./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1665168528 <...> DUID 00:04:e6:d8:3e:4c:c1:15:84:42:dc:00:60:8c:e3:5f:26:b4 no interfaces have a carrier [ 51.965356][ T5489] 8021q: adding VLAN 0 to HW filter on device bond0 [ 51.997456][ T5489] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller syzkaller login: [ 69.705055][ T5808] sshd (5808) used greatest stack depth: 19584 bytes left Warning: Permanently added '10.128.1.76' (ED25519) to the list of known hosts. execve("./syz-executor1665168528", ["./syz-executor1665168528"], 0x7ffe5c0249b0 /* 10 vars */) = 0 brk(NULL) = 0x555556380000 brk(0x555556380d40) = 0x555556380d40 arch_prctl(ARCH_SET_FS, 0x5555563803c0) = 0 set_tid_address(0x555556380690) = 5824 set_robust_list(0x5555563806a0, 24) = 0 rseq(0x555556380ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1665168528", 4096) = 28 getrandom("\x88\x01\x8b\x37\x39\x68\x22\xc6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556380d40 brk(0x5555563a1d40) = 0x5555563a1d40 brk(0x5555563a2000) = 0x5555563a2000 mprotect(0x7fd534920000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5825 attached [pid 5825] set_robust_list(0x5555563806a0, 24 [pid 5824] <... clone resumed>, child_tidptr=0x555556380690) = 5825 [pid 5825] <... set_robust_list resumed>) = 0 [pid 5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5825] mkdir("./syzkaller.EFcg5n", 0700./strace-static-x86_64: Process 5826 attached [pid 5826] set_robust_list(0x5555563806a0, 24) = 0 [pid 5824] <... clone resumed>, child_tidptr=0x555556380690) = 5826 [pid 5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5826] mkdir("./syzkaller.jQBDFb", 0700 [pid 5825] <... mkdir resumed>) = 0 ./strace-static-x86_64: Process 5827 attached [pid 5826] <... mkdir resumed>) = 0 [pid 5826] chmod("./syzkaller.jQBDFb", 0777 [pid 5825] chmod("./syzkaller.EFcg5n", 0777 [pid 5824] <... clone resumed>, child_tidptr=0x555556380690) = 5827 [pid 5827] set_robust_list(0x5555563806a0, 24 [pid 5826] <... chmod resumed>) = 0 [pid 5825] <... chmod resumed>) = 0 [pid 5827] <... set_robust_list resumed>) = 0 [pid 5826] chdir("./syzkaller.jQBDFb" [pid 5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5827] mkdir("./syzkaller.qnKdOs", 0700 [pid 5826] <... chdir resumed>) = 0 [pid 5825] chdir("./syzkaller.EFcg5n" [pid 5827] <... mkdir resumed>) = 0 [pid 5827] chmod("./syzkaller.qnKdOs", 0777 [pid 5826] mkdir("./0", 0777 [pid 5825] <... chdir resumed>) = 0 [pid 5825] mkdir("./0", 0777 [pid 5827] <... chmod resumed>) = 0 [pid 5827] chdir("./syzkaller.qnKdOs" [pid 5826] <... mkdir resumed>) = 0 [pid 5825] <... mkdir resumed>) = 0 [pid 5826] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 5828 attached [pid 5827] <... chdir resumed>) = 0 [pid 5826] <... openat resumed>) = 3 [pid 5825] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5827] mkdir("./0", 0777 [pid 5824] <... clone resumed>, child_tidptr=0x555556380690) = 5828 [pid 5824] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5828] set_robust_list(0x5555563806a0, 24 [pid 5826] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5825] <... openat resumed>) = 3 [pid 5828] <... set_robust_list resumed>) = 0 [pid 5827] <... mkdir resumed>) = 0 [pid 5826] close(3./strace-static-x86_64: Process 5829 attached [pid 5828] mkdir("./syzkaller.JwB34W", 0700 [pid 5827] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5825] ioctl(3, LOOP_CLR_FD [pid 5824] <... clone resumed>, child_tidptr=0x555556380690) = 5829 [pid 5829] set_robust_list(0x5555563806a0, 24 [pid 5827] <... openat resumed>) = 3 [pid 5826] <... close resumed>) = 0 [pid 5829] <... set_robust_list resumed>) = 0 [pid 5828] <... mkdir resumed>) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5829] mkdir("./syzkaller.unNkLd", 0700 [pid 5828] chmod("./syzkaller.JwB34W", 0777 [pid 5827] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5830 attached [pid 5828] <... chmod resumed>) = 0 [pid 5827] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5828] chdir("./syzkaller.JwB34W" [pid 5827] close(3 [pid 5825] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5829] <... mkdir resumed>) = 0 [pid 5828] <... chdir resumed>) = 0 [pid 5827] <... close resumed>) = 0 [pid 5825] close(3) = 0 [pid 5830] set_robust_list(0x5555563806a0, 24 [pid 5829] chmod("./syzkaller.unNkLd", 0777 [pid 5828] mkdir("./0", 0777 [pid 5827] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5826] <... clone resumed>, child_tidptr=0x555556380690) = 5830 ./strace-static-x86_64: Process 5832 attached [pid 5830] <... set_robust_list resumed>) = 0 [pid 5829] <... chmod resumed>) = 0 [pid 5828] <... mkdir resumed>) = 0 [pid 5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5832] set_robust_list(0x5555563806a0, 24 [pid 5829] chdir("./syzkaller.unNkLd" [pid 5830] chdir("./0" [pid 5832] <... set_robust_list resumed>) = 0 [pid 5830] <... chdir resumed>) = 0 [pid 5829] <... chdir resumed>) = 0 [pid 5832] chdir("./0" [pid 5830] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5833 attached ) = 0 [pid 5832] <... chdir resumed>) = 0 [pid 5832] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5830] setpgid(0, 0 [pid 5829] mkdir("./0", 0777 [pid 5832] <... prctl resumed>) = 0 [pid 5830] <... setpgid resumed>) = 0 [pid 5833] set_robust_list(0x5555563806a0, 24 [pid 5832] setpgid(0, 0 [pid 5830] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5829] <... mkdir resumed>) = 0 [pid 5833] <... set_robust_list resumed>) = 0 [pid 5832] <... setpgid resumed>) = 0 [pid 5828] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5830] <... openat resumed>) = 3 [pid 5828] <... openat resumed>) = 3 [pid 5832] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5828] ioctl(3, LOOP_CLR_FD [pid 5827] <... clone resumed>, child_tidptr=0x555556380690) = 5832 [pid 5825] <... clone resumed>, child_tidptr=0x555556380690) = 5833 [pid 5833] chdir("./0" [pid 5832] <... openat resumed>) = 3 [pid 5830] write(3, "1000", 4 [pid 5828] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5833] <... chdir resumed>) = 0 [pid 5833] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5830] <... write resumed>) = 4 [pid 5832] write(3, "1000", 4 [pid 5829] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5828] close(3 [pid 5833] <... prctl resumed>) = 0 [pid 5832] <... write resumed>) = 4 [pid 5830] close(3 [pid 5829] <... openat resumed>) = 3 [pid 5828] <... close resumed>) = 0 [pid 5832] close(3 [pid 5830] <... close resumed>) = 0 [pid 5829] ioctl(3, LOOP_CLR_FD [pid 5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5834 attached [pid 5833] setpgid(0, 0 [pid 5832] <... close resumed>) = 0 [pid 5830] symlink("/dev/binderfs", "./binderfs" [pid 5829] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5834] set_robust_list(0x5555563806a0, 24 [pid 5833] <... setpgid resumed>) = 0 [pid 5832] symlink("/dev/binderfs", "./binderfs" [pid 5829] close(3 [pid 5828] <... clone resumed>, child_tidptr=0x555556380690) = 5834 [pid 5834] <... set_robust_list resumed>) = 0 [pid 5829] <... close resumed>) = 0 [pid 5834] chdir("./0" [pid 5829] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5835 attached , child_tidptr=0x555556380690) = 5835 [pid 5835] set_robust_list(0x5555563806a0, 24 [pid 5834] <... chdir resumed>) = 0 [pid 5834] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5835] <... set_robust_list resumed>) = 0 [pid 5834] <... prctl resumed>) = 0 [pid 5835] chdir("./0" [pid 5834] setpgid(0, 0 [pid 5832] <... symlink resumed>) = 0 [pid 5834] <... setpgid resumed>) = 0 executing program [pid 5835] <... chdir resumed>) = 0 [pid 5833] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5832] write(1, "executing program\n", 18 [pid 5830] <... symlink resumed>) = 0 [pid 5835] prctl(PR_SET_PDEATHSIG, SIGKILL executing program [pid 5834] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5833] <... openat resumed>) = 3 [pid 5832] <... write resumed>) = 18 [pid 5830] write(1, "executing program\n", 18 [pid 5832] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... write resumed>) = 18 [pid 5835] <... prctl resumed>) = 0 [pid 5834] <... openat resumed>) = 3 [pid 5833] write(3, "1000", 4 [pid 5832] <... futex resumed>) = 0 [pid 5830] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] setpgid(0, 0 [pid 5834] write(3, "1000", 4 [pid 5833] <... write resumed>) = 4 [pid 5832] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, [pid 5830] <... futex resumed>) = 0 [pid 5835] <... setpgid resumed>) = 0 [pid 5834] <... write resumed>) = 4 [pid 5833] close(3 [pid 5832] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5830] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, [pid 5835] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5834] close(3 [pid 5833] <... close resumed>) = 0 [pid 5832] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5830] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5835] <... openat resumed>) = 3 [pid 5834] <... close resumed>) = 0 [pid 5833] symlink("/dev/binderfs", "./binderfs" [pid 5832] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5830] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5834] symlink("/dev/binderfs", "./binderfs" [pid 5833] <... symlink resumed>) = 0 [pid 5832] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5830] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5835] write(3, "1000", 4 [pid 5834] <... symlink resumed>) = 0 [pid 5833] write(1, "executing program\n", 18executing program executing program [pid 5832] <... mmap resumed>) = 0x7fd53482d000 [pid 5830] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5835] <... write resumed>) = 4 [pid 5834] write(1, "executing program\n", 18 [pid 5833] <... write resumed>) = 18 [pid 5832] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE [pid 5830] <... mmap resumed>) = 0x7fd53482d000 [pid 5835] close(3 [pid 5834] <... write resumed>) = 18 [pid 5833] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] <... mprotect resumed>) = 0 [pid 5830] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE [pid 5835] <... close resumed>) = 0 [pid 5834] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] <... futex resumed>) = 0 [pid 5832] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5830] <... mprotect resumed>) = 0 [pid 5835] symlink("/dev/binderfs", "./binderfs" [pid 5834] <... futex resumed>) = 0 [pid 5833] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, [pid 5832] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5830] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5835] <... symlink resumed>) = 0 [pid 5834] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, [pid 5833] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5832] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0} [pid 5830] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5834] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5833] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], ./strace-static-x86_64: Process 5837 attached [pid 5835] write(1, "executing program\n", 18 [pid 5834] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], executing program [pid 5830] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0} [pid 5837] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5835] <... write resumed>) = 18 [pid 5834] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5833] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5835] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 5838 attached [pid 5837] <... rseq resumed>) = 0 [pid 5834] <... mmap resumed>) = 0x7fd53482d000 [pid 5833] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5832] <... clone3 resumed> => {parent_tid=[5837]}, 88) = 5837 [pid 5838] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5837] set_robust_list(0x7fd53484d9a0, 24 [pid 5835] <... futex resumed>) = 0 [pid 5834] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE [pid 5833] <... mmap resumed>) = 0x7fd53482d000 [pid 5832] rt_sigprocmask(SIG_SETMASK, [], [pid 5830] <... clone3 resumed> => {parent_tid=[5838]}, 88) = 5838 [pid 5838] <... rseq resumed>) = 0 [pid 5837] <... set_robust_list resumed>) = 0 [pid 5835] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, [pid 5834] <... mprotect resumed>) = 0 [pid 5830] rt_sigprocmask(SIG_SETMASK, [], [pid 5832] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5837] rt_sigprocmask(SIG_SETMASK, [], [pid 5835] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5834] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5838] set_robust_list(0x7fd53484d9a0, 24 [pid 5837] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5835] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5834] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5832] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5835] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5834] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0}./strace-static-x86_64: Process 5839 attached [pid 5838] rt_sigprocmask(SIG_SETMASK, [], [pid 5837] memfd_create("syzkaller", 0 [pid 5835] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5833] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE [pid 5832] <... futex resumed>) = 0 [pid 5830] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5838] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5837] <... memfd_create resumed>) = 3 [pid 5835] <... mmap resumed>) = 0x7fd53482d000 [pid 5834] <... clone3 resumed> => {parent_tid=[5839]}, 88) = 5839 [pid 5833] <... mprotect resumed>) = 0 [pid 5832] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5830] <... futex resumed>) = 0 [pid 5839] <... rseq resumed>) = 0 [pid 5838] memfd_create("syzkaller", 0 [pid 5837] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5835] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE [pid 5834] rt_sigprocmask(SIG_SETMASK, [], [pid 5833] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5830] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5839] set_robust_list(0x7fd53484d9a0, 24 [pid 5838] <... memfd_create resumed>) = 3 [pid 5837] <... mmap resumed>) = 0x7fd52c400000 [pid 5835] <... mprotect resumed>) = 0 [pid 5834] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] <... set_robust_list resumed>) = 0 [pid 5838] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5833] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5839] rt_sigprocmask(SIG_SETMASK, [], [pid 5838] <... mmap resumed>) = 0x7fd52c400000 [pid 5835] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5834] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0} [pid 5839] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5839] memfd_create("syzkaller", 0 [pid 5835] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5834] <... futex resumed>) = 0 [pid 5835] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0} [pid 5834] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5833] <... clone3 resumed> => {parent_tid=[5840]}, 88) = 5840 [pid 5833] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5841 attached [pid 5839] <... memfd_create resumed>) = 3 [pid 5835] <... clone3 resumed> => {parent_tid=[5841]}, 88) = 5841 [pid 5833] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5835] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5833] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5839] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5835] <... futex resumed>) = 0 [pid 5841] <... rseq resumed>) = 0 [pid 5841] set_robust_list(0x7fd53484d9a0, 24 [pid 5835] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5840 attached [pid 5841] <... set_robust_list resumed>) = 0 [pid 5841] rt_sigprocmask(SIG_SETMASK, [], [pid 5840] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5841] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5840] <... rseq resumed>) = 0 [pid 5833] <... futex resumed>) = 0 [pid 5833] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5841] memfd_create("syzkaller", 0 [pid 5840] set_robust_list(0x7fd53484d9a0, 24 [pid 5839] <... mmap resumed>) = 0x7fd52c400000 [pid 5841] <... memfd_create resumed>) = 3 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5840] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5841] <... mmap resumed>) = 0x7fd52c400000 [pid 5840] memfd_create("syzkaller", 0) = 3 [pid 5840] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd52c400000 [pid 5837] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5838] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5839] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5840] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] <... write resumed>) = 16777216 [pid 5837] <... write resumed>) = 16777216 [pid 5841] munmap(0x7fd52c400000, 138412032 [pid 5837] munmap(0x7fd52c400000, 138412032 [pid 5839] <... write resumed>) = 16777216 [pid 5841] <... munmap resumed>) = 0 [pid 5839] munmap(0x7fd52c400000, 138412032 [pid 5837] <... munmap resumed>) = 0 [pid 5838] <... write resumed>) = 16777216 [pid 5841] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5840] <... write resumed>) = 16777216 [pid 5839] <... munmap resumed>) = 0 [pid 5837] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5841] <... openat resumed>) = 4 [pid 5840] munmap(0x7fd52c400000, 138412032 [pid 5839] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5838] munmap(0x7fd52c400000, 138412032 [pid 5837] <... openat resumed>) = 4 [pid 5841] ioctl(4, LOOP_SET_FD, 3 [pid 5839] <... openat resumed>) = 4 [pid 5837] ioctl(4, LOOP_SET_FD, 3 [pid 5839] ioctl(4, LOOP_SET_FD, 3 [pid 5840] <... munmap resumed>) = 0 [pid 5838] <... munmap resumed>) = 0 [pid 5837] <... ioctl resumed>) = 0 [pid 5840] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5837] close(3 [pid 5838] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5840] <... openat resumed>) = 4 [pid 5837] <... close resumed>) = 0 [pid 5840] ioctl(4, LOOP_SET_FD, 3 [pid 5837] close(4 [pid 5838] <... openat resumed>) = 4 [pid 5837] <... close resumed>) = 0 [pid 5838] ioctl(4, LOOP_SET_FD, 3 [pid 5840] <... ioctl resumed>) = 0 [pid 5837] mkdir("./bus", 0777 [pid 5841] <... ioctl resumed>) = 0 [pid 5841] close(3) = 0 [pid 5841] close(4) = 0 [pid 5841] mkdir("./bus", 0777 [pid 5837] <... mkdir resumed>) = 0 [pid 5841] <... mkdir resumed>) = 0 [pid 5840] close(3 [pid 5839] <... ioctl resumed>) = 0 [pid 5838] <... ioctl resumed>) = 0 [pid 5841] mount("/dev/loop4", "./bus", "jfs", MS_NODEV|MS_REC|MS_LAZYTIME, "" [pid 5839] close(3 [pid 5837] mount("/dev/loop2", "./bus", "jfs", MS_NODEV|MS_REC|MS_LAZYTIME, "" [pid 5840] <... close resumed>) = 0 [pid 5838] close(3 [pid 5840] close(4 [pid 5839] <... close resumed>) = 0 [pid 5838] <... close resumed>) = 0 [pid 5840] <... close resumed>) = 0 [pid 5839] close(4 [pid 5838] close(4 [pid 5840] mkdir("./bus", 0777 [pid 5839] <... close resumed>) = 0 [pid 5838] <... close resumed>) = 0 [pid 5840] <... mkdir resumed>) = 0 [pid 5839] mkdir("./bus", 0777 [pid 5838] mkdir("./bus", 0777 [pid 5840] mount("/dev/loop0", "./bus", "jfs", MS_NODEV|MS_REC|MS_LAZYTIME, "" [pid 5839] <... mkdir resumed>) = 0 [pid 5838] <... mkdir resumed>) = 0 [pid 5839] mount("/dev/loop3", "./bus", "jfs", MS_NODEV|MS_REC|MS_LAZYTIME, "" [ 79.872479][ T5841] loop4: detected capacity change from 0 to 32768 [ 79.872790][ T5837] loop2: detected capacity change from 0 to 32768 [ 79.883332][ T5839] loop3: detected capacity change from 0 to 32768 [ 79.903935][ T5840] loop0: detected capacity change from 0 to 32768 [ 79.904293][ T5838] loop1: detected capacity change from 0 to 32768 [pid 5838] mount("/dev/loop1", "./bus", "jfs", MS_NODEV|MS_REC|MS_LAZYTIME, "" [pid 5837] <... mount resumed>) = 0 [pid 5841] <... mount resumed>) = 0 [pid 5837] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 [pid 5841] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5840] <... mount resumed>) = 0 [pid 5838] <... mount resumed>) = 0 [pid 5837] chdir("./bus" [pid 5838] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5837] <... chdir resumed>) = 0 [pid 5841] <... openat resumed>) = 3 [pid 5840] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5839] <... mount resumed>) = 0 [pid 5838] <... openat resumed>) = 3 [pid 5837] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5840] <... openat resumed>) = 3 [pid 5839] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5838] chdir("./bus" [pid 5837] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5841] chdir("./bus" [pid 5839] <... openat resumed>) = 3 [pid 5838] <... chdir resumed>) = 0 [pid 5837] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] <... chdir resumed>) = 0 [pid 5840] chdir("./bus" [pid 5838] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5837] <... futex resumed>) = 1 [pid 5841] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5840] <... chdir resumed>) = 0 [pid 5839] chdir("./bus" [pid 5837] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5832] <... futex resumed>) = 0 [pid 5841] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5840] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5839] <... chdir resumed>) = 0 [pid 5832] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5840] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5839] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5838] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5837] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5832] <... futex resumed>) = 0 [pid 5840] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5832] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5839] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] <... futex resumed>) = 1 [pid 5840] <... futex resumed>) = 1 [pid 5839] <... futex resumed>) = 1 [pid 5835] <... futex resumed>) = 0 [pid 5834] <... futex resumed>) = 0 [pid 5841] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5835] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5833] <... futex resumed>) = 0 [pid 5837] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_DIRECT|O_NOATIME|O_CLOEXEC, 0777 [pid 5841] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5840] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5839] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_DIRECT|O_NOATIME|O_CLOEXEC, 0777 [pid 5838] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... futex resumed>) = 0 [pid 5834] <... futex resumed>) = 0 [pid 5833] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_DIRECT|O_NOATIME|O_CLOEXEC, 0777 [pid 5840] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5839] <... openat resumed>) = 4 [pid 5838] <... futex resumed>) = 1 [pid 5835] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5834] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5833] <... futex resumed>) = 0 [pid 5830] <... futex resumed>) = 0 [pid 5840] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_DIRECT|O_NOATIME|O_CLOEXEC, 0777 [pid 5833] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5841] <... openat resumed>) = 4 [pid 5840] <... openat resumed>) = 4 [pid 5830] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5841] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... futex resumed>) = 0 [pid 5841] <... futex resumed>) = 0 [pid 5839] <... futex resumed>) = 0 [pid 5830] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5839] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5841] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5840] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5840] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5833] <... futex resumed>) = 0 [pid 5833] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5840] <... futex resumed>) = 0 [pid 5833] <... futex resumed>) = 1 [pid 5840] openat(AT_FDCWD, "/dev/nullb0", O_RDONLY [pid 5833] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5840] <... openat resumed>) = 5 [pid 5840] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5833] <... futex resumed>) = 0 [pid 5840] sendfile(4, 5, NULL, 16776834 [pid 5833] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5834] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5833] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5834] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5834] <... futex resumed>) = 1 [pid 5838] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT|O_DIRECT|O_NOATIME|O_CLOEXEC, 0777 [pid 5835] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5834] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5839] <... futex resumed>) = 0 [pid 5839] openat(AT_FDCWD, "/dev/nullb0", O_RDONLY) = 5 [pid 5839] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5839] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5841] <... futex resumed>) = 0 [pid 5837] <... openat resumed>) = 4 [pid 5835] <... futex resumed>) = 1 [pid 5841] openat(AT_FDCWD, "/dev/nullb0", O_RDONLY [pid 5838] <... openat resumed>) = 4 [pid 5837] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5835] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5841] <... openat resumed>) = 5 [ 80.008674][ T30] audit: type=1800 audit(1743081829.983:2): pid=5839 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor166" name="file1" dev="loop3" ino=4 res=0 errno=0 [pid 5838] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] <... futex resumed>) = 1 [pid 5834] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] <... futex resumed>) = 0 [pid 5841] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5839] <... futex resumed>) = 0 [pid 5838] <... futex resumed>) = 1 [pid 5837] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] <... futex resumed>) = 1 [pid 5832] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... futex resumed>) = 0 [pid 5841] <... futex resumed>) = 1 [pid 5839] sendfile(4, 5, NULL, 16776834 [pid 5832] <... futex resumed>) = 0 [pid 5841] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5832] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5838] openat(AT_FDCWD, "/dev/nullb0", O_RDONLY [pid 5837] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5835] <... futex resumed>) = 0 [pid 5834] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5833] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 80.056138][ T30] audit: type=1800 audit(1743081829.983:3): pid=5837 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor166" name="file1" dev="loop2" ino=4 res=0 errno=0 [ 80.081677][ T30] audit: type=1800 audit(1743081829.983:4): pid=5840 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor166" name="file1" dev="loop0" ino=4 res=0 errno=0 [pid 5830] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5838] <... openat resumed>) = 5 [pid 5837] openat(AT_FDCWD, "/dev/nullb0", O_RDONLY [pid 5835] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] <... futex resumed>) = 0 [pid 5832] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5830] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] futex(0x7fd5349266dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5832] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd53480c000 [pid 5841] <... futex resumed>) = 0 [pid 5835] <... futex resumed>) = 1 [pid 5832] mprotect(0x7fd53480d000, 131072, PROT_READ|PROT_WRITE [pid 5841] sendfile(4, 5, NULL, 16776834 [pid 5838] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5837] <... openat resumed>) = 5 [pid 5835] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] <... mprotect resumed>) = 0 [pid 5832] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5832] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53482c990, parent_tid=0x7fd53482c990, exit_signal=0, stack=0x7fd53480c000, stack_size=0x20300, tls=0x7fd53482c6c0}./strace-static-x86_64: Process 5843 attached [pid 5838] <... futex resumed>) = 1 [pid 5837] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5832] <... clone3 resumed> => {parent_tid=[5843]}, 88) = 5843 [pid 5830] <... futex resumed>) = 0 [pid 5843] rseq(0x7fd53482cfe0, 0x20, 0, 0x53053053 [pid 5838] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5837] <... futex resumed>) = 0 [pid 5832] rt_sigprocmask(SIG_SETMASK, [], [pid 5830] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5843] <... rseq resumed>) = 0 [pid 5838] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5837] futex(0x7fd5349266c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5834] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5832] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5830] <... futex resumed>) = 0 [pid 5843] set_robust_list(0x7fd53482c9a0, 24 [pid 5838] sendfile(4, 5, NULL, 16776834 [pid 5832] futex(0x7fd5349266d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5830] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5832] <... futex resumed>) = 0 [pid 5843] <... set_robust_list resumed>) = 0 [pid 5832] futex(0x7fd5349266dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5843] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [ 80.105288][ T30] audit: type=1800 audit(1743081829.983:5): pid=5841 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor166" name="file1" dev="loop4" ino=4 res=0 errno=0 [ 80.131271][ T30] audit: type=1800 audit(1743081830.023:6): pid=5838 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz-executor166" name="file1" dev="loop1" ino=4 res=0 errno=0 [pid 5843] sendfile(4, 5, NULL, 16776834 [pid 5835] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5830] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5832] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5833] exit_group(0) = ? [pid 5840] <... sendfile resumed>) = ? [pid 5840] +++ exited with 0 +++ [pid 5833] +++ exited with 0 +++ [pid 5825] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5833, si_uid=0, si_status=0, si_utime=8 /* 0.08 s */, si_stime=27 /* 0.27 s */} --- [pid 5825] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5825] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5825] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5825] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5825] getdents64(3, [pid 5834] exit_group(0) = ? [pid 5825] <... getdents64 resumed>0x555556381730 /* 4 entries */, 32768) = 104 [pid 5839] <... sendfile resumed>) = ? [pid 5825] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5825] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5839] +++ exited with 0 +++ [pid 5834] +++ exited with 0 +++ [pid 5825] unlink("./0/binderfs" [pid 5828] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5834, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=32 /* 0.32 s */} --- [pid 5825] <... unlink resumed>) = 0 [pid 5828] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5825] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5828] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5828] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5828] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5828] getdents64(3, 0x555556381730 /* 4 entries */, 32768) = 104 [pid 5828] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5828] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5828] unlink("./0/binderfs") = 0 [pid 5828] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5832] exit_group(0 [pid 5837] <... futex resumed>) = ? [pid 5832] <... exit_group resumed>) = ? [pid 5837] +++ exited with 0 +++ [pid 5843] <... sendfile resumed>) = ? [pid 5830] exit_group(0) = ? [pid 5843] +++ exited with 0 +++ [pid 5832] +++ exited with 0 +++ [pid 5838] <... sendfile resumed>) = ? [pid 5827] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5832, si_uid=0, si_status=0, si_utime=10 /* 0.10 s */, si_stime=41 /* 0.41 s */} --- [pid 5827] restart_syscall(<... resuming interrupted clone ...> [pid 5838] +++ exited with 0 +++ [pid 5830] +++ exited with 0 +++ [pid 5826] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5830, si_uid=0, si_status=0, si_utime=6 /* 0.06 s */, si_stime=33 /* 0.33 s */} --- [pid 5827] <... restart_syscall resumed>) = 0 [pid 5827] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5827] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5827] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5827] getdents64(3, 0x555556381730 /* 4 entries */, 32768) = 104 [pid 5835] exit_group(0 [pid 5827] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] <... umount2 resumed>) = 0 [pid 5835] <... exit_group resumed>) = ? [pid 5827] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5841] <... sendfile resumed>) = ? [pid 5841] +++ exited with 0 +++ [pid 5827] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5827] unlink("./0/binderfs") = 0 [pid 5827] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5828] <... umount2 resumed>) = 0 [pid 5826] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5825] newfstatat(AT_FDCWD, "./0/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5826] <... openat resumed>) = 3 [pid 5835] +++ exited with 0 +++ [pid 5828] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5826] newfstatat(3, "", [pid 5829] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5835, si_uid=0, si_status=0, si_utime=9 /* 0.09 s */, si_stime=30 /* 0.30 s */} --- [pid 5828] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5829] restart_syscall(<... resuming interrupted clone ...> [pid 5828] newfstatat(AT_FDCWD, "./0/bus", [pid 5826] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5829] <... restart_syscall resumed>) = 0 [pid 5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5826] getdents64(3, [pid 5825] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5828] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5826] <... getdents64 resumed>0x555556381730 /* 4 entries */, 32768) = 104 [pid 5825] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5828] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5829] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5828] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5827] <... umount2 resumed>) = 0 [pid 5826] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5825] <... openat resumed>) = 4 [pid 5827] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5829] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5828] <... openat resumed>) = 4 [pid 5826] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5825] newfstatat(4, "", [pid 5829] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5828] newfstatat(4, "", [pid 5827] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5825] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5829] <... openat resumed>) = 3 [pid 5828] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5827] newfstatat(AT_FDCWD, "./0/bus", [pid 5826] unlink("./0/binderfs" [pid 5825] getdents64(4, [pid 5829] newfstatat(3, "", [pid 5828] getdents64(4, [pid 5827] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5826] <... unlink resumed>) = 0 [pid 5825] <... getdents64 resumed>0x555556389770 /* 2 entries */, 32768) = 48 [pid 5829] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5828] <... getdents64 resumed>0x555556389770 /* 2 entries */, 32768) = 48 [pid 5827] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] getdents64(4, [pid 5829] getdents64(3, [pid 5828] getdents64(4, [pid 5827] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5825] <... getdents64 resumed>0x555556389770 /* 0 entries */, 32768) = 0 [pid 5828] <... getdents64 resumed>0x555556389770 /* 0 entries */, 32768) = 0 [pid 5827] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5825] close(4 [pid 5829] <... getdents64 resumed>0x555556381730 /* 4 entries */, 32768) = 104 [pid 5828] close(4 [pid 5827] <... openat resumed>) = 4 [pid 5825] <... close resumed>) = 0 [pid 5829] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5828] <... close resumed>) = 0 [pid 5827] newfstatat(4, "", [pid 5825] rmdir("./0/bus" [pid 5829] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5828] rmdir("./0/bus") = 0 [pid 5827] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5829] newfstatat(AT_FDCWD, "./0/binderfs", [pid 5827] getdents64(4, [pid 5825] <... rmdir resumed>) = 0 [pid 5829] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5827] <... getdents64 resumed>0x555556389770 /* 2 entries */, 32768) = 48 [pid 5829] unlink("./0/binderfs" [pid 5827] getdents64(4, [pid 5829] <... unlink resumed>) = 0 [pid 5827] <... getdents64 resumed>0x555556389770 /* 0 entries */, 32768) = 0 [pid 5827] close(4 [pid 5825] getdents64(3, [pid 5829] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5827] <... close resumed>) = 0 [pid 5825] <... getdents64 resumed>0x555556381730 /* 0 entries */, 32768) = 0 [pid 5828] getdents64(3, [pid 5827] rmdir("./0/bus" [pid 5825] close(3 [pid 5827] <... rmdir resumed>) = 0 [pid 5825] <... close resumed>) = 0 [pid 5828] <... getdents64 resumed>0x555556381730 /* 0 entries */, 32768) = 0 [pid 5825] rmdir("./0" [pid 5828] close(3 [pid 5827] getdents64(3, [pid 5825] <... rmdir resumed>) = 0 [pid 5825] mkdir("./1", 0777) = 0 [pid 5828] <... close resumed>) = 0 [pid 5827] <... getdents64 resumed>0x555556381730 /* 0 entries */, 32768) = 0 [pid 5828] rmdir("./0" [pid 5827] close(3 [pid 5825] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 5827] <... close resumed>) = 0 [pid 5825] ioctl(3, LOOP_CLR_FD) = 0 [pid 5825] close(3 [pid 5828] <... rmdir resumed>) = 0 [pid 5827] rmdir("./0" [pid 5828] mkdir("./1", 0777 [pid 5827] <... rmdir resumed>) = 0 [pid 5828] <... mkdir resumed>) = 0 [pid 5828] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 5827] mkdir("./1", 0777) = 0 [pid 5828] ioctl(3, LOOP_CLR_FD [pid 5827] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5828] <... ioctl resumed>) = 0 [pid 5828] close(3 [pid 5827] <... openat resumed>) = 3 [pid 5827] ioctl(3, LOOP_CLR_FD) = 0 [pid 5827] close(3 [pid 5826] <... umount2 resumed>) = 0 [pid 5826] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5826] newfstatat(AT_FDCWD, "./0/bus", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5826] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5829] <... umount2 resumed>) = 0 [pid 5826] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4 [pid 5829] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5826] newfstatat(4, "", [pid 5829] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5829] newfstatat(AT_FDCWD, "./0/bus", [pid 5826] getdents64(4, 0x555556389770 /* 2 entries */, 32768) = 48 [pid 5829] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0 [pid 5829] umount2("./0/bus", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5826] getdents64(4, [pid 5829] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5826] <... getdents64 resumed>0x555556389770 /* 0 entries */, 32768) = 0 [pid 5829] openat(AT_FDCWD, "./0/bus", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5826] close(4) = 0 [pid 5829] <... openat resumed>) = 4 [pid 5826] rmdir("./0/bus" [pid 5829] newfstatat(4, "", [pid 5826] <... rmdir resumed>) = 0 [pid 5829] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5826] getdents64(3, 0x555556381730 /* 0 entries */, 32768) = 0 [pid 5829] getdents64(4, [pid 5826] close(3) = 0 [pid 5826] rmdir("./0") = 0 [pid 5826] mkdir("./1", 0777) = 0 [pid 5826] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 5826] ioctl(3, LOOP_CLR_FD) = 0 [pid 5826] close(3 [pid 5829] <... getdents64 resumed>0x555556389770 /* 2 entries */, 32768) = 48 [pid 5829] getdents64(4, 0x555556389770 /* 0 entries */, 32768) = 0 [pid 5829] close(4) = 0 [pid 5829] rmdir("./0/bus") = 0 [pid 5829] getdents64(3, 0x555556381730 /* 0 entries */, 32768) = 0 [pid 5829] close(3) = 0 [pid 5829] rmdir("./0") = 0 [pid 5829] mkdir("./1", 0777) = 0 [pid 5829] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5829] ioctl(3, LOOP_CLR_FD) = 0 [pid 5829] close(3 [pid 5827] <... close resumed>) = 0 [pid 5825] <... close resumed>) = 0 [pid 5827] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5844 attached [pid 5828] <... close resumed>) = 0 [pid 5827] <... clone resumed>, child_tidptr=0x555556380690) = 5844 [pid 5844] set_robust_list(0x5555563806a0, 24) = 0 [pid 5844] chdir("./1") = 0 [pid 5844] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5844] setpgid(0, 0) = 0 [pid 5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5828] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5825] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5846 attached ./strace-static-x86_64: Process 5845 attached [pid 5844] write(3, "1000", 4 [pid 5846] set_robust_list(0x5555563806a0, 24 [pid 5845] set_robust_list(0x5555563806a0, 24 [pid 5844] <... write resumed>) = 4 [pid 5828] <... clone resumed>, child_tidptr=0x555556380690) = 5846 [pid 5825] <... clone resumed>, child_tidptr=0x555556380690) = 5845 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5845] <... set_robust_list resumed>) = 0 [pid 5844] close(3 [pid 5846] chdir("./1" [pid 5845] chdir("./1" [pid 5844] <... close resumed>) = 0 [pid 5846] <... chdir resumed>) = 0 [pid 5845] <... chdir resumed>) = 0 [pid 5844] symlink("/dev/binderfs", "./binderfs" [pid 5846] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5844] <... symlink resumed>) = 0 executing program [pid 5846] <... prctl resumed>) = 0 [pid 5845] <... prctl resumed>) = 0 [pid 5844] write(1, "executing program\n", 18 [pid 5845] setpgid(0, 0 [pid 5844] <... write resumed>) = 18 [pid 5844] futex(0x7fd5349266cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5844] rt_sigaction(SIGRT_1, {sa_handler=0x7fd5348bf020, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fd5348b01d0}, NULL, 8) = 0 [pid 5844] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5844] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fd53482d000 [pid 5844] mprotect(0x7fd53482e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5844] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5846] setpgid(0, 0 [pid 5845] <... setpgid resumed>) = 0 [pid 5844] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5844] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fd53484d990, parent_tid=0x7fd53484d990, exit_signal=0, stack=0x7fd53482d000, stack_size=0x20300, tls=0x7fd53484d6c0} [pid 5846] <... setpgid resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] <... clone3 resumed> => {parent_tid=[5847]}, 88) = 5847 [pid 5844] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5847 attached [pid 5846] <... openat resumed>) = 3 [pid 5845] <... openat resumed>) = 3 [pid 5844] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5826] <... close resumed>) = 0 [pid 5847] rseq(0x7fd53484dfe0, 0x20, 0, 0x53053053 [pid 5846] write(3, "1000", 4 [pid 5845] write(3, "1000", 4 [pid 5844] futex(0x7fd5349266c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5847] <... rseq resumed>) = 0 [pid 5846] <... write resumed>) = 4 [pid 5845] <... write resumed>) = 4 [pid 5844] <... futex resumed>) = 0 [pid 5847] set_robust_list(0x7fd53484d9a0, 24 [pid 5846] close(3 [pid 5845] close(3 [pid 5844] futex(0x7fd5349266cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5847] <... set_robust_list resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5845] <... close resumed>) = 0 [pid 5847] rt_sigprocmask(SIG_SETMASK, [], [pid 5846] symlink("/dev/binderfs", "./binderfs" [pid 5845] symlink("/dev/binderfs", "./binderfs" [pid 5847] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5826] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5845] <... symlink resumed>) = 0 [pid 5847] memfd_create("syzkaller", 0./strace-static-x86_64: Process 5848 attached executing program [pid 5848] set_robust_list(0x5555563806a0, 24 [pid 5847] <... memfd_create resumed>) = 3 [pid 5846] <... symlink resumed>) = 0 [pid 5845] write(1, "executing program\n", 18 [pid 5829] <... close resumed>) = 0 [pid 5847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 executing program [pid 5846] write(1, "executing program\n", 18 [pid 5845] <... write resumed>) = 18 [pid 5829] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5846] <... write resumed>) = 18 [pid 5847] <... mmap resumed>) = 0x7fd52c400000 [pid 5848] <... set_robust_list resumed>) = 0 [pid 5826] <... clone resumed>, child_tidptr=0x555556380690) = 5848 [pid 5848] chdir("./1") = 0 [pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5848] setpgid(0, 0) = 0 [pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC