./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2332573274 <...> Warning: Permanently added '10.128.1.20' (ECDSA) to the list of known hosts. execve("./syz-executor2332573274", ["./syz-executor2332573274"], 0x7fff4d4b2b90 /* 10 vars */) = 0 brk(NULL) = 0x555556636000 brk(0x555556636c40) = 0x555556636c40 arch_prctl(ARCH_SET_FS, 0x555556636300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 set_tid_address(0x5555566365d0) = 3630 set_robust_list(0x5555566365e0, 24) = 0 rt_sigaction(SIGRTMIN, {sa_handler=0x7f7b3698d400, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f7b3698dad0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7f7b3698d4a0, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f7b3698dad0}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2332573274", 4096) = 28 brk(0x555556657c40) = 0x555556657c40 brk(0x555556658000) = 0x555556658000 mprotect(0x7f7b36a4e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 getpid() = 3630 openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3 write(3, "10000000000", 11) = 11 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 write(3, "20", 2) = 2 close(3) = 0 openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 write(3, "100", 3) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 write(3, "7 4 1 3", 7) = 7 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 write(3, "3630", 4) = 4 close(3) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3631 ./strace-static-x86_64: Process 3631 attached [pid 3631] set_robust_list(0x5555566365e0, 24) = 0 [pid 3631] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3631] setpgid(0, 0) = 0 [pid 3631] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3631] write(3, "1000", 4) = 4 [pid 3631] close(3) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3631] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3631] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3632], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3632 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3632 attached [pid 3632] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3632] memfd_create("syzkaller", 0) = 3 [pid 3632] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3632] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3632] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3632] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3632] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 3632] close(3) = 0 [pid 3632] mkdir("./file0", 0777) = 0 [pid 3632] mount("/dev/loop0", "./file0", "ext4", MS_DIRSYNC|MS_NOATIME|MS_LAZYTIME, ",errors=continue") = 0 [pid 3632] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 3632] chdir("./file0") = 0 [pid 3632] ioctl(4, LOOP_CLR_FD) = 0 [pid 3632] close(4) = 0 [pid 3632] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3631] <... futex resumed>) = 0 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3632] <... futex resumed>) = 1 [pid 3632] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 4 [pid 3632] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3631] <... futex resumed>) = 0 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3632] <... futex resumed>) = 1 [pid 3632] write(4, "#! ./bus\n", 9) = 9 [pid 3632] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3631] <... futex resumed>) = 0 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3632] <... futex resumed>) = 1 [pid 3632] open("./bus", O_RDWR) = 5 [pid 3632] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3631] <... futex resumed>) = 0 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3632] <... futex resumed>) = 1 [pid 3632] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3631] <... futex resumed>) = 0 [pid 3631] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3631] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3631] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3637 attached , parent_tid=[3637], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3637 [pid 3631] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3631] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3632] <... futex resumed>) = 1 [pid 3637] set_robust_list(0x7f7b3695b9e0, 24) = 0 [ 54.188962][ T3632] loop0: detected capacity change from 0 to 2048 [ 54.211639][ T3632] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [pid 3637] openat(4, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3637] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3631] <... futex resumed>) = 0 [pid 3637] <... futex resumed>) = 1 [pid 3637] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3632] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000f82} --- [pid 3637] <... futex resumed>) = ? [pid 3637] +++ killed by SIGBUS +++ [pid 3632] +++ killed by SIGBUS +++ [pid 3631] +++ killed by SIGBUS +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=3631, si_uid=0, si_status=SIGBUS, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3638 ./strace-static-x86_64: Process 3638 attached [pid 3638] set_robust_list(0x5555566365e0, 24) = 0 [pid 3638] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3638] setpgid(0, 0) = 0 [pid 3638] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3638] write(3, "1000", 4) = 4 [pid 3638] close(3) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3638] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3638] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3639 attached , parent_tid=[3639], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3639 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3639] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3639] memfd_create("syzkaller", 0) = 3 [pid 3639] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [ 54.254481][ T3632] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1098: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [pid 3639] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3639] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3639] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3639] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3639] ioctl(4, LOOP_CLR_FD) = 0 [pid 3639] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3639] close(4) = 0 [pid 3639] close(3) = 0 [pid 3639] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3638] <... futex resumed>) = 0 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3639] <... futex resumed>) = 1 [pid 3639] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3639] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3638] <... futex resumed>) = 0 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3639] <... futex resumed>) = 1 [pid 3639] write(3, "#! ./bus\n", 9) = 9 [pid 3639] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3638] <... futex resumed>) = 0 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3639] <... futex resumed>) = 1 [pid 3639] open("./bus", O_RDWR) = 4 [pid 3639] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3638] <... futex resumed>) = 0 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3639] <... futex resumed>) = 1 [pid 3639] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3638] <... futex resumed>) = 0 [pid 3638] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3638] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3639] <... futex resumed>) = 1 [pid 3638] <... mprotect resumed>) = 0 [pid 3639] write(3, 0x20000f80, 9 [pid 3638] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3640 attached , parent_tid=[3640], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3640 [pid 3638] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3638] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3640] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3640] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3640] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3638] <... futex resumed>) = 0 [pid 3640] <... futex resumed>) = 1 [pid 3640] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3639] <... write resumed>) = 9 [pid 3639] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3639] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3638] exit_group(0) = ? [pid 3640] <... futex resumed>) = ? [pid 3639] <... futex resumed>) = ? [pid 3639] +++ exited with 0 +++ [pid 3640] +++ exited with 0 +++ [pid 3638] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3638, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3641 ./strace-static-x86_64: Process 3641 attached [pid 3641] set_robust_list(0x5555566365e0, 24) = 0 [pid 3641] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3641] setpgid(0, 0) = 0 [pid 3641] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3641] write(3, "1000", 4) = 4 [pid 3641] close(3) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3641] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3641] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3642], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3642 ./strace-static-x86_64: Process 3642 attached [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3642] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3642] memfd_create("syzkaller", 0) = 3 [pid 3642] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3642] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3642] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3642] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3642] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3642] ioctl(4, LOOP_CLR_FD) = 0 [pid 3642] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3642] close(4) = 0 [pid 3642] close(3) = 0 [pid 3642] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3642] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3642] <... open resumed>) = 3 [pid 3642] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3642] <... futex resumed>) = 1 [pid 3642] write(3, "#! ./bus\n", 9) = 9 [pid 3642] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3642] open("./bus", O_RDWR) = 4 [pid 3642] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3641] <... futex resumed>) = 0 [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3642] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3641] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3641] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3641] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3641] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3643 attached [pid 3642] write(3, 0x20000f80, 9 [pid 3641] <... clone resumed>, parent_tid=[3643], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3643 [pid 3641] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3643] set_robust_list(0x7f7b3695b9e0, 24 [pid 3641] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3643] <... set_robust_list resumed>) = 0 [pid 3643] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3643] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3641] <... futex resumed>) = 0 [pid 3643] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3642] <... write resumed>) = 9 [pid 3642] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3642] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3641] exit_group(0 [pid 3643] <... futex resumed>) = ? [pid 3642] <... futex resumed>) = ? [pid 3641] <... exit_group resumed>) = ? [pid 3643] +++ exited with 0 +++ [pid 3642] +++ exited with 0 +++ [pid 3641] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3641, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3644 ./strace-static-x86_64: Process 3644 attached [pid 3644] set_robust_list(0x5555566365e0, 24) = 0 [pid 3644] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3644] setpgid(0, 0) = 0 [pid 3644] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3644] write(3, "1000", 4) = 4 [pid 3644] close(3) = 0 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3644] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3644] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3645 attached , parent_tid=[3645], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3645 [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3645] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3645] memfd_create("syzkaller", 0) = 3 [pid 3645] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3645] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3645] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3645] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3645] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3645] ioctl(4, LOOP_CLR_FD) = 0 [pid 3645] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3645] close(4) = 0 [pid 3645] close(3) = 0 [pid 3645] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3644] <... futex resumed>) = 0 [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3645] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3645] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3645] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3644] <... futex resumed>) = 1 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3645] <... futex resumed>) = 0 [pid 3645] write(3, "#! ./bus\n", 9) = 9 [pid 3645] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3644] <... futex resumed>) = 0 [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3645] <... futex resumed>) = 1 [pid 3645] open("./bus", O_RDWR) = 4 [pid 3645] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3644] <... futex resumed>) = 0 [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3645] <... futex resumed>) = 1 [pid 3645] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3644] <... futex resumed>) = 0 [pid 3644] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3644] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3644] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3644] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3646 attached [pid 3646] set_robust_list(0x7f7b3695b9e0, 24 [pid 3644] <... clone resumed>, parent_tid=[3646], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3646 [pid 3646] <... set_robust_list resumed>) = 0 [pid 3644] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3646] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3644] <... futex resumed>) = 0 [pid 3646] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3644] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3646] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3644] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3646] <... futex resumed>) = 0 [pid 3646] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3645] <... futex resumed>) = 1 [pid 3645] write(3, 0x20000f80, 9) = 9 [pid 3645] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3644] exit_group(0 [pid 3646] <... futex resumed>) = ? [pid 3644] <... exit_group resumed>) = ? [pid 3646] +++ exited with 0 +++ [pid 3645] <... futex resumed>) = ? [pid 3645] +++ exited with 0 +++ [pid 3644] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3644, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3647 attached , child_tidptr=0x5555566365d0) = 3647 [pid 3647] set_robust_list(0x5555566365e0, 24) = 0 [pid 3647] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3647] setpgid(0, 0) = 0 [pid 3647] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3647] write(3, "1000", 4) = 4 [pid 3647] close(3) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3647] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3647] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3648], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3648 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3648 attached [pid 3648] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3648] memfd_create("syzkaller", 0) = 3 [pid 3648] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3648] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3648] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3648] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3648] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3648] ioctl(4, LOOP_CLR_FD) = 0 [pid 3648] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3648] close(4) = 0 [pid 3648] close(3) = 0 [pid 3648] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3647] <... futex resumed>) = 0 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3648] <... futex resumed>) = 1 [pid 3648] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3648] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3647] <... futex resumed>) = 0 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3648] <... futex resumed>) = 1 [pid 3648] write(3, "#! ./bus\n", 9) = 9 [pid 3648] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3647] <... futex resumed>) = 0 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3648] <... futex resumed>) = 1 [pid 3648] open("./bus", O_RDWR) = 4 [pid 3648] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3647] <... futex resumed>) = 0 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3648] <... futex resumed>) = 1 [pid 3648] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3647] <... futex resumed>) = 0 [pid 3647] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3647] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3647] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3649 attached , parent_tid=[3649], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3649 [pid 3647] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3647] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3648] <... futex resumed>) = 1 [pid 3648] write(3, 0x20000f80, 9 [pid 3649] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3648] <... write resumed>) = 9 [pid 3648] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3648] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3649] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3649] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3647] <... futex resumed>) = 0 [pid 3647] exit_group(0) = ? [pid 3648] <... futex resumed>) = ? [pid 3648] +++ exited with 0 +++ [pid 3649] <... futex resumed>) = ? [pid 3649] +++ exited with 0 +++ [pid 3647] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3647, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3650 ./strace-static-x86_64: Process 3650 attached [pid 3650] set_robust_list(0x5555566365e0, 24) = 0 [pid 3650] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3650] setpgid(0, 0) = 0 [pid 3650] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3650] write(3, "1000", 4) = 4 [pid 3650] close(3) = 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3650] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3650] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3650] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3651 attached [pid 3651] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3651] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3650] <... clone resumed>, parent_tid=[3651], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3651 [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3651] <... futex resumed>) = 0 [pid 3651] memfd_create("syzkaller", 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3651] <... memfd_create resumed>) = 3 [pid 3651] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3651] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3651] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3651] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3651] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3651] ioctl(4, LOOP_CLR_FD) = 0 [pid 3651] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3651] close(4) = 0 [pid 3651] close(3) = 0 [pid 3651] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3650] <... futex resumed>) = 0 [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3651] <... futex resumed>) = 1 [pid 3651] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3651] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3650] <... futex resumed>) = 0 [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3651] <... futex resumed>) = 1 [pid 3651] write(3, "#! ./bus\n", 9) = 9 [pid 3651] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3650] <... futex resumed>) = 0 [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3651] <... futex resumed>) = 1 [pid 3651] open("./bus", O_RDWR) = 4 [pid 3651] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3650] <... futex resumed>) = 0 [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3650] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3651] <... futex resumed>) = 1 [pid 3651] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3651] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3650] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3651] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3650] <... futex resumed>) = 0 [pid 3650] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3651] write(3, 0x20000f80, 9 [pid 3650] <... futex resumed>) = 0 [pid 3650] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3650] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3650] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3652 attached , parent_tid=[3652], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3652 [pid 3652] set_robust_list(0x7f7b3695b9e0, 24 [pid 3650] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3652] <... set_robust_list resumed>) = 0 [pid 3650] <... futex resumed>) = 0 [pid 3651] <... write resumed>) = 9 [pid 3652] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3651] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3650] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3652] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3651] <... futex resumed>) = 0 [pid 3651] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3652] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3650] <... futex resumed>) = 0 [pid 3652] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3650] exit_group(0 [pid 3652] <... futex resumed>) = ? [pid 3651] <... futex resumed>) = ? [pid 3650] <... exit_group resumed>) = ? [pid 3652] +++ exited with 0 +++ [pid 3651] +++ exited with 0 +++ [pid 3650] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3650, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3653 ./strace-static-x86_64: Process 3653 attached [pid 3653] set_robust_list(0x5555566365e0, 24) = 0 [pid 3653] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3653] setpgid(0, 0) = 0 [pid 3653] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3653] write(3, "1000", 4) = 4 [pid 3653] close(3) = 0 [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3653] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3653] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3653] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3654 attached [pid 3654] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3654] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3653] <... clone resumed>, parent_tid=[3654], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3654 [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3654] <... futex resumed>) = 0 [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3654] memfd_create("syzkaller", 0) = 3 [pid 3654] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3654] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3654] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3654] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3654] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3654] ioctl(4, LOOP_CLR_FD) = 0 [pid 3654] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3654] close(4) = 0 [pid 3654] close(3) = 0 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3653] <... futex resumed>) = 0 [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3654] <... futex resumed>) = 1 [pid 3654] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3653] <... futex resumed>) = 0 [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3654] <... futex resumed>) = 1 [pid 3654] write(3, "#! ./bus\n", 9) = 9 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3653] <... futex resumed>) = 0 [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3654] <... futex resumed>) = 1 [pid 3654] open("./bus", O_RDWR) = 4 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3653] <... futex resumed>) = 0 [pid 3654] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3654] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3653] <... futex resumed>) = 0 [pid 3654] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3653] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3654] <... mmap resumed>) = 0x20000000 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3653] <... futex resumed>) = 0 [pid 3654] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3653] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3654] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3653] <... futex resumed>) = 0 [pid 3654] write(3, 0x20000f80, 9 [pid 3653] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3653] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3653] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3653] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3655 attached , parent_tid=[3655], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3655 [pid 3655] set_robust_list(0x7f7b3695b9e0, 24 [pid 3654] <... write resumed>) = 9 [pid 3653] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3655] <... set_robust_list resumed>) = 0 [pid 3654] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3653] <... futex resumed>) = 0 [pid 3655] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3654] <... futex resumed>) = 0 [pid 3653] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3655] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3654] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3655] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3653] <... futex resumed>) = 0 [pid 3655] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3653] exit_group(0 [pid 3655] <... futex resumed>) = ? [pid 3654] <... futex resumed>) = ? [pid 3653] <... exit_group resumed>) = ? [pid 3654] +++ exited with 0 +++ [pid 3655] +++ exited with 0 +++ [pid 3653] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3653, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3656 ./strace-static-x86_64: Process 3656 attached [pid 3656] set_robust_list(0x5555566365e0, 24) = 0 [pid 3656] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3656] setpgid(0, 0) = 0 [pid 3656] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3656] write(3, "1000", 4) = 4 [pid 3656] close(3) = 0 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3656] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3656] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3656] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3657 attached [pid 3657] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3657] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3656] <... clone resumed>, parent_tid=[3657], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3657 [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3657] <... futex resumed>) = 0 [pid 3657] memfd_create("syzkaller", 0) = 3 [pid 3657] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3657] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3657] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3657] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3657] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3657] ioctl(4, LOOP_CLR_FD) = 0 [pid 3657] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3657] close(4) = 0 [pid 3657] close(3) = 0 [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3656] <... futex resumed>) = 0 [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3657] <... futex resumed>) = 1 [pid 3657] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3656] <... futex resumed>) = 0 [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3657] <... futex resumed>) = 1 [pid 3657] write(3, "#! ./bus\n", 9) = 9 [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3656] <... futex resumed>) = 0 [pid 3657] open("./bus", O_RDWR [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3657] <... open resumed>) = 4 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3656] <... futex resumed>) = 0 [pid 3657] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3657] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3656] <... futex resumed>) = 0 [pid 3657] <... mmap resumed>) = 0x20000000 [pid 3656] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3656] <... futex resumed>) = 0 [pid 3657] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3656] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3657] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3656] <... futex resumed>) = 0 [pid 3657] write(3, 0x20000f80, 9 [pid 3656] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3656] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3656] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3656] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3658], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3658 [pid 3656] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3656] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3657] <... write resumed>) = 9 [pid 3657] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3657] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 3658 attached [pid 3658] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3658] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3658] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3656] <... futex resumed>) = 0 [pid 3658] <... futex resumed>) = 1 [pid 3656] exit_group(0) = ? [pid 3657] <... futex resumed>) = ? [pid 3657] +++ exited with 0 +++ [pid 3658] +++ exited with 0 +++ [pid 3656] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3656, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3659 ./strace-static-x86_64: Process 3659 attached [pid 3659] set_robust_list(0x5555566365e0, 24) = 0 [pid 3659] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3659] setpgid(0, 0) = 0 [pid 3659] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3659] write(3, "1000", 4) = 4 [pid 3659] close(3) = 0 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3659] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3659] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3660 attached [pid 3660] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3660] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3659] <... clone resumed>, parent_tid=[3660], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3660 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3660] <... futex resumed>) = 0 [pid 3659] <... futex resumed>) = 1 [pid 3660] memfd_create("syzkaller", 0) = 3 [pid 3660] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3660] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3660] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3660] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3660] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3660] ioctl(4, LOOP_CLR_FD) = 0 [pid 3660] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3660] close(4) = 0 [pid 3660] close(3) = 0 [pid 3660] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3659] <... futex resumed>) = 0 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3660] <... futex resumed>) = 1 [pid 3660] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3660] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3659] <... futex resumed>) = 0 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3660] <... futex resumed>) = 1 [pid 3660] write(3, "#! ./bus\n", 9) = 9 [pid 3660] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3659] <... futex resumed>) = 0 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3660] <... futex resumed>) = 1 [pid 3660] open("./bus", O_RDWR) = 4 [pid 3660] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3659] <... futex resumed>) = 0 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3660] <... futex resumed>) = 1 [pid 3660] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3659] <... futex resumed>) = 0 [pid 3659] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3659] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3659] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 3660] <... futex resumed>) = 1 [pid 3659] <... clone resumed>, parent_tid=[3661], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3661 [pid 3659] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3659] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3661 attached [pid 3660] write(3, 0x20000f80, 9 [pid 3661] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3661] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3661] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3659] <... futex resumed>) = 0 [pid 3661] <... futex resumed>) = 1 [pid 3661] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3660] <... write resumed>) = 9 [pid 3660] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3660] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3659] exit_group(0) = ? [pid 3660] <... futex resumed>) = ? [pid 3660] +++ exited with 0 +++ [pid 3661] <... futex resumed>) = ? [pid 3661] +++ exited with 0 +++ [pid 3659] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3659, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3662 ./strace-static-x86_64: Process 3662 attached [pid 3662] set_robust_list(0x5555566365e0, 24) = 0 [pid 3662] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3662] setpgid(0, 0) = 0 [pid 3662] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3662] write(3, "1000", 4) = 4 [pid 3662] close(3) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3662] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3662] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3663 attached , parent_tid=[3663], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3663 [pid 3663] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3663] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3663] <... futex resumed>) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3663] memfd_create("syzkaller", 0) = 3 [pid 3663] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3663] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3663] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3663] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3663] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3663] ioctl(4, LOOP_CLR_FD) = 0 [pid 3663] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3663] close(4) = 0 [pid 3663] close(3) = 0 [pid 3663] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3662] <... futex resumed>) = 0 [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3663] <... futex resumed>) = 1 [pid 3663] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3663] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3662] <... futex resumed>) = 0 [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3663] <... futex resumed>) = 1 [pid 3663] write(3, "#! ./bus\n", 9) = 9 [pid 3663] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3662] <... futex resumed>) = 0 [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3663] <... futex resumed>) = 1 [pid 3663] open("./bus", O_RDWR) = 4 [pid 3663] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3662] <... futex resumed>) = 0 [pid 3663] <... futex resumed>) = 1 [pid 3663] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3663] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3663] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3662] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3663] write(3, 0x20000f80, 9 [pid 3662] <... futex resumed>) = 0 [pid 3662] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3662] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3662] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3662] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3664 attached , parent_tid=[3664], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3664 [pid 3664] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3662] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3663] <... write resumed>) = 9 [pid 3662] <... futex resumed>) = 0 [pid 3663] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3662] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3663] <... futex resumed>) = 0 [pid 3663] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3664] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3664] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3664] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3662] <... futex resumed>) = 0 [pid 3662] exit_group(0) = ? [pid 3663] <... futex resumed>) = ? [pid 3664] <... futex resumed>) = ? [pid 3663] +++ exited with 0 +++ [pid 3664] +++ exited with 0 +++ [pid 3662] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3662, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3665 ./strace-static-x86_64: Process 3665 attached [pid 3665] set_robust_list(0x5555566365e0, 24) = 0 [pid 3665] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3665] setpgid(0, 0) = 0 [pid 3665] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3665] write(3, "1000", 4) = 4 [pid 3665] close(3) = 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3665] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3665] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3666 attached [pid 3666] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3666] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3665] <... clone resumed>, parent_tid=[3666], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3666 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3666] <... futex resumed>) = 0 [pid 3665] <... futex resumed>) = 1 [pid 3666] memfd_create("syzkaller", 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3666] <... memfd_create resumed>) = 3 [pid 3666] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3666] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3666] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3666] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3666] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3666] ioctl(4, LOOP_CLR_FD) = 0 [pid 3666] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3666] close(4) = 0 [pid 3666] close(3) = 0 [pid 3666] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3665] <... futex resumed>) = 0 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3666] <... futex resumed>) = 1 [pid 3666] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3666] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3665] <... futex resumed>) = 0 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3666] <... futex resumed>) = 1 [pid 3666] write(3, "#! ./bus\n", 9) = 9 [pid 3666] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3665] <... futex resumed>) = 0 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3666] <... futex resumed>) = 1 [pid 3666] open("./bus", O_RDWR) = 4 [pid 3666] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3665] <... futex resumed>) = 0 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3666] <... futex resumed>) = 1 [pid 3666] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3665] <... futex resumed>) = 0 [pid 3665] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3665] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3665] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3665] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3667 attached , parent_tid=[3667], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3667 [pid 3667] set_robust_list(0x7f7b3695b9e0, 24 [pid 3665] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3667] <... set_robust_list resumed>) = 0 [pid 3665] <... futex resumed>) = 0 [pid 3667] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3665] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3667] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3666] <... futex resumed>) = 1 [pid 3667] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3666] write(3, 0x20000f80, 9 [pid 3667] <... futex resumed>) = 1 [pid 3665] <... futex resumed>) = 0 [pid 3667] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3666] <... write resumed>) = 9 [pid 3666] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3666] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3665] exit_group(0) = ? [pid 3667] <... futex resumed>) = ? [pid 3667] +++ exited with 0 +++ [pid 3666] <... futex resumed>) = ? [pid 3666] +++ exited with 0 +++ [pid 3665] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3665, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3668 ./strace-static-x86_64: Process 3668 attached [pid 3668] set_robust_list(0x5555566365e0, 24) = 0 [pid 3668] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3668] setpgid(0, 0) = 0 [pid 3668] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3668] write(3, "1000", 4) = 4 [pid 3668] close(3) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3668] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3668] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3669], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3669 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3669 attached [pid 3669] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3669] memfd_create("syzkaller", 0) = 3 [pid 3669] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3669] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3669] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3669] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3669] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3669] ioctl(4, LOOP_CLR_FD) = 0 [pid 3669] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3669] close(4) = 0 [pid 3669] close(3) = 0 [pid 3669] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3668] <... futex resumed>) = 0 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3669] <... futex resumed>) = 1 [pid 3669] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3669] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3668] <... futex resumed>) = 0 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3669] <... futex resumed>) = 1 [pid 3669] write(3, "#! ./bus\n", 9) = 9 [pid 3669] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3668] <... futex resumed>) = 0 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3669] <... futex resumed>) = 1 [pid 3669] open("./bus", O_RDWR) = 4 [pid 3669] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3668] <... futex resumed>) = 0 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3669] <... futex resumed>) = 1 [pid 3669] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3668] <... futex resumed>) = 0 [pid 3668] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3668] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3668] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3668] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3670 attached [pid 3670] set_robust_list(0x7f7b3695b9e0, 24 [pid 3668] <... clone resumed>, parent_tid=[3670], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3670 [pid 3670] <... set_robust_list resumed>) = 0 [pid 3670] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3668] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3670] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3668] <... futex resumed>) = 0 [pid 3670] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3668] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3670] <... futex resumed>) = 0 [pid 3670] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3668] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3669] <... futex resumed>) = 1 [pid 3669] write(3, 0x20000f80, 9) = 9 [pid 3669] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3669] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3668] exit_group(0 [pid 3670] <... futex resumed>) = ? [pid 3669] <... futex resumed>) = ? [pid 3668] <... exit_group resumed>) = ? [pid 3670] +++ exited with 0 +++ [pid 3669] +++ exited with 0 +++ [pid 3668] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3668, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3671 ./strace-static-x86_64: Process 3671 attached [pid 3671] set_robust_list(0x5555566365e0, 24) = 0 [pid 3671] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3671] setpgid(0, 0) = 0 [pid 3671] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3671] write(3, "1000", 4) = 4 [pid 3671] close(3) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3671] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3671] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3672 attached [pid 3672] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3672] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3671] <... clone resumed>, parent_tid=[3672], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3672 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3672] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3672] memfd_create("syzkaller", 0) = 3 [pid 3672] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3672] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3672] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3672] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3672] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3672] ioctl(4, LOOP_CLR_FD) = 0 [pid 3672] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3672] close(4) = 0 [pid 3672] close(3) = 0 [pid 3672] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3671] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3672] <... futex resumed>) = 1 [pid 3672] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3672] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3671] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3672] <... futex resumed>) = 1 [pid 3672] write(3, "#! ./bus\n", 9) = 9 [pid 3672] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3671] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3672] <... futex resumed>) = 1 [pid 3672] open("./bus", O_RDWR) = 4 [pid 3672] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3671] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3672] <... futex resumed>) = 1 [pid 3672] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3671] <... futex resumed>) = 0 [pid 3671] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3671] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3671] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3673 attached [pid 3673] set_robust_list(0x7f7b3695b9e0, 24 [pid 3671] <... clone resumed>, parent_tid=[3673], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3673 [pid 3673] <... set_robust_list resumed>) = 0 [pid 3673] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3671] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3673] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3671] <... futex resumed>) = 0 [pid 3673] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3671] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3673] <... futex resumed>) = 0 [pid 3671] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3673] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3672] <... futex resumed>) = 1 [pid 3672] write(3, 0x20000f80, 9) = 9 [pid 3672] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3671] exit_group(0 [pid 3673] <... futex resumed>) = ? [pid 3671] <... exit_group resumed>) = ? [pid 3673] +++ exited with 0 +++ [pid 3672] +++ exited with 0 +++ [pid 3671] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3671, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3674 attached , child_tidptr=0x5555566365d0) = 3674 [pid 3674] set_robust_list(0x5555566365e0, 24) = 0 [pid 3674] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3674] setpgid(0, 0) = 0 [pid 3674] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3674] write(3, "1000", 4) = 4 [pid 3674] close(3) = 0 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3674] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3674] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3674] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3675 attached [pid 3675] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3675] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3674] <... clone resumed>, parent_tid=[3675], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3675 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3675] <... futex resumed>) = 0 [pid 3675] memfd_create("syzkaller", 0) = 3 [pid 3675] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3675] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3675] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3675] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3675] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3675] ioctl(4, LOOP_CLR_FD) = 0 [pid 3675] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3675] close(4) = 0 [pid 3675] close(3) = 0 [pid 3675] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3674] <... futex resumed>) = 0 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3675] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3675] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3674] <... futex resumed>) = 0 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3675] <... futex resumed>) = 1 [pid 3674] <... futex resumed>) = 0 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3675] write(3, "#! ./bus\n", 9) = 9 [pid 3675] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3675] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3674] <... futex resumed>) = 0 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3675] <... futex resumed>) = 0 [pid 3675] open("./bus", O_RDWR) = 4 [pid 3675] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3674] <... futex resumed>) = 0 [pid 3675] <... futex resumed>) = 1 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3674] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3675] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3674] <... futex resumed>) = 0 [pid 3674] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3674] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3674] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 3675] <... futex resumed>) = 1 [pid 3674] <... mmap resumed>) = 0x7f7b3693b000 [pid 3674] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3675] write(3, 0x20000f80, 9 [pid 3674] <... mprotect resumed>) = 0 [pid 3674] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3676 attached [pid 3676] set_robust_list(0x7f7b3695b9e0, 24 [pid 3674] <... clone resumed>, parent_tid=[3676], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3676 [pid 3676] <... set_robust_list resumed>) = 0 [pid 3674] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3676] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3674] <... futex resumed>) = 0 [pid 3676] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3674] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3676] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3674] <... futex resumed>) = 0 [pid 3676] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3675] <... write resumed>) = 9 [pid 3675] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3675] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3674] exit_group(0) = ? [pid 3675] <... futex resumed>) = ? [pid 3676] <... futex resumed>) = ? [pid 3675] +++ exited with 0 +++ [pid 3676] +++ exited with 0 +++ [pid 3674] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3674, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3677 ./strace-static-x86_64: Process 3677 attached [pid 3677] set_robust_list(0x5555566365e0, 24) = 0 [pid 3677] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3677] setpgid(0, 0) = 0 [pid 3677] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3677] write(3, "1000", 4) = 4 [pid 3677] close(3) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3677] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3677] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3678], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3678 ./strace-static-x86_64: Process 3678 attached [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3678] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3678] memfd_create("syzkaller", 0) = 3 [pid 3678] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3678] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3678] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3678] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3678] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3678] ioctl(4, LOOP_CLR_FD) = 0 [pid 3678] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3678] close(4) = 0 [pid 3678] close(3) = 0 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3677] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3678] <... futex resumed>) = 1 [pid 3678] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3677] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3678] write(3, "#! ./bus\n", 9) = 9 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3677] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3678] open("./bus", O_RDWR) = 4 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3677] <... futex resumed>) = 0 [pid 3678] <... futex resumed>) = 1 [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3678] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3677] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3678] <... mmap resumed>) = 0x20000000 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3677] <... futex resumed>) = 0 [pid 3678] <... futex resumed>) = 1 [pid 3677] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3678] write(3, 0x20000f80, 9 [pid 3677] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3677] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3677] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3677] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3679 attached [pid 3678] <... write resumed>) = 9 [pid 3679] set_robust_list(0x7f7b3695b9e0, 24 [pid 3678] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3677] <... clone resumed>, parent_tid=[3679], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3679 [pid 3679] <... set_robust_list resumed>) = 0 [pid 3678] <... futex resumed>) = 0 [pid 3677] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3678] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3679] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3677] <... futex resumed>) = 0 [pid 3679] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3677] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3679] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3677] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3679] <... futex resumed>) = 0 [pid 3677] exit_group(0 [pid 3679] ????( [pid 3677] <... exit_group resumed>) = ? [pid 3678] <... futex resumed>) = ? [pid 3679] <... ???? resumed>) = ? [pid 3678] +++ exited with 0 +++ [pid 3679] +++ exited with 0 +++ [pid 3677] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3677, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3680 ./strace-static-x86_64: Process 3680 attached [pid 3680] set_robust_list(0x5555566365e0, 24) = 0 [pid 3680] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3680] setpgid(0, 0) = 0 [pid 3680] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3680] write(3, "1000", 4) = 4 [pid 3680] close(3) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3680] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3680] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3681 attached , parent_tid=[3681], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3681 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3681] set_robust_list(0x7f7b3697c9e0, 24 [pid 3680] <... futex resumed>) = 0 [pid 3681] <... set_robust_list resumed>) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3681] memfd_create("syzkaller", 0) = 3 [pid 3681] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3681] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3681] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3681] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3681] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3681] ioctl(4, LOOP_CLR_FD) = 0 [pid 3681] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3681] close(4) = 0 [pid 3681] close(3) = 0 [pid 3681] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3680] <... futex resumed>) = 0 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3681] <... futex resumed>) = 1 [pid 3681] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3681] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3680] <... futex resumed>) = 0 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3681] <... futex resumed>) = 1 [pid 3681] write(3, "#! ./bus\n", 9) = 9 [pid 3681] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3680] <... futex resumed>) = 0 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3681] open("./bus", O_RDWR) = 4 [pid 3681] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3680] <... futex resumed>) = 0 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3681] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3680] <... futex resumed>) = 0 [pid 3680] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3680] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3680] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3680] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3682 attached [pid 3682] set_robust_list(0x7f7b3695b9e0, 24 [pid 3680] <... clone resumed>, parent_tid=[3682], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3682 [pid 3682] <... set_robust_list resumed>) = 0 [pid 3680] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3682] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3680] <... futex resumed>) = 0 [pid 3682] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3680] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3682] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3680] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3682] <... futex resumed>) = 0 [pid 3682] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3681] <... futex resumed>) = 1 [pid 3681] write(3, 0x20000f80, 9) = 9 [pid 3681] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3681] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3680] exit_group(0 [pid 3681] <... futex resumed>) = ? [pid 3680] <... exit_group resumed>) = ? [pid 3681] +++ exited with 0 +++ [pid 3682] <... futex resumed>) = ? [pid 3682] +++ exited with 0 +++ [pid 3680] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3680, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3683 ./strace-static-x86_64: Process 3683 attached [pid 3683] set_robust_list(0x5555566365e0, 24) = 0 [pid 3683] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3683] setpgid(0, 0) = 0 [pid 3683] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3683] write(3, "1000", 4) = 4 [pid 3683] close(3) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3683] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3683] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3684 attached [pid 3684] set_robust_list(0x7f7b3697c9e0, 24 [pid 3683] <... clone resumed>, parent_tid=[3684], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3684 [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3684] <... set_robust_list resumed>) = 0 [pid 3684] memfd_create("syzkaller", 0) = 3 [pid 3684] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3684] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3684] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3684] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3684] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3684] ioctl(4, LOOP_CLR_FD) = 0 [pid 3684] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3684] close(4) = 0 [pid 3684] close(3) = 0 [pid 3684] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3683] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3684] <... futex resumed>) = 1 [pid 3684] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3684] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3683] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3684] <... futex resumed>) = 1 [pid 3684] write(3, "#! ./bus\n", 9) = 9 [pid 3684] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3683] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3684] <... futex resumed>) = 1 [pid 3684] open("./bus", O_RDWR) = 4 [pid 3684] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3684] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3683] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3684] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3684] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3684] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3683] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3684] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3683] <... futex resumed>) = 0 [pid 3683] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3684] write(3, 0x20000f80, 9 [pid 3683] <... futex resumed>) = 0 [pid 3683] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3683] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3683] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3685 attached [pid 3685] set_robust_list(0x7f7b3695b9e0, 24 [pid 3683] <... clone resumed>, parent_tid=[3685], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3685 [pid 3683] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3683] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3685] <... set_robust_list resumed>) = 0 [pid 3685] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3684] <... write resumed>) = 9 [pid 3685] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3684] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3685] <... futex resumed>) = 1 [pid 3684] <... futex resumed>) = 0 [pid 3683] <... futex resumed>) = 0 [pid 3685] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3684] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3683] exit_group(0 [pid 3685] <... futex resumed>) = ? [pid 3684] <... futex resumed>) = ? [pid 3683] <... exit_group resumed>) = ? [pid 3684] +++ exited with 0 +++ [pid 3685] +++ exited with 0 +++ [pid 3683] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3683, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3686 ./strace-static-x86_64: Process 3686 attached [pid 3686] set_robust_list(0x5555566365e0, 24) = 0 [pid 3686] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3686] setpgid(0, 0) = 0 [pid 3686] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3686] write(3, "1000", 4) = 4 [pid 3686] close(3) = 0 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3686] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3686] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3686] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3687], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3687 [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3687 attached [pid 3687] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3687] memfd_create("syzkaller", 0) = 3 [pid 3687] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3687] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3687] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3687] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3687] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3687] ioctl(4, LOOP_CLR_FD) = 0 [pid 3687] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3687] close(4) = 0 [pid 3687] close(3) = 0 [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3686] <... futex resumed>) = 0 [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3687] <... futex resumed>) = 1 [pid 3687] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3686] <... futex resumed>) = 0 [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3687] <... futex resumed>) = 1 [pid 3687] write(3, "#! ./bus\n", 9) = 9 [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3686] <... futex resumed>) = 0 [pid 3687] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3687] open("./bus", O_RDWR [pid 3686] <... futex resumed>) = 0 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3687] <... open resumed>) = 4 [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3686] <... futex resumed>) = 0 [pid 3687] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3687] <... mmap resumed>) = 0x20000000 [pid 3686] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3686] <... futex resumed>) = 0 [pid 3686] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3687] write(3, 0x20000f80, 9 [pid 3686] <... futex resumed>) = 0 [pid 3686] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3686] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3687] <... write resumed>) = 9 [pid 3686] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3687] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3687] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3686] <... mprotect resumed>) = 0 [pid 3686] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3688 attached [pid 3688] set_robust_list(0x7f7b3695b9e0, 24 [pid 3686] <... clone resumed>, parent_tid=[3688], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3688 [pid 3688] <... set_robust_list resumed>) = 0 [pid 3686] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3688] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3686] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3688] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3688] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3686] <... futex resumed>) = 0 [pid 3686] exit_group(0 [pid 3687] <... futex resumed>) = ? [pid 3686] <... exit_group resumed>) = ? [pid 3688] <... futex resumed>) = ? [pid 3687] +++ exited with 0 +++ [pid 3688] +++ exited with 0 +++ [pid 3686] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3686, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3689 ./strace-static-x86_64: Process 3689 attached [pid 3689] set_robust_list(0x5555566365e0, 24) = 0 [pid 3689] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3689] setpgid(0, 0) = 0 [pid 3689] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3689] write(3, "1000", 4) = 4 [pid 3689] close(3) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3689] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3689] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3690], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3690 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3690 attached [pid 3690] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3690] memfd_create("syzkaller", 0) = 3 [pid 3690] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3690] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3690] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3690] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3690] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3690] ioctl(4, LOOP_CLR_FD) = 0 [pid 3690] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3690] close(4) = 0 [pid 3690] close(3) = 0 [pid 3690] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3689] <... futex resumed>) = 0 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3690] <... futex resumed>) = 1 [pid 3690] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3690] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3689] <... futex resumed>) = 0 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3690] <... futex resumed>) = 1 [pid 3690] write(3, "#! ./bus\n", 9) = 9 [pid 3690] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3689] <... futex resumed>) = 0 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3690] <... futex resumed>) = 1 [pid 3690] open("./bus", O_RDWR) = 4 [pid 3690] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3689] <... futex resumed>) = 0 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3690] <... futex resumed>) = 1 [pid 3690] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3689] <... futex resumed>) = 0 [pid 3689] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3689] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3689] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3691], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3691 [pid 3689] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3689] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3690] <... futex resumed>) = 1 [pid 3690] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3691 attached [pid 3691] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3691] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3691] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3689] <... futex resumed>) = 0 [pid 3691] <... futex resumed>) = 1 [pid 3691] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3690] <... write resumed>) = 9 [pid 3690] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3690] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3689] exit_group(0) = ? [pid 3690] <... futex resumed>) = ? [pid 3690] +++ exited with 0 +++ [pid 3691] <... futex resumed>) = ? [pid 3691] +++ exited with 0 +++ [pid 3689] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3689, si_uid=0, si_status=0, si_utime=0, si_stime=4} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3692 ./strace-static-x86_64: Process 3692 attached [pid 3692] set_robust_list(0x5555566365e0, 24) = 0 [pid 3692] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3692] setpgid(0, 0) = 0 [pid 3692] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3692] write(3, "1000", 4) = 4 [pid 3692] close(3) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3692] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3692] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3693], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3693 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3693 attached [pid 3693] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3693] memfd_create("syzkaller", 0) = 3 [pid 3693] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3693] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3693] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3693] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3693] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3693] ioctl(4, LOOP_CLR_FD) = 0 [pid 3693] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3693] close(4) = 0 [pid 3693] close(3) = 0 [pid 3693] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3692] <... futex resumed>) = 0 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3693] <... futex resumed>) = 1 [pid 3693] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3693] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3692] <... futex resumed>) = 0 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3693] <... futex resumed>) = 1 [pid 3693] write(3, "#! ./bus\n", 9) = 9 [pid 3693] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3692] <... futex resumed>) = 0 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3693] <... futex resumed>) = 1 [pid 3693] open("./bus", O_RDWR) = 4 [pid 3693] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3692] <... futex resumed>) = 0 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3693] <... futex resumed>) = 1 [pid 3693] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3692] <... futex resumed>) = 0 [pid 3692] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3692] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3692] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3694], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3694 [pid 3692] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3692] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3693] <... futex resumed>) = 1 [pid 3693] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3694 attached [pid 3694] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3694] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3694] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3692] <... futex resumed>) = 0 [pid 3694] <... futex resumed>) = 1 [pid 3694] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3693] <... write resumed>) = 9 [pid 3693] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3693] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3692] exit_group(0) = ? [pid 3693] <... futex resumed>) = ? [pid 3693] +++ exited with 0 +++ [pid 3694] <... futex resumed>) = ? [pid 3694] +++ exited with 0 +++ [pid 3692] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3692, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3695 ./strace-static-x86_64: Process 3695 attached [pid 3695] set_robust_list(0x5555566365e0, 24) = 0 [pid 3695] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3695] setpgid(0, 0) = 0 [pid 3695] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3695] write(3, "1000", 4) = 4 [pid 3695] close(3) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3695] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3695] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3696], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3696 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3696 attached [pid 3696] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3696] memfd_create("syzkaller", 0) = 3 [pid 3696] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3696] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3696] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3696] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3696] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3696] ioctl(4, LOOP_CLR_FD) = 0 [pid 3696] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3696] close(4) = 0 [pid 3696] close(3) = 0 [pid 3696] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3695] <... futex resumed>) = 0 [pid 3696] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3696] <... open resumed>) = 3 [pid 3696] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3695] <... futex resumed>) = 0 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3696] write(3, "#! ./bus\n", 9 [pid 3695] <... futex resumed>) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3696] <... write resumed>) = 9 [pid 3696] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3695] <... futex resumed>) = 0 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3696] open("./bus", O_RDWR) = 4 [pid 3696] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3695] <... futex resumed>) = 0 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3696] <... futex resumed>) = 1 [pid 3696] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3695] <... futex resumed>) = 0 [pid 3695] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3695] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3695] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3697 attached , parent_tid=[3697], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3697 [pid 3695] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3695] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3697] set_robust_list(0x7f7b3695b9e0, 24 [pid 3696] <... futex resumed>) = 1 [pid 3696] write(3, 0x20000f80, 9 [pid 3697] <... set_robust_list resumed>) = 0 [pid 3697] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3697] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3695] <... futex resumed>) = 0 [pid 3697] <... futex resumed>) = 1 [pid 3697] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3696] <... write resumed>) = 9 [pid 3696] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3696] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3695] exit_group(0) = ? [pid 3697] <... futex resumed>) = ? [pid 3696] <... futex resumed>) = ? [pid 3697] +++ exited with 0 +++ [pid 3696] +++ exited with 0 +++ [pid 3695] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3695, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3698 ./strace-static-x86_64: Process 3698 attached [pid 3698] set_robust_list(0x5555566365e0, 24) = 0 [pid 3698] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3698] setpgid(0, 0) = 0 [pid 3698] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3698] write(3, "1000", 4) = 4 [pid 3698] close(3) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3698] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3698] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3699], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3699 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3699 attached [pid 3699] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3699] memfd_create("syzkaller", 0) = 3 [pid 3699] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3699] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3699] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3699] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3699] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3699] ioctl(4, LOOP_CLR_FD) = 0 [pid 3699] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3699] close(4) = 0 [pid 3699] close(3) = 0 [pid 3699] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3698] <... futex resumed>) = 0 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3699] <... futex resumed>) = 1 [pid 3699] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3699] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3698] <... futex resumed>) = 0 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3699] <... futex resumed>) = 1 [pid 3699] write(3, "#! ./bus\n", 9) = 9 [pid 3699] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3698] <... futex resumed>) = 0 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3699] <... futex resumed>) = 1 [pid 3699] open("./bus", O_RDWR) = 4 [pid 3699] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3698] <... futex resumed>) = 0 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3699] <... futex resumed>) = 1 [pid 3699] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3698] <... futex resumed>) = 0 [pid 3698] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3698] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3698] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3700 attached , parent_tid=[3700], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3700 [pid 3700] set_robust_list(0x7f7b3695b9e0, 24 [pid 3698] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3698] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3699] <... futex resumed>) = 1 [pid 3700] <... set_robust_list resumed>) = 0 [pid 3699] write(3, 0x20000f80, 9 [pid 3700] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3700] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3698] <... futex resumed>) = 0 [pid 3700] <... futex resumed>) = 1 [pid 3700] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3699] <... write resumed>) = 9 [pid 3699] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3699] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3698] exit_group(0) = ? [pid 3700] <... futex resumed>) = ? [pid 3700] +++ exited with 0 +++ [pid 3699] <... futex resumed>) = ? [pid 3699] +++ exited with 0 +++ [pid 3698] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3698, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3701 attached , child_tidptr=0x5555566365d0) = 3701 [pid 3701] set_robust_list(0x5555566365e0, 24) = 0 [pid 3701] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3701] setpgid(0, 0) = 0 [pid 3701] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3701] write(3, "1000", 4) = 4 [pid 3701] close(3) = 0 [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3701] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3701] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3701] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3702], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3702 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3702 attached [pid 3702] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3702] memfd_create("syzkaller", 0) = 3 [pid 3702] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3702] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3702] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3702] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3702] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3702] ioctl(4, LOOP_CLR_FD) = 0 [pid 3702] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3702] close(4) = 0 [pid 3702] close(3) = 0 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3702] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3702] <... futex resumed>) = 0 [pid 3701] <... futex resumed>) = 1 [pid 3702] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3702] <... open resumed>) = 3 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3702] <... futex resumed>) = 1 [pid 3702] write(3, "#! ./bus\n", 9) = 9 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3702] open("./bus", O_RDWR) = 4 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3702] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3701] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3702] <... mmap resumed>) = 0x20000000 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3702] <... futex resumed>) = 1 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3702] write(3, 0x20000f80, 9 [pid 3701] <... futex resumed>) = 0 [pid 3701] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3701] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3701] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3703 attached , parent_tid=[3703], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3703 [pid 3703] set_robust_list(0x7f7b3695b9e0, 24 [pid 3701] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3703] <... set_robust_list resumed>) = 0 [pid 3701] <... futex resumed>) = 0 [pid 3701] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3703] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3703] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3703] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3701] <... futex resumed>) = 0 [pid 3702] <... write resumed>) = 9 [pid 3702] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3702] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3701] exit_group(0) = ? [pid 3702] <... futex resumed>) = ? [pid 3703] <... futex resumed>) = ? [pid 3703] +++ exited with 0 +++ [pid 3702] +++ exited with 0 +++ [pid 3701] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3701, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3704 ./strace-static-x86_64: Process 3704 attached [pid 3704] set_robust_list(0x5555566365e0, 24) = 0 [pid 3704] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3704] setpgid(0, 0) = 0 [pid 3704] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3704] write(3, "1000", 4) = 4 [pid 3704] close(3) = 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3704] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3704] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3705 attached [pid 3705] set_robust_list(0x7f7b3697c9e0, 24 [pid 3704] <... clone resumed>, parent_tid=[3705], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3705 [pid 3705] <... set_robust_list resumed>) = 0 [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3705] memfd_create("syzkaller", 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3705] <... memfd_create resumed>) = 3 [pid 3705] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3705] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3705] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3705] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3705] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3705] ioctl(4, LOOP_CLR_FD) = 0 [pid 3705] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3705] close(4) = 0 [pid 3705] close(3) = 0 [pid 3705] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3704] <... futex resumed>) = 0 [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3705] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3705] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3704] <... futex resumed>) = 0 [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3705] write(3, "#! ./bus\n", 9) = 9 [pid 3705] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3704] <... futex resumed>) = 0 [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3705] open("./bus", O_RDWR) = 4 [pid 3705] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3704] <... futex resumed>) = 0 [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3705] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3705] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3704] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3705] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3704] <... futex resumed>) = 0 [pid 3705] write(3, 0x20000f80, 9 [pid 3704] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3704] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3704] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3706 attached [pid 3706] set_robust_list(0x7f7b3695b9e0, 24 [pid 3704] <... clone resumed>, parent_tid=[3706], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3706 [pid 3706] <... set_robust_list resumed>) = 0 [pid 3704] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3706] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3706] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3704] <... futex resumed>) = 0 [pid 3706] <... futex resumed>) = 1 [pid 3706] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3705] <... write resumed>) = 9 [pid 3705] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3704] exit_group(0) = ? [pid 3706] <... futex resumed>) = ? [pid 3706] +++ exited with 0 +++ [pid 3705] +++ exited with 0 +++ [pid 3704] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3704, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3707 ./strace-static-x86_64: Process 3707 attached [pid 3707] set_robust_list(0x5555566365e0, 24) = 0 [pid 3707] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3707] setpgid(0, 0) = 0 [pid 3707] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3707] write(3, "1000", 4) = 4 [pid 3707] close(3) = 0 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3707] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3707] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3708], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3708 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3708 attached [pid 3708] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3708] memfd_create("syzkaller", 0) = 3 [pid 3708] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3708] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3708] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3708] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3708] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3708] ioctl(4, LOOP_CLR_FD) = 0 [pid 3708] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3708] close(4) = 0 [pid 3708] close(3) = 0 [pid 3708] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3707] <... futex resumed>) = 0 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3708] <... futex resumed>) = 1 [pid 3708] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3708] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3707] <... futex resumed>) = 0 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3708] <... futex resumed>) = 1 [pid 3708] write(3, "#! ./bus\n", 9) = 9 [pid 3708] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3707] <... futex resumed>) = 0 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3708] <... futex resumed>) = 1 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3708] open("./bus", O_RDWR) = 4 [pid 3708] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3707] <... futex resumed>) = 0 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3708] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3707] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3707] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3707] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3709], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3709 [pid 3707] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3707] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3709 attached [pid 3709] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3709] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3708] write(3, 0x20000f80, 9 [pid 3709] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3709] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3707] <... futex resumed>) = 0 [pid 3709] <... futex resumed>) = 1 [pid 3709] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3708] <... write resumed>) = 9 [pid 3708] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3708] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3707] exit_group(0) = ? [pid 3708] <... futex resumed>) = ? [pid 3708] +++ exited with 0 +++ [pid 3709] <... futex resumed>) = ? [pid 3709] +++ exited with 0 +++ [pid 3707] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3707, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3710 ./strace-static-x86_64: Process 3710 attached [pid 3710] set_robust_list(0x5555566365e0, 24) = 0 [pid 3710] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3710] setpgid(0, 0) = 0 [pid 3710] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3710] write(3, "1000", 4) = 4 [pid 3710] close(3) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3710] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3710] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3711 attached [pid 3711] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3710] <... clone resumed>, parent_tid=[3711], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3711 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3711] memfd_create("syzkaller", 0) = 3 [pid 3711] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3711] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3711] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3711] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3711] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3711] ioctl(4, LOOP_CLR_FD) = 0 [pid 3711] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3711] close(4) = 0 [pid 3711] close(3) = 0 [pid 3711] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3710] <... futex resumed>) = 0 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3711] <... futex resumed>) = 1 [pid 3711] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3711] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3710] <... futex resumed>) = 0 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3711] <... futex resumed>) = 1 [pid 3711] write(3, "#! ./bus\n", 9) = 9 [pid 3711] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3710] <... futex resumed>) = 0 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3711] <... futex resumed>) = 1 [pid 3711] open("./bus", O_RDWR) = 4 [pid 3711] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3710] <... futex resumed>) = 0 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3711] <... futex resumed>) = 1 [pid 3711] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3710] <... futex resumed>) = 0 [pid 3710] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3710] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3710] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3712], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3712 [pid 3710] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3710] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3711] <... futex resumed>) = 1 [pid 3711] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3712 attached [pid 3712] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3712] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3711] <... write resumed>) = 9 [pid 3711] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3711] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3712] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3710] <... futex resumed>) = 0 [pid 3710] exit_group(0 [pid 3711] <... futex resumed>) = ? [pid 3710] <... exit_group resumed>) = ? [pid 3711] +++ exited with 0 +++ [pid 3712] <... futex resumed>) = ? [pid 3712] +++ exited with 0 +++ [pid 3710] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3710, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3713 ./strace-static-x86_64: Process 3713 attached [pid 3713] set_robust_list(0x5555566365e0, 24) = 0 [pid 3713] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3713] setpgid(0, 0) = 0 [pid 3713] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3713] write(3, "1000", 4) = 4 [pid 3713] close(3) = 0 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3713] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3713] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3714 attached [pid 3714] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3714] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3713] <... clone resumed>, parent_tid=[3714], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3714 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3714] <... futex resumed>) = 0 [pid 3714] memfd_create("syzkaller", 0) = 3 [pid 3714] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3714] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3714] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3714] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3714] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3714] ioctl(4, LOOP_CLR_FD) = 0 [pid 3714] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3714] close(4) = 0 [pid 3714] close(3) = 0 [pid 3714] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3713] <... futex resumed>) = 0 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3714] <... futex resumed>) = 1 [pid 3714] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3714] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3713] <... futex resumed>) = 0 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3714] <... futex resumed>) = 1 [pid 3714] write(3, "#! ./bus\n", 9) = 9 [pid 3714] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3713] <... futex resumed>) = 0 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3714] <... futex resumed>) = 1 [pid 3714] open("./bus", O_RDWR) = 4 [pid 3714] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3713] <... futex resumed>) = 0 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3714] <... futex resumed>) = 1 [pid 3714] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3713] <... futex resumed>) = 0 [pid 3713] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3713] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3713] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3714] <... futex resumed>) = 1 [pid 3713] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3715 attached [pid 3714] write(3, 0x20000f80, 9 [pid 3715] set_robust_list(0x7f7b3695b9e0, 24 [pid 3713] <... clone resumed>, parent_tid=[3715], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3715 [pid 3715] <... set_robust_list resumed>) = 0 [pid 3713] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3715] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3713] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3715] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3715] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3713] <... futex resumed>) = 0 [pid 3715] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3714] <... write resumed>) = 9 [pid 3714] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3714] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3713] exit_group(0) = ? [pid 3715] <... futex resumed>) = ? [pid 3714] <... futex resumed>) = ? [pid 3715] +++ exited with 0 +++ [pid 3714] +++ exited with 0 +++ [pid 3713] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3713, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3716 ./strace-static-x86_64: Process 3716 attached [pid 3716] set_robust_list(0x5555566365e0, 24) = 0 [pid 3716] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3716] setpgid(0, 0) = 0 [pid 3716] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3716] write(3, "1000", 4) = 4 [pid 3716] close(3) = 0 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3716] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3716] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3717 attached [pid 3717] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3717] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3716] <... clone resumed>, parent_tid=[3717], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3717 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3717] <... futex resumed>) = 0 [pid 3717] memfd_create("syzkaller", 0) = 3 [pid 3717] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3717] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3717] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3717] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3717] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3717] ioctl(4, LOOP_CLR_FD) = 0 [pid 3717] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3717] close(4) = 0 [pid 3717] close(3) = 0 [pid 3717] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3716] <... futex resumed>) = 0 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3717] <... futex resumed>) = 1 [pid 3717] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3717] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3716] <... futex resumed>) = 0 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3717] <... futex resumed>) = 1 [pid 3717] write(3, "#! ./bus\n", 9) = 9 [pid 3717] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3716] <... futex resumed>) = 0 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3717] <... futex resumed>) = 1 [pid 3717] open("./bus", O_RDWR) = 4 [pid 3717] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3716] <... futex resumed>) = 0 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3717] <... futex resumed>) = 1 [pid 3717] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3716] <... futex resumed>) = 0 [pid 3716] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3716] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3716] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3716] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3718 attached [pid 3718] set_robust_list(0x7f7b3695b9e0, 24 [pid 3716] <... clone resumed>, parent_tid=[3718], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3718 [pid 3718] <... set_robust_list resumed>) = 0 [pid 3716] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3718] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3716] <... futex resumed>) = 0 [pid 3718] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3716] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3718] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3716] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3718] <... futex resumed>) = 0 [pid 3718] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3717] <... futex resumed>) = 1 [pid 3717] write(3, 0x20000f80, 9) = 9 [pid 3717] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3717] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3716] exit_group(0 [pid 3718] <... futex resumed>) = ? [pid 3717] <... futex resumed>) = ? [pid 3716] <... exit_group resumed>) = ? [pid 3718] +++ exited with 0 +++ [pid 3717] +++ exited with 0 +++ [pid 3716] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3716, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3719 ./strace-static-x86_64: Process 3719 attached [pid 3719] set_robust_list(0x5555566365e0, 24) = 0 [pid 3719] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3719] setpgid(0, 0) = 0 [pid 3719] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3719] write(3, "1000", 4) = 4 [pid 3719] close(3) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3719] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3719] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3720 attached [pid 3720] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3720] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3719] <... clone resumed>, parent_tid=[3720], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3720 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3720] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3720] memfd_create("syzkaller", 0) = 3 [pid 3720] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3720] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3720] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3720] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3720] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3720] ioctl(4, LOOP_CLR_FD) = 0 [pid 3720] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3720] close(4) = 0 [pid 3720] close(3) = 0 [pid 3720] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3720] <... futex resumed>) = 1 [pid 3720] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3720] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3720] <... futex resumed>) = 1 [pid 3720] write(3, "#! ./bus\n", 9) = 9 [pid 3720] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3720] <... futex resumed>) = 1 [pid 3720] open("./bus", O_RDWR) = 4 [pid 3720] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3720] <... futex resumed>) = 1 [pid 3720] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3719] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3719] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3719] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3721 attached , parent_tid=[3721], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3721 [pid 3721] set_robust_list(0x7f7b3695b9e0, 24 [pid 3719] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3721] <... set_robust_list resumed>) = 0 [pid 3719] <... futex resumed>) = 0 [pid 3719] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3721] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3721] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3719] <... futex resumed>) = 0 [pid 3721] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3720] <... futex resumed>) = 1 [pid 3720] write(3, 0x20000f80, 9) = 9 [pid 3720] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3719] exit_group(0 [pid 3721] <... futex resumed>) = ? [pid 3719] <... exit_group resumed>) = ? [pid 3721] +++ exited with 0 +++ [pid 3720] <... futex resumed>) = ? [pid 3720] +++ exited with 0 +++ [pid 3719] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3719, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3722 ./strace-static-x86_64: Process 3722 attached [pid 3722] set_robust_list(0x5555566365e0, 24) = 0 [pid 3722] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3722] setpgid(0, 0) = 0 [pid 3722] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3722] write(3, "1000", 4) = 4 [pid 3722] close(3) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3722] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3722] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3723 attached [pid 3723] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3723] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3722] <... clone resumed>, parent_tid=[3723], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3723 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3723] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3723] memfd_create("syzkaller", 0) = 3 [pid 3723] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3723] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3723] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3723] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3723] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3723] ioctl(4, LOOP_CLR_FD) = 0 [pid 3723] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3723] close(4) = 0 [pid 3723] close(3) = 0 [pid 3723] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3723] <... futex resumed>) = 1 [pid 3723] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3723] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3723] <... futex resumed>) = 1 [pid 3723] write(3, "#! ./bus\n", 9) = 9 [pid 3723] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3723] <... futex resumed>) = 1 [pid 3723] open("./bus", O_RDWR) = 4 [pid 3723] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3723] <... futex resumed>) = 1 [pid 3723] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3722] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3722] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3722] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3724 attached , parent_tid=[3724], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3724 [pid 3724] set_robust_list(0x7f7b3695b9e0, 24 [pid 3722] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3724] <... set_robust_list resumed>) = 0 [pid 3722] <... futex resumed>) = 0 [pid 3722] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3724] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3724] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3723] <... futex resumed>) = 1 [pid 3724] <... futex resumed>) = 1 [pid 3722] <... futex resumed>) = 0 [pid 3724] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3723] write(3, 0x20000f80, 9) = 9 [pid 3723] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3723] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3722] exit_group(0 [pid 3724] <... futex resumed>) = ? [pid 3722] <... exit_group resumed>) = ? [pid 3723] <... futex resumed>) = ? [pid 3724] +++ exited with 0 +++ [pid 3723] +++ exited with 0 +++ [pid 3722] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3722, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3725 ./strace-static-x86_64: Process 3725 attached [pid 3725] set_robust_list(0x5555566365e0, 24) = 0 [pid 3725] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3725] setpgid(0, 0) = 0 [pid 3725] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3725] write(3, "1000", 4) = 4 [pid 3725] close(3) = 0 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3725] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3725] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3725] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3726 attached , parent_tid=[3726], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3726 [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3726] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3726] memfd_create("syzkaller", 0) = 3 [pid 3726] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3726] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3726] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3726] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3726] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3726] ioctl(4, LOOP_CLR_FD) = 0 [pid 3726] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3726] close(4) = 0 [pid 3726] close(3) = 0 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3725] <... futex resumed>) = 0 [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3726] <... futex resumed>) = 1 [pid 3725] <... futex resumed>) = 0 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3726] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3725] <... futex resumed>) = 0 [pid 3726] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3726] <... futex resumed>) = 0 [pid 3726] write(3, "#! ./bus\n", 9) = 9 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3725] <... futex resumed>) = 0 [pid 3726] open("./bus", O_RDWR [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3726] <... open resumed>) = 4 [pid 3725] <... futex resumed>) = 0 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3726] <... futex resumed>) = 0 [pid 3725] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3726] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3726] <... mmap resumed>) = 0x20000000 [pid 3725] <... futex resumed>) = 0 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3725] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3726] <... futex resumed>) = 0 [pid 3725] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3726] write(3, 0x20000f80, 9 [pid 3725] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3725] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3725] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3725] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3725] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3727 attached [pid 3726] <... write resumed>) = 9 [pid 3725] <... clone resumed>, parent_tid=[3727], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3727 [pid 3726] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3725] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3726] <... futex resumed>) = 0 [pid 3725] <... futex resumed>) = 0 [pid 3726] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3725] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3727] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3727] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3727] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3725] <... futex resumed>) = 0 [pid 3727] <... futex resumed>) = 1 [pid 3725] exit_group(0 [pid 3727] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3726] <... futex resumed>) = ? [pid 3725] <... exit_group resumed>) = ? [pid 3726] +++ exited with 0 +++ [pid 3727] +++ exited with 0 +++ [pid 3725] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3725, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3728 ./strace-static-x86_64: Process 3728 attached [pid 3728] set_robust_list(0x5555566365e0, 24) = 0 [pid 3728] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3728] setpgid(0, 0) = 0 [pid 3728] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3728] write(3, "1000", 4) = 4 [pid 3728] close(3) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3728] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3728] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3729], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3729 ./strace-static-x86_64: Process 3729 attached [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3729] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3729] memfd_create("syzkaller", 0) = 3 [pid 3729] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3729] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3729] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3729] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3729] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3729] ioctl(4, LOOP_CLR_FD) = 0 [pid 3729] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3729] close(4) = 0 [pid 3729] close(3) = 0 [pid 3729] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] <... futex resumed>) = 0 [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3729] <... futex resumed>) = 1 [pid 3729] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3729] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] <... futex resumed>) = 0 [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3729] <... futex resumed>) = 1 [pid 3729] write(3, "#! ./bus\n", 9) = 9 [pid 3729] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] <... futex resumed>) = 0 [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3729] <... futex resumed>) = 1 [pid 3729] open("./bus", O_RDWR) = 4 [pid 3729] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] <... futex resumed>) = 0 [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3729] <... futex resumed>) = 1 [pid 3729] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3728] <... futex resumed>) = 0 [pid 3728] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3728] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3728] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3730], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3730 [pid 3728] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3728] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3730 attached [pid 3729] <... futex resumed>) = 1 [pid 3729] write(3, 0x20000f80, 9 [pid 3730] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3730] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3730] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] <... futex resumed>) = 0 [pid 3730] <... futex resumed>) = 1 [pid 3730] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3729] <... write resumed>) = 9 [pid 3729] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3728] exit_group(0) = ? [pid 3730] <... futex resumed>) = ? [pid 3729] <... futex resumed>) = ? [pid 3730] +++ exited with 0 +++ [pid 3729] +++ exited with 0 +++ [pid 3728] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3728, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3731 ./strace-static-x86_64: Process 3731 attached [pid 3731] set_robust_list(0x5555566365e0, 24) = 0 [pid 3731] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3731] setpgid(0, 0) = 0 [pid 3731] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3731] write(3, "1000", 4) = 4 [pid 3731] close(3) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3731] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3731] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3732], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3732 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3732 attached [pid 3732] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3732] memfd_create("syzkaller", 0) = 3 [pid 3732] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3732] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3732] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3732] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3732] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3732] ioctl(4, LOOP_CLR_FD) = 0 [pid 3732] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3732] close(4) = 0 [pid 3732] close(3) = 0 [pid 3732] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3731] <... futex resumed>) = 0 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3732] <... futex resumed>) = 1 [pid 3732] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3732] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3731] <... futex resumed>) = 0 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3732] <... futex resumed>) = 1 [pid 3732] write(3, "#! ./bus\n", 9) = 9 [pid 3732] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3731] <... futex resumed>) = 0 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3732] <... futex resumed>) = 1 [pid 3732] open("./bus", O_RDWR) = 4 [pid 3732] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3731] <... futex resumed>) = 0 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3731] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3732] <... futex resumed>) = 1 [pid 3732] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3731] <... futex resumed>) = 0 [pid 3731] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3732] <... futex resumed>) = 0 [pid 3731] <... futex resumed>) = 1 [pid 3731] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3732] write(3, 0x20000f80, 9 [pid 3731] <... futex resumed>) = 0 [pid 3731] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3731] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3731] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3733 attached [pid 3733] set_robust_list(0x7f7b3695b9e0, 24 [pid 3731] <... clone resumed>, parent_tid=[3733], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3733 [pid 3733] <... set_robust_list resumed>) = 0 [pid 3733] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3731] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3733] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3732] <... write resumed>) = 9 [pid 3731] <... futex resumed>) = 0 [pid 3733] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3732] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3731] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3733] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3732] <... futex resumed>) = 0 [pid 3732] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3733] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3731] <... futex resumed>) = 0 [pid 3733] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3731] exit_group(0 [pid 3733] <... futex resumed>) = ? [pid 3732] <... futex resumed>) = ? [pid 3731] <... exit_group resumed>) = ? [pid 3732] +++ exited with 0 +++ [pid 3733] +++ exited with 0 +++ [pid 3731] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3731, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3734 ./strace-static-x86_64: Process 3734 attached [pid 3734] set_robust_list(0x5555566365e0, 24) = 0 [pid 3734] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3734] setpgid(0, 0) = 0 [pid 3734] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3734] write(3, "1000", 4) = 4 [pid 3734] close(3) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3734] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3734] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3735 attached [pid 3735] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3735] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3734] <... clone resumed>, parent_tid=[3735], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3735 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3735] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3735] memfd_create("syzkaller", 0) = 3 [pid 3735] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3735] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3735] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3735] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3735] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3735] ioctl(4, LOOP_CLR_FD) = 0 [pid 3735] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3735] close(4) = 0 [pid 3735] close(3) = 0 [pid 3735] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3734] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3735] <... futex resumed>) = 1 [pid 3735] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3735] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3734] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3735] <... futex resumed>) = 1 [pid 3735] write(3, "#! ./bus\n", 9) = 9 [pid 3735] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3734] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3735] <... futex resumed>) = 1 [pid 3735] open("./bus", O_RDWR) = 4 [pid 3735] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3734] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3735] <... futex resumed>) = 1 [pid 3735] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3734] <... futex resumed>) = 0 [pid 3734] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3734] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3734] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3734] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3736 attached , parent_tid=[3736], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3736 [pid 3736] set_robust_list(0x7f7b3695b9e0, 24 [pid 3734] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3736] <... set_robust_list resumed>) = 0 [pid 3734] <... futex resumed>) = 0 [pid 3736] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3734] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3736] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3736] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3734] <... futex resumed>) = 0 [pid 3736] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3735] <... futex resumed>) = 1 [pid 3735] write(3, 0x20000f80, 9) = 9 [pid 3735] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3735] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3734] exit_group(0 [pid 3736] <... futex resumed>) = ? [pid 3735] <... futex resumed>) = ? [pid 3734] <... exit_group resumed>) = ? [pid 3736] +++ exited with 0 +++ [pid 3735] +++ exited with 0 +++ [pid 3734] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3734, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3737 ./strace-static-x86_64: Process 3737 attached [pid 3737] set_robust_list(0x5555566365e0, 24) = 0 [pid 3737] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3737] setpgid(0, 0) = 0 [pid 3737] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3737] write(3, "1000", 4) = 4 [pid 3737] close(3) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3737] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3737] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3738 attached [pid 3738] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3737] <... clone resumed>, parent_tid=[3738], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3738 [pid 3738] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3738] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3738] memfd_create("syzkaller", 0) = 3 [pid 3738] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3738] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3738] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3738] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3738] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3738] ioctl(4, LOOP_CLR_FD) = 0 [pid 3738] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3738] close(4) = 0 [pid 3738] close(3) = 0 [pid 3738] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3737] <... futex resumed>) = 0 [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3738] <... futex resumed>) = 1 [pid 3738] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3738] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3737] <... futex resumed>) = 0 [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3738] <... futex resumed>) = 1 [pid 3738] write(3, "#! ./bus\n", 9) = 9 [pid 3738] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3737] <... futex resumed>) = 0 [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3738] open("./bus", O_RDWR) = 4 [pid 3738] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3737] <... futex resumed>) = 0 [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3738] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3737] <... futex resumed>) = 0 [pid 3737] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3737] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3737] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3737] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3739 attached [pid 3739] set_robust_list(0x7f7b3695b9e0, 24 [pid 3737] <... clone resumed>, parent_tid=[3739], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3739 [pid 3739] <... set_robust_list resumed>) = 0 [pid 3739] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3737] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3739] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3738] <... futex resumed>) = 1 [pid 3737] <... futex resumed>) = 0 [pid 3739] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3738] write(3, 0x20000f80, 9 [pid 3737] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3739] <... futex resumed>) = 0 [pid 3737] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3739] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3738] <... write resumed>) = 9 [pid 3738] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3738] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3737] exit_group(0 [pid 3739] <... futex resumed>) = ? [pid 3738] <... futex resumed>) = ? [pid 3737] <... exit_group resumed>) = ? [pid 3738] +++ exited with 0 +++ [pid 3739] +++ exited with 0 +++ [pid 3737] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3737, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3740 ./strace-static-x86_64: Process 3740 attached [pid 3740] set_robust_list(0x5555566365e0, 24) = 0 [pid 3740] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3740] setpgid(0, 0) = 0 [pid 3740] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3740] write(3, "1000", 4) = 4 [pid 3740] close(3) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3740] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3740] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3741 attached [pid 3741] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3741] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3740] <... clone resumed>, parent_tid=[3741], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3741 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3741] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3741] memfd_create("syzkaller", 0) = 3 [pid 3741] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3741] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3741] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3741] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3741] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3741] ioctl(4, LOOP_CLR_FD) = 0 [pid 3741] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3741] close(4) = 0 [pid 3741] close(3) = 0 [pid 3741] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3740] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3741] <... futex resumed>) = 1 [pid 3741] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3741] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3740] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3741] <... futex resumed>) = 1 [pid 3741] write(3, "#! ./bus\n", 9) = 9 [pid 3741] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3740] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3741] <... futex resumed>) = 1 [pid 3741] open("./bus", O_RDWR) = 4 [pid 3741] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3740] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3741] <... futex resumed>) = 1 [pid 3741] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3740] <... futex resumed>) = 0 [pid 3740] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3740] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3740] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3741] <... futex resumed>) = 1 [pid 3740] <... mprotect resumed>) = 0 [pid 3741] write(3, 0x20000f80, 9 [pid 3740] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3742 attached [pid 3742] set_robust_list(0x7f7b3695b9e0, 24 [pid 3740] <... clone resumed>, parent_tid=[3742], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3742 [pid 3742] <... set_robust_list resumed>) = 0 [pid 3742] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3740] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3742] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3740] <... futex resumed>) = 0 [pid 3742] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3740] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3742] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3741] <... write resumed>) = 9 [pid 3742] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3741] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3742] <... futex resumed>) = 1 [pid 3741] <... futex resumed>) = 0 [pid 3742] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3741] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3740] <... futex resumed>) = 0 [pid 3740] exit_group(0 [pid 3742] <... futex resumed>) = ? [pid 3741] <... futex resumed>) = ? [pid 3740] <... exit_group resumed>) = ? [pid 3741] +++ exited with 0 +++ [pid 3742] +++ exited with 0 +++ [pid 3740] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3740, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3743 ./strace-static-x86_64: Process 3743 attached [pid 3743] set_robust_list(0x5555566365e0, 24) = 0 [pid 3743] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3743] setpgid(0, 0) = 0 [pid 3743] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3743] write(3, "1000", 4) = 4 [pid 3743] close(3) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3743] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3743] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3744 attached [pid 3744] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3744] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3743] <... clone resumed>, parent_tid=[3744], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3744 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3744] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3744] memfd_create("syzkaller", 0) = 3 [pid 3744] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3744] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3744] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3744] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3744] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3744] ioctl(4, LOOP_CLR_FD) = 0 [pid 3744] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3744] close(4) = 0 [pid 3744] close(3) = 0 [pid 3744] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3743] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3744] <... futex resumed>) = 1 [pid 3744] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3744] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3743] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3744] <... futex resumed>) = 1 [pid 3744] write(3, "#! ./bus\n", 9) = 9 [pid 3744] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3743] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3744] <... futex resumed>) = 1 [pid 3744] open("./bus", O_RDWR) = 4 [pid 3744] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3743] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3744] <... futex resumed>) = 1 [pid 3744] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3743] <... futex resumed>) = 0 [pid 3743] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3743] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3743] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID [pid 3744] <... futex resumed>) = 1 [pid 3743] <... clone resumed>, parent_tid=[3745], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3745 [pid 3743] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3743] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3744] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3745 attached [pid 3745] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3745] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3745] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3743] <... futex resumed>) = 0 [pid 3745] <... futex resumed>) = 1 [pid 3745] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3744] <... write resumed>) = 9 [pid 3744] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3744] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3743] exit_group(0) = ? [pid 3745] <... futex resumed>) = ? [pid 3745] +++ exited with 0 +++ [pid 3744] <... futex resumed>) = ? [pid 3744] +++ exited with 0 +++ [pid 3743] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3743, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3746 ./strace-static-x86_64: Process 3746 attached [pid 3746] set_robust_list(0x5555566365e0, 24) = 0 [pid 3746] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3746] setpgid(0, 0) = 0 [pid 3746] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3746] write(3, "1000", 4) = 4 [pid 3746] close(3) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3746] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3746] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3747], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3747 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3747 attached [pid 3747] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3747] memfd_create("syzkaller", 0) = 3 [pid 3747] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3747] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3747] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3747] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3747] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3747] ioctl(4, LOOP_CLR_FD) = 0 [pid 3747] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3747] close(4) = 0 [pid 3747] close(3) = 0 [pid 3747] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] <... futex resumed>) = 0 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3747] <... futex resumed>) = 1 [pid 3747] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3747] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] <... futex resumed>) = 0 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3747] <... futex resumed>) = 1 [pid 3747] write(3, "#! ./bus\n", 9) = 9 [pid 3747] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] <... futex resumed>) = 0 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3747] <... futex resumed>) = 1 [pid 3747] open("./bus", O_RDWR) = 4 [pid 3747] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] <... futex resumed>) = 0 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3747] <... futex resumed>) = 1 [pid 3747] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3746] <... futex resumed>) = 0 [pid 3746] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3746] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3746] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3746] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3748 attached [pid 3748] set_robust_list(0x7f7b3695b9e0, 24 [pid 3746] <... clone resumed>, parent_tid=[3748], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3748 [pid 3748] <... set_robust_list resumed>) = 0 [pid 3746] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3748] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3746] <... futex resumed>) = 0 [pid 3748] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3746] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3748] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3748] <... futex resumed>) = 0 [pid 3748] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3747] <... futex resumed>) = 1 [pid 3747] write(3, 0x20000f80, 9) = 9 [pid 3747] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3746] exit_group(0 [pid 3748] <... futex resumed>) = ? [pid 3746] <... exit_group resumed>) = ? [pid 3748] +++ exited with 0 +++ [pid 3747] <... futex resumed>) = ? [pid 3747] +++ exited with 0 +++ [pid 3746] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3746, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3749 ./strace-static-x86_64: Process 3749 attached [pid 3749] set_robust_list(0x5555566365e0, 24) = 0 [pid 3749] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3749] setpgid(0, 0) = 0 [pid 3749] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3749] write(3, "1000", 4) = 4 [pid 3749] close(3) = 0 [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3749] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3749] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3749] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3750 attached , parent_tid=[3750], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3750 [pid 3750] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3750] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3750] <... futex resumed>) = 0 [pid 3750] memfd_create("syzkaller", 0 [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3750] <... memfd_create resumed>) = 3 [pid 3750] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3750] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3750] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3750] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3750] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3750] ioctl(4, LOOP_CLR_FD) = 0 [pid 3750] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3750] close(4) = 0 [pid 3750] close(3) = 0 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3749] <... futex resumed>) = 0 [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3750] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3749] <... futex resumed>) = 0 [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3750] write(3, "#! ./bus\n", 9) = 9 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3749] <... futex resumed>) = 0 [pid 3750] open("./bus", O_RDWR [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3750] <... open resumed>) = 4 [pid 3749] <... futex resumed>) = 0 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3750] <... futex resumed>) = 0 [pid 3749] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3750] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3749] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3750] <... mmap resumed>) = 0x20000000 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3749] <... futex resumed>) = 0 [pid 3750] <... futex resumed>) = 1 [pid 3749] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3750] write(3, 0x20000f80, 9 [pid 3749] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3749] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3749] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3749] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3751 attached , parent_tid=[3751], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3751 [pid 3751] set_robust_list(0x7f7b3695b9e0, 24 [pid 3749] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3751] <... set_robust_list resumed>) = 0 [pid 3749] <... futex resumed>) = 0 [pid 3749] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3751] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3751] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3749] <... futex resumed>) = 0 [pid 3751] <... futex resumed>) = 1 [pid 3751] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3750] <... write resumed>) = 9 [pid 3750] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3749] exit_group(0) = ? [pid 3751] <... futex resumed>) = ? [pid 3750] +++ exited with 0 +++ [pid 3751] +++ exited with 0 +++ [pid 3749] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3749, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3752 ./strace-static-x86_64: Process 3752 attached [pid 3752] set_robust_list(0x5555566365e0, 24) = 0 [pid 3752] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3752] setpgid(0, 0) = 0 [pid 3752] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3752] write(3, "1000", 4) = 4 [pid 3752] close(3) = 0 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3752] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3752] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3753 attached , parent_tid=[3753], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3753 [pid 3753] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3753] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3753] <... futex resumed>) = 0 [pid 3753] memfd_create("syzkaller", 0) = 3 [pid 3753] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3753] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3753] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3753] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3753] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3753] ioctl(4, LOOP_CLR_FD) = 0 [pid 3753] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3753] close(4) = 0 [pid 3753] close(3) = 0 [pid 3753] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3752] <... futex resumed>) = 0 [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3753] <... futex resumed>) = 1 [pid 3753] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3753] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3752] <... futex resumed>) = 0 [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3753] write(3, "#! ./bus\n", 9) = 9 [pid 3753] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3752] <... futex resumed>) = 0 [pid 3753] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3753] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3753] open("./bus", O_RDWR) = 4 [pid 3753] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3752] <... futex resumed>) = 0 [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3753] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3752] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3753] write(3, 0x20000f80, 9 [pid 3752] <... futex resumed>) = 0 [pid 3752] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3752] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3752] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3754], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3754 [pid 3752] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3752] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3754 attached [pid 3753] <... write resumed>) = 9 [pid 3754] set_robust_list(0x7f7b3695b9e0, 24 [pid 3753] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3754] <... set_robust_list resumed>) = 0 [pid 3753] <... futex resumed>) = 0 [pid 3753] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3754] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3754] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3752] <... futex resumed>) = 0 [pid 3752] exit_group(0 [pid 3753] <... futex resumed>) = ? [pid 3752] <... exit_group resumed>) = ? [pid 3753] +++ exited with 0 +++ [pid 3754] <... futex resumed>) = ? [pid 3754] +++ exited with 0 +++ [pid 3752] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3752, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3755 ./strace-static-x86_64: Process 3755 attached [pid 3755] set_robust_list(0x5555566365e0, 24) = 0 [pid 3755] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3755] setpgid(0, 0) = 0 [pid 3755] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3755] write(3, "1000", 4) = 4 [pid 3755] close(3) = 0 [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3755] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3755] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3756 attached [pid 3756] set_robust_list(0x7f7b3697c9e0, 24 [pid 3755] <... clone resumed>, parent_tid=[3756], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3756 [pid 3756] <... set_robust_list resumed>) = 0 [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3756] memfd_create("syzkaller", 0) = 3 [pid 3756] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3756] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3756] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3756] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3756] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3756] ioctl(4, LOOP_CLR_FD) = 0 [pid 3756] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3756] close(4) = 0 [pid 3756] close(3) = 0 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3755] <... futex resumed>) = 0 [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3756] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3756] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3755] <... futex resumed>) = 0 [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3756] <... futex resumed>) = 0 [pid 3756] write(3, "#! ./bus\n", 9) = 9 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3755] <... futex resumed>) = 0 [pid 3756] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3756] open("./bus", O_RDWR [pid 3755] <... futex resumed>) = 0 [pid 3756] <... open resumed>) = 4 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3756] <... futex resumed>) = 0 [pid 3756] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3755] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3756] <... futex resumed>) = 0 [pid 3755] <... futex resumed>) = 1 [pid 3756] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3755] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3756] <... mmap resumed>) = 0x20000000 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3755] <... futex resumed>) = 0 [pid 3755] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3755] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3755] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3757 attached , parent_tid=[3757], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3757 [pid 3757] set_robust_list(0x7f7b3695b9e0, 24 [pid 3755] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3757] <... set_robust_list resumed>) = 0 [pid 3755] <... futex resumed>) = 0 [pid 3755] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3757] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3757] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3755] <... futex resumed>) = 0 [pid 3757] <... futex resumed>) = 1 [pid 3757] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3756] <... futex resumed>) = 1 [pid 3756] write(3, 0x20000f80, 9) = 9 [pid 3756] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3755] exit_group(0 [pid 3757] <... futex resumed>) = ? [pid 3755] <... exit_group resumed>) = ? [pid 3757] +++ exited with 0 +++ [pid 3756] +++ exited with 0 +++ [pid 3755] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3755, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3758 ./strace-static-x86_64: Process 3758 attached [pid 3758] set_robust_list(0x5555566365e0, 24) = 0 [pid 3758] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3758] setpgid(0, 0) = 0 [pid 3758] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3758] write(3, "1000", 4) = 4 [pid 3758] close(3) = 0 [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3758] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3758] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3759 attached , parent_tid=[3759], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3759 [pid 3759] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3759] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3759] <... futex resumed>) = 0 [pid 3759] memfd_create("syzkaller", 0 [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3759] <... memfd_create resumed>) = 3 [pid 3759] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3759] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3759] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3759] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3759] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3759] ioctl(4, LOOP_CLR_FD) = 0 [pid 3759] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3759] close(4) = 0 [pid 3759] close(3) = 0 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3758] <... futex resumed>) = 0 [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3759] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3758] <... futex resumed>) = 0 [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3759] <... open resumed>) = 3 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3758] <... futex resumed>) = 0 [pid 3759] <... futex resumed>) = 1 [pid 3759] write(3, "#! ./bus\n", 9 [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3759] <... write resumed>) = 9 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3758] <... futex resumed>) = 0 [pid 3759] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3759] <... futex resumed>) = 0 [pid 3758] <... futex resumed>) = 1 [pid 3759] open("./bus", O_RDWR [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3759] <... open resumed>) = 4 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3758] <... futex resumed>) = 0 [pid 3759] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3759] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3758] <... futex resumed>) = 0 [pid 3759] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3758] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3759] <... mmap resumed>) = 0x20000000 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3758] <... futex resumed>) = 0 [pid 3759] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3758] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3759] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3758] <... futex resumed>) = 0 [pid 3759] write(3, 0x20000f80, 9 [pid 3758] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3758] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3758] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3758] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3760 attached [pid 3759] <... write resumed>) = 9 [pid 3760] set_robust_list(0x7f7b3695b9e0, 24 [pid 3758] <... clone resumed>, parent_tid=[3760], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3760 [pid 3760] <... set_robust_list resumed>) = 0 [pid 3759] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3758] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3760] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3759] <... futex resumed>) = 0 [pid 3758] <... futex resumed>) = 0 [pid 3760] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3759] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3758] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3760] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3758] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3760] <... futex resumed>) = 0 [pid 3758] exit_group(0 [pid 3759] <... futex resumed>) = ? [pid 3758] <... exit_group resumed>) = ? [pid 3759] +++ exited with 0 +++ [pid 3760] +++ exited with 0 +++ [pid 3758] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3758, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3761 ./strace-static-x86_64: Process 3761 attached [pid 3761] set_robust_list(0x5555566365e0, 24) = 0 [pid 3761] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3761] setpgid(0, 0) = 0 [pid 3761] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3761] write(3, "1000", 4) = 4 [pid 3761] close(3) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3761] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3761] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3762 attached [pid 3762] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3762] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3761] <... clone resumed>, parent_tid=[3762], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3762 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3762] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3762] memfd_create("syzkaller", 0) = 3 [pid 3762] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3762] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3762] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3762] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3762] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3762] ioctl(4, LOOP_CLR_FD) = 0 [pid 3762] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3762] close(4) = 0 [pid 3762] close(3) = 0 [pid 3762] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3761] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3762] <... futex resumed>) = 1 [pid 3762] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3762] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3761] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3762] <... futex resumed>) = 1 [pid 3762] write(3, "#! ./bus\n", 9) = 9 [pid 3762] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3761] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3762] <... futex resumed>) = 1 [pid 3762] open("./bus", O_RDWR) = 4 [pid 3762] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3761] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3762] <... futex resumed>) = 1 [pid 3762] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3761] <... futex resumed>) = 0 [pid 3761] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3761] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3761] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3761] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3763 attached [pid 3763] set_robust_list(0x7f7b3695b9e0, 24 [pid 3761] <... clone resumed>, parent_tid=[3763], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3763 [pid 3763] <... set_robust_list resumed>) = 0 [pid 3761] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3763] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3761] <... futex resumed>) = 0 [pid 3763] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3761] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3763] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3762] <... futex resumed>) = 1 [pid 3761] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3763] <... futex resumed>) = 0 [pid 3762] write(3, 0x20000f80, 9 [pid 3763] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3762] <... write resumed>) = 9 [pid 3762] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3762] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3761] exit_group(0 [pid 3763] <... futex resumed>) = ? [pid 3762] <... futex resumed>) = ? [pid 3761] <... exit_group resumed>) = ? [pid 3763] +++ exited with 0 +++ [pid 3762] +++ exited with 0 +++ [pid 3761] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3761, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3764 ./strace-static-x86_64: Process 3764 attached [pid 3764] set_robust_list(0x5555566365e0, 24) = 0 [pid 3764] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3764] setpgid(0, 0) = 0 [pid 3764] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3764] write(3, "1000", 4) = 4 [pid 3764] close(3) = 0 [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3764] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3764] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3764] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3765], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3765 [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 3765 attached [pid 3765] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3765] memfd_create("syzkaller", 0) = 3 [pid 3765] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3765] <... mmap resumed>) = 0x7f7b2e400000 [pid 3765] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3765] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3765] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3765] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3765] ioctl(4, LOOP_CLR_FD) = 0 [pid 3765] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3765] close(4) = 0 [pid 3765] close(3) = 0 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3764] <... futex resumed>) = 0 [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3765] <... futex resumed>) = 1 [pid 3765] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3764] <... futex resumed>) = 0 [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3765] <... futex resumed>) = 1 [pid 3765] write(3, "#! ./bus\n", 9) = 9 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3764] <... futex resumed>) = 0 [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3765] <... futex resumed>) = 1 [pid 3765] open("./bus", O_RDWR) = 4 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3764] <... futex resumed>) = 0 [pid 3765] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3765] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3764] <... futex resumed>) = 0 [pid 3765] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3764] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3765] <... mmap resumed>) = 0x20000000 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3764] <... futex resumed>) = 0 [pid 3765] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3764] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3765] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3764] <... futex resumed>) = 0 [pid 3764] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3765] write(3, 0x20000f80, 9 [pid 3764] <... futex resumed>) = 0 [pid 3764] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3764] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3764] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3766], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3766 ./strace-static-x86_64: Process 3766 attached [pid 3765] <... write resumed>) = 9 [pid 3764] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3766] set_robust_list(0x7f7b3695b9e0, 24 [pid 3765] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3764] <... futex resumed>) = 0 [pid 3766] <... set_robust_list resumed>) = 0 [pid 3765] <... futex resumed>) = 0 [pid 3764] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3766] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3765] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3766] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3766] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3764] <... futex resumed>) = 0 [pid 3766] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3764] exit_group(0) = ? [pid 3766] <... futex resumed>) = ? [pid 3765] <... futex resumed>) = ? [pid 3765] +++ exited with 0 +++ [pid 3766] +++ exited with 0 +++ [pid 3764] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3764, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3767 attached [pid 3767] set_robust_list(0x5555566365e0, 24) = 0 [pid 3767] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3767] setpgid(0, 0) = 0 [pid 3767] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3630] <... clone resumed>, child_tidptr=0x5555566365d0) = 3767 [pid 3767] write(3, "1000", 4) = 4 [pid 3767] close(3) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3767] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3767] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3768 attached , parent_tid=[3768], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3768 [pid 3768] set_robust_list(0x7f7b3697c9e0, 24 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3768] <... set_robust_list resumed>) = 0 [pid 3768] memfd_create("syzkaller", 0) = 3 [pid 3768] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3768] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3768] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3768] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3768] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3768] ioctl(4, LOOP_CLR_FD) = 0 [pid 3768] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3768] close(4) = 0 [pid 3768] close(3) = 0 [pid 3768] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3767] <... futex resumed>) = 0 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3768] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3768] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3767] <... futex resumed>) = 0 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3768] write(3, "#! ./bus\n", 9) = 9 [pid 3768] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3767] <... futex resumed>) = 0 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3768] open("./bus", O_RDWR) = 4 [pid 3768] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3767] <... futex resumed>) = 0 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3768] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3767] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3767] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3767] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3767] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3769 attached , parent_tid=[3769], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3769 [pid 3769] set_robust_list(0x7f7b3695b9e0, 24 [pid 3767] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3769] <... set_robust_list resumed>) = 0 [pid 3767] <... futex resumed>) = 0 [pid 3769] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3767] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3769] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3769] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3767] <... futex resumed>) = 0 [pid 3769] <... futex resumed>) = 1 [pid 3769] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3768] write(3, 0x20000f80, 9) = 9 [pid 3768] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3768] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3767] exit_group(0) = ? [pid 3769] <... futex resumed>) = ? [pid 3769] +++ exited with 0 +++ [pid 3768] <... futex resumed>) = ? [pid 3768] +++ exited with 0 +++ [pid 3767] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3767, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3770 attached [pid 3770] set_robust_list(0x5555566365e0, 24) = 0 [pid 3770] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3770] setpgid(0, 0) = 0 [pid 3770] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3770] write(3, "1000", 4) = 4 [pid 3770] close(3) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3770] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3770] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3771], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3771 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3771 attached [pid 3771] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3771] memfd_create("syzkaller", 0) = 3 [pid 3771] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3630] <... clone resumed>, child_tidptr=0x5555566365d0) = 3770 [pid 3771] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3771] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3771] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3771] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3771] ioctl(4, LOOP_CLR_FD) = 0 [pid 3771] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3771] close(4) = 0 [pid 3771] close(3) = 0 [pid 3771] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3770] <... futex resumed>) = 0 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3771] <... futex resumed>) = 1 [pid 3771] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3771] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3770] <... futex resumed>) = 0 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3771] <... futex resumed>) = 1 [pid 3771] write(3, "#! ./bus\n", 9) = 9 [pid 3771] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3770] <... futex resumed>) = 0 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3771] <... futex resumed>) = 1 [pid 3771] open("./bus", O_RDWR) = 4 [pid 3771] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3770] <... futex resumed>) = 0 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3771] <... futex resumed>) = 1 [pid 3771] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3770] <... futex resumed>) = 0 [pid 3770] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3770] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3770] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3772], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3772 [pid 3770] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3770] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3771] <... futex resumed>) = 1 [pid 3771] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3772 attached [pid 3772] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3772] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3772] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3770] <... futex resumed>) = 0 [pid 3772] <... futex resumed>) = 1 [pid 3772] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3771] <... write resumed>) = 9 [pid 3771] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3771] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3770] exit_group(0) = ? [pid 3771] <... futex resumed>) = ? [pid 3771] +++ exited with 0 +++ [pid 3772] <... futex resumed>) = ? [pid 3772] +++ exited with 0 +++ [pid 3770] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3770, si_uid=0, si_status=0, si_utime=0, si_stime=4} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3773 attached [pid 3773] set_robust_list(0x5555566365e0, 24) = 0 [pid 3773] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3773] setpgid(0, 0) = 0 [pid 3773] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3630] <... clone resumed>, child_tidptr=0x5555566365d0) = 3773 [pid 3773] write(3, "1000", 4) = 4 [pid 3773] close(3) = 0 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3773] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3773] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3774 attached , parent_tid=[3774], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3774 [pid 3774] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3774] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3774] <... futex resumed>) = 0 [pid 3774] memfd_create("syzkaller", 0) = 3 [pid 3774] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3774] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3774] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3774] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3774] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3774] ioctl(4, LOOP_CLR_FD) = 0 [pid 3774] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3774] close(4) = 0 [pid 3774] close(3) = 0 [pid 3774] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3773] <... futex resumed>) = 0 [pid 3774] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3774] <... futex resumed>) = 0 [pid 3774] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3774] <... open resumed>) = 3 [pid 3774] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3773] <... futex resumed>) = 0 [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3774] <... futex resumed>) = 1 [pid 3774] write(3, "#! ./bus\n", 9) = 9 [pid 3774] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3773] <... futex resumed>) = 0 [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3774] open("./bus", O_RDWR) = 4 [pid 3774] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3773] <... futex resumed>) = 0 [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3774] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3773] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3773] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3774] write(3, 0x20000f80, 9 [pid 3773] <... mprotect resumed>) = 0 [pid 3773] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3775], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3775 [pid 3773] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3773] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3775 attached [pid 3775] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3775] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3775] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3773] <... futex resumed>) = 0 [pid 3775] <... futex resumed>) = 1 [pid 3775] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3774] <... write resumed>) = 9 [pid 3774] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3774] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3773] exit_group(0) = ? [pid 3775] <... futex resumed>) = ? [pid 3775] +++ exited with 0 +++ [pid 3774] <... futex resumed>) = ? [pid 3774] +++ exited with 0 +++ [pid 3773] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3773, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3776 ./strace-static-x86_64: Process 3776 attached [pid 3776] set_robust_list(0x5555566365e0, 24) = 0 [pid 3776] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3776] setpgid(0, 0) = 0 [pid 3776] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3776] write(3, "1000", 4) = 4 [pid 3776] close(3) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3776] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3776] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3777 attached , parent_tid=[3777], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3777 [pid 3777] set_robust_list(0x7f7b3697c9e0, 24 [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3777] <... set_robust_list resumed>) = 0 [pid 3776] <... futex resumed>) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3777] memfd_create("syzkaller", 0) = 3 [pid 3777] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3777] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3777] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3777] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3777] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3777] ioctl(4, LOOP_CLR_FD) = 0 [pid 3777] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3777] close(4) = 0 [pid 3777] close(3) = 0 [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3776] <... futex resumed>) = 0 [pid 3777] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3777] <... open resumed>) = 3 [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3776] <... futex resumed>) = 0 [pid 3777] write(3, "#! ./bus\n", 9 [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3777] <... write resumed>) = 9 [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3776] <... futex resumed>) = 0 [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3777] open("./bus", O_RDWR) = 4 [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3776] <... futex resumed>) = 0 [pid 3777] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3777] <... mmap resumed>) = 0x20000000 [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3776] <... futex resumed>) = 0 [pid 3776] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3776] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 3777] write(3, 0x20000f80, 9 [pid 3776] <... mmap resumed>) = 0x7f7b3693b000 [pid 3776] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3776] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3778 attached [pid 3778] set_robust_list(0x7f7b3695b9e0, 24 [pid 3776] <... clone resumed>, parent_tid=[3778], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3778 [pid 3778] <... set_robust_list resumed>) = 0 [pid 3776] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3778] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3776] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3778] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3776] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3778] <... futex resumed>) = 0 [pid 3777] <... write resumed>) = 9 [pid 3778] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3777] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3777] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3776] exit_group(0) = ? [pid 3777] <... futex resumed>) = ? [pid 3777] +++ exited with 0 +++ [pid 3778] <... futex resumed>) = ? [pid 3778] +++ exited with 0 +++ [pid 3776] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3776, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3779 ./strace-static-x86_64: Process 3779 attached [pid 3779] set_robust_list(0x5555566365e0, 24) = 0 [pid 3779] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3779] setpgid(0, 0) = 0 [pid 3779] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3779] write(3, "1000", 4) = 4 [pid 3779] close(3) = 0 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3779] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3779] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3780 attached [pid 3780] set_robust_list(0x7f7b3697c9e0, 24 [pid 3779] <... clone resumed>, parent_tid=[3780], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3780 [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3780] <... set_robust_list resumed>) = 0 [pid 3780] memfd_create("syzkaller", 0) = 3 [pid 3780] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3780] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3780] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3780] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3780] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3780] ioctl(4, LOOP_CLR_FD) = 0 [pid 3780] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3780] close(4) = 0 [pid 3780] close(3) = 0 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3779] <... futex resumed>) = 0 [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3780] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3779] <... futex resumed>) = 0 [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3780] write(3, "#! ./bus\n", 9 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3780] <... write resumed>) = 9 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3779] <... futex resumed>) = 0 [pid 3780] open("./bus", O_RDWR [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3780] <... open resumed>) = 4 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3779] <... futex resumed>) = 0 [pid 3780] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3780] <... mmap resumed>) = 0x20000000 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3780] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3779] <... futex resumed>) = 0 [pid 3780] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3779] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3780] write(3, 0x20000f80, 9 [pid 3779] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3779] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3779] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3781 attached , parent_tid=[3781], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3781 [pid 3781] set_robust_list(0x7f7b3695b9e0, 24 [pid 3779] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3779] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3781] <... set_robust_list resumed>) = 0 [pid 3781] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3780] <... write resumed>) = 9 [pid 3780] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3780] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3781] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3781] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3779] <... futex resumed>) = 0 [pid 3779] exit_group(0) = ? [pid 3780] <... futex resumed>) = ? [pid 3780] +++ exited with 0 +++ [pid 3781] <... futex resumed>) = ? [pid 3781] +++ exited with 0 +++ [pid 3779] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3779, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3782 ./strace-static-x86_64: Process 3782 attached [pid 3782] set_robust_list(0x5555566365e0, 24) = 0 [pid 3782] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3782] setpgid(0, 0) = 0 [pid 3782] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3782] write(3, "1000", 4) = 4 [pid 3782] close(3) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3782] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3782] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3783], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3783 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3783 attached [pid 3783] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3783] memfd_create("syzkaller", 0) = 3 [pid 3783] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3783] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3783] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3783] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3783] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3783] ioctl(4, LOOP_CLR_FD) = 0 [pid 3783] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3783] close(4) = 0 [pid 3783] close(3) = 0 [pid 3783] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3782] <... futex resumed>) = 0 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3783] <... futex resumed>) = 1 [pid 3783] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3783] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3782] <... futex resumed>) = 0 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3783] <... futex resumed>) = 1 [pid 3783] write(3, "#! ./bus\n", 9) = 9 [pid 3783] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3782] <... futex resumed>) = 0 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3783] <... futex resumed>) = 1 [pid 3783] open("./bus", O_RDWR) = 4 [pid 3783] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3782] <... futex resumed>) = 0 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3783] <... futex resumed>) = 1 [pid 3783] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3782] <... futex resumed>) = 0 [pid 3782] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3782] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3782] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3784], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3784 [pid 3782] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3782] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3783] <... futex resumed>) = 1 [pid 3783] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3784 attached [pid 3784] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3784] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3784] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3783] <... write resumed>) = 9 [pid 3783] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3783] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3784] <... futex resumed>) = 1 [pid 3782] <... futex resumed>) = 0 [pid 3782] exit_group(0) = ? [pid 3783] <... futex resumed>) = ? [pid 3783] +++ exited with 0 +++ [pid 3784] +++ exited with 0 +++ [pid 3782] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3782, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3785 ./strace-static-x86_64: Process 3785 attached [pid 3785] set_robust_list(0x5555566365e0, 24) = 0 [pid 3785] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3785] setpgid(0, 0) = 0 [pid 3785] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3785] write(3, "1000", 4) = 4 [pid 3785] close(3) = 0 [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3785] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3785] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3786 attached , parent_tid=[3786], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3786 [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3786] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3786] memfd_create("syzkaller", 0) = 3 [pid 3786] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3786] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3786] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3786] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3786] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3786] ioctl(4, LOOP_CLR_FD) = 0 [pid 3786] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3786] close(4) = 0 [pid 3786] close(3) = 0 [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3785] <... futex resumed>) = 0 [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3786] <... futex resumed>) = 1 [pid 3786] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3785] <... futex resumed>) = 0 [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3786] <... futex resumed>) = 1 [pid 3786] write(3, "#! ./bus\n", 9) = 9 [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3785] <... futex resumed>) = 0 [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3786] open("./bus", O_RDWR) = 4 [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3785] <... futex resumed>) = 0 [pid 3786] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3786] <... futex resumed>) = 0 [pid 3785] <... futex resumed>) = 1 [pid 3786] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3785] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3786] <... mmap resumed>) = 0x20000000 [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3785] <... futex resumed>) = 0 [pid 3786] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3785] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3786] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3785] <... futex resumed>) = 0 [pid 3786] write(3, 0x20000f80, 9 [pid 3785] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3785] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3785] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3787 attached [pid 3787] set_robust_list(0x7f7b3695b9e0, 24 [pid 3785] <... clone resumed>, parent_tid=[3787], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3787 [pid 3787] <... set_robust_list resumed>) = 0 [pid 3785] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3785] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3787] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3787] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3786] <... write resumed>) = 9 [pid 3785] <... futex resumed>) = 0 [pid 3787] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3786] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3785] exit_group(0 [pid 3786] <... futex resumed>) = ? [pid 3785] <... exit_group resumed>) = ? [pid 3787] <... futex resumed>) = ? [pid 3786] +++ exited with 0 +++ [pid 3787] +++ exited with 0 +++ [pid 3785] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3785, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3788 ./strace-static-x86_64: Process 3788 attached [pid 3788] set_robust_list(0x5555566365e0, 24) = 0 [pid 3788] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3788] setpgid(0, 0) = 0 [pid 3788] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3788] write(3, "1000", 4) = 4 [pid 3788] close(3) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3788] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3788] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3789 attached , parent_tid=[3789], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3789 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3789] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3789] memfd_create("syzkaller", 0) = 3 [pid 3789] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3789] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3789] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3789] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3789] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3789] ioctl(4, LOOP_CLR_FD) = 0 [pid 3789] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3789] close(4) = 0 [pid 3789] close(3) = 0 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3789] <... futex resumed>) = 1 [pid 3789] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3789] <... futex resumed>) = 1 [pid 3789] write(3, "#! ./bus\n", 9) = 9 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3789] <... futex resumed>) = 1 [pid 3789] open("./bus", O_RDWR) = 4 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3789] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3789] <... mmap resumed>) = 0x20000000 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3788] <... futex resumed>) = 0 [pid 3788] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3788] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3789] write(3, 0x20000f80, 9 [pid 3788] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3788] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3788] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3790 attached [pid 3790] set_robust_list(0x7f7b3695b9e0, 24 [pid 3788] <... clone resumed>, parent_tid=[3790], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3790 [pid 3790] <... set_robust_list resumed>) = 0 [pid 3788] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3790] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3788] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3790] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3790] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3788] <... futex resumed>) = 0 [pid 3790] <... futex resumed>) = 1 [pid 3790] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3789] <... write resumed>) = 9 [pid 3789] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3788] exit_group(0 [pid 3789] <... futex resumed>) = ? [pid 3788] <... exit_group resumed>) = ? [pid 3790] <... futex resumed>) = ? [pid 3790] +++ exited with 0 +++ [pid 3789] +++ exited with 0 +++ [pid 3788] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3788, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3791 ./strace-static-x86_64: Process 3791 attached [pid 3791] set_robust_list(0x5555566365e0, 24) = 0 [pid 3791] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3791] setpgid(0, 0) = 0 [pid 3791] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3791] write(3, "1000", 4) = 4 [pid 3791] close(3) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3791] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3791] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3792 attached , parent_tid=[3792], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3792 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3792] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3792] memfd_create("syzkaller", 0) = 3 [pid 3792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3792] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3792] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3792] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3792] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3792] ioctl(4, LOOP_CLR_FD) = 0 [pid 3792] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3792] close(4) = 0 [pid 3792] close(3) = 0 [pid 3792] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3791] <... futex resumed>) = 0 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3792] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3792] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3791] <... futex resumed>) = 0 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3792] write(3, "#! ./bus\n", 9) = 9 [pid 3792] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3791] <... futex resumed>) = 0 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3792] open("./bus", O_RDWR) = 4 [pid 3792] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3791] <... futex resumed>) = 0 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3792] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3791] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3791] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3791] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3792] write(3, 0x20000f80, 9 [pid 3791] <... mprotect resumed>) = 0 [pid 3791] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3793 attached [pid 3793] set_robust_list(0x7f7b3695b9e0, 24 [pid 3791] <... clone resumed>, parent_tid=[3793], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3793 [pid 3793] <... set_robust_list resumed>) = 0 [pid 3791] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3793] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3791] <... futex resumed>) = 0 [pid 3793] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3791] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3793] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3791] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3793] <... futex resumed>) = 0 [pid 3793] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3792] <... write resumed>) = 9 [pid 3792] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3791] exit_group(0 [pid 3793] <... futex resumed>) = ? [pid 3791] <... exit_group resumed>) = ? [pid 3792] <... futex resumed>) = ? [pid 3793] +++ exited with 0 +++ [pid 3792] +++ exited with 0 +++ [pid 3791] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3791, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3794 ./strace-static-x86_64: Process 3794 attached [pid 3794] set_robust_list(0x5555566365e0, 24) = 0 [pid 3794] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3794] setpgid(0, 0) = 0 [pid 3794] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3794] write(3, "1000", 4) = 4 [pid 3794] close(3) = 0 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3794] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3794] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3795 attached , parent_tid=[3795], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3795 [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3795] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3794] <... futex resumed>) = 0 [pid 3795] memfd_create("syzkaller", 0 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3795] <... memfd_create resumed>) = 3 [pid 3795] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3795] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3795] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3795] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3795] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3795] ioctl(4, LOOP_CLR_FD) = 0 [pid 3795] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3795] close(4) = 0 [pid 3795] close(3) = 0 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3794] <... futex resumed>) = 0 [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3795] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3794] <... futex resumed>) = 0 [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3795] write(3, "#! ./bus\n", 9 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3795] <... write resumed>) = 9 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3794] <... futex resumed>) = 0 [pid 3795] open("./bus", O_RDWR [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3795] <... open resumed>) = 4 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3794] <... futex resumed>) = 0 [pid 3795] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3795] <... mmap resumed>) = 0x20000000 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3794] <... futex resumed>) = 0 [pid 3794] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3794] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 3795] write(3, 0x20000f80, 9 [pid 3794] <... mmap resumed>) = 0x7f7b3693b000 [pid 3794] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3794] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3796], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3796 [pid 3794] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 3796 attached [pid 3794] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3796] set_robust_list(0x7f7b3695b9e0, 24 [pid 3795] <... write resumed>) = 9 [pid 3795] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3795] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3796] <... set_robust_list resumed>) = 0 [pid 3796] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3796] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3794] <... futex resumed>) = 0 [pid 3794] exit_group(0) = ? [pid 3796] <... futex resumed>) = ? [pid 3796] +++ exited with 0 +++ [pid 3795] <... futex resumed>) = ? [pid 3795] +++ exited with 0 +++ [pid 3794] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3794, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3797 ./strace-static-x86_64: Process 3797 attached [pid 3797] set_robust_list(0x5555566365e0, 24) = 0 [pid 3797] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3797] setpgid(0, 0) = 0 [pid 3797] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3797] write(3, "1000", 4) = 4 [pid 3797] close(3) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3797] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3797] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3798 attached , parent_tid=[3798], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3798 [pid 3798] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3798] memfd_create("syzkaller", 0) = 3 [pid 3798] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3798] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3798] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3798] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3798] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3798] ioctl(4, LOOP_CLR_FD) = 0 [pid 3798] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3798] close(4) = 0 [pid 3798] close(3) = 0 [pid 3798] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3797] <... futex resumed>) = 0 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3798] <... futex resumed>) = 1 [pid 3798] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3798] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3797] <... futex resumed>) = 0 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3798] <... futex resumed>) = 1 [pid 3798] write(3, "#! ./bus\n", 9) = 9 [pid 3798] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3797] <... futex resumed>) = 0 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3798] open("./bus", O_RDWR) = 4 [pid 3798] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3797] <... futex resumed>) = 0 [pid 3798] <... futex resumed>) = 1 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3798] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3797] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3797] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3797] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3797] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3799], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3799 ./strace-static-x86_64: Process 3799 attached [pid 3797] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3799] set_robust_list(0x7f7b3695b9e0, 24 [pid 3797] <... futex resumed>) = 0 [pid 3799] <... set_robust_list resumed>) = 0 [pid 3797] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3799] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3799] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3797] <... futex resumed>) = 0 [pid 3799] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3798] write(3, 0x20000f80, 9) = 9 [pid 3798] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3797] exit_group(0) = ? [pid 3799] <... futex resumed>) = ? [pid 3799] +++ exited with 0 +++ [pid 3798] <... futex resumed>) = ? [pid 3798] +++ exited with 0 +++ [pid 3797] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3797, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3800 ./strace-static-x86_64: Process 3800 attached [pid 3800] set_robust_list(0x5555566365e0, 24) = 0 [pid 3800] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3800] setpgid(0, 0) = 0 [pid 3800] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3800] write(3, "1000", 4) = 4 [pid 3800] close(3) = 0 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3800] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3800] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3800] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3801 attached , parent_tid=[3801], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3801 [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3801] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3801] memfd_create("syzkaller", 0) = 3 [pid 3801] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3801] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3801] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3801] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3801] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3801] ioctl(4, LOOP_CLR_FD) = 0 [pid 3801] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3801] close(4) = 0 [pid 3801] close(3) = 0 [pid 3801] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3801] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3800] <... futex resumed>) = 0 [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3801] <... futex resumed>) = 0 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3801] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3801] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3801] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3800] <... futex resumed>) = 0 [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3801] <... futex resumed>) = 0 [pid 3800] <... futex resumed>) = 1 [pid 3801] write(3, "#! ./bus\n", 9 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3801] <... write resumed>) = 9 [pid 3801] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3800] <... futex resumed>) = 0 [pid 3801] open("./bus", O_RDWR [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3801] <... open resumed>) = 4 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3801] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3800] <... futex resumed>) = 0 [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3800] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3801] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3800] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3800] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3801] write(3, 0x20000f80, 9 [pid 3800] <... futex resumed>) = 0 [pid 3800] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3800] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3800] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3802], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3802 [pid 3800] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 3802 attached [pid 3800] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3801] <... write resumed>) = 9 [pid 3801] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3801] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3802] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3802] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3802] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3800] <... futex resumed>) = 0 [pid 3800] exit_group(0 [pid 3801] <... futex resumed>) = ? [pid 3800] <... exit_group resumed>) = ? [pid 3801] +++ exited with 0 +++ [pid 3802] <... futex resumed>) = ? [pid 3802] +++ exited with 0 +++ [pid 3800] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3800, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3803 ./strace-static-x86_64: Process 3803 attached [pid 3803] set_robust_list(0x5555566365e0, 24) = 0 [pid 3803] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3803] setpgid(0, 0) = 0 [pid 3803] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3803] write(3, "1000", 4) = 4 [pid 3803] close(3) = 0 [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3803] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3803] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3803] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3804 attached , parent_tid=[3804], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3804 [pid 3804] set_robust_list(0x7f7b3697c9e0, 24 [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3804] <... set_robust_list resumed>) = 0 [pid 3803] <... futex resumed>) = 0 [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3804] memfd_create("syzkaller", 0) = 3 [pid 3804] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3804] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3804] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3804] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3804] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3804] ioctl(4, LOOP_CLR_FD) = 0 [pid 3804] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3804] close(4) = 0 [pid 3804] close(3) = 0 [pid 3804] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3803] <... futex resumed>) = 0 [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3804] <... futex resumed>) = 1 [pid 3804] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3804] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3803] <... futex resumed>) = 0 [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3804] <... futex resumed>) = 1 [pid 3804] write(3, "#! ./bus\n", 9) = 9 [pid 3804] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3803] <... futex resumed>) = 0 [pid 3804] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3804] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3803] <... futex resumed>) = 0 [pid 3804] open("./bus", O_RDWR [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3804] <... open resumed>) = 4 [pid 3804] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3803] <... futex resumed>) = 0 [pid 3804] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3804] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3803] <... futex resumed>) = 0 [pid 3803] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3804] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3804] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3803] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3804] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3803] <... futex resumed>) = 0 [pid 3804] write(3, 0x20000f80, 9 [pid 3803] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3803] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3803] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3803] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3805 attached [pid 3804] <... write resumed>) = 9 [pid 3805] set_robust_list(0x7f7b3695b9e0, 24 [pid 3804] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3803] <... clone resumed>, parent_tid=[3805], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3805 [pid 3805] <... set_robust_list resumed>) = 0 [pid 3804] <... futex resumed>) = 0 [pid 3803] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3805] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3804] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3803] <... futex resumed>) = 0 [pid 3805] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3803] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3805] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3803] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3805] <... futex resumed>) = 0 [pid 3803] exit_group(0 [pid 3804] <... futex resumed>) = ? [pid 3803] <... exit_group resumed>) = ? [pid 3804] +++ exited with 0 +++ [pid 3805] +++ exited with 0 +++ [pid 3803] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3803, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3806 ./strace-static-x86_64: Process 3806 attached [pid 3806] set_robust_list(0x5555566365e0, 24) = 0 [pid 3806] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3806] setpgid(0, 0) = 0 [pid 3806] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3806] write(3, "1000", 4) = 4 [pid 3806] close(3) = 0 [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3806] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3806] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3806] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3807], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3807 ./strace-static-x86_64: Process 3807 attached [pid 3807] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3807] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3807] <... futex resumed>) = 0 [pid 3806] <... futex resumed>) = 1 [pid 3807] memfd_create("syzkaller", 0) = 3 [pid 3807] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3807] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3807] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3807] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3807] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3807] ioctl(4, LOOP_CLR_FD) = 0 [pid 3807] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3807] close(4) = 0 [pid 3807] close(3) = 0 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3806] <... futex resumed>) = 0 [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3807] <... futex resumed>) = 1 [pid 3807] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3806] <... futex resumed>) = 0 [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3807] <... futex resumed>) = 1 [pid 3807] write(3, "#! ./bus\n", 9) = 9 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3806] <... futex resumed>) = 0 [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3807] <... futex resumed>) = 1 [pid 3807] open("./bus", O_RDWR) = 4 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3806] <... futex resumed>) = 0 [pid 3807] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3807] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3806] <... futex resumed>) = 0 [pid 3807] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3806] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3807] <... mmap resumed>) = 0x20000000 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3806] <... futex resumed>) = 0 [pid 3807] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3806] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3807] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3806] <... futex resumed>) = 0 [pid 3807] write(3, 0x20000f80, 9 [pid 3806] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3806] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3806] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3806] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3808 attached [pid 3808] set_robust_list(0x7f7b3695b9e0, 24 [pid 3806] <... clone resumed>, parent_tid=[3808], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3808 [pid 3808] <... set_robust_list resumed>) = 0 [pid 3807] <... write resumed>) = 9 [pid 3806] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3808] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3807] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3806] <... futex resumed>) = 0 [pid 3808] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3807] <... futex resumed>) = 0 [pid 3806] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3808] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3807] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3806] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3808] <... futex resumed>) = 0 [pid 3806] exit_group(0 [pid 3807] <... futex resumed>) = ? [pid 3806] <... exit_group resumed>) = ? [pid 3807] +++ exited with 0 +++ [pid 3808] +++ exited with 0 +++ [pid 3806] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3806, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3809 ./strace-static-x86_64: Process 3809 attached [pid 3809] set_robust_list(0x5555566365e0, 24) = 0 [pid 3809] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3809] setpgid(0, 0) = 0 [pid 3809] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3809] write(3, "1000", 4) = 4 [pid 3809] close(3) = 0 [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3809] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3809] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3810], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3810 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 3810 attached [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3810] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3810] memfd_create("syzkaller", 0) = 3 [pid 3810] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3810] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3810] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3810] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3810] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3810] ioctl(4, LOOP_CLR_FD) = 0 [pid 3810] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3810] close(4) = 0 [pid 3810] close(3) = 0 [pid 3810] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3809] <... futex resumed>) = 0 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3810] <... futex resumed>) = 1 [pid 3810] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3810] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3809] <... futex resumed>) = 0 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3810] <... futex resumed>) = 1 [pid 3810] write(3, "#! ./bus\n", 9) = 9 [pid 3810] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3809] <... futex resumed>) = 0 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3810] <... futex resumed>) = 1 [pid 3810] open("./bus", O_RDWR) = 4 [pid 3810] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3809] <... futex resumed>) = 0 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3810] <... futex resumed>) = 1 [pid 3810] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3809] <... futex resumed>) = 0 [pid 3809] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3809] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3809] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3811 attached , parent_tid=[3811], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3811 [pid 3809] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3811] set_robust_list(0x7f7b3695b9e0, 24 [pid 3810] <... futex resumed>) = 1 [pid 3810] write(3, 0x20000f80, 9 [pid 3811] <... set_robust_list resumed>) = 0 [pid 3811] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3811] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3809] <... futex resumed>) = 0 [pid 3811] <... futex resumed>) = 1 [pid 3811] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3810] <... write resumed>) = 9 [pid 3810] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3809] exit_group(0 [pid 3811] <... futex resumed>) = ? [pid 3809] <... exit_group resumed>) = ? [pid 3811] +++ exited with 0 +++ [pid 3810] +++ exited with 0 +++ [pid 3809] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3809, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3812 ./strace-static-x86_64: Process 3812 attached [pid 3812] set_robust_list(0x5555566365e0, 24) = 0 [pid 3812] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3812] setpgid(0, 0) = 0 [pid 3812] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3812] write(3, "1000", 4) = 4 [pid 3812] close(3) = 0 [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3812] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3812] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3812] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3813], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3813 [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 3813 attached ) = 0 [pid 3813] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3813] memfd_create("syzkaller", 0) = 3 [pid 3813] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3813] <... mmap resumed>) = 0x7f7b2e400000 [pid 3813] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3813] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3813] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3813] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3813] ioctl(4, LOOP_CLR_FD) = 0 [pid 3813] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3813] close(4) = 0 [pid 3813] close(3) = 0 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3812] <... futex resumed>) = 0 [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3813] <... futex resumed>) = 1 [pid 3813] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3812] <... futex resumed>) = 0 [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3813] <... futex resumed>) = 1 [pid 3813] write(3, "#! ./bus\n", 9) = 9 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3812] <... futex resumed>) = 0 [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3813] <... futex resumed>) = 1 [pid 3813] open("./bus", O_RDWR) = 4 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3812] <... futex resumed>) = 0 [pid 3813] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3813] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3812] <... futex resumed>) = 0 [pid 3813] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3812] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3813] <... mmap resumed>) = 0x20000000 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3812] <... futex resumed>) = 0 [pid 3813] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3812] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3813] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3812] <... futex resumed>) = 0 [pid 3812] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3813] write(3, 0x20000f80, 9 [pid 3812] <... futex resumed>) = 0 [pid 3812] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3812] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3812] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3814], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3814 [pid 3812] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3812] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3814 attached [pid 3814] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3814] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3813] <... write resumed>) = 9 [pid 3813] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3813] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3814] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3814] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3812] <... futex resumed>) = 0 [pid 3812] exit_group(0 [pid 3813] <... futex resumed>) = ? [pid 3812] <... exit_group resumed>) = ? [pid 3813] +++ exited with 0 +++ [pid 3814] <... futex resumed>) = ? [pid 3814] +++ exited with 0 +++ [pid 3812] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3812, si_uid=0, si_status=0, si_utime=0, si_stime=3} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3815 attached , child_tidptr=0x5555566365d0) = 3815 [pid 3815] set_robust_list(0x5555566365e0, 24) = 0 [pid 3815] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3815] setpgid(0, 0) = 0 [pid 3815] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3815] write(3, "1000", 4) = 4 [pid 3815] close(3) = 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3815] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3815] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3816 attached [pid 3816] set_robust_list(0x7f7b3697c9e0, 24 [pid 3815] <... clone resumed>, parent_tid=[3816], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3816 [pid 3816] <... set_robust_list resumed>) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3816] memfd_create("syzkaller", 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3816] <... memfd_create resumed>) = 3 [pid 3816] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3816] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3816] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3816] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3816] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3816] ioctl(4, LOOP_CLR_FD) = 0 [pid 3816] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3816] close(4) = 0 [pid 3816] close(3) = 0 [pid 3816] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3815] <... futex resumed>) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3816] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3816] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3815] <... futex resumed>) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3816] write(3, "#! ./bus\n", 9) = 9 [pid 3816] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3815] <... futex resumed>) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3816] open("./bus", O_RDWR) = 4 [pid 3816] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3815] <... futex resumed>) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3816] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3815] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3815] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3815] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3816] write(3, 0x20000f80, 9 [pid 3815] <... mprotect resumed>) = 0 [pid 3815] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3817 attached [pid 3817] set_robust_list(0x7f7b3695b9e0, 24 [pid 3815] <... clone resumed>, parent_tid=[3817], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3817 [pid 3817] <... set_robust_list resumed>) = 0 [pid 3815] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3817] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3815] <... futex resumed>) = 0 [pid 3817] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3815] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3817] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3815] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3817] <... futex resumed>) = 0 [pid 3817] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3816] <... write resumed>) = 9 [pid 3816] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3816] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3815] exit_group(0 [pid 3817] <... futex resumed>) = ? [pid 3816] <... futex resumed>) = ? [pid 3815] <... exit_group resumed>) = ? [pid 3817] +++ exited with 0 +++ [pid 3816] +++ exited with 0 +++ [pid 3815] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3815, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3818 ./strace-static-x86_64: Process 3818 attached [pid 3818] set_robust_list(0x5555566365e0, 24) = 0 [pid 3818] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3818] setpgid(0, 0) = 0 [pid 3818] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3818] write(3, "1000", 4) = 4 [pid 3818] close(3) = 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3818] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3818] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3819 attached [pid 3819] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3819] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3818] <... clone resumed>, parent_tid=[3819], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3819 [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3819] <... futex resumed>) = 0 [pid 3819] memfd_create("syzkaller", 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3819] <... memfd_create resumed>) = 3 [pid 3819] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3819] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3819] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3819] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3819] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3819] ioctl(4, LOOP_CLR_FD) = 0 [pid 3819] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3819] close(4) = 0 [pid 3819] close(3) = 0 [pid 3819] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3818] <... futex resumed>) = 0 [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3819] <... futex resumed>) = 1 [pid 3819] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3819] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3818] <... futex resumed>) = 0 [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3819] <... futex resumed>) = 1 [pid 3819] write(3, "#! ./bus\n", 9) = 9 [pid 3819] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3818] <... futex resumed>) = 0 [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3819] <... futex resumed>) = 1 [pid 3819] open("./bus", O_RDWR) = 4 [pid 3819] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3818] <... futex resumed>) = 0 [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3819] <... futex resumed>) = 1 [pid 3819] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3819] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3818] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3819] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3818] <... futex resumed>) = 0 [pid 3819] write(3, 0x20000f80, 9 [pid 3818] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3818] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3818] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3820 attached [pid 3820] set_robust_list(0x7f7b3695b9e0, 24 [pid 3818] <... clone resumed>, parent_tid=[3820], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3820 [pid 3819] <... write resumed>) = 9 [pid 3818] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3818] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3819] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3819] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3820] <... set_robust_list resumed>) = 0 [pid 3820] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3820] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3818] <... futex resumed>) = 0 [pid 3820] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3818] exit_group(0 [pid 3819] <... futex resumed>) = ? [pid 3818] <... exit_group resumed>) = ? [pid 3819] +++ exited with 0 +++ [pid 3820] <... futex resumed>) = ? [pid 3820] +++ exited with 0 +++ [pid 3818] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3818, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3821 ./strace-static-x86_64: Process 3821 attached [pid 3821] set_robust_list(0x5555566365e0, 24) = 0 [pid 3821] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3821] setpgid(0, 0) = 0 [pid 3821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3821] write(3, "1000", 4) = 4 [pid 3821] close(3) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3821] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3821] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3822], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3822 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3822 attached [pid 3822] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3822] memfd_create("syzkaller", 0) = 3 [pid 3822] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3822] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3822] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3822] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3822] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3822] ioctl(4, LOOP_CLR_FD) = 0 [pid 3822] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3822] close(4) = 0 [pid 3822] close(3) = 0 [pid 3822] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3821] <... futex resumed>) = 0 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3822] <... futex resumed>) = 1 [pid 3822] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3822] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3821] <... futex resumed>) = 0 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3822] <... futex resumed>) = 1 [pid 3822] write(3, "#! ./bus\n", 9) = 9 [pid 3822] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3821] <... futex resumed>) = 0 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3822] <... futex resumed>) = 1 [pid 3822] open("./bus", O_RDWR) = 4 [pid 3822] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3821] <... futex resumed>) = 0 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3822] <... futex resumed>) = 1 [pid 3822] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3821] <... futex resumed>) = 0 [pid 3821] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3821] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3821] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3823], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3823 [pid 3821] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3821] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3822] <... futex resumed>) = 1 [pid 3822] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3823 attached [pid 3823] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3823] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3823] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3821] <... futex resumed>) = 0 [pid 3823] <... futex resumed>) = 1 [pid 3823] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3822] <... write resumed>) = 9 [pid 3822] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3822] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3821] exit_group(0) = ? [pid 3822] <... futex resumed>) = ? [pid 3822] +++ exited with 0 +++ [pid 3823] <... futex resumed>) = ? [pid 3823] +++ exited with 0 +++ [pid 3821] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3821, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3824 ./strace-static-x86_64: Process 3824 attached [pid 3824] set_robust_list(0x5555566365e0, 24) = 0 [pid 3824] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3824] setpgid(0, 0) = 0 [pid 3824] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3824] write(3, "1000", 4) = 4 [pid 3824] close(3) = 0 [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3824] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3824] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3824] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3825 attached , parent_tid=[3825], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3825 [pid 3825] set_robust_list(0x7f7b3697c9e0, 24 [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3825] <... set_robust_list resumed>) = 0 [pid 3824] <... futex resumed>) = 0 [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3825] memfd_create("syzkaller", 0) = 3 [pid 3825] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3825] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3825] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3825] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3825] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3825] ioctl(4, LOOP_CLR_FD) = 0 [pid 3825] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3825] close(4) = 0 [pid 3825] close(3) = 0 [pid 3825] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3824] <... futex resumed>) = 0 [pid 3825] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3825] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3824] <... futex resumed>) = 0 [pid 3825] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000 [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3825] <... open resumed>) = 3 [pid 3825] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3824] <... futex resumed>) = 0 [pid 3825] <... futex resumed>) = 1 [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3825] write(3, "#! ./bus\n", 9 [pid 3824] <... futex resumed>) = 0 [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3825] <... write resumed>) = 9 [pid 3825] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3824] <... futex resumed>) = 0 [pid 3825] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3825] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3824] <... futex resumed>) = 0 [pid 3825] open("./bus", O_RDWR [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3825] <... open resumed>) = 4 [pid 3825] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3824] <... futex resumed>) = 0 [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3824] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3825] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3824] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3825] write(3, 0x20000f80, 9 [pid 3824] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3824] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3824] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3824] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3826], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3826 [pid 3824] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3824] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 3826 attached [pid 3826] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3826] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3825] <... write resumed>) = 9 [pid 3825] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3825] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3826] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3826] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3824] <... futex resumed>) = 0 [pid 3824] exit_group(0) = ? [pid 3825] <... futex resumed>) = ? [pid 3825] +++ exited with 0 +++ [pid 3826] <... futex resumed>) = ? [pid 3826] +++ exited with 0 +++ [pid 3824] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3824, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3827 ./strace-static-x86_64: Process 3827 attached [pid 3827] set_robust_list(0x5555566365e0, 24) = 0 [pid 3827] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3827] setpgid(0, 0) = 0 [pid 3827] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3827] write(3, "1000", 4) = 4 [pid 3827] close(3) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3827] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3827] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3828], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3828 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3828 attached [pid 3828] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3828] memfd_create("syzkaller", 0) = 3 [pid 3828] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3828] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3828] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3828] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3828] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3828] ioctl(4, LOOP_CLR_FD) = 0 [pid 3828] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3828] close(4) = 0 [pid 3828] close(3) = 0 [pid 3828] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3827] <... futex resumed>) = 0 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3828] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3828] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3827] <... futex resumed>) = 0 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3828] write(3, "#! ./bus\n", 9) = 9 [pid 3828] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3827] <... futex resumed>) = 0 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3828] open("./bus", O_RDWR) = 4 [pid 3828] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3827] <... futex resumed>) = 0 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3828] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1<) = 0 [pid 3827] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3827] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3828] write(3, 0x20000f80, 9 [pid 3827] <... mprotect resumed>) = 0 [pid 3827] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3829 attached [pid 3829] set_robust_list(0x7f7b3695b9e0, 24 [pid 3827] <... clone resumed>, parent_tid=[3829], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3829 [pid 3829] <... set_robust_list resumed>) = 0 [pid 3827] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3829] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213 [pid 3827] <... futex resumed>) = 0 [pid 3829] <... openat resumed>) = -1 EINVAL (Invalid argument) [pid 3827] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3829] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3827] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 3829] <... futex resumed>) = 0 [pid 3829] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3828] <... write resumed>) = 9 [pid 3828] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3827] exit_group(0 [pid 3829] <... futex resumed>) = ? [pid 3827] <... exit_group resumed>) = ? [pid 3829] +++ exited with 0 +++ [pid 3828] +++ exited with 0 +++ [pid 3827] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3827, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3830 ./strace-static-x86_64: Process 3830 attached [pid 3830] set_robust_list(0x5555566365e0, 24) = 0 [pid 3830] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3830] setpgid(0, 0) = 0 [pid 3830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3830] write(3, "1000", 4) = 4 [pid 3830] close(3) = 0 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3830] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3830] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3831 attached , parent_tid=[3831], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3831 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3831] set_robust_list(0x7f7b3697c9e0, 24 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3831] <... set_robust_list resumed>) = 0 [pid 3831] memfd_create("syzkaller", 0) = 3 [pid 3831] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3831] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3831] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3831] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3831] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3831] ioctl(4, LOOP_CLR_FD) = 0 [pid 3831] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3831] close(4) = 0 [pid 3831] close(3) = 0 [pid 3831] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3831] <... futex resumed>) = 1 [pid 3831] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3831] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3831] <... futex resumed>) = 1 [pid 3831] write(3, "#! ./bus\n", 9) = 9 [pid 3831] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3831] <... futex resumed>) = 1 [pid 3831] open("./bus", O_RDWR) = 4 [pid 3831] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3831] <... futex resumed>) = 1 [pid 3831] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3830] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3830] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3830] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3832], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3832 ./strace-static-x86_64: Process 3832 attached [pid 3830] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3832] set_robust_list(0x7f7b3695b9e0, 24 [pid 3830] <... futex resumed>) = 0 [pid 3830] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3832] <... set_robust_list resumed>) = 0 [pid 3831] <... futex resumed>) = 1 [pid 3831] write(3, 0x20000f80, 9 [pid 3832] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3832] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] <... futex resumed>) = 0 [pid 3832] <... futex resumed>) = 1 [pid 3832] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3831] <... write resumed>) = 9 [pid 3831] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3830] exit_group(0) = ? [pid 3832] <... futex resumed>) = ? [pid 3832] +++ exited with 0 +++ [pid 3831] <... futex resumed>) = ? [pid 3831] +++ exited with 0 +++ [pid 3830] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3830, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3833 ./strace-static-x86_64: Process 3833 attached [pid 3833] set_robust_list(0x5555566365e0, 24) = 0 [pid 3833] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3833] setpgid(0, 0) = 0 [pid 3833] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3833] write(3, "1000", 4) = 4 [pid 3833] close(3) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3833] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3833] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3834], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3834 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3834 attached [pid 3834] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3834] memfd_create("syzkaller", 0) = 3 [pid 3834] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3834] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3834] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3834] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3834] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3834] ioctl(4, LOOP_CLR_FD) = 0 [pid 3834] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3834] close(4) = 0 [pid 3834] close(3) = 0 [pid 3834] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3833] <... futex resumed>) = 0 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3834] <... futex resumed>) = 1 [pid 3834] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3834] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3833] <... futex resumed>) = 0 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3834] <... futex resumed>) = 1 [pid 3834] write(3, "#! ./bus\n", 9) = 9 [pid 3834] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3833] <... futex resumed>) = 0 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3834] <... futex resumed>) = 1 [pid 3834] open("./bus", O_RDWR) = 4 [pid 3834] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3833] <... futex resumed>) = 0 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3834] <... futex resumed>) = 1 [pid 3834] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3833] <... futex resumed>) = 0 [pid 3833] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3833] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3833] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3835 attached , parent_tid=[3835], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3835 [pid 3833] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3833] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3834] <... futex resumed>) = 1 [pid 3835] set_robust_list(0x7f7b3695b9e0, 24 [pid 3834] write(3, 0x20000f80, 9 [pid 3835] <... set_robust_list resumed>) = 0 [pid 3835] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3835] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3833] <... futex resumed>) = 0 [pid 3835] <... futex resumed>) = 1 [pid 3835] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3834] <... write resumed>) = 9 [pid 3834] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3834] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3833] exit_group(0) = ? [pid 3834] <... futex resumed>) = ? [pid 3834] +++ exited with 0 +++ [pid 3835] <... futex resumed>) = ? [pid 3835] +++ exited with 0 +++ [pid 3833] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3833, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3836 attached , child_tidptr=0x5555566365d0) = 3836 [pid 3836] set_robust_list(0x5555566365e0, 24) = 0 [pid 3836] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3836] setpgid(0, 0) = 0 [pid 3836] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3836] write(3, "1000", 4) = 4 [pid 3836] close(3) = 0 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3836] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3836] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3837 attached , parent_tid=[3837], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3837 [pid 3837] set_robust_list(0x7f7b3697c9e0, 24 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 3837] <... set_robust_list resumed>) = 0 [pid 3837] memfd_create("syzkaller", 0 [pid 3836] <... futex resumed>) = 0 [pid 3837] <... memfd_create resumed>) = 3 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3837] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3837] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3837] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3837] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3837] ioctl(4, LOOP_CLR_FD) = 0 [pid 3837] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3837] close(4) = 0 [pid 3837] close(3) = 0 [pid 3837] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3837] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3836] <... futex resumed>) = 0 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3837] <... futex resumed>) = 0 [pid 3837] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3837] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3836] <... futex resumed>) = 0 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3837] <... futex resumed>) = 1 [pid 3837] write(3, "#! ./bus\n", 9) = 9 [pid 3837] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3836] <... futex resumed>) = 0 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3837] <... futex resumed>) = 1 [pid 3837] open("./bus", O_RDWR) = 4 [pid 3837] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3836] <... futex resumed>) = 0 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3837] <... futex resumed>) = 1 [pid 3837] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3836] <... futex resumed>) = 0 [pid 3836] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3836] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3836] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3836] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3838], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3838 ./strace-static-x86_64: Process 3838 attached [pid 3836] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3838] set_robust_list(0x7f7b3695b9e0, 24 [pid 3836] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3838] <... set_robust_list resumed>) = 0 [pid 3837] <... futex resumed>) = 1 [pid 3837] write(3, 0x20000f80, 9 [pid 3838] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3838] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3836] <... futex resumed>) = 0 [pid 3838] <... futex resumed>) = 1 [pid 3838] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3837] <... write resumed>) = 9 [pid 3837] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3837] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3836] exit_group(0) = ? [pid 3838] <... futex resumed>) = ? [pid 3838] +++ exited with 0 +++ [pid 3837] <... futex resumed>) = ? [pid 3837] +++ exited with 0 +++ [pid 3836] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3836, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3839 attached , child_tidptr=0x5555566365d0) = 3839 [pid 3839] set_robust_list(0x5555566365e0, 24) = 0 [pid 3839] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3839] setpgid(0, 0) = 0 [pid 3839] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3839] write(3, "1000", 4) = 4 [pid 3839] close(3) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3839] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3839] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 3840 attached , parent_tid=[3840], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3840 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 3840] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3840] memfd_create("syzkaller", 0) = 3 [pid 3840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3840] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3840] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3840] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3840] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3840] ioctl(4, LOOP_CLR_FD) = 0 [pid 3840] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3840] close(4) = 0 [pid 3840] close(3) = 0 [pid 3840] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] <... futex resumed>) = 0 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3840] <... futex resumed>) = 1 [pid 3840] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3840] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] <... futex resumed>) = 0 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3840] <... futex resumed>) = 1 [pid 3840] write(3, "#! ./bus\n", 9) = 9 [pid 3840] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] <... futex resumed>) = 0 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3840] <... futex resumed>) = 1 [pid 3840] open("./bus", O_RDWR) = 4 [pid 3840] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] <... futex resumed>) = 0 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3840] <... futex resumed>) = 1 [pid 3840] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3839] <... futex resumed>) = 0 [pid 3839] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3839] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE [pid 3840] <... futex resumed>) = 1 [pid 3839] <... mprotect resumed>) = 0 [pid 3839] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3841], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3841 ./strace-static-x86_64: Process 3841 attached [pid 3840] write(3, 0x20000f80, 9 [pid 3839] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3839] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3841] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3841] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3841] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] <... futex resumed>) = 0 [pid 3841] <... futex resumed>) = 1 [pid 3841] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3840] <... write resumed>) = 9 [pid 3840] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3839] exit_group(0 [pid 3840] <... futex resumed>) = ? [pid 3839] <... exit_group resumed>) = ? [pid 3840] +++ exited with 0 +++ [pid 3841] <... futex resumed>) = ? [pid 3841] +++ exited with 0 +++ [pid 3839] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3839, si_uid=0, si_status=0, si_utime=0, si_stime=1} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3842 ./strace-static-x86_64: Process 3842 attached [pid 3842] set_robust_list(0x5555566365e0, 24) = 0 [pid 3842] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3842] setpgid(0, 0) = 0 [pid 3842] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3842] write(3, "1000", 4) = 4 [pid 3842] close(3) = 0 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3842] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3842] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3843], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3843 [pid 3842] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3843 attached [pid 3843] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3843] memfd_create("syzkaller", 0) = 3 [pid 3843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3843] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3843] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3843] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3843] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3843] ioctl(4, LOOP_CLR_FD) = 0 [pid 3843] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3843] close(4) = 0 [pid 3843] close(3) = 0 [pid 3843] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3842] <... futex resumed>) = 0 [pid 3842] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3843] <... futex resumed>) = 1 [pid 3843] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3843] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3842] <... futex resumed>) = 0 [pid 3842] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3843] <... futex resumed>) = 1 [ 59.306589][ T46] ------------[ cut here ]------------ [ 59.312289][ T46] kernel BUG at fs/ext4/inode.c:2739! [ 59.323391][ T46] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 59.329488][ T46] CPU: 0 PID: 46 Comm: kworker/u4:3 Not tainted 6.1.0-rc6-syzkaller-00315-gfaf68e3523c2 #0 [ 59.339465][ T46] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 59.349499][ T46] Workqueue: writeback wb_workfn (flush-7:0) [pid 3843] write(3, "#! ./bus\n", 9) = 9 [pid 3843] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3843] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3842] <... futex resumed>) = 0 [pid 3842] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3843] <... futex resumed>) = 0 [pid 3843] open("./bus", O_RDWR) = 4 [pid 3843] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3842] <... futex resumed>) = 0 [pid 3842] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3843] <... futex resumed>) = 1 [ 59.355486][ T46] RIP: 0010:ext4_writepages+0x3bd4/0x3be0 [ 59.361192][ T46] Code: c7 70 80 2b 8d 4c 89 fa e8 29 4e 32 02 e9 a6 fb ff ff e8 4f f3 52 ff 0f 0b e8 48 f3 52 ff 0f 0b e8 01 80 5a 08 e8 3c f3 52 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 53 49 [ 59.380795][ T46] RSP: 0018:ffffc90000b76ea0 EFLAGS: 00010293 [ 59.386854][ T46] RAX: ffffffff8237a474 RBX: 0000008000000000 RCX: ffff888018869d40 [ 59.394816][ T46] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 59.402776][ T46] RBP: ffffc90000b77290 R08: ffffffff82376e72 R09: ffffed100e8a48d2 [ 59.410733][ T46] R10: ffffed100e8a48d2 R11: 1ffff1100e8a48d1 R12: ffff888074524910 [ 59.418692][ T46] R13: 0000000000000001 R14: 0000008410000000 R15: ffff8880745248e8 [ 59.426651][ T46] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 59.436235][ T46] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 59.442809][ T46] CR2: 00007f7b36a12e40 CR3: 00000000754df000 CR4: 00000000003506f0 [ 59.450769][ T46] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 59.458723][ T46] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 59.466682][ T46] Call Trace: [ 59.469948][ T46] [ 59.472868][ T46] ? xas_reload+0x400/0x400 [ 59.477365][ T46] ? __block_write_full_page+0x8f1/0x1710 [ 59.483082][ T46] ? pagevec_lookup_range_tag+0x37/0x80 [ 59.488620][ T46] ? write_cache_pages+0x1159/0x1340 [ 59.493902][ T46] ? generic_writepages+0x150/0x150 [ 59.499085][ T46] ? ext4_read_folio+0x140/0x140 [ 59.504010][ T46] ? mark_lock+0x9a/0x350 [ 59.508325][ T46] ? trace_lock_release+0x95/0x220 [ 59.513426][ T46] ? __lock_acquire+0x1292/0x1f60 [ 59.518446][ T46] ? rcu_read_lock_sched_held+0x87/0x110 [ 59.524065][ T46] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 59.530034][ T46] ? ext4_read_folio+0x140/0x140 [ 59.534958][ T46] do_writepages+0x3c3/0x680 [ 59.539539][ T46] ? __writepage+0x120/0x120 [ 59.544117][ T46] ? rcu_read_lock_sched_held+0x87/0x110 [ 59.549738][ T46] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 59.555705][ T46] ? do_raw_spin_unlock+0x134/0x8a0 [ 59.560893][ T46] ? trace_writeback_single_inode_start+0xe5/0x2c0 [ 59.567388][ T46] __writeback_single_inode+0xd1/0x670 [ 59.572839][ T46] ? wbc_attach_and_unlock_inode+0x350/0x540 [ 59.578809][ T46] writeback_sb_inodes+0xb3b/0x18f0 [ 59.584011][ T46] ? queue_io+0x400/0x400 [ 59.588341][ T46] __writeback_inodes_wb+0x125/0x420 [ 59.593620][ T46] wb_writeback+0x440/0x7b0 [ 59.598122][ T46] ? trace_writeback_exec+0x2c0/0x2c0 [ 59.603501][ T46] ? _find_next_bit+0x134/0x140 [ 59.608360][ T46] wb_workfn+0xb3f/0xef0 [ 59.612602][ T46] ? inode_wait_for_writeback+0x2c0/0x2c0 [ 59.618314][ T46] ? rcu_read_lock_sched_held+0x87/0x110 [ 59.623933][ T46] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 59.629899][ T46] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 59.635786][ T46] ? do_raw_spin_unlock+0x134/0x8a0 [ 59.640976][ T46] process_one_work+0x877/0xdb0 [ 59.645822][ T46] ? worker_detach_from_pool+0x260/0x260 [ 59.651446][ T46] ? _raw_spin_lock_irq+0xba/0xf0 [pid 3843] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3842] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 3842] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3842] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3842] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3844], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3844 [pid 3842] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3691a000 [pid 3842] mprotect(0x7f7b3691b000, 131072, PROT_READ|PROT_WRITE./strace-static-x86_64: Process 3844 attached ) = 0 [pid 3842] clone(child_stack=0x7f7b3693a3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3845], tls=0x7f7b3693a700, child_tidptr=0x7f7b3693a9d0) = 3845 [pid 3842] futex(0x7f7b36a546e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3842] futex(0x7f7b36a546ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3843] <... mmap resumed>) = 0x20000000 [pid 3843] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3843] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3844] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3844] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3845 attached [pid 3845] set_robust_list(0x7f7b3693a9e0, 24) = 0 [pid 3845] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3845] futex(0x7f7b36a546ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 3842] <... futex resumed>) = 0 [pid 3845] <... futex resumed>) = 1 [pid 3845] futex(0x7f7b36a546e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3844] <... write resumed>) = 9 [pid 3844] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 59.656469][ T46] ? _raw_spin_lock_irqsave+0x100/0x100 [ 59.662008][ T46] worker_thread+0xb14/0x1330 [ 59.666681][ T46] ? _raw_spin_unlock_irqrestore+0xc1/0x120 [ 59.672746][ T46] kthread+0x266/0x300 [ 59.676802][ T46] ? rcu_lock_release+0x20/0x20 [ 59.681642][ T46] ? kthread_blkcg+0xd0/0xd0 [ 59.686222][ T46] ret_from_fork+0x1f/0x30 [ 59.690633][ T46] [ 59.693638][ T46] Modules linked in: [ 59.702995][ T46] ---[ end trace 0000000000000000 ]--- [pid 3844] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3842] exit_group(0 [pid 3844] <... futex resumed>) = ? [pid 3842] <... exit_group resumed>) = ? [pid 3844] +++ exited with 0 +++ [pid 3843] <... futex resumed>) = ? [pid 3843] +++ exited with 0 +++ [pid 3845] <... futex resumed>) = ? [pid 3845] +++ exited with 0 +++ [pid 3842] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3842, si_uid=0, si_status=0, si_utime=0, si_stime=33} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3846 attached [pid 3846] set_robust_list(0x5555566365e0, 24) = 0 [pid 3846] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3846] setpgid(0, 0) = 0 [pid 3846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3846] write(3, "1000", 4) = 4 [pid 3846] close(3) = 0 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3846] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3846] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3847], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3847 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3847 attached [pid 3847] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3847] memfd_create("syzkaller", 0) = 3 [pid 3847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3630] <... clone resumed>, child_tidptr=0x5555566365d0) = 3846 [pid 3847] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3847] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3847] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3847] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3847] ioctl(4, LOOP_CLR_FD) = 0 [pid 3847] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [ 59.708755][ T46] RIP: 0010:ext4_writepages+0x3bd4/0x3be0 [ 59.714818][ T46] Code: c7 70 80 2b 8d 4c 89 fa e8 29 4e 32 02 e9 a6 fb ff ff e8 4f f3 52 ff 0f 0b e8 48 f3 52 ff 0f 0b e8 01 80 5a 08 e8 3c f3 52 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 41 57 41 56 41 55 41 54 53 49 [ 59.734600][ T46] RSP: 0018:ffffc90000b76ea0 EFLAGS: 00010293 [ 59.743503][ T46] RAX: ffffffff8237a474 RBX: 0000008000000000 RCX: ffff888018869d40 [pid 3847] close(4) = 0 [pid 3847] close(3) = 0 [pid 3847] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3846] <... futex resumed>) = 0 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3847] <... futex resumed>) = 1 [pid 3847] open("./bus", O_RDWR|O_CREAT|O_TRUNC|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|0x29800030, 000) = 3 [pid 3847] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3846] <... futex resumed>) = 0 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3847] <... futex resumed>) = 1 [pid 3847] write(3, "#! ./bus\n", 9) = 9 [pid 3847] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3847] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3846] <... futex resumed>) = 0 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3847] <... futex resumed>) = 0 [pid 3847] open("./bus", O_RDWR) = 4 [pid 3847] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3846] <... futex resumed>) = 0 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3847] <... futex resumed>) = 1 [pid 3847] mmap(0x20000000, 6291456, PROT_WRITE|PROT_EXEC|PROT_SEM|0x7ffff0, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< [pid 3846] <... futex resumed>) = 0 [pid 3846] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3693b000 [pid 3846] mprotect(0x7f7b3693c000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3846] clone(child_stack=0x7f7b3695b3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3848], tls=0x7f7b3695b700, child_tidptr=0x7f7b3695b9d0) = 3848 [pid 3846] futex(0x7f7b36a546d8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3846] futex(0x7f7b36a546dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3847] <... futex resumed>) = 1 [pid 3847] write(3, 0x20000f80, 9./strace-static-x86_64: Process 3848 attached [pid 3848] set_robust_list(0x7f7b3695b9e0, 24) = 0 [pid 3848] openat(3, 0x20000040, O_WRONLY|O_CREAT|O_APPEND|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|__O_TMPFILE, 0213) = -1 EINVAL (Invalid argument) [pid 3848] futex(0x7f7b36a546dc, FUTEX_WAKE_PRIVATE, 1000000 [pid 3846] <... futex resumed>) = 0 [pid 3848] <... futex resumed>) = 1 [pid 3848] futex(0x7f7b36a546d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3847] <... write resumed>) = 9 [pid 3847] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3847] futex(0x7f7b36a546c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 3846] exit_group(0) = ? [pid 3847] <... futex resumed>) = ? [pid 3847] +++ exited with 0 +++ [pid 3848] <... futex resumed>) = ? [pid 3848] +++ exited with 0 +++ [pid 3846] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3846, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = 0 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555566365d0) = 3849 [ 59.752170][ T46] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 59.760931][ T46] RBP: ffffc90000b77290 R08: ffffffff82376e72 R09: ffffed100e8a48d2 [ 59.769061][ T46] R10: ffffed100e8a48d2 R11: 1ffff1100e8a48d1 R12: ffff888074524910 [ 59.777229][ T46] R13: 0000000000000001 R14: 0000008410000000 R15: ffff8880745248e8 [ 59.785459][ T46] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 59.795070][ T46] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 ./strace-static-x86_64: Process 3849 attached [pid 3849] set_robust_list(0x5555566365e0, 24) = 0 [pid 3849] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3849] setpgid(0, 0) = 0 [pid 3849] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3849] write(3, "1000", 4) = 4 [pid 3849] close(3) = 0 [pid 3849] futex(0x7f7b36a546cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3849] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7b3695c000 [pid 3849] mprotect(0x7f7b3695d000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 3849] clone(child_stack=0x7f7b3697c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3850], tls=0x7f7b3697c700, child_tidptr=0x7f7b3697c9d0) = 3850 [pid 3849] futex(0x7f7b36a546c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3849] futex(0x7f7b36a546cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 3850 attached [pid 3850] set_robust_list(0x7f7b3697c9e0, 24) = 0 [pid 3850] memfd_create("syzkaller", 0) = 3 [pid 3850] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f7b2e400000 [pid 3850] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 3850] munmap(0x7f7b2e400000, 1048576) = 0 [pid 3850] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 3850] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 3850] ioctl(4, LOOP_CLR_FD) = 0 [pid 3850] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [ 59.802050][ T46] CR2: 00007f7b36a12e40 CR3: 0000000076e16000 CR4: 00000000003506f0 [ 59.810513][ T46] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 59.818853][ T46] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 59.826986][ T46] Kernel panic - not syncing: Fatal exception [ 59.833333][ T46] Kernel Offset: disabled [ 59.837648][ T46] Rebooting in 86400 seconds..