./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor482256892 <...> Warning: Permanently added '10.128.1.117' (ECDSA) to the list of known hosts. execve("./syz-executor482256892", ["./syz-executor482256892"], 0x7ffc50c72e30 /* 10 vars */) = 0 brk(NULL) = 0x555555d3a000 brk(0x555555d3ac40) = 0x555555d3ac40 arch_prctl(ARCH_SET_FS, 0x555555d3a300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor482256892", 4096) = 27 brk(0x555555d5bc40) = 0x555555d5bc40 brk(0x555555d5c000) = 0x555555d5c000 mprotect(0x7eff46cda000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 mkdir("/syzcgroup", 0777) = 0 mkdir("/syzcgroup/unified", 0777) = 0 mount("none", "/syzcgroup/unified", "cgroup2", 0, NULL) = 0 chmod("/syzcgroup/unified", 0777) = 0 openat(AT_FDCWD, "/syzcgroup/unified/cgroup.subtree_control", O_WRONLY) = 3 write(3, "+cpu", 4) = 4 write(3, "+memory", 7) = 7 write(3, "+io", 3) = 3 write(3, "+pids", 5) = 5 close(3) = 0 mkdir("/syzcgroup/net", 0777) = 0 mount("none", "/syzcgroup/net", "cgroup", 0, "net") = -1 EINVAL (Invalid argument) mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio") = 0 umount2("/syzcgroup/net", 0) = 0 mount("none", "/syzcgroup/net", "cgroup", 0, "devices") = 0 umount2("/syzcgroup/net", 0) = 0 mount("none", "/syzcgroup/net", "cgroup", 0, "blkio") = 0 umount2("/syzcgroup/net", 0) = 0 mount("none", "/syzcgroup/net", "cgroup", 0, "freezer") = 0 umount2("/syzcgroup/net", 0) = 0 [ 141.550392][ T3478] cgroup: Unknown subsys name 'net' mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted) mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted) mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = ? ERESTARTNOINTR (To be restarted) mount("none", "/syzcgroup/net", "cgroup", 0, "net_prio,devices,blkio,freezer") = 0 chmod("/syzcgroup/net", 0777) = 0 mkdir("/syzcgroup/cpu", 0777) = 0 mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset") = 0 umount2("/syzcgroup/cpu", 0) = 0 mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuacct") = 0 umount2("/syzcgroup/cpu", 0) = 0 mount("none", "/syzcgroup/cpu", "cgroup", 0, "hugetlb") = 0 umount2("/syzcgroup/cpu", 0) = 0 mount("none", "/syzcgroup/cpu", "cgroup", 0, "rlimit") = -1 EINVAL (Invalid argument) mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb") = ? ERESTARTNOINTR (To be restarted) [ 141.712144][ T3478] cgroup: Unknown subsys name 'rlimit' mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb") = ? ERESTARTNOINTR (To be restarted) mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb") = ? ERESTARTNOINTR (To be restarted) mount("none", "/syzcgroup/cpu", "cgroup", 0, "cpuset,cpuacct,hugetlb") = 0 chmod("/syzcgroup/cpu", 0777) = 0 openat(AT_FDCWD, "/syzcgroup/cpu/cgroup.clone_children", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/syzcgroup/cpu/cpuset.memory_pressure_enabled", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3479 attached , child_tidptr=0x555555d3a5d0) = 3479 [pid 3478] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d3a5d0) = 3480 [pid 3478] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d3a5d0) = 3481 [pid 3478] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3480 attached [pid 3479] getpid( [pid 3480] getpid( [pid 3478] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3482 [pid 3478] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3480] <... getpid resumed>) = 3480 [pid 3480] mkdir("./syzkaller.2fOYkn", 0700./strace-static-x86_64: Process 3482 attached ./strace-static-x86_64: Process 3483 attached [pid 3479] <... getpid resumed>) = 3479 [pid 3479] mkdir("./syzkaller.GQuBGe", 0700 [pid 3482] getpid(./strace-static-x86_64: Process 3481 attached [pid 3481] getpid() = 3481 [pid 3481] mkdir("./syzkaller.iIc1Hp", 0700 [pid 3480] <... mkdir resumed>) = 0 [pid 3478] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3483 [pid 3478] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3480] chmod("./syzkaller.2fOYkn", 0777 [pid 3483] getpid( [pid 3482] <... getpid resumed>) = 3482 [pid 3480] <... chmod resumed>) = 0 [pid 3479] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 3484 attached [pid 3478] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3484 [pid 3483] <... getpid resumed>) = 3483 [pid 3482] mkdir("./syzkaller.lzzzaw", 0700 [pid 3480] chdir("./syzkaller.2fOYkn" [pid 3479] chmod("./syzkaller.GQuBGe", 0777 [pid 3484] getpid( [pid 3483] mkdir("./syzkaller.D5w4fA", 0700 [pid 3481] <... mkdir resumed>) = 0 [pid 3482] <... mkdir resumed>) = 0 [pid 3484] <... getpid resumed>) = 3484 [pid 3481] chmod("./syzkaller.iIc1Hp", 0777) = 0 [pid 3479] <... chmod resumed>) = 0 [pid 3484] mkdir("./syzkaller.1GtgbF", 0700 [pid 3483] <... mkdir resumed>) = 0 [pid 3482] chmod("./syzkaller.lzzzaw", 0777 [pid 3481] chdir("./syzkaller.iIc1Hp" [pid 3480] <... chdir resumed>) = 0 [pid 3479] chdir("./syzkaller.GQuBGe" [pid 3483] chmod("./syzkaller.D5w4fA", 0777 [pid 3484] <... mkdir resumed>) = 0 [pid 3482] <... chmod resumed>) = 0 [pid 3479] <... chdir resumed>) = 0 [pid 3484] chmod("./syzkaller.1GtgbF", 0777) = 0 [pid 3483] <... chmod resumed>) = 0 [pid 3482] chdir("./syzkaller.lzzzaw" [pid 3481] <... chdir resumed>) = 0 [pid 3480] unshare(CLONE_NEWPID [pid 3479] unshare(CLONE_NEWPID [pid 3484] chdir("./syzkaller.1GtgbF") = 0 [pid 3483] chdir("./syzkaller.D5w4fA" [pid 3479] <... unshare resumed>) = 0 [pid 3483] <... chdir resumed>) = 0 [pid 3482] <... chdir resumed>) = 0 [pid 3481] unshare(CLONE_NEWPID [pid 3480] <... unshare resumed>) = 0 [pid 3479] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3483] unshare(CLONE_NEWPID [pid 3482] unshare(CLONE_NEWPID [pid 3481] <... unshare resumed>) = 0 [pid 3480] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3484] unshare(CLONE_NEWPID) = 0 [pid 3484] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3482] <... unshare resumed>) = 0 [pid 3483] <... unshare resumed>) = 0 [pid 3484] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3486 ./strace-static-x86_64: Process 3485 attached [pid 3485] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3483] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3482] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3481] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3479] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3485 [pid 3485] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3485] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3485] setsid() = 1 [pid 3485] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 3485] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 3485] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 3485] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 3485] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 ./strace-static-x86_64: Process 3487 attached [pid 3485] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 3487] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3485] unshare(CLONE_NEWNS./strace-static-x86_64: Process 3489 attached ./strace-static-x86_64: Process 3488 attached ./strace-static-x86_64: Process 3486 attached ) = 0 [pid 3483] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3488 [pid 3482] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3489 [pid 3480] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3487 [pid 3487] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3487] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3481] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 3490 ./strace-static-x86_64: Process 3490 attached [pid 3487] setsid( [pid 3485] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3489] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3490] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3489] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3488] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3487] <... setsid resumed>) = 1 [pid 3486] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL [pid 3485] <... mount resumed>) = 0 [pid 3490] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3489] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3487] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 3490] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3485] unshare(CLONE_NEWIPC [pid 3490] <... prctl resumed>) = 0 [pid 3488] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3487] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 3490] setsid( [pid 3489] <... prctl resumed>) = 0 [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3486] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 3485] <... unshare resumed>) = 0 [pid 3490] <... setsid resumed>) = 1 [pid 3489] setsid( [pid 3488] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3487] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 3490] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3486] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3485] unshare(CLONE_NEWCGROUP [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... setsid resumed>) = 1 [pid 3488] <... prctl resumed>) = 0 [pid 3487] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 3486] <... prctl resumed>) = 0 [pid 3485] <... unshare resumed>) = 0 [pid 3490] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 3489] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3485] unshare(CLONE_NEWUTS [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3488] setsid( [pid 3487] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 3486] setsid( [pid 3485] <... unshare resumed>) = 0 [pid 3490] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 3489] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 3488] <... setsid resumed>) = 1 [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3485] unshare(CLONE_SYSVSEM [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3487] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 3485] <... unshare resumed>) = 0 [pid 3490] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 3489] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 3488] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 3487] <... prlimit64 resumed>NULL) = 0 [pid 3486] <... setsid resumed>) = 1 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] unshare(CLONE_NEWNS [pid 3486] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 3485] <... openat resumed>) = 3 [pid 3490] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 3489] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 3488] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 3487] <... unshare resumed>) = 0 [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] write(3, "16777216", 8 [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3487] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3485] <... write resumed>) = 8 [pid 3490] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 3489] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] <... mount resumed>) = 0 [pid 3486] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 3485] close(3 [pid 3490] <... prlimit64 resumed>NULL) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3488] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 3487] unshare(CLONE_NEWIPC [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] <... close resumed>) = 0 [pid 3490] unshare(CLONE_NEWNS [pid 3489] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 3487] <... unshare resumed>) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3490] <... unshare resumed>) = 0 [pid 3489] <... prlimit64 resumed>NULL) = 0 [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] unshare(CLONE_NEWCGROUP [pid 3486] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 3485] <... openat resumed>) = 3 [pid 3490] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3489] unshare(CLONE_NEWNS [pid 3488] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 3487] <... unshare resumed>) = 0 [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] write(3, "536870912", 9 [pid 3490] <... mount resumed>) = 0 [pid 3489] <... unshare resumed>) = 0 [pid 3487] unshare(CLONE_NEWUTS [pid 3485] <... write resumed>) = 9 [pid 3490] unshare(CLONE_NEWIPC [pid 3489] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] <... unshare resumed>) = 0 [pid 3486] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 3485] close(3 [pid 3490] <... unshare resumed>) = 0 [pid 3489] <... mount resumed>) = 0 [pid 3488] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 3487] unshare(CLONE_SYSVSEM [pid 3485] <... close resumed>) = 0 [pid 3490] unshare(CLONE_NEWCGROUP [pid 3489] unshare(CLONE_NEWIPC [pid 3487] <... unshare resumed>) = 0 [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3490] <... unshare resumed>) = 0 [pid 3489] <... unshare resumed>) = 0 [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3486] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 3485] <... openat resumed>) = 3 [pid 3490] unshare(CLONE_NEWUTS [pid 3489] unshare(CLONE_NEWCGROUP [pid 3488] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 3487] <... openat resumed>) = 3 [pid 3485] write(3, "1024", 4 [pid 3490] <... unshare resumed>) = 0 [pid 3489] <... unshare resumed>) = 0 [pid 3487] write(3, "16777216", 8 [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] <... write resumed>) = 4 [pid 3490] unshare(CLONE_SYSVSEM [pid 3489] unshare(CLONE_NEWUTS [pid 3488] <... prlimit64 resumed>NULL) = 0 [pid 3487] <... write resumed>) = 8 [pid 3486] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 3485] close(3 [pid 3490] <... unshare resumed>) = 0 [pid 3489] <... unshare resumed>) = 0 [pid 3487] close(3 [pid 3485] <... close resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3489] unshare(CLONE_SYSVSEM [pid 3488] unshare(CLONE_NEWNS [pid 3487] <... close resumed>) = 0 [pid 3486] <... prlimit64 resumed>NULL) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3490] <... openat resumed>) = 3 [pid 3489] <... unshare resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3485] <... openat resumed>) = 3 [pid 3490] write(3, "16777216", 8 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3487] <... openat resumed>) = 3 [pid 3485] write(3, "8192", 4 [pid 3490] <... write resumed>) = 8 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... unshare resumed>) = 0 [pid 3487] write(3, "536870912", 9 [pid 3486] unshare(CLONE_NEWNS [pid 3485] <... write resumed>) = 4 [pid 3490] close(3 [pid 3489] write(3, "16777216", 8 [pid 3487] <... write resumed>) = 9 [pid 3485] close(3 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 8 [pid 3488] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3487] close(3 [pid 3485] <... close resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3487] <... close resumed>) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] <... mount resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3486] <... unshare resumed>) = 0 [pid 3485] <... openat resumed>) = 3 [pid 3490] write(3, "536870912", 9 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3488] unshare(CLONE_NEWIPC [pid 3487] <... openat resumed>) = 3 [pid 3485] write(3, "1024", 4 [pid 3490] <... write resumed>) = 9 [pid 3489] <... openat resumed>) = 3 [pid 3487] write(3, "1024", 4 [pid 3486] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 3485] <... write resumed>) = 4 [pid 3490] close(3 [pid 3489] write(3, "536870912", 9 [pid 3487] <... write resumed>) = 4 [pid 3485] close(3 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 9 [pid 3488] <... unshare resumed>) = 0 [pid 3487] close(3 [pid 3486] <... mount resumed>) = 0 [pid 3485] <... close resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3487] <... close resumed>) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] unshare(CLONE_NEWCGROUP [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3486] unshare(CLONE_NEWIPC [pid 3485] <... openat resumed>) = 3 [pid 3490] write(3, "1024", 4 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3488] <... unshare resumed>) = 0 [pid 3487] <... openat resumed>) = 3 [pid 3485] write(3, "1024", 4 [pid 3490] <... write resumed>) = 4 [pid 3489] <... openat resumed>) = 3 [pid 3488] unshare(CLONE_NEWUTS [pid 3487] write(3, "8192", 4 [pid 3486] <... unshare resumed>) = 0 [pid 3485] <... write resumed>) = 4 [pid 3490] close(3 [pid 3489] write(3, "1024", 4 [pid 3487] <... write resumed>) = 4 [pid 3485] close(3 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 4 [pid 3488] <... unshare resumed>) = 0 [pid 3487] close(3 [pid 3486] unshare(CLONE_NEWCGROUP [pid 3485] <... close resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3487] <... close resumed>) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 3488] unshare(CLONE_SYSVSEM [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] <... unshare resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3486] <... unshare resumed>) = 0 [pid 3485] <... openat resumed>) = 3 [pid 3490] write(3, "8192", 4 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3487] <... openat resumed>) = 3 [pid 3486] unshare(CLONE_NEWUTS [pid 3485] write(3, "1024 1048576 500 1024", 21 [pid 3490] <... write resumed>) = 4 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... openat resumed>) = 3 [pid 3487] write(3, "1024", 4 [pid 3485] <... write resumed>) = 21 [pid 3490] close(3 [pid 3489] write(3, "8192", 4 [pid 3488] write(3, "16777216", 8 [pid 3487] <... write resumed>) = 4 [pid 3486] <... unshare resumed>) = 0 [pid 3485] close(3 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 4 [pid 3488] <... write resumed>) = 8 [pid 3487] close(3 [pid 3485] <... close resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3488] close(3 [pid 3487] <... close resumed>) = 0 [pid 3486] unshare(CLONE_SYSVSEM [pid 3485] getpid( [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3485] <... getpid resumed>) = 1 [pid 3490] write(3, "1024", 4 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3487] <... openat resumed>) = 3 [pid 3486] <... unshare resumed>) = 0 [pid 3485] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 3490] <... write resumed>) = 4 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... openat resumed>) = 3 [pid 3487] write(3, "1024", 4 [pid 3485] <... capget resumed>{effective=1< [pid 3489] write(3, "1024", 4 [pid 3488] write(3, "536870912", 9 [pid 3487] <... write resumed>) = 4 [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 3485] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 4 [pid 3488] <... write resumed>) = 9 [pid 3487] close(3 [pid 3485] <... capset resumed>) = 0 [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3488] close(3 [pid 3487] <... close resumed>) = 0 [pid 3486] <... openat resumed>) = 3 [pid 3485] unshare(CLONE_NEWNET [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 3486] write(3, "16777216", 8 [pid 3490] write(3, "1024", 4 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3487] <... openat resumed>) = 3 [pid 3486] <... write resumed>) = 8 [pid 3490] <... write resumed>) = 4 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... openat resumed>) = 3 [pid 3487] write(3, "1024 1048576 500 1024", 21 [pid 3486] close(3 [pid 3490] close(3 [pid 3489] write(3, "1024", 4 [pid 3488] write(3, "1024", 4 [pid 3487] <... write resumed>) = 21 [pid 3486] <... close resumed>) = 0 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 4 [pid 3488] <... write resumed>) = 4 [pid 3487] close(3 [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 3490] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3488] close(3 [pid 3487] <... close resumed>) = 0 [pid 3486] <... openat resumed>) = 3 [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3487] getpid( [pid 3486] write(3, "536870912", 9 [pid 3490] write(3, "1024 1048576 500 1024", 21 [pid 3489] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3487] <... getpid resumed>) = 1 [pid 3486] <... write resumed>) = 9 [pid 3490] <... write resumed>) = 21 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... openat resumed>) = 3 [pid 3487] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 3486] close(3 [pid 3490] close(3 [pid 3489] write(3, "1024 1048576 500 1024", 21 [pid 3488] write(3, "8192", 4 [pid 3487] <... capget resumed>{effective=1<) = 0 [pid 3490] <... close resumed>) = 0 [pid 3489] <... write resumed>) = 21 [pid 3488] <... write resumed>) = 4 [pid 3487] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 3490] getpid( [pid 3489] close(3 [pid 3488] close(3 [pid 3487] <... capset resumed>) = 0 [pid 3486] <... openat resumed>) = 3 [pid 3490] <... getpid resumed>) = 1 [pid 3489] <... close resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3487] unshare(CLONE_NEWNET [pid 3486] write(3, "1024", 4 [pid 3490] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 3489] getpid( [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3486] <... write resumed>) = 4 [pid 3490] <... capget resumed>{effective=1<) = 1 [pid 3488] <... openat resumed>) = 3 [pid 3486] close(3 [pid 3490] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3489] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 3488] write(3, "1024", 4 [pid 3486] <... close resumed>) = 0 [pid 3490] <... capset resumed>) = 0 [pid 3489] <... capget resumed>{effective=1<) = 4 [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 3490] unshare(CLONE_NEWNET [pid 3489] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3488] close(3 [pid 3486] <... openat resumed>) = 3 [pid 3489] <... capset resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3486] write(3, "8192", 4 [pid 3489] unshare(CLONE_NEWNET [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3486] <... write resumed>) = 4 [pid 3488] <... openat resumed>) = 3 [pid 3486] close(3 [pid 3488] write(3, "1024", 4 [pid 3486] <... close resumed>) = 0 [pid 3488] <... write resumed>) = 4 [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 3488] close(3 [pid 3486] <... openat resumed>) = 3 [pid 3488] <... close resumed>) = 0 [pid 3486] write(3, "1024", 4 [pid 3488] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 3486] <... write resumed>) = 4 [pid 3488] <... openat resumed>) = 3 [pid 3486] close(3 [pid 3488] write(3, "1024 1048576 500 1024", 21 [pid 3486] <... close resumed>) = 0 [pid 3488] <... write resumed>) = 21 [pid 3486] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 3488] close(3 [pid 3486] <... openat resumed>) = 3 [pid 3488] <... close resumed>) = 0 [pid 3486] write(3, "1024", 4 [pid 3488] getpid( [pid 3486] <... write resumed>) = 4 [pid 3488] <... getpid resumed>) = 1 [pid 3486] close(3 [pid 3488] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 3486] <... close resumed>) = 0 [pid 3488] <... capget resumed>{effective=1< [pid 3488] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3486] <... openat resumed>) = 3 [pid 3488] <... capset resumed>) = 0 [pid 3486] write(3, "1024 1048576 500 1024", 21 [pid 3488] unshare(CLONE_NEWNET [pid 3486] <... write resumed>) = 21 [pid 3486] close(3) = 0 [pid 3486] getpid() = 1 [pid 3486] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3485] <... unshare resumed>) = 0 [pid 3485] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "0 65535", 7) = 7 [pid 3485] close(3) = 0 [pid 3485] mkdir("/dev/binderfs", 0777) = 0 [pid 3485] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0 [pid 3485] getpid() = 1 [pid 3485] mkdir("/syzcgroup/unified/syz0", 0777) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/unified/syz0/pids.max", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "32", 2) = 2 [pid 3485] close(3) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/unified/syz0/memory.low", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "312475648", 9) = 9 [pid 3485] close(3) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/unified/syz0/memory.high", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "313524224", 9) = 9 [pid 3485] close(3) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/unified/syz0/memory.max", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "314572800", 9 [pid 3488] <... unshare resumed>) = 0 [pid 3485] <... write resumed>) = 9 [pid 3485] close(3) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/unified/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "1", 1) = 1 [pid 3485] close(3) = 0 [pid 3485] mkdir("/syzcgroup/cpu/syz0", 0777) = 0 [pid 3485] openat(AT_FDCWD, "/syzcgroup/cpu/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "1", 1) = 1 [pid 3485] close(3) = 0 [pid 3485] mkdir("/syzcgroup/net/syz0", 0777 [pid 3488] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 3488] write(3, "0 65535", 7) = 7 [pid 3488] close(3) = 0 [pid 3488] mkdir("/dev/binderfs", 0777) = -1 EEXIST (File exists) [pid 3488] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0 [pid 3488] getpid() = 1 [pid 3488] mkdir("/syzcgroup/unified/syz4", 0777) = 0 [pid 3485] <... mkdir resumed>) = 0 [pid 3488] openat(AT_FDCWD, "/syzcgroup/unified/syz4/pids.max", O_WRONLY|O_CLOEXEC [pid 3485] openat(AT_FDCWD, "/syzcgroup/net/syz0/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] write(3, "1", 1) = 1 [pid 3485] close(3) = 0 [pid 3485] mkdir("./0", 0777 [pid 3488] <... openat resumed>) = 3 [pid 3485] <... mkdir resumed>) = 0 [pid 3485] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3488] write(3, "32", 2) = 2 [pid 3488] close(3) = 0 [pid 3488] openat(AT_FDCWD, "/syzcgroup/unified/syz4/memory.low", O_WRONLY|O_CLOEXEC) = 3 [pid 3485] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 2 [pid 3488] write(3, "312475648", 9) = 9 [pid 3488] close(3) = 0 [pid 3488] openat(AT_FDCWD, "/syzcgroup/unified/syz4/memory.high", O_WRONLY|O_CLOEXEC) = 3 [pid 3488] write(3, "313524224", 9) = 9 [pid 3488] close(3) = 0 [pid 3489] <... unshare resumed>) = 0 [pid 3488] openat(AT_FDCWD, "/syzcgroup/unified/syz4/memory.max", O_WRONLY|O_CLOEXEC) = 3 [pid 3488] write(3, "314572800", 9) = 9 [pid 3488] close(3) = 0 [pid 3488] openat(AT_FDCWD, "/syzcgroup/unified/syz4/cgroup.procs", O_WRONLY|O_CLOEXEC) = 3 [pid 3488] write(3, "1", 1) = 1 [pid 3488] close(3) = 0 [pid 3488] mkdir("/syzcgroup/cpu/syz4", 0777./strace-static-x86_64: Process 3491 attached [pid 3489] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC [pid 3491] chdir("./0" [pid 3489] <... openat resumed>) = 3 [pid 3491] <... chdir resumed>) = 0 [pid 3491] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3489] write(3, "0 65535", 7 [pid 3491] <... prctl resumed>) = 0 [pid 3489] <... write resumed>) = 7 [pid 3491] setpgid(0, 0 [pid 3489] close(3 [pid 3491] <... setpgid resumed>) = 0 [pid 3489] <... close resumed>) = 0 [pid 3491] symlink("/syzcgroup/unified/syz0", "./cgroup" [pid 3489] mkdir("/dev/binderfs", 0777 [pid 3491] <... symlink resumed>) = 0 [pid 3489] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 3491] symlink("/syzcgroup/cpu/syz0", "./cgroup.cpu" [pid 3489] mount("binder", "/dev/binderfs", "binder", 0, NULL [pid 3491] <... symlink resumed>) = 0 [pid 3489] <... mount resumed>) = 0 [pid 3491] symlink("/syzcgroup/net/syz0", "./cgroup.net" [pid 3489] getpid( [pid 3491] <... symlink resumed>) = 0 [pid 3489] <... getpid resumed>) = 1 [pid 3489] mkdir("/syzcgroup/unified/syz3", 0777 [pid 3491] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3491] write(3, "1000", 4) = 4 [pid 3491] close(3) = 0 [pid 3491] symlink("/dev/binderfs", "./binderfs") = 0 [pid 3491] mkdir("./file0", 000) = 0 [pid 3491] open("./file0", O_RDONLY) = 3 [pid 3491] mount(NULL, "./file0", "cgroup2", 0, NULL [pid 3487] <... unshare resumed>) = 0 [pid 3488] <... mkdir resumed>) = 0 [pid 3486] <... unshare resumed>) = 0 [pid 3489] <... mkdir resumed>) = 0 [pid 3491] <... mount resumed>) = 0 [pid 3491] openat(AT_FDCWD, "./file0", O_RDWR|O_PATH) = 4 [pid 3491] openat(4, "syz1", O_RDWR|O_PATH) = -1 ENOENT (No such file or directory) [pid 3491] openat(-1, "memory.max", O_RDWR) = -1 EBADF (Bad file descriptor) [pid 3491] write(-1, "0x0000000000000000", 18) = -1 EBADF (Bad file descriptor) [pid 3491] close(3) = 0 [pid 3491] close(4) = 0 [pid 3491] close(5) = -1 EBADF (Bad file descriptor) [pid 3491] close(6) = -1 EBADF (Bad file descriptor) [pid 3491] close(7) = -1 EBADF (Bad file descriptor) [pid 3491] close(8 [pid 3486] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] <... openat resumed>) = 3 [pid 3491] close(9) = -1 EBADF (Bad file descriptor) [pid 3486] write(3, "0 65535", 7 [pid 3491] close(10) = -1 EBADF (Bad file descriptor) [pid 3486] <... write resumed>) = 7 [pid 3491] close(11) = -1 EBADF (Bad file descriptor) [pid 3491] close(12) = -1 EBADF (Bad file descriptor) [pid 3491] close(13) = -1 EBADF (Bad file descriptor) [pid 3486] close(3 [pid 3491] close(14 [pid 3486] <... close resumed>) = 0 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] mkdir("/dev/binderfs", 0777 [pid 3491] close(15 [pid 3486] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] mount("binder", "/dev/binderfs", "binder", 0, NULL [pid 3491] close(16 [pid 3486] <... mount resumed>) = 0 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] getpid( [pid 3491] close(17 [pid 3486] <... getpid resumed>) = 1 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] mkdir("/syzcgroup/unified/syz5", 0777 [pid 3491] close(18 [pid 3486] <... mkdir resumed>) = 0 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3491] close(19) = -1 EBADF (Bad file descriptor) [pid 3491] close(20) = -1 EBADF (Bad file descriptor) [pid 3491] close(21) = -1 EBADF (Bad file descriptor) [pid 3491] close(22) = -1 EBADF (Bad file descriptor) [pid 3486] openat(AT_FDCWD, "/syzcgroup/unified/syz5/pids.max", O_WRONLY|O_CLOEXEC [pid 3491] close(23) = -1 EBADF (Bad file descriptor) [pid 3490] <... unshare resumed>) = 0 [pid 3486] <... openat resumed>) = 3 [pid 3491] close(24 [pid 3486] write(3, "32", 2 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3490] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC [pid 3489] openat(AT_FDCWD, "/syzcgroup/unified/syz3/pids.max", O_WRONLY|O_CLOEXEC [pid 3488] openat(AT_FDCWD, "/syzcgroup/cpu/syz4/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3487] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC [pid 3486] <... write resumed>) = 2 [pid 3491] close(25 [pid 3490] <... openat resumed>) = 3 [pid 3489] <... openat resumed>) = 3 [pid 3488] <... openat resumed>) = 3 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3490] write(3, "0 65535", 7 [pid 3489] write(3, "32", 2 [pid 3488] write(3, "1", 1 [pid 3487] <... openat resumed>) = 3 [pid 3486] close(3 [pid 3491] close(26 [pid 3490] <... write resumed>) = 7 [pid 3489] <... write resumed>) = 2 [pid 3488] <... write resumed>) = 1 [pid 3487] write(3, "0 65535", 7 [pid 3486] <... close resumed>) = 0 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3490] close(3 [pid 3489] close(3 [pid 3488] close(3 [pid 3487] <... write resumed>) = 7 [pid 3491] close(27 [pid 3490] <... close resumed>) = 0 [pid 3489] <... close resumed>) = 0 [pid 3488] <... close resumed>) = 0 [pid 3487] close(3 [pid 3486] openat(AT_FDCWD, "/syzcgroup/unified/syz5/memory.low", O_WRONLY|O_CLOEXEC [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3490] mkdir("/dev/binderfs", 0777 [pid 3489] openat(AT_FDCWD, "/syzcgroup/unified/syz3/memory.low", O_WRONLY|O_CLOEXEC [pid 3488] mkdir("/syzcgroup/net/syz4", 0777 [pid 3487] <... close resumed>) = 0 [pid 3491] close(28 [pid 3490] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 3489] <... openat resumed>) = 3 [pid 3486] <... openat resumed>) = 3 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3486] write(3, "312475648", 9 [pid 3491] close(29 [pid 3486] <... write resumed>) = 9 [pid 3491] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3490] mount("binder", "/dev/binderfs", "binder", 0, NULL [pid 3489] write(3, "312475648", 9 [pid 3488] <... mkdir resumed>) = 0 [pid 3487] mkdir("/dev/binderfs", 0777 [pid 3486] close(3 [pid 3491] exit_group(0 [pid 3486] <... close resumed>) = 0 [pid 3491] <... exit_group resumed>) = ? [pid 3486] openat(AT_FDCWD, "/syzcgroup/unified/syz5/memory.high", O_WRONLY|O_CLOEXEC [pid 3491] +++ exited with 0 +++ [pid 3490] <... mount resumed>) = 0 [pid 3489] <... write resumed>) = 9 [pid 3488] openat(AT_FDCWD, "/syzcgroup/net/syz4/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3487] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 3486] <... openat resumed>) = 3 [pid 3486] write(3, "313524224", 9 [pid 3485] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=2} --- [pid 3486] <... write resumed>) = 9 [pid 3490] getpid( [pid 3489] close(3 [pid 3486] close(3) = 0 [pid 3486] openat(AT_FDCWD, "/syzcgroup/unified/syz5/memory.max", O_WRONLY|O_CLOEXEC [pid 3490] <... getpid resumed>) = 1 [pid 3489] <... close resumed>) = 0 [pid 3488] <... openat resumed>) = 3 [pid 3487] mount("binder", "/dev/binderfs", "binder", 0, NULL [pid 3486] <... openat resumed>) = 3 [pid 3490] mkdir("/syzcgroup/unified/syz2", 0777 [pid 3489] openat(AT_FDCWD, "/syzcgroup/unified/syz3/memory.high", O_WRONLY|O_CLOEXEC [pid 3486] write(3, "314572800", 9) = 9 [pid 3486] close(3 [pid 3485] umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3487] <... mount resumed>) = 0 [pid 3486] <... close resumed>) = 0 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3486] openat(AT_FDCWD, "/syzcgroup/unified/syz5/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3485] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3489] <... openat resumed>) = 3 [pid 3488] write(3, "1", 1 [pid 3486] <... openat resumed>) = 3 [pid 3485] <... openat resumed>) = 3 [pid 3486] write(3, "1", 1 [pid 3485] fstat(3, [pid 3490] <... mkdir resumed>) = 0 [pid 3489] write(3, "313524224", 9 [pid 3488] <... write resumed>) = 1 [pid 3487] getpid( [pid 3486] <... write resumed>) = 1 [pid 3485] <... fstat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0 [pid 3490] openat(AT_FDCWD, "/syzcgroup/unified/syz2/pids.max", O_WRONLY|O_CLOEXEC [pid 3489] <... write resumed>) = 9 [pid 3488] close(3 [pid 3487] <... getpid resumed>) = 1 [pid 3486] close(3 [pid 3485] getdents64(3, [pid 3489] close(3 [pid 3488] <... close resumed>) = 0 [pid 3487] mkdir("/syzcgroup/unified/syz1", 0777 [pid 3486] <... close resumed>) = 0 [pid 3485] <... getdents64 resumed>0x555555d3b620 /* 7 entries */, 32768) = 208 [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3488] mkdir("./0", 0777 [pid 3486] mkdir("/syzcgroup/cpu/syz5", 0777 [pid 3485] umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3490] write(3, "32", 2 [pid 3489] openat(AT_FDCWD, "/syzcgroup/unified/syz3/memory.max", O_WRONLY|O_CLOEXEC [pid 3488] <... mkdir resumed>) = 0 [pid 3487] <... mkdir resumed>) = 0 [pid 3490] <... write resumed>) = 2 [pid 3486] <... mkdir resumed>) = 0 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3490] close(3 [pid 3489] <... openat resumed>) = 3 [pid 3487] openat(AT_FDCWD, "/syzcgroup/unified/syz1/pids.max", O_WRONLY|O_CLOEXEC [pid 3486] openat(AT_FDCWD, "/syzcgroup/cpu/syz5/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3485] lstat("./0/binderfs", [pid 3490] <... close resumed>) = 0 [pid 3489] write(3, "314572800", 9 [pid 3488] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3486] <... openat resumed>) = 3 [pid 3485] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}) = 0 [pid 3490] openat(AT_FDCWD, "/syzcgroup/unified/syz2/memory.low", O_WRONLY|O_CLOEXEC [pid 3489] <... write resumed>) = 9 [pid 3487] <... openat resumed>) = 3 [pid 3486] write(3, "1", 1 [pid 3485] unlink("./0/binderfs"./strace-static-x86_64: Process 3492 attached [pid 3490] <... openat resumed>) = 3 [pid 3489] close(3 [pid 3488] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 2 [pid 3487] write(3, "32", 2 [pid 3490] write(3, "312475648", 9 [pid 3489] <... close resumed>) = 0 [pid 3487] <... write resumed>) = 2 [pid 3486] <... write resumed>) = 1 [pid 3490] <... write resumed>) = 9 [pid 3489] openat(AT_FDCWD, "/syzcgroup/unified/syz3/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3487] close(3 [pid 3492] chdir("./0" [pid 3490] close(3 [pid 3489] <... openat resumed>) = 3 [pid 3487] <... close resumed>) = 0 [pid 3486] close(3 [pid 3485] <... unlink resumed>) = 0 [pid 3492] <... chdir resumed>) = 0 [pid 3490] <... close resumed>) = 0 [pid 3489] write(3, "1", 1 [pid 3487] openat(AT_FDCWD, "/syzcgroup/unified/syz1/memory.low", O_WRONLY|O_CLOEXEC [pid 3492] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3490] openat(AT_FDCWD, "/syzcgroup/unified/syz2/memory.high", O_WRONLY|O_CLOEXEC [pid 3489] <... write resumed>) = 1 [pid 3487] <... openat resumed>) = 3 [pid 3486] <... close resumed>) = 0 [pid 3485] umount2("./0/cgroup", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3492] <... prctl resumed>) = 0 [pid 3490] <... openat resumed>) = 3 [pid 3489] close(3 [pid 3487] write(3, "312475648", 9 [pid 3486] mkdir("/syzcgroup/net/syz5", 0777 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3492] setpgid(0, 0 [pid 3490] write(3, "313524224", 9 [pid 3489] <... close resumed>) = 0 [pid 3487] <... write resumed>) = 9 [pid 3490] <... write resumed>) = 9 [pid 3489] mkdir("/syzcgroup/cpu/syz3", 0777 [pid 3487] close(3 [pid 3492] <... setpgid resumed>) = 0 [pid 3490] close(3 [pid 3486] <... mkdir resumed>) = 0 [pid 3485] lstat("./0/cgroup", [pid 3492] symlink("/syzcgroup/unified/syz4", "./cgroup" [pid 3486] openat(AT_FDCWD, "/syzcgroup/net/syz5/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3485] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=23, ...}) = 0 [pid 3492] <... symlink resumed>) = 0 [pid 3490] <... close resumed>) = 0 [pid 3489] <... mkdir resumed>) = 0 [pid 3487] <... close resumed>) = 0 [pid 3486] <... openat resumed>) = 3 [pid 3485] unlink("./0/cgroup" [pid 3492] symlink("/syzcgroup/cpu/syz4", "./cgroup.cpu" [pid 3490] openat(AT_FDCWD, "/syzcgroup/unified/syz2/memory.max", O_WRONLY|O_CLOEXEC [pid 3489] openat(AT_FDCWD, "/syzcgroup/cpu/syz3/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3487] openat(AT_FDCWD, "/syzcgroup/unified/syz1/memory.high", O_WRONLY|O_CLOEXEC [pid 3486] write(3, "1", 1 [pid 3485] <... unlink resumed>) = 0 [pid 3492] <... symlink resumed>) = 0 [pid 3490] <... openat resumed>) = 3 [pid 3487] <... openat resumed>) = 3 [pid 3486] <... write resumed>) = 1 [pid 3485] umount2("./0/cgroup.net", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3492] symlink("/syzcgroup/net/syz4", "./cgroup.net" [pid 3490] write(3, "314572800", 9 [pid 3489] <... openat resumed>) = 3 [pid 3487] write(3, "313524224", 9 [pid 3486] close(3 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3492] <... symlink resumed>) = 0 [pid 3486] <... close resumed>) = 0 [pid 3485] lstat("./0/cgroup.net", [pid 3492] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3490] <... write resumed>) = 9 [pid 3489] write(3, "1", 1 [pid 3487] <... write resumed>) = 9 [pid 3486] mkdir("./0", 0777 [pid 3485] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}) = 0 [pid 3492] <... openat resumed>) = 3 [pid 3490] close(3 [pid 3489] <... write resumed>) = 1 [pid 3487] close(3 [pid 3492] write(3, "1000", 4 [pid 3490] <... close resumed>) = 0 [pid 3486] <... mkdir resumed>) = 0 [pid 3485] unlink("./0/cgroup.net" [pid 3492] <... write resumed>) = 4 [pid 3490] openat(AT_FDCWD, "/syzcgroup/unified/syz2/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3489] close(3 [pid 3487] <... close resumed>) = 0 [pid 3486] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3485] <... unlink resumed>) = 0 [pid 3492] close(3 [pid 3490] <... openat resumed>) = 3 [pid 3489] <... close resumed>) = 0 [pid 3487] openat(AT_FDCWD, "/syzcgroup/unified/syz1/memory.max", O_WRONLY|O_CLOEXEC [pid 3485] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW./strace-static-x86_64: Process 3493 attached [pid 3492] <... close resumed>) = 0 [pid 3490] write(3, "1", 1 [pid 3489] mkdir("/syzcgroup/net/syz3", 0777 [pid 3486] <... clone resumed>, child_tidptr=0x555555d3a5d0) = 2 [pid 3485] <... umount2 resumed>) = 0 [pid 3492] symlink("/dev/binderfs", "./binderfs" [pid 3490] <... write resumed>) = 1 [pid 3487] <... openat resumed>) = 3 [pid 3485] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3492] <... symlink resumed>) = 0 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3492] mkdir("./file0", 000 [pid 3485] lstat("./0/file0", [pid 3493] chdir("./0" [pid 3492] <... mkdir resumed>) = 0 [pid 3490] close(3 [pid 3489] <... mkdir resumed>) = 0 [pid 3487] write(3, "314572800", 9 [pid 3485] <... lstat resumed>{st_mode=S_IFDIR|000, st_size=4096, ...}) = 0 [pid 3493] <... chdir resumed>) = 0 [pid 3492] open("./file0", O_RDONLY [pid 3489] openat(AT_FDCWD, "/syzcgroup/net/syz3/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3490] <... close resumed>) = 0 [pid 3487] <... write resumed>) = 9 [pid 3485] umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3493] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 3492] <... open resumed>) = 3 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3493] <... prctl resumed>) = 0 [pid 3492] mount(NULL, "./file0", "cgroup2", 0, NULL [pid 3490] mkdir("/syzcgroup/cpu/syz2", 0777 [pid 3489] <... openat resumed>) = 3 [pid 3487] close(3 [pid 3485] openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 3493] setpgid(0, 0 [pid 3492] <... mount resumed>) = 0 [pid 3485] <... openat resumed>) = 4 [pid 3493] <... setpgid resumed>) = 0 [pid 3492] openat(AT_FDCWD, "./file0", O_RDWR|O_PATH [pid 3485] fstat(4, [pid 3493] symlink("/syzcgroup/unified/syz5", "./cgroup" [pid 3492] <... openat resumed>) = 4 [pid 3485] <... fstat resumed>{st_mode=S_IFDIR|000, st_size=4096, ...}) = 0 [pid 3493] <... symlink resumed>) = 0 [pid 3492] openat(4, "syz1", O_RDWR|O_PATH [pid 3490] <... mkdir resumed>) = 0 [pid 3489] write(3, "1", 1 [pid 3487] <... close resumed>) = 0 [pid 3485] getdents64(4, [pid 3493] symlink("/syzcgroup/cpu/syz5", "./cgroup.cpu" [pid 3492] <... openat resumed>) = 5 [pid 3490] openat(AT_FDCWD, "/syzcgroup/cpu/syz2/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3489] <... write resumed>) = 1 [pid 3487] openat(AT_FDCWD, "/syzcgroup/unified/syz1/cgroup.procs", O_WRONLY|O_CLOEXEC [pid 3485] <... getdents64 resumed>0x555555d43660 /* 2 entries */, 32768) = 48 [pid 3493] <... symlink resumed>) = 0 [pid 3492] openat(5, "memory.max", O_RDWR [pid 3485] getdents64(4, [pid 3493] symlink("/syzcgroup/net/syz5", "./cgroup.net" [pid 3492] <... openat resumed>) = 6 [pid 3490] <... openat resumed>) = 3 [pid 3489] close(3 [pid 3487] <... openat resumed>) = 3 [pid 3485] <... getdents64 resumed>0x555555d43660 /* 0 entries */, 32768) = 0 [pid 3493] <... symlink resumed>) = 0 [pid 3492] write(6, "0x0000000000000000", 18 [pid 3490] write(3, "1", 1 [pid 3489] <... close resumed>) = 0 [pid 3487] write(3, "1", 1 [pid 3485] close(4 [pid 3493] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 3492] <... write resumed>) = 18 [pid 3490] <... write resumed>) = 1 [pid 3485] <... close resumed>) = 0 [pid 3493] <... openat resumed>) = 3 [pid 3492] close(3 [pid 3490] close(3 [pid 3489] mkdir("./0", 0777 [pid 3487] <... write resumed>) = 1 [pid 3485] rmdir("./0/file0" [pid 3493] write(3, "1000", 4 [pid 3492] <... close resumed>) = 0 [pid 3490] <... close resumed>) = 0 [pid 3485] <... rmdir resumed>) = 0 [pid 3493] <... write resumed>) = 4 [pid 3492] close(4 [pid 3489] <... mkdir resumed>) = 0 [pid 3487] close(3 [pid 3485] umount2("./0/cgroup.cpu", MNT_DETACH|UMOUNT_NOFOLLOW [pid 3493] close(3 [pid 3492] <... close resumed>) = 0 [pid 3485] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 3490] mkdir("/syzcgroup/net/syz2", 0777 [pid 3493] <... close resumed>) = 0 [pid 3492] close(5 [pid 3489] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 3487] <... close resumed>) = 0 [pid 3485] lstat("./0/cgroup.cpu", [pid 3493] symlink("/dev/binderfs", "./binderfs" [pid 3492] <... close resumed>) = 0 [pid 3485] <... lstat resumed>{st_mode=S_IFLNK|0777, st_size=19, ...}) = 0 [pid 3493] <... symlink resumed>) = 0 [pid 3492] close(6 [pid 3485] unlink("./0/cgroup.cpu" [pid 3493] mkdir("./file0", 000 [pid 3492] <... close resumed>) = 0 [pid 3490] <... mkdir resumed>) = 0 [pid 3487] mkdir("/syzcgroup/cpu/syz1", 0777 [pid 3485] <... unlink resumed>) = 0 ./strace-static-x86_64: Process 3494 attached [pid 3493] <... mkdir resumed>) = 0 [pid 3492] close(7 [pid 3485] getdents64(3, [pid 3494] chdir("./0" [pid 3493] open("./file0", O_RDONLY [pid 3492] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3485] <... getdents64 resumed>0x555555d3b620 /* 0 entries */, 32768) = 0 [pid 3494] <... chdir resumed>) = 0 [pid 3493] <... open resumed>) = 3 [pid 3492] close(8 [pid 3485] close(3 [pid 3494] prctl(PR_SET_PDEATHSIG, SIGKILL [ 142.980124][ T3487] syz-executor482 invoked oom-killer: gfp_mask=0xcc0(GFP_KERNEL), order=0, oom_score_adj=0 [ 142.990696][ T3487] CPU: 1 PID: 3487 Comm: syz-executor482 Not tainted 6.1.0-rc2-syzkaller-61955-g4a3e741a3d6a #0 [ 143.001366][ T3487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 143.011622][ T3487] Call Trace: [ 143.015067][ T3487] [ 143.018149][ T3487] dump_stack_lvl+0x1c8/0x256 [ 143.023117][ T3487] dump_stack+0x1a/0x23 [ 143.027508][ T3487] dump_header+0x155/0x9a0 [ 143.032192][ T3487] oom_kill_process+0x2e2/0xb30 [ 143.037310][ T3487] out_of_memory+0xeb5/0x1220 [ 143.042264][ T3487] mem_cgroup_out_of_memory+0x24a/0x3a0 [ 143.048111][ T3487] mem_cgroup_oom+0x856/0xa80 [ 143.053101][ T3487] try_charge_memcg+0x134f/0x1e20 [ 143.058406][ T3487] ? memcg_list_lru_alloc+0x1519/0x1660 [ 143.064234][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.070344][ T3487] ? __rcu_read_unlock+0x76/0xd0 [ 143.075542][ T3487] obj_cgroup_charge_pages+0x2c9/0x690 [ 143.081294][ T3487] obj_cgroup_charge+0x239/0x310 [ 143.086518][ T3487] memcg_slab_pre_alloc_hook+0x4de/0x900 [ 143.092422][ T3487] kmem_cache_alloc_lru+0x17e/0xb30 [ 143.097904][ T3487] ? __d_alloc+0x69/0xb00 [ 143.102466][ T3487] ? __rcu_read_unlock+0x76/0xd0 [ 143.107661][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.113749][ T3487] __d_alloc+0x69/0xb00 [ 143.118135][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.124221][ T3487] d_alloc+0x55/0x350 [ 143.128430][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.134516][ T3487] __lookup_hash+0x199/0x520 [ 143.139373][ T3487] filename_create+0x304/0x700 [ 143.144402][ T3487] do_mkdirat+0x6e/0x7b0 [ 143.148886][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.154984][ T3487] __x64_sys_mkdir+0x9d/0xe0 [ 143.159833][ T3487] do_syscall_64+0x3d/0xb0 [ 143.164487][ T3487] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.170666][ T3487] RIP: 0033:0x7eff46c6b117 [ 143.175280][ T3487] ===================================================== [ 143.182451][ T3487] BUG: KMSAN: uninit-value in show_opcodes+0x2c1/0x2e0 [ 143.189473][ T3487] show_opcodes+0x2c1/0x2e0 [ 143.194146][ T3487] show_iret_regs+0xe3/0x230 [ 143.198906][ T3487] __show_regs+0x31/0xc90 [ 143.203423][ T3487] show_regs_if_on_stack+0x45e/0x530 [ 143.208886][ T3487] show_trace_log_lvl+0x392/0x490 [ 143.214096][ T3487] show_stack+0x55/0x60 [ 143.218410][ T3487] dump_stack_lvl+0x1c8/0x256 [ 143.223233][ T3487] dump_stack+0x1a/0x23 [pid 3493] mount(NULL, "./file0", "cgroup2", 0, NULL [pid 3492] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 3485] <... close resumed>) = 0 [pid 3494] <... prctl resumed>) = 0 [ 143.227529][ T3487] dump_header+0x155/0x9a0 [ 143.232107][ T3487] oom_kill_process+0x2e2/0xb30 [ 143.237118][ T3487] out_of_memory+0xeb5/0x1220 [ 143.241950][ T3487] mem_cgroup_out_of_memory+0x24a/0x3a0 [ 143.247678][ T3487] mem_cgroup_oom+0x856/0xa80 [ 143.252545][ T3487] try_charge_memcg+0x134f/0x1e20 [ 143.257748][ T3487] obj_cgroup_charge_pages+0x2c9/0x690 [ 143.263388][ T3487] obj_cgroup_charge+0x239/0x310 [ 143.268503][ T3487] memcg_slab_pre_alloc_hook+0x4de/0x900 [ 143.274294][ T3487] kmem_cache_alloc_lru+0x17e/0xb30 [ 143.279685][ T3487] __d_alloc+0x69/0xb00 [ 143.283980][ T3487] d_alloc+0x55/0x350 [ 143.288091][ T3487] __lookup_hash+0x199/0x520 [ 143.292837][ T3487] filename_create+0x304/0x700 [ 143.297766][ T3487] do_mkdirat+0x6e/0x7b0 [ 143.302153][ T3487] __x64_sys_mkdir+0x9d/0xe0 [ 143.306892][ T3487] do_syscall_64+0x3d/0xb0 [ 143.311490][ T3487] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.317583][ T3487] [ 143.319990][ T3487] Local variable opcodes created at: [ 143.325366][ T3487] show_opcodes+0x49/0x2e0 [ 143.329964][ T3487] show_iret_regs+0xe3/0x230 [ 143.334733][ T3487] [ 143.337135][ T3487] CPU: 1 PID: 3487 Comm: syz-executor482 Not tainted 6.1.0-rc2-syzkaller-61955-g4a3e741a3d6a #0 [ 143.347709][ T3487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 143.357895][ T3487] ===================================================== [ 143.364925][ T3487] Disabling lock debugging due to kernel taint [ 143.371166][ T3487] Kernel panic - not syncing: kmsan.panic set ... [ 143.377677][ T3487] CPU: 1 PID: 3487 Comm: syz-executor482 Tainted: G B 6.1.0-rc2-syzkaller-61955-g4a3e741a3d6a #0 [ 143.389735][ T3487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 143.399917][ T3487] Call Trace: [ 143.403288][ T3487] [ 143.406306][ T3487] dump_stack_lvl+0x1c8/0x256 [ 143.411163][ T3487] dump_stack+0x1a/0x23 [ 143.415466][ T3487] panic+0x4d3/0xc64 [ 143.419554][ T3487] ? add_taint+0x104/0x1a0 [ 143.424134][ T3487] kmsan_report+0x2cc/0x2d0 [ 143.428733][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.434637][ T3487] ? __msan_warning+0x92/0x110 [ 143.439480][ T3487] ? show_opcodes+0x2c1/0x2e0 [ 143.444247][ T3487] ? show_iret_regs+0xe3/0x230 [ 143.449097][ T3487] ? __show_regs+0x31/0xc90 [ 143.453697][ T3487] ? show_regs_if_on_stack+0x45e/0x530 [ 143.459249][ T3487] ? show_trace_log_lvl+0x392/0x490 [ 143.464532][ T3487] ? show_stack+0x55/0x60 [ 143.468942][ T3487] ? dump_stack_lvl+0x1c8/0x256 [ 143.473886][ T3487] ? dump_stack+0x1a/0x23 [ 143.478308][ T3487] ? dump_header+0x155/0x9a0 [ 143.483000][ T3487] ? oom_kill_process+0x2e2/0xb30 [ 143.488113][ T3487] ? out_of_memory+0xeb5/0x1220 [ 143.493063][ T3487] ? mem_cgroup_out_of_memory+0x24a/0x3a0 [ 143.498991][ T3487] ? mem_cgroup_oom+0x856/0xa80 [ 143.503952][ T3487] ? try_charge_memcg+0x134f/0x1e20 [ 143.509254][ T3487] ? obj_cgroup_charge_pages+0x2c9/0x690 [ 143.514996][ T3487] ? obj_cgroup_charge+0x239/0x310 [ 143.520218][ T3487] ? memcg_slab_pre_alloc_hook+0x4de/0x900 [ 143.526156][ T3487] ? kmem_cache_alloc_lru+0x17e/0xb30 [ 143.531643][ T3487] ? __d_alloc+0x69/0xb00 [ 143.536041][ T3487] ? d_alloc+0x55/0x350 [ 143.540256][ T3487] ? __lookup_hash+0x199/0x520 [ 143.545104][ T3487] ? filename_create+0x304/0x700 [ 143.550123][ T3487] ? do_mkdirat+0x6e/0x7b0 [ 143.554611][ T3487] ? __x64_sys_mkdir+0x9d/0xe0 [ 143.559445][ T3487] ? do_syscall_64+0x3d/0xb0 [ 143.564104][ T3487] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.570284][ T3487] ? preempt_count_sub+0x7d/0x280 [ 143.575401][ T3487] ? _raw_spin_unlock_irqrestore+0x34/0x50 [ 143.581312][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.587219][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.593141][ T3487] __msan_warning+0x92/0x110 [ 143.597842][ T3487] show_opcodes+0x2c1/0x2e0 [ 143.602472][ T3487] show_iret_regs+0xe3/0x230 [ 143.607161][ T3487] __show_regs+0x31/0xc90 [ 143.611593][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.617499][ T3487] show_regs_if_on_stack+0x45e/0x530 [ 143.622885][ T3487] show_trace_log_lvl+0x392/0x490 [ 143.628018][ T3487] show_stack+0x55/0x60 [ 143.632254][ T3487] dump_stack_lvl+0x1c8/0x256 [ 143.637010][ T3487] dump_stack+0x1a/0x23 [ 143.641233][ T3487] dump_header+0x155/0x9a0 [ 143.645739][ T3487] oom_kill_process+0x2e2/0xb30 [ 143.650688][ T3487] out_of_memory+0xeb5/0x1220 [ 143.655457][ T3487] mem_cgroup_out_of_memory+0x24a/0x3a0 [ 143.661114][ T3487] mem_cgroup_oom+0x856/0xa80 [ 143.665896][ T3487] try_charge_memcg+0x134f/0x1e20 [ 143.671019][ T3487] ? memcg_list_lru_alloc+0x1519/0x1660 [ 143.676666][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.682585][ T3487] ? __rcu_read_unlock+0x76/0xd0 [ 143.687610][ T3487] obj_cgroup_charge_pages+0x2c9/0x690 [ 143.693180][ T3487] obj_cgroup_charge+0x239/0x310 [ 143.698311][ T3487] memcg_slab_pre_alloc_hook+0x4de/0x900 [ 143.704057][ T3487] kmem_cache_alloc_lru+0x17e/0xb30 [ 143.709394][ T3487] ? __d_alloc+0x69/0xb00 [ 143.713811][ T3487] ? __rcu_read_unlock+0x76/0xd0 [ 143.718846][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.724783][ T3487] __d_alloc+0x69/0xb00 [ 143.729027][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.734935][ T3487] d_alloc+0x55/0x350 [ 143.738982][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.744892][ T3487] __lookup_hash+0x199/0x520 [ 143.749572][ T3487] filename_create+0x304/0x700 [ 143.754424][ T3487] do_mkdirat+0x6e/0x7b0 [ 143.758758][ T3487] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 143.764672][ T3487] __x64_sys_mkdir+0x9d/0xe0 [ 143.769340][ T3487] do_syscall_64+0x3d/0xb0 [ 143.773828][ T3487] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 143.779855][ T3487] RIP: 0033:0x7eff46c6b117 [ 143.784349][ T3487] Code: 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 143.804065][ T3487] RSP: 002b:00007fff01a6fd88 EFLAGS: 00000206 ORIG_RAX: 0000000000000053 [ 143.812557][ T3487] RAX: ffffffffffffffda RBX: 00007eff46cdaed0 RCX: 00007eff46c6b117 [ 143.820615][ T3487] RDX: 00007fff01a6fdd3 RSI: 00000000000001ff RDI: 00007fff01a6fdc0 [ 143.828680][ T3487] RBP: 00007fff01a6ff78 R08: 0000000000000000 R09: 00007fff01a6fc20 [ 143.836719][ T3487] R10: 00007fff01a6fad7 R11: 0000000000000206 R12: 0000000000000001 [ 143.844757][ T3487] R13: 00007fff01a6fdc0 R14: 00007fff01a6fe00 R15: 0000000000000000 [ 143.852805][ T3487] [ 143.856043][ T3487] Kernel Offset: disabled [ 143.860429][ T3487] Rebooting in 86400 seconds..