid  5239] unshare(CLONE_NEWCGROUP)    = 0
[pid  5239] unshare(CLONE_NEWUTS)       = 0
[pid  5239] unshare(CLONE_SYSVSEM)      = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "16777216", 8)     = 8
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "536870912", 9)    = 9
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1024", 4)         = 4
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "8192", 4)         = 4
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1024", 4)         = 4
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1024", 4)         = 4
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5239] close(3)                    = 0
[pid  5239] getpid()                    = 1
[pid  5239] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5239] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5239] unshare(CLONE_NEWNET)       = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "0 65535", 7)      = 7
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "100000", 6)       = 6
[pid  5239] close(3)                    = 0
[pid  5239] mkdir("./syz-tmp", 0777)    = 0
[pid  5239] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0
[pid  5239] mkdir("./syz-tmp/newroot", 0777) = 0
[pid  5239] mkdir("./syz-tmp/newroot/dev", 0700) = 0
[pid  5239] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mkdir("./syz-tmp/newroot/proc", 0700) = 0
[pid  5239] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0
[pid  5239] mkdir("./syz-tmp/newroot/selinux", 0700) = 0
[pid  5239] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5239] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory)
[pid  5239] mkdir("./syz-tmp/newroot/sys", 0700) = 0
[pid  5239] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mkdir("./syz-tmp/newroot/syzcgroup", 0700) = 0
[pid  5239] mkdir("./syz-tmp/newroot/syzcgroup/unified", 0700) = 0
[pid  5239] mkdir("./syz-tmp/newroot/syzcgroup/cpu", 0700) = 0
[pid  5239] mkdir("./syz-tmp/newroot/syzcgroup/net", 0700) = 0
[pid  5239] mount("/syzcgroup/unified", "./syz-tmp/newroot/syzcgroup/unified", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mount("/syzcgroup/cpu", "./syz-tmp/newroot/syzcgroup/cpu", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mount("/syzcgroup/net", "./syz-tmp/newroot/syzcgroup/net", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0
[pid  5239] mkdir("./syz-tmp/pivot", 0777) = 0
[pid  5239] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0
[pid  5239] chdir("/")                  = 0
[pid  5239] umount2("./pivot", MNT_DETACH) = 0
[pid  5239] chroot("./newroot")         = 0
[pid  5239] chdir("/")                  = 0
[pid  5239] mkdir("/dev/binderfs", 0777) = 0
[pid  5239] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5239] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5239] getpid()                    = 1
[pid  5239] mkdir("/syzcgroup/unified/syz0", 0777) = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/unified/syz0/pids.max", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "32", 2)           = 2
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/unified/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1", 1)            = 1
[pid  5239] close(3)                    = 0
[pid  5239] mkdir("/syzcgroup/cpu/syz0", 0777) = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1", 1)            = 1
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.soft_limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "313524224", 9)    = 9
[pid  5239] close(3)                    = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/memory.limit_in_bytes", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "314572800", 9)    = 9
[pid  5239] close(3)                    = 0
[pid  5239] mkdir("/syzcgroup/net/syz0", 0777) = 0
[pid  5239] openat(AT_FDCWD, "/syzcgroup/net/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3
[pid  5239] write(3, "1", 1)            = 1
[pid  5239] close(3)                    = 0
[pid  5239] mkdir("./0", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5242 attached
, child_tidptr=0x55555e140750) = 2
[pid  5242] set_robust_list(0x55555e140760, 24) = 0
[pid  5242] chdir("./0")                = 0
[pid  5242] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5242] setpgid(0, 0)               = 0
[pid  5242] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5242] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5242] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5242] write(3, "1000", 4)         = 4
[pid  5242] close(3)                    = 0
[pid  5242] symlink("/dev/binderfs", "./binderfs") = 0
[  153.998360][ T5239] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[pid  5242] write(1, "executing program\n", 18executing program
) = 18
[pid  5242] memfd_create("syzkaller", 0) = 3
[pid  5242] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5242] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5242] munmap(0x7f92ade00000, 138412032) = 0
[pid  5242] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5242] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5242] close(3)                    = 0
[pid  5242] close(4)                    = 0
[pid  5242] mkdir("./file1", 0777)      = 0
[  154.231440][ T5242] loop0: detected capacity change from 0 to 32768
[  154.308520][ T5242] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  154.330021][ T5242] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  154.338325][ T5242] bcachefs (loop0): Version upgrade required:
[  154.338325][ T5242] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  154.338325][ T5242] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  154.338325][ T5242]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  154.411201][ T5242] bcachefs (loop0): dropping and reconstructing all alloc info
[  154.428516][ T5242] bcachefs (loop0): check_topology... done
[  154.434456][ T5242] bcachefs (loop0): accounting_read... done
[  154.441222][ T5242] bcachefs (loop0): alloc_read... done
[  154.446764][ T5242] bcachefs (loop0): stripes_read... done
[  154.452468][ T5242] bcachefs (loop0): snapshots_read... done
[pid  5242] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5242] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5242] chdir("./file1")            = 0
[pid  5242] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5242] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5242] close(4)                    = 0
[pid  5242] mkdir("./bus", 000)         = 0
[pid  5242] close(3)                    = 0
[pid  5242] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5242] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(20)                   = -1 EBADF (Bad file descriptor)
[  154.458470][ T5242] bcachefs (loop0): check_allocations... done
[  154.477645][ T5242] bcachefs (loop0): going read-write
[  154.486822][ T5242] bcachefs (loop0): done starting filesystem
[pid  5242] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5242] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5242] exit_group(0)               = ?
[pid  5242] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=29 /* 0.29 s */} ---
[pid  5239] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./0/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./0/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./0/cgroup")        = 0
[pid  5239] umount2("./0/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./0/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./0/cgroup.cpu")    = 0
[pid  5239] umount2("./0/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./0/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./0/cgroup.net")    = 0
[pid  5239] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./0/binderfs")      = 0
[  154.698376][ T5239] bcachefs (loop0): shutting down
[  154.703616][ T5239] bcachefs (loop0): going read-only
[  154.708918][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  154.718416][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  154.743322][ T2920] bcachefs (loop0): bch2_write_super(): fatal error  loop0: Superblock write was silently dropped! (seq 0 expected 53)
[  154.756486][ T2920] bcachefs (loop0): fatal error - emergency read only
[  154.763855][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 14
[  154.773773][ T5239] bcachefs (loop0): unshutdown complete, journal seq 14
[  154.781320][ T5239] bcachefs (loop0): done going read-only, filesystem not clean
[  154.802893][ T5239] bcachefs (loop0): shutdown complete
[pid  5239] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid  5239] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(4, 0x55555e149830 /* 2 entries */, 32768) = 48
[pid  5239] getdents64(4, 0x55555e149830 /* 0 entries */, 32768) = 0
[pid  5239] close(4)                    = 0
[pid  5239] rmdir("./0/file1")          = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 0 entries */, 32768) = 0
[pid  5239] close(3)                    = 0
[pid  5239] rmdir("./0")                = 0
[pid  5239] mkdir("./1", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5253 attached
, child_tidptr=0x55555e140750) = 3
[pid  5253] set_robust_list(0x55555e140760, 24) = 0
[pid  5253] chdir("./1")                = 0
[pid  5253] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5253] setpgid(0, 0)               = 0
[pid  5253] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5253] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5253] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5253] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5253] write(3, "1000", 4)         = 4
[pid  5253] close(3)                    = 0
[pid  5253] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5253] write(1, "executing program\n", 18executing program
) = 18
[pid  5253] memfd_create("syzkaller", 0) = 3
[pid  5253] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5253] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5253] munmap(0x7f92ade00000, 138412032) = 0
[pid  5253] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5253] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5253] close(3)                    = 0
[pid  5253] close(4)                    = 0
[pid  5253] mkdir("./file1", 0777)      = 0
[  156.084967][ T5253] loop0: detected capacity change from 0 to 32768
[  156.132590][ T5253] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  156.153650][ T5253] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  156.161629][ T5253] bcachefs (loop0): Version upgrade required:
[  156.161629][ T5253] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  156.161629][ T5253] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  156.161629][ T5253]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  156.233897][ T5253] bcachefs (loop0): dropping and reconstructing all alloc info
[  156.249491][ T5253] bcachefs (loop0): check_topology... done
[  156.255634][ T5253] bcachefs (loop0): accounting_read... done
[  156.261760][ T5253] bcachefs (loop0): alloc_read... done
[  156.267362][ T5253] bcachefs (loop0): stripes_read... done
[  156.273163][ T5253] bcachefs (loop0): snapshots_read... done
[pid  5253] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5253] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5253] chdir("./file1")            = 0
[pid  5253] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5253] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5253] close(4)                    = 0
[pid  5253] mkdir("./bus", 000)         = 0
[pid  5253] close(3)                    = 0
[pid  5253] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5253] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5253] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5253] exit_group(0)               = ?
[  156.279024][ T5253] bcachefs (loop0): check_allocations... done
[  156.296080][ T5253] bcachefs (loop0): going read-write
[  156.304223][ T5253] bcachefs (loop0): done starting filesystem
[pid  5253] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=22 /* 0.22 s */} ---
[pid  5239] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[  156.349976][ T5253] syz-executor239 (5253) used greatest stack depth: 18544 bytes left
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./1/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./1/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./1/cgroup")        = 0
[pid  5239] umount2("./1/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./1/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./1/cgroup.cpu")    = 0
[pid  5239] umount2("./1/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./1/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./1/cgroup.net")    = 0
[pid  5239] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./1/binderfs")      = 0
[  156.568979][ T5239] bcachefs (loop0): shutting down
[  156.574190][ T5239] bcachefs (loop0): going read-only
[  156.579378][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  156.587483][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  156.610140][   T11] bcachefs (loop0): bch2_write_super(): fatal error  loop0: Superblock write was silently dropped! (seq 0 expected 53)
[  156.623190][   T11] bcachefs (loop0): fatal error - emergency read only
[  156.630234][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 14
[  156.640012][ T5239] bcachefs (loop0): unshutdown complete, journal seq 14
[  156.647567][ T5239] bcachefs (loop0): done going read-only, filesystem not clean
[  156.663814][ T5239] bcachefs (loop0): shutdown complete
[pid  5239] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid  5239] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(4, 0x55555e149830 /* 2 entries */, 32768) = 48
[pid  5239] getdents64(4, 0x55555e149830 /* 0 entries */, 32768) = 0
[pid  5239] close(4)                    = 0
[pid  5239] rmdir("./1/file1")          = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 0 entries */, 32768) = 0
[pid  5239] close(3)                    = 0
[pid  5239] rmdir("./1")                = 0
[pid  5239] mkdir("./2", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5264 attached
, child_tidptr=0x55555e140750) = 4
[pid  5264] set_robust_list(0x55555e140760, 24) = 0
[pid  5264] chdir("./2")                = 0
[pid  5264] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5264] setpgid(0, 0)               = 0
[pid  5264] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5264] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5264] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5264] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5264] write(3, "1000", 4)         = 4
[pid  5264] close(3)                    = 0
[pid  5264] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5264] write(1, "executing program\n", 18) = 18
[pid  5264] memfd_create("syzkaller", 0) = 3
[pid  5264] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5264] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5264] munmap(0x7f92ade00000, 138412032) = 0
[pid  5264] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5264] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5264] close(3)                    = 0
[pid  5264] close(4)                    = 0
[pid  5264] mkdir("./file1", 0777)      = 0
[  157.888711][ T5264] loop0: detected capacity change from 0 to 32768
[  157.956894][ T5264] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  157.978255][ T5264] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  157.986742][ T5264] bcachefs (loop0): Version upgrade required:
[  157.986742][ T5264] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  157.986742][ T5264] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  157.986742][ T5264]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  158.059016][ T5264] bcachefs (loop0): dropping and reconstructing all alloc info
[  158.074346][ T5264] bcachefs (loop0): check_topology... done
[  158.080201][ T5264] bcachefs (loop0): accounting_read... done
[  158.086917][ T5264] bcachefs (loop0): alloc_read... done
[  158.092471][ T5264] bcachefs (loop0): stripes_read... done
[  158.098115][ T5264] bcachefs (loop0): snapshots_read... done
[pid  5264] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5264] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5264] chdir("./file1")            = 0
[pid  5264] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5264] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5264] close(4)                    = 0
[pid  5264] mkdir("./bus", 000)         = 0
[pid  5264] close(3)                    = 0
[pid  5264] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5264] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(20)                   = -1 EBADF (Bad file descriptor)
[  158.104009][ T5264] bcachefs (loop0): check_allocations... done
[  158.120966][ T5264] bcachefs (loop0): going read-write
[  158.129311][ T5264] bcachefs (loop0): done starting filesystem
[pid  5264] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5264] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5264] exit_group(0)               = ?
[pid  5264] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=23 /* 0.23 s */} ---
[pid  5239] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5239] umount2("./2", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./2/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./2/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./2/cgroup")        = 0
[pid  5239] umount2("./2/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./2/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./2/cgroup.cpu")    = 0
[pid  5239] umount2("./2/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./2/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./2/cgroup.net")    = 0
[pid  5239] umount2("./2/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./2/binderfs")      = 0
[  158.335927][ T5239] bcachefs (loop0): shutting down
[  158.340952][ T5239] bcachefs (loop0): going read-only
[  158.346430][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  158.354138][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  158.375419][ T2920] bcachefs (loop0): bch2_write_super(): fatal error  loop0: Superblock write was silently dropped! (seq 0 expected 53)
[  158.388203][ T2920] bcachefs (loop0): fatal error - emergency read only
[  158.395297][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 14
[  158.405101][ T5239] bcachefs (loop0): unshutdown complete, journal seq 14
[  158.412806][ T5239] bcachefs (loop0): done going read-only, filesystem not clean
[  158.428398][ T5239] bcachefs (loop0): shutdown complete
[pid  5239] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid  5239] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./2/file1", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] umount2("./2/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./2/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(4, 0x55555e149830 /* 2 entries */, 32768) = 48
[pid  5239] getdents64(4, 0x55555e149830 /* 0 entries */, 32768) = 0
[pid  5239] close(4)                    = 0
[pid  5239] rmdir("./2/file1")          = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 0 entries */, 32768) = 0
[pid  5239] close(3)                    = 0
[pid  5239] rmdir("./2")                = 0
[pid  5239] mkdir("./3", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5275 attached
 <unfinished ...>
[pid  5275] set_robust_list(0x55555e140760, 24 <unfinished ...>
[pid  5239] <... clone resumed>, child_tidptr=0x55555e140750) = 5
[pid  5275] <... set_robust_list resumed>) = 0
[pid  5275] chdir("./3")                = 0
[pid  5275] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5275] setpgid(0, 0)               = 0
[pid  5275] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5275] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5275] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5275] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5275] write(3, "1000", 4)         = 4
[pid  5275] close(3)                    = 0
[pid  5275] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5275] write(1, "executing program\n", 18executing program
) = 18
[pid  5275] memfd_create("syzkaller", 0) = 3
[pid  5275] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5275] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5275] munmap(0x7f92ade00000, 138412032) = 0
[pid  5275] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5275] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5275] close(3)                    = 0
[pid  5275] close(4)                    = 0
[pid  5275] mkdir("./file1", 0777)      = 0
[  159.671542][ T5275] loop0: detected capacity change from 0 to 32768
[  159.750936][ T5275] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  159.772086][ T5275] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  159.780067][ T5275] bcachefs (loop0): Version upgrade required:
[  159.780067][ T5275] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  159.780067][ T5275] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  159.780067][ T5275]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  159.852301][ T5275] bcachefs (loop0): dropping and reconstructing all alloc info
[  159.866670][ T5275] bcachefs (loop0): check_topology... done
[  159.872574][ T5275] bcachefs (loop0): accounting_read... done
[  159.878918][ T5275] bcachefs (loop0): alloc_read... done
[  159.884452][ T5275] bcachefs (loop0): stripes_read... done
[  159.890130][ T5275] bcachefs (loop0): snapshots_read... done
[pid  5275] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5275] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5275] chdir("./file1")            = 0
[pid  5275] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5275] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5275] close(4)                    = 0
[pid  5275] mkdir("./bus", 000)         = 0
[pid  5275] close(3)                    = 0
[pid  5275] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5275] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(15)                   = -1 EBADF (Bad file descriptor)
[  159.896031][ T5275] bcachefs (loop0): check_allocations... done
[  159.913108][ T5275] bcachefs (loop0): going read-write
[  159.921319][ T5275] bcachefs (loop0): done starting filesystem
[pid  5275] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5275] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5275] exit_group(0)               = ?
[pid  5275] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=25 /* 0.25 s */} ---
[pid  5239] umount2("./3", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./3/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./3/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./3/cgroup")        = 0
[pid  5239] umount2("./3/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./3/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./3/cgroup.cpu")    = 0
[pid  5239] umount2("./3/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./3/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./3/cgroup.net")    = 0
[pid  5239] umount2("./3/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./3/binderfs")      = 0
[  160.122986][ T5239] bcachefs (loop0): shutting down
[  160.128016][ T5239] bcachefs (loop0): going read-only
[  160.133478][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  160.141105][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  160.162943][   T35] bcachefs (loop0): bch2_write_super(): fatal error  loop0: Superblock write was silently dropped! (seq 0 expected 53)
[  160.176103][   T35] bcachefs (loop0): fatal error - emergency read only
[  160.183364][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 14
[  160.193049][ T5239] bcachefs (loop0): unshutdown complete, journal seq 14
[  160.200479][ T5239] bcachefs (loop0): done going read-only, filesystem not clean
[  160.216590][ T5239] bcachefs (loop0): shutdown complete
[pid  5239] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid  5239] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./3/file1", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] umount2("./3/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./3/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(4, 0x55555e149830 /* 2 entries */, 32768) = 48
[pid  5239] getdents64(4, 0x55555e149830 /* 0 entries */, 32768) = 0
[pid  5239] close(4)                    = 0
[pid  5239] rmdir("./3/file1")          = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 0 entries */, 32768) = 0
[pid  5239] close(3)                    = 0
[pid  5239] rmdir("./3")                = 0
[pid  5239] mkdir("./4", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5286 attached
 <unfinished ...>
[pid  5286] set_robust_list(0x55555e140760, 24 <unfinished ...>
[pid  5239] <... clone resumed>, child_tidptr=0x55555e140750) = 6
[pid  5286] <... set_robust_list resumed>) = 0
[pid  5286] chdir("./4")                = 0
[pid  5286] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5286] setpgid(0, 0)               = 0
[pid  5286] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5286] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5286] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5286] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5286] write(3, "1000", 4)         = 4
[pid  5286] close(3)                    = 0
[pid  5286] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5286] write(1, "executing program\n", 18executing program
) = 18
[pid  5286] memfd_create("syzkaller", 0) = 3
[pid  5286] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5286] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5286] munmap(0x7f92ade00000, 138412032) = 0
[pid  5286] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5286] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5286] close(3)                    = 0
[pid  5286] close(4)                    = 0
[pid  5286] mkdir("./file1", 0777)      = 0
[  161.551041][ T5286] loop0: detected capacity change from 0 to 32768
[  161.610909][ T5286] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  161.632059][ T5286] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  161.640050][ T5286] bcachefs (loop0): Version upgrade required:
[  161.640050][ T5286] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  161.640050][ T5286] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  161.640050][ T5286]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  161.712220][ T5286] bcachefs (loop0): dropping and reconstructing all alloc info
[  161.726967][ T5286] bcachefs (loop0): check_topology... done
[  161.733063][ T5286] bcachefs (loop0): accounting_read... done
[  161.739155][ T5286] bcachefs (loop0): alloc_read... done
[  161.744805][ T5286] bcachefs (loop0): stripes_read... done
[  161.750542][ T5286] bcachefs (loop0): snapshots_read... done
[pid  5286] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5286] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5286] chdir("./file1")            = 0
[pid  5286] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5286] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5286] close(4)                    = 0
[  161.756558][ T5286] bcachefs (loop0): check_allocations... done
[  161.773619][ T5286] bcachefs (loop0): going read-write
[  161.782277][ T5286] bcachefs (loop0): done starting filesystem
[pid  5286] mkdir("./bus", 000)         = 0
[pid  5286] close(3)                    = 0
[pid  5286] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5286] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5286] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5286] exit_group(0)               = ?
[pid  5286] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=6, si_uid=0, si_status=0, si_utime=1 /* 0.01 s */, si_stime=22 /* 0.22 s */} ---
[pid  5239] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5239] umount2("./4", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./4/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./4/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./4/cgroup")        = 0
[pid  5239] umount2("./4/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./4/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./4/cgroup.cpu")    = 0
[pid  5239] umount2("./4/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./4/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./4/cgroup.net")    = 0
[pid  5239] umount2("./4/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./4/binderfs")      = 0
[  162.018820][ T5239] bcachefs (loop0): shutting down
[  162.024007][ T5239] bcachefs (loop0): going read-only
[  162.029193][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  162.036792][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  162.057446][   T11] bcachefs (loop0): bch2_write_super(): fatal error  loop0: Superblock write was silently dropped! (seq 0 expected 53)
[  162.070251][   T11] bcachefs (loop0): fatal error - emergency read only
[  162.077548][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 14
[  162.087373][ T5239] bcachefs (loop0): unshutdown complete, journal seq 14
[  162.095067][ T5239] bcachefs (loop0): done going read-only, filesystem not clean
[  162.110073][ T5239] bcachefs (loop0): shutdown complete
[pid  5239] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = 0
[pid  5239] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./4/file1", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] umount2("./4/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./4/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid  5239] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=40, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(4, 0x55555e149830 /* 2 entries */, 32768) = 48
[pid  5239] getdents64(4, 0x55555e149830 /* 0 entries */, 32768) = 0
[pid  5239] close(4)                    = 0
[pid  5239] rmdir("./4/file1")          = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 0 entries */, 32768) = 0
[pid  5239] close(3)                    = 0
[pid  5239] rmdir("./4")                = 0
[pid  5239] mkdir("./5", 0777)          = 0
[pid  5239] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5239] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5239] close(3)                    = 0
[pid  5239] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5299 attached
, child_tidptr=0x55555e140750) = 7
[pid  5299] set_robust_list(0x55555e140760, 24) = 0
[pid  5299] chdir("./5")                = 0
[pid  5299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5299] setpgid(0, 0)               = 0
[pid  5299] symlink("/syzcgroup/unified/syz0", "./cgroup") = 0
[pid  5299] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu") = 0
[pid  5299] symlink("/syzcgroup/net/syz0", "./cgroup.net") = 0
[pid  5299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5299] write(3, "1000", 4)         = 4
[pid  5299] close(3)                    = 0
[pid  5299] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid  5299] write(1, "executing program\n", 18) = 18
[pid  5299] memfd_create("syzkaller", 0) = 3
[pid  5299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f92ade00000
[pid  5299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5299] munmap(0x7f92ade00000, 138412032) = 0
[pid  5299] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5299] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5299] close(3)                    = 0
[pid  5299] close(4)                    = 0
[pid  5299] mkdir("./file1", 0777)      = 0
[  163.365111][ T5299] loop0: detected capacity change from 0 to 32768
[  163.432193][ T5299] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  163.453373][ T5299] bcachefs (loop0): recovering from clean shutdown, journal seq 10
[  163.461377][ T5299] bcachefs (loop0): Version upgrade required:
[  163.461377][ T5299] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  163.461377][ T5299] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  163.461377][ T5299]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  163.534005][ T5299] bcachefs (loop0): dropping and reconstructing all alloc info
[  163.548123][ T5299] bcachefs (loop0): check_topology... done
[  163.554053][ T5299] bcachefs (loop0): accounting_read... done
[  163.560589][ T5299] bcachefs (loop0): alloc_read... done
[  163.566167][ T5299] bcachefs (loop0): stripes_read... done
[  163.571912][ T5299] bcachefs (loop0): snapshots_read... done
[pid  5299] mount("/dev/loop0", "./file1", "bcachefs", MS_I_VERSION, "acl,direct_io,norecovery,fsck,journal_flush_disabled,norecovery,btree_node_mem_ptr_optimization,reco"...) = 0
[pid  5299] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid  5299] chdir("./file1")            = 0
[pid  5299] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5299] ioctl(4, LOOP_CLR_FD)       = 0
[  163.577793][ T5299] bcachefs (loop0): check_allocations... done
[  163.597878][ T5299] bcachefs (loop0): going read-write
[  163.605801][ T5299] bcachefs (loop0): done starting filesystem
[pid  5299] close(4)                    = 0
[pid  5299] mkdir("./bus", 000)         = 0
[pid  5299] close(3)                    = 0
[pid  5299] close(4)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(5)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(6)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(7)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(8)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(9)                    = -1 EBADF (Bad file descriptor)
[pid  5299] close(10)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(11)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(12)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(13)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(14)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(15)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(16)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(17)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(18)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(19)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(20)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(21)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(22)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(23)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(24)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(25)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(26)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(27)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(28)                   = -1 EBADF (Bad file descriptor)
[pid  5299] close(29)                   = -1 EBADF (Bad file descriptor)
[pid  5299] exit_group(0)               = ?
[pid  5299] +++ exited with 0 +++
[pid  5239] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=7, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=24 /* 0.24 s */} ---
[pid  5239] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5239] umount2("./5", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5239] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=140, ...}, AT_EMPTY_PATH) = 0
[pid  5239] getdents64(3, 0x55555e1417f0 /* 7 entries */, 32768) = 208
[pid  5239] umount2("./5/cgroup", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./5/cgroup", {st_mode=S_IFLNK|0777, st_size=23, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./5/cgroup")        = 0
[pid  5239] umount2("./5/cgroup.cpu", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./5/cgroup.cpu", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./5/cgroup.cpu")    = 0
[pid  5239] umount2("./5/cgroup.net", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./5/cgroup.net", {st_mode=S_IFLNK|0777, st_size=19, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./5/cgroup.net")    = 0
[pid  5239] umount2("./5/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid  5239] newfstatat(AT_FDCWD, "./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid  5239] unlink("./5/binderfs")      = 0
[  163.871068][ T5239] bcachefs (loop0): shutting down
[  163.876278][ T5239] bcachefs (loop0): going read-only
[  163.881485][ T5239] bcachefs (loop0): finished waiting for writes to stop
[  163.889359][ T5239] bcachefs (loop0): flushing journal and stopping allocators, journal seq 11
[  163.899240][ T5239] bcachefs (loop0): flushing journal and stopping allocators complete, journal seq 11
[  163.913082][ T5239] bcachefs (loop0): unshutdown complete, journal seq 12
[  163.916762][   T35] ------------[ cut here ]------------
[  163.925637][   T35] kernel BUG at fs/bcachefs/journal.h:375!
[  163.931465][   T35] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  163.938392][   T35] CPU: 1 UID: 0 PID: 35 Comm: kworker/u8:2 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[  163.949039][   T35] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  163.959074][   T35] Workqueue: btree_update btree_interior_update_work
[  163.965751][   T35] RIP: 0010:__bch2_trans_commit+0x9232/0x93c0
[  163.971804][   T35] Code: fd 90 0f 0b e8 6f d2 78 fd 90 0f 0b e8 67 d2 78 fd 90 0f 0b e8 5f d2 78 fd 90 0f 0b e8 57 d2 78 fd 90 0f 0b e8 4f d2 78 fd 90 <0f> 0b e8 47 d2 78 fd 90 0f 0b e8 3f d2 78 fd 90 0f 0b e8 37 d2 78
[  163.991411][   T35] RSP: 0018:ffffc90000ab76c0 EFLAGS: 00010293
[  163.997469][   T35] RAX: ffffffff841c14b1 RBX: 0000000000000000 RCX: ffff88801daa9e00
[  164.005428][   T35] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.013388][   T35] RBP: ffffc90000ab7890 R08: ffffffff841bb7e8 R09: 1ffff1100e1094a8
[  164.021348][   T35] R10: dffffc0000000000 R11: ffffed100e1094a9 R12: ffff888070800000
[  164.029308][   T35] R13: ffff88807084a500 R14: 0000000000000044 R15: ffff88803070c0d0
[  164.037268][   T35] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  164.046186][   T35] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.052756][   T35] CR2: 00007fffece6ef2c CR3: 000000002d666000 CR4: 00000000003526f0
[  164.060717][   T35] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  164.068674][   T35] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  164.076632][   T35] Call Trace:
[  164.079904][   T35]  <TASK>
[  164.082823][   T35]  ? __die_body+0x5f/0xb0
[  164.087143][   T35]  ? die+0x9e/0xc0
[  164.090853][   T35]  ? do_trap+0x15a/0x3a0
[  164.095088][   T35]  ? __bch2_trans_commit+0x9232/0x93c0
[  164.100543][   T35]  ? do_error_trap+0x1dc/0x2c0
[  164.105296][   T35]  ? __bch2_trans_commit+0x9232/0x93c0
[  164.110745][   T35]  ? __pfx_do_error_trap+0x10/0x10
[  164.115845][   T35]  ? report_bug+0x3e8/0x500
[  164.120352][   T35]  ? handle_invalid_op+0x34/0x40
[  164.125281][   T35]  ? __bch2_trans_commit+0x9232/0x93c0
[  164.130732][   T35]  ? exc_invalid_op+0x38/0x50
[  164.135400][   T35]  ? asm_exc_invalid_op+0x1a/0x20
[  164.140416][   T35]  ? __bch2_trans_commit+0x3568/0x93c0
[  164.145863][   T35]  ? __bch2_trans_commit+0x9231/0x93c0
[  164.151317][   T35]  ? __bch2_trans_commit+0x9232/0x93c0
[  164.156774][   T35]  ? __pfx___bch2_trans_commit+0x10/0x10
[  164.162399][   T35]  ? __bch2_trans_jset_entry_alloc+0x2c7/0x4b0
[  164.168543][   T35]  ? btree_interior_update_work+0x117a/0x2b10
[  164.174601][   T35]  btree_interior_update_work+0x1492/0x2b10
[  164.180489][   T35]  ? __pfx_btree_interior_update_work+0x10/0x10
[  164.186721][   T35]  ? __pfx_lock_acquire+0x10/0x10
[  164.191737][   T35]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  164.197711][   T35]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  164.204034][   T35]  ? process_scheduled_works+0x976/0x1850
[  164.209744][   T35]  process_scheduled_works+0xa63/0x1850
[  164.215288][   T35]  ? __pfx_process_scheduled_works+0x10/0x10
[  164.221258][   T35]  ? assign_work+0x364/0x3d0
[  164.225842][   T35]  worker_thread+0x870/0xd30
[  164.230426][   T35]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  164.236310][   T35]  ? __kthread_parkme+0x169/0x1d0
[  164.241325][   T35]  ? __pfx_worker_thread+0x10/0x10
[  164.246427][   T35]  kthread+0x2f0/0x390
[  164.250486][   T35]  ? __pfx_worker_thread+0x10/0x10
[  164.255589][   T35]  ? __pfx_kthread+0x10/0x10
[  164.260164][   T35]  ret_from_fork+0x4b/0x80
[  164.264573][   T35]  ? __pfx_kthread+0x10/0x10
[  164.269149][   T35]  ret_from_fork_asm+0x1a/0x30
[  164.273909][   T35]  </TASK>
[  164.276916][   T35] Modules linked in:
[  164.280931][   T35] ---[ end trace 0000000000000000 ]---
[  164.286463][   T35] RIP: 0010:__bch2_trans_commit+0x9232/0x93c0
[  164.292578][   T35] Code: fd 90 0f 0b e8 6f d2 78 fd 90 0f 0b e8 67 d2 78 fd 90 0f 0b e8 5f d2 78 fd 90 0f 0b e8 57 d2 78 fd 90 0f 0b e8 4f d2 78 fd 90 <0f> 0b e8 47 d2 78 fd 90 0f 0b e8 3f d2 78 fd 90 0f 0b e8 37 d2 78
[  164.312216][   T35] RSP: 0018:ffffc90000ab76c0 EFLAGS: 00010293
[  164.318262][   T35] RAX: ffffffff841c14b1 RBX: 0000000000000000 RCX: ffff88801daa9e00
[  164.326274][   T35] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  164.334319][   T35] RBP: ffffc90000ab7890 R08: ffffffff841bb7e8 R09: 1ffff1100e1094a8
[  164.342335][   T35] R10: dffffc0000000000 R11: ffffed100e1094a9 R12: ffff888070800000
[  164.350304][   T35] R13: ffff88807084a500 R14: 0000000000000044 R15: ffff88803070c0d0
[  164.358301][   T35] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  164.367262][   T35] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  164.373906][   T35] CR2: 000055555e1497f8 CR3: 000000002f4bc000 CR4: 00000000003526f0
[  164.381901][   T35] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  164.389855][   T35] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  164.397854][   T35] Kernel panic - not syncing: Fatal exception
[  164.404145][   T35] Kernel Offset: disabled
[  164.408451][   T35] Rebooting in 86400 seconds..