./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1506303903 <...> syzkaller syzkaller login: [ 14.847995][ T24] kauditd_printk_skb: 48 callbacks suppressed [ 14.848005][ T24] audit: type=1400 audit(1754741438.800:59): avc: denied { transition } for pid=217 comm="sshd-session" path="/bin/sh" dev="sda1" ino=90 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 14.853452][ T24] audit: type=1400 audit(1754741438.800:60): avc: denied { noatsecure } for pid=217 comm="sshd-session" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 14.856565][ T24] audit: type=1400 audit(1754741438.800:61): avc: denied { write } for pid=217 comm="sh" path="pipe:[14355]" dev="pipefs" ino=14355 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 14.859945][ T24] audit: type=1400 audit(1754741438.800:62): avc: denied { rlimitinh } for pid=217 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 14.866995][ T24] audit: type=1400 audit(1754741438.800:63): avc: denied { siginh } for pid=217 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.0.101' (ED25519) to the list of known hosts. execve("./syz-executor1506303903", ["./syz-executor1506303903"], 0x7ffce7953510 /* 10 vars */) = 0 brk(NULL) = 0x5555596e6000 brk(0x5555596e6d40) = 0x5555596e6d40 arch_prctl(ARCH_SET_FS, 0x5555596e63c0) = 0 set_tid_address(0x5555596e6690) = 282 set_robust_list(0x5555596e66a0, 24) = 0 rseq(0x5555596e6ce0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1506303903", 4096) = 28 getrandom("\x16\x36\xa7\x6e\xde\xd3\xa7\x82", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555596e6d40 brk(0x555559707d40) = 0x555559707d40 brk(0x555559708000) = 0x555559708000 mprotect(0x7f3eb3ca8000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 283 attached , child_tidptr=0x5555596e6690) = 283 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 283] set_robust_list(0x5555596e66a0, 24./strace-static-x86_64: Process 284 attached [pid 282] <... clone resumed>, child_tidptr=0x5555596e6690) = 284 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 284] set_robust_list(0x5555596e66a0, 24 [pid 283] <... set_robust_list resumed>) = 0 [pid 282] <... clone resumed>, child_tidptr=0x5555596e6690) = 285 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 286 [pid 282] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 282] <... clone resumed>, child_tidptr=0x5555596e6690) = 287 ./strace-static-x86_64: Process 287 attached [pid 287] set_robust_list(0x5555596e66a0, 24) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 289 ./strace-static-x86_64: Process 286 attached [pid 286] set_robust_list(0x5555596e66a0, 24) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 291 ./strace-static-x86_64: Process 285 attached [pid 285] set_robust_list(0x5555596e66a0, 24) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [ 23.748526][ T24] audit: type=1400 audit(1754741447.700:64): avc: denied { execmem } for pid=282 comm="syz-executor150" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 23.771035][ T24] audit: type=1400 audit(1754741447.730:65): avc: denied { read write } for pid=283 comm="syz-executor150" name="loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 285] close(3executing program ./strace-static-x86_64: Process 291 attached ./strace-static-x86_64: Process 289 attached [pid 284] <... set_robust_list resumed>) = 0 [pid 283] ioctl(3, LOOP_CLR_FD [pid 285] <... close resumed>) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 292 ./strace-static-x86_64: Process 292 attached [pid 292] set_robust_list(0x5555596e66a0, 24) = 0 [pid 292] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 292] setpgid(0, 0) = 0 [pid 292] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 292] write(3, "1000", 4) = 4 [pid 292] close(3) = 0 [pid 292] write(1, "executing program\n", 18) = 18 [pid 292] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 292] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 292] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 292] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 292] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 292] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[293]}, 88) = 293 [pid 292] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 292] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 293 attached [pid 293] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 293] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 293] memfd_create("syzkaller", 0) = 3 [pid 293] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 291] set_robust_list(0x5555596e66a0, 24 [pid 289] set_robust_list(0x5555596e66a0, 24 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 283] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 291] <... set_robust_list resumed>) = 0 [pid 289] <... set_robust_list resumed>) = 0 [pid 283] close(3 [pid 289] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 291] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 289] <... prctl resumed>) = 0 [pid 284] <... openat resumed>) = 3 [pid 283] <... close resumed>) = 0 [pid 291] <... prctl resumed>) = 0 [pid 289] setpgid(0, 0 [pid 284] ioctl(3, LOOP_CLR_FD [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 291] setpgid(0, 0 [pid 284] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 289] <... setpgid resumed>) = 0 [pid 291] <... setpgid resumed>) = 0 [pid 284] close(3 [pid 289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 284] <... close resumed>) = 0 [pid 291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 289] <... openat resumed>) = 3 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 283] <... clone resumed>, child_tidptr=0x5555596e6690) = 294 ./strace-static-x86_64: Process 294 attached [pid 294] set_robust_list(0x5555596e66a0, 24 [pid 291] <... openat resumed>) = 3 [pid 289] write(3, "1000", 4 [pid 294] <... set_robust_list resumed>) = 0 [pid 294] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 294] setpgid(0, 0) = 0 [pid 294] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 289] <... write resumed>) = 4 [pid 291] write(3, "1000", 4 [pid 294] <... openat resumed>) = 3 [pid 294] write(3, "1000", 4) = 4 [pid 294] close(3) = 0 [pid 294] write(1, "executing program\n", 18 [pid 289] close(3 [pid 291] <... write resumed>) = 4 [pid 284] <... clone resumed>, child_tidptr=0x5555596e6690) = 295 [pid 294] <... write resumed>) = 18 executing program [pid 294] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 294] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 294] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 294] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 294] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[296]}, 88) = 296 [pid 294] rt_sigprocmask(SIG_SETMASK, [], [pid 291] close(3 [pid 289] <... close resumed>) = 0 [pid 294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 294] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 289] write(1, "executing program\n", 18 [pid 291] <... close resumed>) = 0 [pid 294] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}executing program [pid 289] <... write resumed>) = 18 [pid 291] write(1, "executing program\n", 18executing program [pid 289] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 291] <... write resumed>) = 18 [pid 289] <... futex resumed>) = 0 [pid 291] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 289] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, [pid 291] <... futex resumed>) = 0 [pid 289] <... rt_sigaction resumed>NULL, 8) = 0 [pid 291] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, [pid 289] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 291] <... rt_sigaction resumed>NULL, 8) = 0 [pid 289] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 291] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 289] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 291] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 289] <... mmap resumed>) = 0x7f3eb3bb4000 [pid 291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 295 attached ) = 0x7f3eb3bb4000 [pid 289] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE [pid 295] set_robust_list(0x5555596e66a0, 24) = 0 [pid 295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 291] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE [pid 289] <... mprotect resumed>) = 0 [pid 295] setpgid(0, 0) = 0 [pid 291] <... mprotect resumed>) = 0 [pid 289] rt_sigprocmask(SIG_BLOCK, ~[], [pid 295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 291] rt_sigprocmask(SIG_BLOCK, ~[], [pid 289] <... rt_sigprocmask resumed>[], 8) = 0 [pid 291] <... rt_sigprocmask resumed>[], 8) = 0 [pid 289] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} [pid 291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} [pid 295] <... openat resumed>) = 3 [pid 295] write(3, "1000", 4) = 4 [pid 295] close(3 executing program [pid 289] <... clone3 resumed> => {parent_tid=[297]}, 88) = 297 [pid 295] <... close resumed>) = 0 [pid 295] write(1, "executing program\n", 18) = 18 [pid 295] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 295] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 295] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 295] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 295] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[299]}, 88) = 299 [pid 291] <... clone3 resumed> => {parent_tid=[298]}, 88) = 298 [pid 289] rt_sigprocmask(SIG_SETMASK, [], [pid 291] rt_sigprocmask(SIG_SETMASK, [], [pid 289] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 291] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 289] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 291] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 289] <... futex resumed>) = 0 [pid 291] <... futex resumed>) = 0 [pid 295] rt_sigprocmask(SIG_SETMASK, [], [pid 289] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 291] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 297 attached [pid 295] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 295] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 295] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 297] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 297] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 297] memfd_create("syzkaller", 0./strace-static-x86_64: Process 296 attached [pid 296] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 296] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 296] memfd_create("syzkaller", 0 [pid 297] <... memfd_create resumed>) = 3 [pid 296] <... memfd_create resumed>) = 3 [pid 297] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 296] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 297] <... mmap resumed>) = 0x7f3eab7b4000 ./strace-static-x86_64: Process 298 attached [pid 298] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 298] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 298] memfd_create("syzkaller", 0) = 3 [pid 298] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 ./strace-static-x86_64: Process 299 attached [pid 299] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 299] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 299] memfd_create("syzkaller", 0) = 3 [pid 299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 23.795718][ T24] audit: type=1400 audit(1754741447.730:66): avc: denied { open } for pid=283 comm="syz-executor150" path="/dev/loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 23.821436][ T24] audit: type=1400 audit(1754741447.730:67): avc: denied { ioctl } for pid=287 comm="syz-executor150" path="/dev/loop4" dev="devtmpfs" ino=119 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 293] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 297] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 296] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 298] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 293] <... write resumed>) = 67108864 [pid 293] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 297] <... write resumed>) = 67108864 [pid 293] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 293] ioctl(4, LOOP_SET_FD, 3 [pid 297] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 293] <... ioctl resumed>) = 0 [pid 293] close(3) = 0 [pid 293] close(4) = 0 [pid 293] mkdir("./file0", 0777) = 0 [pid 293] mount("/dev/loop2", "./file0", "f2fs", MS_MANDLOCK|MS_DIRSYNC|MS_SILENT|MS_POSIXACL|MS_LAZYTIME, "" [pid 297] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 297] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 297] close(3) = 0 [pid 297] close(4) = 0 [pid 297] mkdir("./file0", 0777) = -1 EEXIST (File exists) [ 24.832784][ T293] ====================================================== [ 24.832784][ T293] WARNING: the mand mount option is being deprecated and [ 24.832784][ T293] will be removed in v5.15! [ 24.832784][ T293] ====================================================== [ 24.832981][ T24] audit: type=1400 audit(1754741448.790:68): avc: denied { mounton } for pid=292 comm="syz-executor150" path="/root/file0" dev="sda1" ino=2024 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 24.873702][ T297] F2FS-fs (loop4): invalid crc value [pid 297] mount("/dev/loop4", "./file0", "f2fs", MS_MANDLOCK|MS_DIRSYNC|MS_SILENT|MS_POSIXACL|MS_LAZYTIME, "" [pid 298] <... write resumed>) = 67108864 [pid 298] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 298] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 298] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 298] close(3) = 0 [ 24.918641][ T297] F2FS-fs (loop4): Found nat_bits in checkpoint [ 24.942093][ T293] F2FS-fs (loop2): invalid crc value [pid 298] close(4) = 0 [pid 298] mkdir("./file0", 0777) = -1 EEXIST (File exists) [pid 298] mount("/dev/loop3", "./file0", "f2fs", MS_MANDLOCK|MS_DIRSYNC|MS_SILENT|MS_POSIXACL|MS_LAZYTIME, "" [pid 297] <... mount resumed>) = 0 [pid 297] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 297] chdir("./file0") = 0 [pid 297] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 297] ioctl(4, LOOP_CLR_FD) = 0 [pid 297] close(4 [pid 296] <... write resumed>) = 67108864 [pid 296] munmap(0x7f3eab7b4000, 138412032 [pid 297] <... close resumed>) = 0 [pid 297] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 289] <... futex resumed>) = 0 [pid 289] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 289] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 297] <... futex resumed>) = 1 [pid 297] truncate("./file3", 7326 [pid 296] <... munmap resumed>) = 0 [pid 296] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [ 24.968321][ T293] F2FS-fs (loop2): Found nat_bits in checkpoint [ 24.974850][ T297] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 24.983923][ T298] F2FS-fs (loop3): invalid crc value [ 24.989683][ T24] audit: type=1400 audit(1754741448.940:69): avc: denied { mount } for pid=289 comm="syz-executor150" name="/" dev="loop4" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [pid 296] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 296] close(3) = 0 [ 25.028419][ T297] F2FS-fs (loop4): access invalid blkaddr:2147563524 [ 25.045311][ T297] CPU: 0 PID: 297 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 25.046418][ T293] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 25.053825][ T297] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 25.053841][ T297] Call Trace: [pid 296] close(4 [pid 299] <... write resumed>) = 67108864 [pid 299] munmap(0x7f3eab7b4000, 138412032) = 0 [ 25.053870][ T297] __dump_stack+0x21/0x24 [ 25.053879][ T297] dump_stack_lvl+0x169/0x1d8 [ 25.053897][ T297] ? _raw_spin_trylock_bh+0x130/0x130 [ 25.075933][ T298] F2FS-fs (loop3): Found nat_bits in checkpoint [ 25.079112][ T297] ? show_regs_print_info+0x18/0x18 [ 25.100501][ T297] ? memcpy+0x56/0x70 [ 25.104476][ T297] dump_stack+0x15/0x1c [ 25.108619][ T297] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 25.111096][ T298] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 25.113978][ T297] f2fs_iget+0x1eb6/0x4dc0 [ 25.113999][ T297] f2fs_lookup+0x3ee/0xce0 [ 25.130200][ T297] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 25.136242][ T297] ? d_hash_and_lookup+0x1f0/0x1f0 [ 25.141328][ T297] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 25.146763][ T297] ? lockref_get_not_dead+0xe6/0x1c0 [ 25.152020][ T297] __lookup_slow+0x2aa/0x3e0 [ 25.156583][ T297] ? lookup_one_len+0x2c0/0x2c0 [ 25.161403][ T297] ? lookup_fast+0x2fa/0x700 [ 25.165962][ T297] ? link_path_walk+0x915/0xb80 [ 25.170785][ T297] ? __kasan_check_write+0x14/0x20 [ 25.175864][ T297] lookup_slow+0x57/0x70 [ 25.180076][ T297] walk_component+0x325/0x460 [ 25.184721][ T297] path_lookupat+0x180/0x490 [ 25.189279][ T297] filename_lookup+0x1d5/0x600 [ 25.194018][ T297] ? hashlen_string+0x120/0x120 [ 25.198845][ T297] ? getname_flags+0x206/0x500 [ 25.203579][ T297] user_path_at_empty+0x43/0x50 [ 25.208403][ T297] do_sys_truncate+0xa3/0x190 [ 25.213053][ T297] ? locks_verify_truncate+0x170/0x170 [ 25.218502][ T297] ? filp_close+0x105/0x150 [ 25.222976][ T297] __x64_sys_truncate+0x5b/0x70 [ 25.228755][ T297] do_syscall_64+0x31/0x40 [ 25.233142][ T297] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.239006][ T297] RIP: 0033:0x7f3eb3c17539 [ 25.243396][ T297] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.262974][ T297] RSP: 002b:00007f3eb3bd4218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 25.271359][ T297] RAX: ffffffffffffffda RBX: 00007f3eb3cae5e8 RCX: 00007f3eb3c17539 [pid 299] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 289] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 289] futex(0x7f3eb3cae5fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 289] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3b93000 [pid 289] mprotect(0x7f3eb3b94000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 289] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 289] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bb3990, parent_tid=0x7f3eb3bb3990, exit_signal=0, stack=0x7f3eb3b93000, stack_size=0x20300, tls=0x7f3eb3bb36c0} => {parent_tid=[318]}, 88) = 318 [pid 289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 289] futex(0x7f3eb3cae5f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 289] futex(0x7f3eb3cae5fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 318 attached [pid 298] <... mount resumed>) = 0 [pid 297] <... truncate resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 296] <... close resumed>) = 0 [pid 293] <... mount resumed>) = 0 [pid 318] set_robust_list(0x7f3eb3bb39a0, 24 [pid 298] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 293] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 318] <... set_robust_list resumed>) = 0 [pid 298] <... openat resumed>) = 3 [pid 293] <... openat resumed>) = 3 [pid 318] rt_sigprocmask(SIG_SETMASK, [], [pid 298] chdir("./file0" [pid 293] chdir("./file0" [pid 318] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 298] <... chdir resumed>) = 0 [pid 293] <... chdir resumed>) = 0 [pid 318] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [ 25.279308][ T297] RDX: 00007f3eb3c17539 RSI: 0000000000001c9e RDI: 0000200000000280 [ 25.287252][ T297] RBP: 00007f3eb3cae5e0 R08: 0000000000000000 R09: 0000000000000000 [ 25.295202][ T297] R10: 00000000000105aa R11: 0000000000000246 R12: 0000200000000080 [ 25.303155][ T297] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 25.312806][ T297] F2FS-fs (loop4): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [pid 298] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 293] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 296] mkdir("./file0", 0777 [pid 297] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 296] mount("/dev/loop0", "./file0", "f2fs", MS_MANDLOCK|MS_DIRSYNC|MS_SILENT|MS_POSIXACL|MS_LAZYTIME, "" [pid 297] <... futex resumed>) = 0 [pid 297] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 289] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 25.328944][ T318] F2FS-fs (loop4): access invalid blkaddr:2147563524 [ 25.336325][ T318] CPU: 1 PID: 318 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 25.340651][ T24] audit: type=1400 audit(1754741449.290:70): avc: denied { mounton } for pid=294 comm="syz-executor150" path="/root/file0" dev="loop3" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 25.344822][ T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 25.377691][ T318] Call Trace: [ 25.380957][ T318] __dump_stack+0x21/0x24 [ 25.385270][ T318] dump_stack_lvl+0x169/0x1d8 [ 25.389927][ T318] ? _raw_spin_trylock_bh+0x130/0x130 [ 25.395297][ T318] ? show_regs_print_info+0x18/0x18 [ 25.400483][ T318] ? memcpy+0x56/0x70 [ 25.404440][ T318] dump_stack+0x15/0x1c [ 25.408568][ T318] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 25.413914][ T318] f2fs_iget+0x1eb6/0x4dc0 [ 25.418316][ T318] f2fs_lookup+0x3ee/0xce0 [ 25.422723][ T318] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 25.428763][ T318] ? d_hash_and_lookup+0x1f0/0x1f0 [ 25.433851][ T318] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 25.439895][ T318] path_openat+0x1127/0x3160 [ 25.444465][ T318] ? do_filp_open+0x3e0/0x3e0 [ 25.449116][ T318] do_filp_open+0x1b3/0x3e0 [ 25.453596][ T318] ? vfs_tmpfile+0x2c0/0x2c0 [ 25.458160][ T318] ? get_unused_fd_flags+0x92/0xa0 [ 25.463244][ T318] do_sys_openat2+0x14c/0x6d0 [ 25.467896][ T318] ? _raw_spin_unlock_irq+0x4e/0x70 [ 25.473068][ T318] ? do_sys_open+0xe0/0xe0 [pid 289] exit_group(0) = ? [pid 297] <... futex resumed>) = ? [pid 297] +++ exited with 0 +++ [ 25.477517][ T318] ? do_notify_parent+0x7e0/0x7e0 [ 25.482532][ T318] ? fpu__clear_all+0x20/0x20 [ 25.487285][ T318] __x64_sys_openat+0x136/0x160 [ 25.492109][ T318] do_syscall_64+0x31/0x40 [ 25.496498][ T318] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.502447][ T318] RIP: 0033:0x7f3eb3c17539 [ 25.506832][ T318] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.526439][ T318] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 25.534823][ T318] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 25.542767][ T318] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 25.550719][ T318] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 25.558757][ T318] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [ 25.566709][ T318] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [pid 318] <... openat resumed>) = ? [pid 318] +++ exited with 0 +++ [pid 289] +++ exited with 0 +++ [pid 293] <... openat resumed>) = 4 [pid 293] ioctl(4, LOOP_CLR_FD) = 0 [pid 293] close(4) = 0 [pid 293] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 292] <... futex resumed>) = 0 [pid 293] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 292] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 293] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 292] <... futex resumed>) = 0 [ 25.574759][ T318] F2FS-fs (loop4): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 25.590655][ T293] F2FS-fs (loop3): access invalid blkaddr:2147563524 [ 25.596503][ T296] F2FS-fs (loop0): invalid crc value [ 25.597347][ T293] CPU: 1 PID: 293 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 25.611116][ T293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 25.621163][ T293] Call Trace: [ 25.624454][ T293] __dump_stack+0x21/0x24 [pid 293] truncate("./file3", 7326 [pid 292] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] <... openat resumed>) = 4 [pid 298] <... openat resumed>) = 4 [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=289, si_uid=0, si_status=0, si_utime=15, si_stime=36} --- [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 319 [pid 299] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 299] close(3) = 0 [pid 299] close(4) = 0 [pid 299] mkdir("./file0", 0777) = -1 EEXIST (File exists) [ 25.628784][ T293] dump_stack_lvl+0x169/0x1d8 [ 25.633456][ T293] ? _raw_spin_trylock_bh+0x130/0x130 [ 25.638837][ T293] ? show_regs_print_info+0x18/0x18 [ 25.644036][ T293] ? memcpy+0x56/0x70 [ 25.648018][ T293] dump_stack+0x15/0x1c [ 25.652219][ T293] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 25.657588][ T293] f2fs_iget+0x1eb6/0x4dc0 [ 25.662005][ T293] f2fs_lookup+0x3ee/0xce0 [ 25.666418][ T293] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 25.672480][ T293] ? d_hash_and_lookup+0x1f0/0x1f0 [pid 299] mount("/dev/loop1", "./file0", "f2fs", MS_MANDLOCK|MS_DIRSYNC|MS_SILENT|MS_POSIXACL|MS_LAZYTIME, "" [pid 298] ioctl(4, LOOP_CLR_FD) = 0 [pid 298] close(4) = 0 [pid 298] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 291] <... futex resumed>) = 0 [pid 298] truncate("./file3", 7326 [pid 291] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 291] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 319 attached [pid 319] set_robust_list(0x5555596e66a0, 24) = 0 [pid 319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 319] setpgid(0, 0) = 0 [pid 319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 319] write(3, "1000", 4) = 4 [pid 319] close(3) = 0 [pid 319] write(1, "executing program\n", 18executing program ) = 18 [pid 319] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 319] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 319] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 319] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 319] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE [pid 292] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 292] futex(0x7f3eb3cae5fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3b93000 [pid 292] mprotect(0x7f3eb3b94000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 292] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 292] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bb3990, parent_tid=0x7f3eb3bb3990, exit_signal=0, stack=0x7f3eb3b93000, stack_size=0x20300, tls=0x7f3eb3bb36c0} => {parent_tid=[324]}, 88) = 324 [pid 292] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 292] futex(0x7f3eb3cae5f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 292] futex(0x7f3eb3cae5fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 319] <... mprotect resumed>) = 0 [pid 319] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 319] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[325]}, 88) = 325 [pid 319] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 319] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 319] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 325 attached [pid 325] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 325] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 325] memfd_create("syzkaller", 0) = 3 [pid 325] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 25.672676][ T299] F2FS-fs (loop1): invalid crc value [ 25.677579][ T293] ? lockref_get_not_dead+0xe6/0x1c0 [ 25.677591][ T293] __lookup_slow+0x2aa/0x3e0 [ 25.677606][ T293] ? lookup_one_len+0x2c0/0x2c0 [ 25.697696][ T293] ? lookup_fast+0x2fa/0x700 [ 25.702282][ T293] ? link_path_walk+0x915/0xb80 [ 25.707134][ T293] ? __kasan_check_write+0x14/0x20 [ 25.712238][ T293] lookup_slow+0x57/0x70 [ 25.716484][ T293] walk_component+0x325/0x460 [ 25.721162][ T293] path_lookupat+0x180/0x490 [ 25.725751][ T293] filename_lookup+0x1d5/0x600 [pid 291] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 291] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 291] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out) [pid 291] futex(0x7f3eb3cae5fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3b93000 [pid 291] mprotect(0x7f3eb3b94000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 291] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bb3990, parent_tid=0x7f3eb3bb3990, exit_signal=0, stack=0x7f3eb3b93000, stack_size=0x20300, tls=0x7f3eb3bb36c0} => {parent_tid=[326]}, 88) = 326 [pid 291] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 291] futex(0x7f3eb3cae5f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 291] futex(0x7f3eb3cae5fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 292] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 25.730506][ T293] ? hashlen_string+0x120/0x120 [ 25.735359][ T293] ? getname_flags+0x206/0x500 [ 25.740113][ T293] user_path_at_empty+0x43/0x50 [ 25.744950][ T293] do_sys_truncate+0xa3/0x190 [ 25.749625][ T293] ? locks_verify_truncate+0x170/0x170 [ 25.755076][ T293] ? filp_close+0x105/0x150 [ 25.759594][ T293] __x64_sys_truncate+0x5b/0x70 [ 25.764450][ T293] do_syscall_64+0x31/0x40 [ 25.768863][ T293] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.774746][ T293] RIP: 0033:0x7f3eb3c17539 [pid 291] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 25.779153][ T293] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 25.798756][ T293] RSP: 002b:00007f3eb3bd4218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 25.807173][ T293] RAX: ffffffffffffffda RBX: 00007f3eb3cae5e8 RCX: 00007f3eb3c17539 [ 25.815138][ T293] RDX: ffffffffffffffb0 RSI: 0000000000001c9e RDI: 0000200000000280 [ 25.823107][ T293] RBP: 00007f3eb3cae5e0 R08: 0000000000000000 R09: 0000000000000000 ./strace-static-x86_64: Process 326 attached ./strace-static-x86_64: Process 324 attached [pid 326] set_robust_list(0x7f3eb3bb39a0, 24 [pid 324] set_robust_list(0x7f3eb3bb39a0, 24 [pid 293] <... truncate resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 326] <... set_robust_list resumed>) = 0 [pid 324] <... set_robust_list resumed>) = 0 [pid 293] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 326] rt_sigprocmask(SIG_SETMASK, [], [pid 324] rt_sigprocmask(SIG_SETMASK, [], [pid 293] <... futex resumed>) = 0 [pid 326] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 324] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 293] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 326] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [ 25.831069][ T293] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000080 [ 25.839040][ T293] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 25.848076][ T293] F2FS-fs (loop3): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 25.849129][ T296] F2FS-fs (loop0): Found nat_bits in checkpoint [ 25.866919][ T298] F2FS-fs (loop3): access invalid blkaddr:2147563524 [ 25.875102][ T298] CPU: 0 PID: 298 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 25.883695][ T298] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 25.893741][ T298] Call Trace: [ 25.897025][ T298] __dump_stack+0x21/0x24 [ 25.901342][ T298] dump_stack_lvl+0x169/0x1d8 [ 25.906136][ T298] ? _raw_spin_trylock_bh+0x130/0x130 [ 25.911494][ T298] ? show_regs_print_info+0x18/0x18 [ 25.916685][ T298] ? memcpy+0x56/0x70 [ 25.920655][ T298] dump_stack+0x15/0x1c [ 25.924802][ T298] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 25.930173][ T298] f2fs_iget+0x1eb6/0x4dc0 [ 25.934593][ T298] f2fs_lookup+0x3ee/0xce0 [ 25.939001][ T298] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 25.945055][ T298] ? d_hash_and_lookup+0x1f0/0x1f0 [ 25.950170][ T298] ? lockref_get_not_dead+0xe6/0x1c0 [ 25.955471][ T298] __lookup_slow+0x2aa/0x3e0 [ 25.960086][ T298] ? lookup_one_len+0x2c0/0x2c0 [ 25.964927][ T298] ? lookup_fast+0x2fa/0x700 [ 25.969506][ T298] ? link_path_walk+0x915/0xb80 [ 25.974341][ T298] ? __kasan_check_write+0x14/0x20 [pid 324] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 292] exit_group(0 [pid 293] <... futex resumed>) = ? [pid 292] <... exit_group resumed>) = ? [pid 293] +++ exited with 0 +++ [ 25.979435][ T298] lookup_slow+0x57/0x70 [ 25.983660][ T298] walk_component+0x325/0x460 [ 25.988339][ T298] path_lookupat+0x180/0x490 [ 25.992930][ T298] filename_lookup+0x1d5/0x600 [ 25.997700][ T298] ? hashlen_string+0x120/0x120 [ 26.002553][ T298] ? getname_flags+0x206/0x500 [ 26.007310][ T298] user_path_at_empty+0x43/0x50 [ 26.012154][ T298] do_sys_truncate+0xa3/0x190 [ 26.016909][ T298] ? locks_verify_truncate+0x170/0x170 [ 26.022358][ T298] ? filp_close+0x105/0x150 [ 26.026868][ T298] __x64_sys_truncate+0x5b/0x70 [ 26.031713][ T298] do_syscall_64+0x31/0x40 [ 26.036130][ T298] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.042016][ T298] RIP: 0033:0x7f3eb3c17539 [ 26.046421][ T298] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.066021][ T298] RSP: 002b:00007f3eb3bd4218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 26.074444][ T298] RAX: ffffffffffffffda RBX: 00007f3eb3cae5e8 RCX: 00007f3eb3c17539 [ 26.082414][ T298] RDX: 00007f3eb3c17539 RSI: 0000000000001c9e RDI: 0000200000000280 [ 26.090378][ T298] RBP: 00007f3eb3cae5e0 R08: 0000000000000000 R09: 0000000000000000 [ 26.098345][ T298] R10: 00000000000105aa R11: 0000000000000246 R12: 0000200000000080 [ 26.106314][ T298] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 26.115686][ T299] F2FS-fs (loop1): Found nat_bits in checkpoint [ 26.124140][ T296] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [pid 325] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 298] <... truncate resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 298] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 298] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 325] <... write resumed>) = 67108864 [pid 325] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 325] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 325] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 325] ioctl(4, LOOP_CLR_FD) = 0 [pid 325] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 325] close(4) = 0 [ 26.148713][ T298] F2FS-fs (loop3): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 26.161158][ T299] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 26.169463][ T326] F2FS-fs (loop3): access invalid blkaddr:2147563524 [ 26.176765][ T326] CPU: 1 PID: 326 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 26.185255][ T326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 26.195318][ T326] Call Trace: [pid 325] close(3 [pid 291] exit_group(0 [pid 298] <... futex resumed>) = ? [pid 291] <... exit_group resumed>) = ? [pid 298] +++ exited with 0 +++ [ 26.198610][ T326] __dump_stack+0x21/0x24 [ 26.202938][ T326] dump_stack_lvl+0x169/0x1d8 [ 26.207611][ T326] ? _raw_spin_trylock_bh+0x130/0x130 [ 26.212980][ T326] ? show_regs_print_info+0x18/0x18 [ 26.218169][ T326] ? memcpy+0x56/0x70 [ 26.222143][ T326] dump_stack+0x15/0x1c [ 26.226293][ T326] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 26.231746][ T326] f2fs_iget+0x1eb6/0x4dc0 [ 26.236163][ T326] f2fs_lookup+0x3ee/0xce0 [ 26.240566][ T326] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 26.246625][ T326] ? d_hash_and_lookup+0x1f0/0x1f0 [ 26.251829][ T326] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 26.257900][ T326] path_openat+0x1127/0x3160 [ 26.262496][ T326] ? do_filp_open+0x3e0/0x3e0 [ 26.267187][ T326] do_filp_open+0x1b3/0x3e0 [ 26.271676][ T326] ? vfs_tmpfile+0x2c0/0x2c0 [ 26.276257][ T326] ? get_unused_fd_flags+0x92/0xa0 [ 26.281369][ T326] do_sys_openat2+0x14c/0x6d0 [ 26.286041][ T326] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.291228][ T326] ? do_sys_open+0xe0/0xe0 [pid 325] <... close resumed>) = 0 [pid 325] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 319] <... futex resumed>) = 0 [pid 319] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 319] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 325] <... futex resumed>) = 1 [pid 325] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 325] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 319] <... futex resumed>) = 0 [pid 319] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 319] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 325] <... futex resumed>) = 1 [pid 325] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 325] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 319] <... futex resumed>) = 0 [pid 319] exit_group(0) = ? [pid 325] <... futex resumed>) = ? [pid 325] +++ exited with 0 +++ [pid 319] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=319, si_uid=0, si_status=0, si_utime=17, si_stime=34} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 332 ./strace-static-x86_64: Process 332 attached [pid 332] set_robust_list(0x5555596e66a0, 24) = 0 [pid 332] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 332] setpgid(0, 0) = 0 [pid 332] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 332] write(3, "1000", 4) = 4 [pid 332] close(3) = 0 [pid 332] write(1, "executing program\n", 18executing program ) = 18 [pid 332] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 332] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 332] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 332] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 332] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 332] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[333]}, 88) = 333 [pid 332] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 332] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 332] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 333 attached [pid 333] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 333] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 333] memfd_create("syzkaller", 0) = 3 [pid 333] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 26.295633][ T326] ? do_notify_parent+0x7e0/0x7e0 [ 26.300645][ T326] ? fpu__clear_all+0x20/0x20 [ 26.305310][ T326] __x64_sys_openat+0x136/0x160 [ 26.310157][ T326] do_syscall_64+0x31/0x40 [ 26.314562][ T326] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.320446][ T326] RIP: 0033:0x7f3eb3c17539 [ 26.324846][ T326] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.344440][ T326] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 26.352862][ T326] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 26.360823][ T326] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 26.368781][ T326] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 26.376746][ T326] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [ 26.384709][ T326] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [pid 326] <... openat resumed>) = ? [ 26.394001][ T326] F2FS-fs (loop3): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 26.406447][ T324] F2FS-fs (loop3): access invalid blkaddr:2147563524 [ 26.413347][ T324] CPU: 1 PID: 324 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 26.421830][ T324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 26.431876][ T324] Call Trace: [ 26.435952][ T324] __dump_stack+0x21/0x24 [ 26.440277][ T324] dump_stack_lvl+0x169/0x1d8 [ 26.444951][ T324] ? _raw_spin_trylock_bh+0x130/0x130 [ 26.450314][ T324] ? show_regs_print_info+0x18/0x18 [ 26.455499][ T324] ? memcpy+0x56/0x70 [ 26.459597][ T324] dump_stack+0x15/0x1c [ 26.463744][ T324] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 26.469107][ T324] f2fs_iget+0x1eb6/0x4dc0 [ 26.473513][ T324] f2fs_lookup+0x3ee/0xce0 [ 26.477914][ T324] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 26.483977][ T324] ? d_hash_and_lookup+0x1f0/0x1f0 [ 26.489084][ T324] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 26.495138][ T324] path_openat+0x1127/0x3160 [ 26.499714][ T324] ? do_filp_open+0x3e0/0x3e0 [ 26.504462][ T324] do_filp_open+0x1b3/0x3e0 [ 26.508960][ T324] ? vfs_tmpfile+0x2c0/0x2c0 [ 26.513539][ T324] ? get_unused_fd_flags+0x92/0xa0 [ 26.518635][ T324] do_sys_openat2+0x14c/0x6d0 [ 26.523297][ T324] ? _raw_spin_unlock_irq+0x4e/0x70 [ 26.528481][ T324] ? do_sys_open+0xe0/0xe0 [ 26.533062][ T324] ? do_notify_parent+0x7e0/0x7e0 [ 26.538072][ T324] ? fpu__clear_all+0x20/0x20 [ 26.542747][ T324] __x64_sys_openat+0x136/0x160 [ 26.547585][ T324] do_syscall_64+0x31/0x40 [ 26.551988][ T324] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.557863][ T324] RIP: 0033:0x7f3eb3c17539 [ 26.562262][ T324] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.582120][ T324] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 26.590532][ T324] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [pid 333] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 326] +++ exited with 0 +++ [pid 291] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=291, si_uid=0, si_status=0, si_utime=16, si_stime=36} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3 [pid 324] <... openat resumed>) = ? [pid 299] <... mount resumed>) = 0 [pid 296] <... mount resumed>) = 0 [pid 286] <... close resumed>) = 0 [pid 299] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 324] +++ exited with 0 +++ [pid 299] <... openat resumed>) = 3 [pid 296] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 292] +++ exited with 0 +++ [pid 296] <... openat resumed>) = 3 [pid 299] chdir("./file0" [pid 296] chdir("./file0" [pid 286] <... clone resumed>, child_tidptr=0x5555596e6690) = 334 [pid 296] <... chdir resumed>) = 0 [pid 299] <... chdir resumed>) = 0 [pid 296] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=292, si_uid=0, si_status=0, si_utime=14, si_stime=34} --- [pid 296] <... openat resumed>) = 4 [pid 299] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 296] ioctl(4, LOOP_CLR_FD [pid 285] restart_syscall(<... resuming interrupted clone ...> [pid 296] <... ioctl resumed>) = 0 [pid 299] <... openat resumed>) = 4 [pid 296] close(4 [pid 285] <... restart_syscall resumed>) = 0 [pid 299] ioctl(4, LOOP_CLR_FD [pid 296] <... close resumed>) = 0 [pid 296] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 294] <... futex resumed>) = 0 [pid 296] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 294] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 296] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 294] <... futex resumed>) = 0 [pid 296] truncate("./file3", 7326 [pid 294] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] <... ioctl resumed>) = 0 [pid 299] close(4 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 299] <... close resumed>) = 0 [pid 285] <... openat resumed>) = 3 [pid 299] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [ 26.598585][ T324] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 26.606641][ T324] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 26.614608][ T324] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [ 26.622574][ T324] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 26.632579][ T324] F2FS-fs (loop3): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [pid 285] ioctl(3, LOOP_CLR_FD [pid 299] <... futex resumed>) = 1 [pid 295] <... futex resumed>) = 0 [pid 285] <... ioctl resumed>) = 0 [pid 295] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 295] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 299] truncate("./file3", 7326 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 335 [ 26.654167][ T296] F2FS-fs (loop1): access invalid blkaddr:2147563524 [ 26.670671][ T296] CPU: 1 PID: 296 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 26.679200][ T296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 26.689250][ T296] Call Trace: [ 26.692539][ T296] __dump_stack+0x21/0x24 [ 26.696889][ T296] dump_stack_lvl+0x169/0x1d8 [ 26.701561][ T296] ? _raw_spin_trylock_bh+0x130/0x130 [ 26.706926][ T296] ? show_regs_print_info+0x18/0x18 [ 26.712120][ T296] ? memcpy+0x56/0x70 [ 26.716099][ T296] dump_stack+0x15/0x1c [ 26.720265][ T296] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 26.725635][ T296] f2fs_iget+0x1eb6/0x4dc0 [ 26.730054][ T296] f2fs_lookup+0x3ee/0xce0 [ 26.734467][ T296] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 26.740621][ T296] ? d_hash_and_lookup+0x1f0/0x1f0 [ 26.745727][ T296] ? lockref_get_not_dead+0xe6/0x1c0 ./strace-static-x86_64: Process 335 attached ./strace-static-x86_64: Process 334 attached [pid 333] <... write resumed>) = 67108864 [pid 335] set_robust_list(0x5555596e66a0, 24 [pid 334] set_robust_list(0x5555596e66a0, 24 [pid 335] <... set_robust_list resumed>) = 0 [pid 334] <... set_robust_list resumed>) = 0 [pid 335] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 334] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 335] <... prctl resumed>) = 0 [pid 334] <... prctl resumed>) = 0 [pid 335] setpgid(0, 0 [pid 334] setpgid(0, 0 [pid 335] <... setpgid resumed>) = 0 [pid 334] <... setpgid resumed>) = 0 [pid 335] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 334] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 335] <... openat resumed>) = 3 [pid 334] <... openat resumed>) = 3 [pid 335] write(3, "1000", 4 [pid 334] write(3, "1000", 4 [pid 335] <... write resumed>) = 4 [pid 334] <... write resumed>) = 4 [pid 335] close(3 [pid 334] close(3 [pid 335] <... close resumed>) = 0 [pid 334] <... close resumed>) = 0 executing program executing program [pid 335] write(1, "executing program\n", 18 [pid 334] write(1, "executing program\n", 18 [pid 335] <... write resumed>) = 18 [pid 334] <... write resumed>) = 18 [pid 335] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 334] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 335] <... futex resumed>) = 0 [pid 334] <... futex resumed>) = 0 [pid 335] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, [pid 334] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, [pid 335] <... rt_sigaction resumed>NULL, 8) = 0 [pid 334] <... rt_sigaction resumed>NULL, 8) = 0 [pid 335] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 334] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 335] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 334] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 335] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 334] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 335] <... mmap resumed>) = 0x7f3eb3bb4000 [pid 334] <... mmap resumed>) = 0x7f3eb3bb4000 [pid 335] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE [pid 334] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE [pid 335] <... mprotect resumed>) = 0 [pid 334] <... mprotect resumed>) = 0 [pid 335] rt_sigprocmask(SIG_BLOCK, ~[], [pid 334] rt_sigprocmask(SIG_BLOCK, ~[], [pid 335] <... rt_sigprocmask resumed>[], 8) = 0 [pid 334] <... rt_sigprocmask resumed>[], 8) = 0 [pid 335] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} [pid 334] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} [pid 335] <... clone3 resumed> => {parent_tid=[336]}, 88) = 336 [pid 334] <... clone3 resumed> => {parent_tid=[337]}, 88) = 337 [pid 335] rt_sigprocmask(SIG_SETMASK, [], [pid 334] rt_sigprocmask(SIG_SETMASK, [], [pid 335] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 334] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 335] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 334] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 335] <... futex resumed>) = 0 [pid 334] <... futex resumed>) = 0 [pid 335] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 334] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 333] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 333] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 333] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 333] ioctl(4, LOOP_CLR_FD) = 0 ./strace-static-x86_64: Process 336 attached [pid 336] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 336] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 336] memfd_create("syzkaller", 0 [pid 333] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [ 26.751018][ T296] __lookup_slow+0x2aa/0x3e0 [ 26.755601][ T296] ? lookup_one_len+0x2c0/0x2c0 [ 26.760441][ T296] ? lookup_fast+0x2fa/0x700 [ 26.765023][ T296] ? link_path_walk+0x915/0xb80 [ 26.769967][ T296] ? __kasan_check_write+0x14/0x20 [ 26.775073][ T296] lookup_slow+0x57/0x70 [ 26.779320][ T296] walk_component+0x325/0x460 [ 26.784002][ T296] path_lookupat+0x180/0x490 [ 26.788596][ T296] filename_lookup+0x1d5/0x600 [ 26.793357][ T296] ? hashlen_string+0x120/0x120 [ 26.798297][ T296] ? getname_flags+0x206/0x500 [pid 333] close(4) = 0 [pid 333] close(3 [pid 336] <... memfd_create resumed>) = 3 [pid 336] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 26.803055][ T296] user_path_at_empty+0x43/0x50 [ 26.807899][ T296] do_sys_truncate+0xa3/0x190 [ 26.812565][ T296] ? locks_verify_truncate+0x170/0x170 [ 26.818041][ T296] ? filp_close+0x105/0x150 [ 26.822558][ T296] __x64_sys_truncate+0x5b/0x70 [ 26.827398][ T296] do_syscall_64+0x31/0x40 [ 26.831803][ T296] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.837684][ T296] RIP: 0033:0x7f3eb3c17539 [ 26.842091][ T296] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 26.861871][ T296] RSP: 002b:00007f3eb3bd4218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 26.870381][ T296] RAX: ffffffffffffffda RBX: 00007f3eb3cae5e8 RCX: 00007f3eb3c17539 [ 26.878695][ T296] RDX: ffffffffffffffb0 RSI: 0000000000001c9e RDI: 0000200000000280 [ 26.886661][ T296] RBP: 00007f3eb3cae5e0 R08: 0000000000000000 R09: 0000000000000000 [ 26.894633][ T296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000080 [pid 294] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 295] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 295] futex(0x7f3eb3cae5fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] futex(0x7f3eb3cae5fc, FUTEX_WAKE_PRIVATE, 1000000 [pid 295] <... futex resumed>) = 0 [pid 294] <... futex resumed>) = 0 [pid 295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 294] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 295] <... mmap resumed>) = 0x7f3eb3b93000 [pid 294] <... mmap resumed>) = 0x7f3eb3b93000 [pid 295] mprotect(0x7f3eb3b94000, 131072, PROT_READ|PROT_WRITE [pid 294] mprotect(0x7f3eb3b94000, 131072, PROT_READ|PROT_WRITE./strace-static-x86_64: Process 337 attached [pid 295] <... mprotect resumed>) = 0 [pid 294] <... mprotect resumed>) = 0 [pid 337] set_robust_list(0x7f3eb3bd49a0, 24 [pid 295] rt_sigprocmask(SIG_BLOCK, ~[], [pid 337] <... set_robust_list resumed>) = 0 [pid 295] <... rt_sigprocmask resumed>[], 8) = 0 [pid 294] rt_sigprocmask(SIG_BLOCK, ~[], [pid 337] rt_sigprocmask(SIG_SETMASK, [], [pid 295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bb3990, parent_tid=0x7f3eb3bb3990, exit_signal=0, stack=0x7f3eb3b93000, stack_size=0x20300, tls=0x7f3eb3bb36c0} [pid 294] <... rt_sigprocmask resumed>[], 8) = 0 [pid 337] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 296] <... truncate resumed>) = -1 EUCLEAN (Structure needs cleaning) [ 26.902596][ T296] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 26.912467][ T296] F2FS-fs (loop1): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 26.925496][ T299] F2FS-fs (loop1): access invalid blkaddr:2147563524 [ 26.932630][ T299] CPU: 1 PID: 299 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 26.941121][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 26.951155][ T299] Call Trace: [ 26.954428][ T299] __dump_stack+0x21/0x24 [ 26.958733][ T299] dump_stack_lvl+0x169/0x1d8 [ 26.963399][ T299] ? _raw_spin_trylock_bh+0x130/0x130 [ 26.968747][ T299] ? show_regs_print_info+0x18/0x18 [ 26.974181][ T299] ? memcpy+0x56/0x70 [ 26.978137][ T299] dump_stack+0x15/0x1c [ 26.982268][ T299] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 26.987699][ T299] f2fs_iget+0x1eb6/0x4dc0 [ 26.992096][ T299] f2fs_lookup+0x3ee/0xce0 [ 26.996491][ T299] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 27.002531][ T299] ? d_hash_and_lookup+0x1f0/0x1f0 [ 27.007618][ T299] ? lockref_get_not_dead+0xe6/0x1c0 [ 27.012878][ T299] __lookup_slow+0x2aa/0x3e0 [ 27.017444][ T299] ? lookup_one_len+0x2c0/0x2c0 [ 27.022270][ T299] ? lookup_fast+0x2fa/0x700 [ 27.026838][ T299] ? link_path_walk+0x915/0xb80 [ 27.031664][ T299] ? __kasan_check_write+0x14/0x20 [ 27.036751][ T299] lookup_slow+0x57/0x70 [ 27.040971][ T299] walk_component+0x325/0x460 [ 27.045625][ T299] path_lookupat+0x180/0x490 [ 27.050188][ T299] filename_lookup+0x1d5/0x600 [ 27.054926][ T299] ? hashlen_string+0x120/0x120 [ 27.059752][ T299] ? getname_flags+0x206/0x500 [ 27.064493][ T299] user_path_at_empty+0x43/0x50 [ 27.069321][ T299] do_sys_truncate+0xa3/0x190 [ 27.073973][ T299] ? locks_verify_truncate+0x170/0x170 [ 27.079407][ T299] ? filp_close+0x105/0x150 [ 27.083885][ T299] __x64_sys_truncate+0x5b/0x70 [ 27.088720][ T299] do_syscall_64+0x31/0x40 [ 27.093201][ T299] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.099070][ T299] RIP: 0033:0x7f3eb3c17539 [ 27.103468][ T299] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 27.123135][ T299] RSP: 002b:00007f3eb3bd4218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 27.131522][ T299] RAX: ffffffffffffffda RBX: 00007f3eb3cae5e8 RCX: 00007f3eb3c17539 [ 27.139481][ T299] RDX: 00007f3eb3c17539 RSI: 0000000000001c9e RDI: 0000200000000280 [ 27.147529][ T299] RBP: 00007f3eb3cae5e0 R08: 0000000000000000 R09: 0000000000000000 [pid 294] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bb3990, parent_tid=0x7f3eb3bb3990, exit_signal=0, stack=0x7f3eb3b93000, stack_size=0x20300, tls=0x7f3eb3bb36c0}./strace-static-x86_64: Process 338 attached [pid 337] memfd_create("syzkaller", 0 [pid 295] <... clone3 resumed> => {parent_tid=[338]}, 88) = 338 [pid 338] set_robust_list(0x7f3eb3bb39a0, 24) = 0 [pid 295] rt_sigprocmask(SIG_SETMASK, [], [pid 294] <... clone3 resumed> => {parent_tid=[339]}, 88) = 339 [pid 295] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 294] rt_sigprocmask(SIG_SETMASK, [], [pid 295] futex(0x7f3eb3cae5f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 295] <... futex resumed>) = 0 [pid 294] futex(0x7f3eb3cae5f8, FUTEX_WAKE_PRIVATE, 1000000 [pid 337] <... memfd_create resumed>) = 3 [pid 295] futex(0x7f3eb3cae5fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 294] <... futex resumed>) = 0 [pid 337] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 296] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 294] futex(0x7f3eb3cae5fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... mmap resumed>) = 0x7f3eab7b4000 [pid 296] <... futex resumed>) = 0 [pid 338] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 338] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 296] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 339 attached [pid 339] set_robust_list(0x7f3eb3bb39a0, 24) = 0 [pid 339] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 339] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 299] <... truncate resumed>) = -1 EUCLEAN (Structure needs cleaning) [pid 299] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [ 27.155479][ T299] R10: 00000000000105aa R11: 0000000000000246 R12: 0000200000000080 [ 27.163445][ T299] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 27.174610][ T299] F2FS-fs (loop1): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 27.187953][ T338] F2FS-fs (loop1): access invalid blkaddr:2147563524 [ 27.196486][ T338] CPU: 0 PID: 338 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 27.205075][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 27.215117][ T338] Call Trace: [ 27.218400][ T338] __dump_stack+0x21/0x24 [ 27.222978][ T338] dump_stack_lvl+0x169/0x1d8 [ 27.227643][ T338] ? _raw_write_trylock+0x140/0x140 [ 27.232838][ T338] ? pagecache_get_page+0x848/0x930 [ 27.238033][ T338] ? show_regs_print_info+0x18/0x18 [ 27.243220][ T338] dump_stack+0x15/0x1c [ 27.247361][ T338] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 27.252809][ T338] f2fs_iget+0x1eb6/0x4dc0 [ 27.257218][ T338] f2fs_lookup+0x3ee/0xce0 [ 27.261625][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 27.267681][ T338] ? d_hash_and_lookup+0x1f0/0x1f0 [ 27.272788][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 27.278846][ T338] path_openat+0x1127/0x3160 [ 27.283432][ T338] ? do_filp_open+0x3e0/0x3e0 [ 27.288196][ T338] do_filp_open+0x1b3/0x3e0 [ 27.292688][ T338] ? vfs_tmpfile+0x2c0/0x2c0 [ 27.297268][ T338] ? get_unused_fd_flags+0x92/0xa0 [ 27.302367][ T338] do_sys_openat2+0x14c/0x6d0 [ 27.307038][ T338] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.312222][ T338] ? do_sys_open+0xe0/0xe0 [ 27.316713][ T338] ? do_notify_parent+0x7e0/0x7e0 [ 27.321726][ T338] ? fpu__clear_all+0x20/0x20 [ 27.326397][ T338] __x64_sys_openat+0x136/0x160 [ 27.331241][ T338] do_syscall_64+0x31/0x40 [ 27.335647][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.341523][ T338] RIP: 0033:0x7f3eb3c17539 [ 27.345927][ T338] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 27.365615][ T338] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 27.374027][ T338] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 27.381995][ T338] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 27.389963][ T338] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 27.397934][ T338] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [pid 299] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 295] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 294] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 295] exit_group(0 [pid 294] exit_group(0 [pid 296] <... futex resumed>) = ? [pid 295] <... exit_group resumed>) = ? [pid 294] <... exit_group resumed>) = ? [pid 296] +++ exited with 0 +++ [pid 333] <... close resumed>) = 0 [pid 333] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 27.405901][ T338] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 27.414429][ T338] ================================================================== [ 27.422513][ T338] BUG: KASAN: use-after-free in f2fs_iget+0x43aa/0x4dc0 [ 27.429441][ T338] Read of size 4 at addr ffff88812141bf78 by task syz-executor150/338 [ 27.437652][ T338] [ 27.439973][ T338] CPU: 0 PID: 338 Comm: syz-executor150 Not tainted 5.10.240-syzkaller #0 [ 27.448534][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 27.458572][ T338] Call Trace: [ 27.462032][ T338] __dump_stack+0x21/0x24 [ 27.466355][ T338] dump_stack_lvl+0x169/0x1d8 [ 27.471021][ T338] ? show_regs_print_info+0x18/0x18 [ 27.476301][ T338] ? thaw_kernel_threads+0x220/0x220 [ 27.481571][ T338] ? pagecache_get_page+0x848/0x930 [ 27.486760][ T338] print_address_description+0x7f/0x2c0 [ 27.492382][ T338] ? f2fs_iget+0x43aa/0x4dc0 [ 27.496965][ T338] kasan_report+0xe2/0x130 [ 27.501368][ T338] ? f2fs_iget+0x43aa/0x4dc0 [ 27.505947][ T338] __asan_report_load4_noabort+0x14/0x20 [ 27.511573][ T338] f2fs_iget+0x43aa/0x4dc0 [ 27.516162][ T338] f2fs_lookup+0x3ee/0xce0 [ 27.520655][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 27.526709][ T338] ? d_hash_and_lookup+0x1f0/0x1f0 [ 27.531813][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 27.537871][ T338] path_openat+0x1127/0x3160 [ 27.542450][ T338] ? do_filp_open+0x3e0/0x3e0 [ 27.547118][ T338] do_filp_open+0x1b3/0x3e0 [ 27.551606][ T338] ? vfs_tmpfile+0x2c0/0x2c0 [ 27.556182][ T338] ? get_unused_fd_flags+0x92/0xa0 [ 27.561282][ T338] do_sys_openat2+0x14c/0x6d0 [ 27.565955][ T338] ? _raw_spin_unlock_irq+0x4e/0x70 [ 27.571142][ T338] ? do_sys_open+0xe0/0xe0 [ 27.575545][ T338] ? do_notify_parent+0x7e0/0x7e0 [ 27.580567][ T338] ? fpu__clear_all+0x20/0x20 [ 27.585238][ T338] __x64_sys_openat+0x136/0x160 [ 27.590079][ T338] do_syscall_64+0x31/0x40 [ 27.594493][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.600377][ T338] RIP: 0033:0x7f3eb3c17539 [ 27.604784][ T338] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 27.624395][ T338] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 27.632807][ T338] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 27.640780][ T338] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 27.648743][ T338] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 27.656798][ T338] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [ 27.664763][ T338] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 27.672829][ T338] [ 27.675151][ T338] Allocated by task 299: [ 27.679385][ T338] __kasan_slab_alloc+0xbd/0xf0 [ 27.684231][ T338] slab_post_alloc_hook+0x5d/0x2f0 [ 27.689424][ T338] kmem_cache_alloc+0x165/0x2e0 [ 27.694270][ T338] f2fs_init_extent_tree+0x4bd/0xc40 [ 27.699548][ T338] f2fs_iget+0x1225/0x4dc0 [ 27.703955][ T338] f2fs_lookup+0x3ee/0xce0 [ 27.708380][ T338] __lookup_slow+0x2aa/0x3e0 [ 27.712967][ T338] lookup_slow+0x57/0x70 [ 27.717297][ T338] walk_component+0x325/0x460 [ 27.721978][ T338] path_lookupat+0x180/0x490 [ 27.726562][ T338] filename_lookup+0x1d5/0x600 [ 27.731323][ T338] user_path_at_empty+0x43/0x50 [ 27.736169][ T338] do_sys_truncate+0xa3/0x190 [ 27.740850][ T338] __x64_sys_truncate+0x5b/0x70 [ 27.745696][ T338] do_syscall_64+0x31/0x40 [ 27.750125][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.756011][ T338] [pid 333] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULLexecuting program [pid 332] <... futex resumed>) = 0 [pid 299] <... futex resumed>) = ? [pid 332] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 333] <... futex resumed>) = 0 [pid 332] <... futex resumed>) = 1 [pid 333] truncate("./file3", 7326 [pid 332] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 333] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 333] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 332] <... futex resumed>) = 0 [pid 333] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 332] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 333] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 332] <... futex resumed>) = 0 [pid 333] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 332] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 333] <... futex resumed>) = 0 [pid 332] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 333] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 332] exit_group(0 [pid 333] <... futex resumed>) = ? [pid 332] <... exit_group resumed>) = ? [pid 333] +++ exited with 0 +++ [pid 332] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=332, si_uid=0, si_status=0, si_utime=17, si_stime=31} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 340 ./strace-static-x86_64: Process 340 attached [pid 340] set_robust_list(0x5555596e66a0, 24) = 0 [pid 340] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 340] setpgid(0, 0) = 0 [pid 340] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 340] write(3, "1000", 4) = 4 [pid 340] close(3) = 0 [pid 340] write(1, "executing program\n", 18) = 18 [pid 340] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 340] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 340] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 340] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 340] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 340] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[341]}, 88) = 341 [pid 340] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 340] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 336] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 337] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 299] +++ exited with 0 +++ [ 27.758335][ T338] Freed by task 299: [ 27.762234][ T338] kasan_set_track+0x4a/0x70 [ 27.766909][ T338] kasan_set_free_info+0x23/0x40 [ 27.771839][ T338] ____kasan_slab_free+0x125/0x160 [ 27.776944][ T338] __kasan_slab_free+0x11/0x20 [ 27.781702][ T338] slab_free_freelist_hook+0xc5/0x190 [ 27.787068][ T338] kmem_cache_free+0x100/0x2d0 [ 27.791830][ T338] f2fs_destroy_extent_tree+0x2c0/0x4b0 [ 27.797371][ T338] f2fs_evict_inode+0x430/0x1420 [ 27.802304][ T338] evict+0x478/0x910 [ 27.806204][ T338] iput+0x638/0x7c0 [ 27.810105][ T338] iget_failed+0x17a/0x1c0 [ 27.814519][ T338] f2fs_iget+0x2571/0x4dc0 [ 27.818930][ T338] f2fs_lookup+0x3ee/0xce0 [ 27.823349][ T338] __lookup_slow+0x2aa/0x3e0 [ 27.827963][ T338] lookup_slow+0x57/0x70 [ 27.832211][ T338] walk_component+0x325/0x460 [ 27.836887][ T338] path_lookupat+0x180/0x490 [ 27.841489][ T338] filename_lookup+0x1d5/0x600 [ 27.846261][ T338] user_path_at_empty+0x43/0x50 [ 27.851110][ T338] do_sys_truncate+0xa3/0x190 [ 27.855782][ T338] __x64_sys_truncate+0x5b/0x70 [ 27.860628][ T338] do_syscall_64+0x31/0x40 [ 27.865052][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 27.871072][ T338] [ 27.873411][ T338] The buggy address belongs to the object at ffff88812141bf50 [ 27.873411][ T338] which belongs to the cache f2fs_extent_tree of size 80 [ 27.887817][ T338] The buggy address is located 40 bytes inside of [ 27.887817][ T338] 80-byte region [ffff88812141bf50, ffff88812141bfa0) [ 27.901026][ T338] The buggy address belongs to the page: [ 27.906751][ T338] page:ffffea00048506c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12141b [ 27.916991][ T338] flags: 0x4000000000000200(slab) [ 27.922025][ T338] raw: 4000000000000200 dead000000000100 dead000000000122 ffff888102791500 [ 27.930612][ T338] raw: 0000000000000000 0000000080240024 00000001ffffffff 0000000000000000 [ 27.939183][ T338] page dumped because: kasan: bad access detected [ 27.945587][ T338] page_owner tracks the page as allocated [ 27.951327][ T338] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0x12c50(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_RECLAIMABLE), pid 318, ts 25328906639, free_ts 0 [ 27.968073][ T338] prep_new_page+0x179/0x180 [ 27.972665][ T338] get_page_from_freelist+0x2235/0x23d0 [ 27.978210][ T338] __alloc_pages_nodemask+0x268/0x5f0 [ 27.983582][ T338] new_slab+0x84/0x3f0 [ 27.987644][ T338] ___slab_alloc+0x2a6/0x450 [ 27.992228][ T338] __slab_alloc+0x63/0xa0 [ 27.996551][ T338] kmem_cache_alloc+0x1af/0x2e0 [ 28.001399][ T338] f2fs_init_extent_tree+0x4bd/0xc40 [ 28.006677][ T338] f2fs_iget+0x1225/0x4dc0 [ 28.011084][ T338] f2fs_lookup+0x3ee/0xce0 [ 28.015490][ T338] path_openat+0x1127/0x3160 [ 28.020067][ T338] do_filp_open+0x1b3/0x3e0 [ 28.024568][ T338] do_sys_openat2+0x14c/0x6d0 [ 28.029290][ T338] __x64_sys_openat+0x136/0x160 [ 28.034129][ T338] do_syscall_64+0x31/0x40 [ 28.038540][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.044415][ T338] page_owner free stack trace missing [ 28.049776][ T338] [ 28.052091][ T338] Memory state around the buggy address: [ 28.057715][ T338] ffff88812141be00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 28.065771][ T338] ffff88812141be80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 28.073826][ T338] >ffff88812141bf00: fc fc fc fc fc fc fc fc fc fc fa fb fb fb fb fb [ 28.081879][ T338] ^ [ 28.089880][ T338] ffff88812141bf80: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc [ 28.097932][ T338] ffff88812141c000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [pid 336] <... write resumed>) = 67108864 [pid 336] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 336] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 336] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 336] ioctl(4, LOOP_CLR_FD) = 0 [pid 336] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 336] close(4) = 0 [pid 336] close(3 [pid 337] <... write resumed>) = 67108864 [pid 337] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 337] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 337] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 337] ioctl(4, LOOP_CLR_FD) = 0 [pid 337] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 337] close(4) = 0 [pid 337] close(3./strace-static-x86_64: Process 341 attached [pid 341] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [ 28.105987][ T338] ================================================================== [ 28.114044][ T338] Disabling lock debugging due to kernel taint [ 28.121058][ T338] F2FS-fs (loop1): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [ 28.133560][ T24] audit: type=1400 audit(1754741452.080:71): avc: denied { read } for pid=76 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 28.155410][ T338] ================================================================== [ 28.163486][ T338] BUG: KASAN: double-free or invalid-free in kmem_cache_free+0x100/0x2d0 [ 28.171888][ T338] [ 28.174364][ T338] CPU: 0 PID: 338 Comm: syz-executor150 Tainted: G B 5.10.240-syzkaller #0 [ 28.184242][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 28.194376][ T338] Call Trace: [ 28.197672][ T338] __dump_stack+0x21/0x24 [ 28.202000][ T338] dump_stack_lvl+0x169/0x1d8 [pid 336] <... close resumed>) = 0 [pid 336] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [ 28.206677][ T338] ? show_regs_print_info+0x18/0x18 [ 28.211863][ T338] ? thaw_kernel_threads+0x220/0x220 [ 28.217141][ T338] print_address_description+0x7f/0x2c0 [ 28.222681][ T338] ? kmem_cache_free+0x100/0x2d0 [ 28.227609][ T338] kasan_report_invalid_free+0x3f/0x70 [ 28.233068][ T338] ? kmem_cache_free+0x100/0x2d0 [ 28.237727][ T24] audit: type=1400 audit(1754741452.080:72): avc: denied { search } for pid=76 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.237996][ T338] ____kasan_slab_free+0x13d/0x160 [ 28.264248][ T338] __kasan_slab_free+0x11/0x20 [ 28.269003][ T338] slab_free_freelist_hook+0xc5/0x190 [ 28.274377][ T338] ? f2fs_destroy_extent_tree+0x2c0/0x4b0 [ 28.280090][ T338] kmem_cache_free+0x100/0x2d0 [ 28.281024][ T24] audit: type=1400 audit(1754741452.080:73): avc: denied { write } for pid=76 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 28.284844][ T338] f2fs_destroy_extent_tree+0x2c0/0x4b0 [pid 336] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 337] <... close resumed>) = 0 [pid 337] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 337] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 341] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 341] memfd_create("syzkaller", 0) = 3 [pid 341] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 28.311448][ T338] f2fs_evict_inode+0x430/0x1420 [ 28.316381][ T338] ? f2fs_write_inode+0x7f0/0x7f0 [ 28.321489][ T338] ? bit_waitqueue+0x30/0x30 [ 28.326071][ T338] ? printk+0xcc/0x110 [ 28.330130][ T338] ? f2fs_write_inode+0x7f0/0x7f0 [ 28.335181][ T338] evict+0x478/0x910 [ 28.339073][ T338] ? mode_strip_sgid+0x160/0x160 [ 28.344005][ T338] ? ktime_get_coarse_real_ts64+0xe1/0xf0 [ 28.349714][ T338] ? __kasan_check_read+0x11/0x20 [ 28.354729][ T338] ? f2fs_drop_inode+0x174/0x960 [ 28.359922][ T338] iput+0x638/0x7c0 [ 28.363718][ T338] iget_failed+0x17a/0x1c0 [ 28.368122][ T338] f2fs_iget+0x2571/0x4dc0 [ 28.372531][ T338] f2fs_lookup+0x3ee/0xce0 [ 28.376934][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 28.382987][ T338] ? d_hash_and_lookup+0x1f0/0x1f0 [ 28.388086][ T338] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 28.394151][ T338] path_openat+0x1127/0x3160 [ 28.398735][ T338] ? do_filp_open+0x3e0/0x3e0 [ 28.403403][ T338] do_filp_open+0x1b3/0x3e0 [pid 335] <... futex resumed>) = 0 [pid 334] <... futex resumed>) = 0 [pid 335] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 334] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 337] <... futex resumed>) = 0 [pid 336] <... futex resumed>) = 0 [pid 335] <... futex resumed>) = 1 [pid 334] <... futex resumed>) = 1 [pid 337] truncate("./file3", 7326 [pid 336] truncate("./file3", 7326 [pid 335] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 334] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 336] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 337] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 337] <... futex resumed>) = 1 [pid 336] <... futex resumed>) = 1 [pid 335] <... futex resumed>) = 0 [pid 334] <... futex resumed>) = 0 [pid 337] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 336] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 335] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 334] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 337] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 336] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 335] <... futex resumed>) = 0 [pid 334] <... futex resumed>) = 0 [pid 337] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 336] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 335] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 334] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 337] <... futex resumed>) = 0 [pid 336] <... futex resumed>) = 0 [pid 335] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 334] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 28.407891][ T338] ? vfs_tmpfile+0x2c0/0x2c0 [ 28.412468][ T338] ? get_unused_fd_flags+0x92/0xa0 [ 28.417562][ T338] do_sys_openat2+0x14c/0x6d0 [ 28.422225][ T338] ? _raw_spin_unlock_irq+0x4e/0x70 [ 28.427492][ T338] ? do_sys_open+0xe0/0xe0 [ 28.431896][ T338] ? do_notify_parent+0x7e0/0x7e0 [ 28.436912][ T338] ? fpu__clear_all+0x20/0x20 [ 28.441573][ T338] __x64_sys_openat+0x136/0x160 [ 28.446419][ T338] do_syscall_64+0x31/0x40 [ 28.450830][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.456712][ T338] RIP: 0033:0x7f3eb3c17539 [pid 337] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 336] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 335] exit_group(0 [ 28.461120][ T338] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 28.480725][ T338] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 28.489412][ T338] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 28.497501][ T338] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 28.505564][ T338] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 28.513541][ T338] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 [ 28.521508][ T338] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [ 28.529487][ T338] [ 28.531804][ T338] Allocated by task 299: [ 28.536047][ T338] __kasan_slab_alloc+0xbd/0xf0 [ 28.540910][ T338] slab_post_alloc_hook+0x5d/0x2f0 [ 28.546009][ T338] kmem_cache_alloc+0x165/0x2e0 [ 28.550857][ T338] f2fs_init_extent_tree+0x4bd/0xc40 [ 28.556313][ T338] f2fs_iget+0x1225/0x4dc0 [ 28.560719][ T338] f2fs_lookup+0x3ee/0xce0 [ 28.565126][ T338] __lookup_slow+0x2aa/0x3e0 [ 28.569705][ T338] lookup_slow+0x57/0x70 [ 28.574024][ T338] walk_component+0x325/0x460 [ 28.578777][ T338] path_lookupat+0x180/0x490 [ 28.583554][ T338] filename_lookup+0x1d5/0x600 [ 28.588314][ T338] user_path_at_empty+0x43/0x50 [ 28.593172][ T338] do_sys_truncate+0xa3/0x190 [ 28.597843][ T338] __x64_sys_truncate+0x5b/0x70 [ 28.602687][ T338] do_syscall_64+0x31/0x40 [ 28.607097][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.612978][ T338] [ 28.615395][ T338] Freed by task 299: [ 28.619288][ T338] kasan_set_track+0x4a/0x70 [ 28.624057][ T338] kasan_set_free_info+0x23/0x40 [ 28.629006][ T338] ____kasan_slab_free+0x125/0x160 [ 28.634133][ T338] __kasan_slab_free+0x11/0x20 [ 28.638892][ T338] slab_free_freelist_hook+0xc5/0x190 [ 28.644267][ T338] kmem_cache_free+0x100/0x2d0 [ 28.649030][ T338] f2fs_destroy_extent_tree+0x2c0/0x4b0 [ 28.654581][ T338] f2fs_evict_inode+0x430/0x1420 [pid 334] exit_group(0 [pid 337] <... futex resumed>) = ? [pid 336] <... futex resumed>) = ? [pid 335] <... exit_group resumed>) = ? [pid 334] <... exit_group resumed>) = ? [pid 337] +++ exited with 0 +++ [pid 336] +++ exited with 0 +++ [pid 335] +++ exited with 0 +++ [pid 334] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=334, si_uid=0, si_status=0, si_utime=16, si_stime=33} --- [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=335, si_uid=0, si_status=0, si_utime=15, si_stime=34} --- [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 286] <... openat resumed>) = 3 [pid 285] <... openat resumed>) = 3 [pid 286] ioctl(3, LOOP_CLR_FD [pid 285] ioctl(3, LOOP_CLR_FD [pid 286] <... ioctl resumed>) = 0 [pid 285] <... ioctl resumed>) = 0 [pid 286] close(3 [ 28.659514][ T338] evict+0x478/0x910 [ 28.663401][ T338] iput+0x638/0x7c0 [ 28.667206][ T338] iget_failed+0x17a/0x1c0 [ 28.671613][ T338] f2fs_iget+0x2571/0x4dc0 [ 28.676028][ T338] f2fs_lookup+0x3ee/0xce0 [ 28.680435][ T338] __lookup_slow+0x2aa/0x3e0 [ 28.685019][ T338] lookup_slow+0x57/0x70 [ 28.689252][ T338] walk_component+0x325/0x460 [ 28.693916][ T338] path_lookupat+0x180/0x490 [ 28.698501][ T338] filename_lookup+0x1d5/0x600 [ 28.703270][ T338] user_path_at_empty+0x43/0x50 [ 28.708132][ T338] do_sys_truncate+0xa3/0x190 [ 28.712803][ T338] __x64_sys_truncate+0x5b/0x70 [ 28.717745][ T338] do_syscall_64+0x31/0x40 [ 28.722149][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.728021][ T338] [ 28.730344][ T338] The buggy address belongs to the object at ffff88812141bf50 [ 28.730344][ T338] which belongs to the cache f2fs_extent_tree of size 80 [ 28.744745][ T338] The buggy address is located 0 bytes inside of [ 28.744745][ T338] 80-byte region [ffff88812141bf50, ffff88812141bfa0) [ 28.757747][ T338] The buggy address belongs to the page: [ 28.763387][ T338] page:ffffea00048506c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x12141b [ 28.773617][ T338] flags: 0x4000000000000200(slab) [ 28.778635][ T338] raw: 4000000000000200 dead000000000100 dead000000000122 ffff888102791500 [ 28.787218][ T338] raw: 0000000000000000 0000000080240024 00000001ffffffff 0000000000000000 [ 28.795792][ T338] page dumped because: kasan: bad access detected [ 28.802202][ T338] page_owner tracks the page as allocated [ 28.807922][ T338] page last allocated via order 0, migratetype Reclaimable, gfp_mask 0x12c50(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_RECLAIMABLE), pid 318, ts 25328906639, free_ts 0 [ 28.824581][ T338] prep_new_page+0x179/0x180 [ 28.829175][ T338] get_page_from_freelist+0x2235/0x23d0 [ 28.834723][ T338] __alloc_pages_nodemask+0x268/0x5f0 [ 28.840085][ T338] new_slab+0x84/0x3f0 [ 28.844153][ T338] ___slab_alloc+0x2a6/0x450 [ 28.848762][ T338] __slab_alloc+0x63/0xa0 [ 28.853084][ T338] kmem_cache_alloc+0x1af/0x2e0 [ 28.857944][ T338] f2fs_init_extent_tree+0x4bd/0xc40 [ 28.863316][ T338] f2fs_iget+0x1225/0x4dc0 [ 28.867815][ T338] f2fs_lookup+0x3ee/0xce0 [ 28.872228][ T338] path_openat+0x1127/0x3160 [ 28.876900][ T338] do_filp_open+0x1b3/0x3e0 [ 28.881397][ T338] do_sys_openat2+0x14c/0x6d0 [ 28.886074][ T338] __x64_sys_openat+0x136/0x160 [ 28.891103][ T338] do_syscall_64+0x31/0x40 [ 28.895522][ T338] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 28.901506][ T338] page_owner free stack trace missing [ 28.906873][ T338] [ 28.909190][ T338] Memory state around the buggy address: [ 28.914826][ T338] ffff88812141be00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 28.922893][ T338] ffff88812141be80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 28.930951][ T338] >ffff88812141bf00: fc fc fc fc fc fc fc fc fc fc fa fb fb fb fb fb [ 28.938999][ T338] ^ [ 28.945666][ T338] ffff88812141bf80: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc [ 28.953725][ T338] ffff88812141c000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [pid 285] close(3executing program executing program [pid 286] <... close resumed>) = 0 [pid 285] <... close resumed>) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 286] <... clone resumed>, child_tidptr=0x5555596e6690) = 343 [pid 285] <... clone resumed>, child_tidptr=0x5555596e6690) = 342 ./strace-static-x86_64: Process 343 attached [pid 343] set_robust_list(0x5555596e66a0, 24) = 0 [pid 343] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 343] setpgid(0, 0) = 0 [pid 343] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 343] write(3, "1000", 4) = 4 [pid 343] close(3) = 0 [pid 343] write(1, "executing program\n", 18) = 18 [pid 343] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 343] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 343] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 343] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 343] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 343] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 343] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[344]}, 88) = 344 [pid 343] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 343] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 343] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 341] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864./strace-static-x86_64: Process 342 attached [pid 342] set_robust_list(0x5555596e66a0, 24) = 0 [pid 342] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 342] setpgid(0, 0) = 0 [pid 342] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 342] write(3, "1000", 4) = 4 [pid 342] close(3) = 0 [pid 342] write(1, "executing program\n", 18) = 18 [pid 342] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 342] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 342] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 342] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 342] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 342] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 342] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[345]}, 88) = 345 [pid 342] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 342] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 342] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 344 attached [pid 344] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 344] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 344] memfd_create("syzkaller", 0) = 3 [pid 344] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 341] <... write resumed>) = 67108864 [pid 341] munmap(0x7f3eab7b4000, 138412032 [pid 284] kill(-295, SIGKILL [pid 283] kill(-294, SIGKILL [pid 284] <... kill resumed>) = 0 [pid 283] <... kill resumed>) = 0 [pid 284] kill(295, SIGKILL [pid 283] kill(294, SIGKILL [pid 284] <... kill resumed>) = 0 [pid 283] <... kill resumed>) = 0 [pid 341] <... munmap resumed>) = 0 [pid 341] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 341] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 341] ioctl(4, LOOP_CLR_FD) = 0 [pid 341] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 341] close(4) = 0 [pid 341] close(3./strace-static-x86_64: Process 345 attached [pid 338] <... openat resumed>) = ? [pid 345] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 338] +++ exited with 0 +++ [pid 295] +++ exited with 0 +++ [pid 345] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 345] memfd_create("syzkaller", 0 [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=295, si_uid=0, si_status=0, si_utime=18, si_stime=38} --- [pid 345] <... memfd_create resumed>) = 3 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 345] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 284] <... openat resumed>) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 346 ./strace-static-x86_64: Process 346 attached [pid 346] set_robust_list(0x5555596e66a0, 24) = 0 [pid 346] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 28.962048][ T338] ================================================================== [ 28.974884][ T339] F2FS-fs (loop1): access invalid blkaddr:2147563524 [ 29.001030][ T339] CPU: 0 PID: 339 Comm: syz-executor150 Tainted: G B 5.10.240-syzkaller #0 [pid 346] setpgid(0, 0executing program ) = 0 [pid 346] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 346] write(3, "1000", 4) = 4 [pid 346] close(3) = 0 [pid 346] write(1, "executing program\n", 18) = 18 [pid 346] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 346] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 346] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 346] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 346] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 346] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 346] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[347]}, 88) = 347 [pid 346] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 346] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 346] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 347 attached [pid 347] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 347] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 347] memfd_create("syzkaller", 0) = 3 [pid 347] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 283] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 283] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 283] getdents64(3, 0x5555596e7730 /* 2 entries */, 32768) = 48 [pid 283] getdents64(3, 0x5555596e7730 /* 0 entries */, 32768) = 0 [pid 283] close(3) = 0 [ 29.010946][ T339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 29.020997][ T339] Call Trace: [ 29.024300][ T339] __dump_stack+0x21/0x24 [ 29.028622][ T339] dump_stack_lvl+0x169/0x1d8 [ 29.033381][ T339] ? _raw_spin_trylock_bh+0x130/0x130 [ 29.038747][ T339] ? show_regs_print_info+0x18/0x18 [ 29.044023][ T339] ? memcpy+0x56/0x70 [ 29.048000][ T339] dump_stack+0x15/0x1c [ 29.052145][ T339] f2fs_is_valid_blkaddr+0xc8c/0x1360 [ 29.057513][ T339] f2fs_iget+0x1eb6/0x4dc0 [ 29.061934][ T339] f2fs_lookup+0x3ee/0xce0 [ 29.066352][ T339] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 29.072412][ T339] ? d_hash_and_lookup+0x1f0/0x1f0 [ 29.077518][ T339] ? f2fs_encrypted_symlink_getattr+0x40/0x40 [ 29.083578][ T339] path_openat+0x1127/0x3160 [ 29.088167][ T339] ? do_filp_open+0x3e0/0x3e0 [ 29.092842][ T339] do_filp_open+0x1b3/0x3e0 [ 29.097336][ T339] ? vfs_tmpfile+0x2c0/0x2c0 [ 29.101926][ T339] ? get_unused_fd_flags+0x92/0xa0 [ 29.107025][ T339] do_sys_openat2+0x14c/0x6d0 [pid 341] <... close resumed>) = 0 [pid 341] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 340] <... futex resumed>) = 0 [pid 340] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 341] <... futex resumed>) = 1 [pid 341] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 341] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 340] <... futex resumed>) = 0 [pid 340] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 340] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 341] <... futex resumed>) = 1 [pid 341] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [ 29.111696][ T339] ? _raw_spin_unlock_irq+0x4e/0x70 [ 29.116888][ T339] ? do_sys_open+0xe0/0xe0 [ 29.121297][ T339] ? do_notify_parent+0x7e0/0x7e0 [ 29.126313][ T339] ? fpu__clear_all+0x20/0x20 [ 29.130983][ T339] __x64_sys_openat+0x136/0x160 [ 29.135825][ T339] do_syscall_64+0x31/0x40 [ 29.140232][ T339] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 29.146113][ T339] RIP: 0033:0x7f3eb3c17539 [pid 341] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 340] <... futex resumed>) = 0 [pid 340] exit_group(0) = ? [pid 341] <... futex resumed>) = ? [pid 341] +++ exited with 0 +++ [pid 340] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=340, si_uid=0, si_status=0, si_utime=16, si_stime=30} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 348 ./strace-static-x86_64: Process 348 attached [pid 348] set_robust_list(0x5555596e66a0, 24) = 0 [pid 348] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 348] setpgid(0, 0) = 0 [pid 348] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 348] write(3, "1000", 4) = 4 [ 29.150633][ T339] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 29.170590][ T339] RSP: 002b:00007f3eb3bb3218 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 29.179029][ T339] RAX: ffffffffffffffda RBX: 00007f3eb3cae5f8 RCX: 00007f3eb3c17539 [ 29.186998][ T339] RDX: 0000000000101000 RSI: 0000200000000080 RDI: 00000000ffffff9c [ 29.194971][ T339] RBP: 00007f3eb3cae5f0 R08: 00007ffd73bbb287 R09: 0000000000000000 [ 29.202943][ T339] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000080 executing program [pid 348] close(3) = 0 [pid 348] write(1, "executing program\n", 18) = 18 [pid 348] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 348] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 348] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 348] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 348] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 348] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 348] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[349]}, 88) = 349 [pid 348] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 348] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 348] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 349 attached [pid 349] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 349] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 349] memfd_create("syzkaller", 0) = 3 [pid 349] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [ 29.211003][ T339] R13: 0000200000000280 R14: 0032656c69662f2e R15: 0033656c69662f2e [pid 344] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 347] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 345] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 349] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 339] <... openat resumed>) = ? [pid 339] +++ exited with 0 +++ [pid 294] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=294, si_uid=0, si_status=0, si_utime=16, si_stime=37} --- [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 350 [pid 344] <... write resumed>) = 67108864 ./strace-static-x86_64: Process 350 attached [pid 350] set_robust_list(0x5555596e66a0, 24) = 0 [pid 350] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 350] setpgid(0, 0) = 0 [pid 350] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 29.670614][ T339] F2FS-fs (loop1): sanity_check_inode: inode (ino=8) extent info [14338, 0, 2147549187] is incorrect, run fsck to fix [pid 350] write(3, "1000", 4) = 4 [pid 350] close(3) = 0 executing program [pid 350] write(1, "executing program\n", 18) = 18 [pid 350] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 350] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 350] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 350] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 350] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 350] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 350] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[351]}, 88) = 351 [pid 350] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 350] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 350] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 344] munmap(0x7f3eab7b4000, 138412032./strace-static-x86_64: Process 351 attached [pid 351] set_robust_list(0x7f3eb3bd49a0, 24 [pid 344] <... munmap resumed>) = 0 [pid 351] <... set_robust_list resumed>) = 0 [pid 344] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 351] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 344] <... openat resumed>) = 4 [pid 351] memfd_create("syzkaller", 0 [pid 344] ioctl(4, LOOP_SET_FD, 3 [pid 351] <... memfd_create resumed>) = 3 [pid 344] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 351] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 344] ioctl(4, LOOP_CLR_FD [pid 351] <... mmap resumed>) = 0x7f3eab7b4000 [pid 344] <... ioctl resumed>) = 0 [pid 344] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 344] close(4) = 0 [pid 344] close(3 [pid 347] <... write resumed>) = 67108864 [pid 347] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 347] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 347] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 347] ioctl(4, LOOP_CLR_FD) = 0 [pid 347] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 347] close(4) = 0 [pid 347] close(3 [pid 344] <... close resumed>) = 0 [pid 344] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 343] <... futex resumed>) = 0 [pid 344] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 343] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 344] <... futex resumed>) = 0 [pid 343] <... futex resumed>) = 1 [pid 344] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 343] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 344] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 343] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 344] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 343] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 344] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 343] <... futex resumed>) = 0 [pid 344] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 343] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 344] <... futex resumed>) = 0 [pid 344] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 343] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 343] exit_group(0 [pid 344] <... futex resumed>) = ? [pid 343] <... exit_group resumed>) = ? [pid 344] +++ exited with 0 +++ [pid 343] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=343, si_uid=0, si_status=0, si_utime=17, si_stime=30} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 352 ./strace-static-x86_64: Process 352 attached [pid 352] set_robust_list(0x5555596e66a0, 24) = 0 [pid 352] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 352] setpgid(0, 0) = 0 [pid 352] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 352] write(3, "1000", 4) = 4 [pid 352] close(3) = 0 [pid 352] write(1, "executing program\n", 18executing program ) = 18 [pid 352] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 352] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 352] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 352] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 352] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 352] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 352] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[353]}, 88) = 353 [pid 352] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 352] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 352] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 353 attached [pid 353] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 353] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 353] memfd_create("syzkaller", 0) = 3 [pid 353] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 349] <... write resumed>) = 67108864 [pid 349] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 349] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 349] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 349] ioctl(4, LOOP_CLR_FD) = 0 [pid 349] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 349] close(4) = 0 [pid 349] close(3 [pid 345] <... write resumed>) = 67108864 [pid 345] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 345] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 345] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 345] ioctl(4, LOOP_CLR_FD) = 0 [pid 345] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 345] close(4) = 0 [pid 345] close(3 [pid 347] <... close resumed>) = 0 [pid 347] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 346] <... futex resumed>) = 0 [pid 346] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 346] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 347] <... futex resumed>) = 1 [pid 347] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 347] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 346] <... futex resumed>) = 0 [pid 346] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 346] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 347] <... futex resumed>) = 1 [pid 347] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 347] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 346] <... futex resumed>) = 0 [pid 346] exit_group(0) = ? [pid 347] <... futex resumed>) = ? [pid 347] +++ exited with 0 +++ [pid 346] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=346, si_uid=0, si_status=0, si_utime=15, si_stime=37} --- [pid 284] restart_syscall(<... resuming interrupted clone ...> [pid 351] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 284] <... restart_syscall resumed>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 354 ./strace-static-x86_64: Process 354 attached [pid 354] set_robust_list(0x5555596e66a0, 24) = 0 [pid 354] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 354] setpgid(0, 0) = 0 [pid 354] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 354] write(3, "1000", 4) = 4 [pid 354] close(3) = 0 [pid 354] write(1, "executing program\n", 18executing program ) = 18 [pid 354] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 354] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 354] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 354] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 354] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 354] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 354] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[355]}, 88) = 355 [pid 354] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 354] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 354] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 355 attached [pid 355] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 355] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 355] memfd_create("syzkaller", 0) = 3 [pid 355] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 349] <... close resumed>) = 0 [pid 349] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 348] <... futex resumed>) = 0 [pid 348] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 348] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 349] <... futex resumed>) = 1 [pid 349] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 349] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 348] <... futex resumed>) = 0 [pid 348] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 348] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 349] <... futex resumed>) = 1 [pid 349] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 349] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 348] <... futex resumed>) = 0 [pid 348] exit_group(0) = ? [pid 349] <... futex resumed>) = ? [pid 349] +++ exited with 0 +++ [pid 348] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=348, si_uid=0, si_status=0, si_utime=10, si_stime=40} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 356 ./strace-static-x86_64: Process 356 attached [pid 356] set_robust_list(0x5555596e66a0, 24) = 0 [pid 356] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 356] setpgid(0, 0) = 0 [pid 356] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 356] write(3, "1000", 4) = 4 [pid 356] close(3) = 0 executing program [pid 356] write(1, "executing program\n", 18) = 18 [pid 356] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 356] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 356] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 356] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 356] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 356] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 356] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[357]}, 88) = 357 [pid 356] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 356] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 356] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 357 attached [pid 357] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 357] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 357] memfd_create("syzkaller", 0) = 3 [pid 357] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 345] <... close resumed>) = 0 [pid 345] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 342] <... futex resumed>) = 0 [pid 345] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 342] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 345] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 342] <... futex resumed>) = 0 [pid 345] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 342] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 345] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 342] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 345] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 342] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 345] <... futex resumed>) = 0 [pid 342] <... futex resumed>) = 1 [pid 345] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 342] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 345] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 345] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 342] <... futex resumed>) = 0 [pid 345] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 342] exit_group(0 [pid 345] <... futex resumed>) = ? [pid 342] <... exit_group resumed>) = ? [pid 345] +++ exited with 0 +++ [pid 342] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=342, si_uid=0, si_status=0, si_utime=16, si_stime=35} --- [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 358 ./strace-static-x86_64: Process 358 attached [pid 358] set_robust_list(0x5555596e66a0, 24) = 0 [pid 358] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 358] setpgid(0, 0) = 0 [pid 358] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 358] write(3, "1000", 4) = 4 [pid 358] close(3) = 0 [pid 358] write(1, "executing program\n", 18executing program ) = 18 [pid 358] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 358] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 358] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 358] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 358] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 358] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 358] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[359]}, 88) = 359 [pid 358] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 358] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 358] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 359 attached [pid 359] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 359] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 359] memfd_create("syzkaller", 0) = 3 [pid 359] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 353] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 351] <... write resumed>) = 67108864 [pid 351] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 351] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 351] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 351] ioctl(4, LOOP_CLR_FD) = 0 [pid 351] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 351] close(4) = 0 [pid 351] close(3 [pid 355] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 357] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 351] <... close resumed>) = 0 [pid 351] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 350] <... futex resumed>) = 0 [pid 351] <... futex resumed>) = 1 [pid 350] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 350] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 351] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 351] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 350] <... futex resumed>) = 0 [pid 350] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 350] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 351] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 351] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 350] <... futex resumed>) = 0 [pid 350] exit_group(0) = ? [pid 351] +++ exited with 0 +++ [pid 350] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=350, si_uid=0, si_status=0, si_utime=14, si_stime=33} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 360 ./strace-static-x86_64: Process 360 attached [pid 360] set_robust_list(0x5555596e66a0, 24) = 0 [pid 360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 360] setpgid(0, 0) = 0 [pid 360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 360] write(3, "1000", 4) = 4 [pid 360] close(3) = 0 [pid 360] write(1, "executing program\n", 18executing program ) = 18 [pid 360] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 360] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 360] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 360] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 360] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 360] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 360] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[361]}, 88) = 361 [pid 360] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 360] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 360] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 361 attached [pid 361] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 361] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 361] memfd_create("syzkaller", 0) = 3 [pid 361] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 359] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 353] <... write resumed>) = 67108864 [pid 353] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 353] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 353] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 353] ioctl(4, LOOP_CLR_FD) = 0 [pid 353] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 353] close(4) = 0 [pid 353] close(3 [pid 355] <... write resumed>) = 67108864 [pid 355] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 355] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 355] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 355] ioctl(4, LOOP_CLR_FD) = 0 [pid 355] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 355] close(4) = 0 [pid 355] close(3 [pid 353] <... close resumed>) = 0 [pid 353] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 352] <... futex resumed>) = 0 [pid 352] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 352] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 353] <... futex resumed>) = 1 [pid 353] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 353] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 352] <... futex resumed>) = 0 [pid 352] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 352] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 353] <... futex resumed>) = 1 [pid 353] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 353] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 352] <... futex resumed>) = 0 [pid 352] exit_group(0) = ? [pid 353] <... futex resumed>) = ? [pid 353] +++ exited with 0 +++ [pid 352] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=352, si_uid=0, si_status=0, si_utime=19, si_stime=30} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 362 [pid 357] <... write resumed>) = 67108864 [pid 357] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 357] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 357] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) ./strace-static-x86_64: Process 362 attached [pid 357] ioctl(4, LOOP_CLR_FD [pid 362] set_robust_list(0x5555596e66a0, 24 [pid 357] <... ioctl resumed>) = 0 [pid 362] <... set_robust_list resumed>) = 0 [pid 362] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 357] ioctl(4, LOOP_SET_FD, 3 [pid 362] <... prctl resumed>) = 0 [pid 362] setpgid(0, 0) = 0 [pid 357] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 362] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 357] close(4executing program [pid 362] <... openat resumed>) = 3 [pid 362] write(3, "1000", 4) = 4 [pid 362] close(3) = 0 [pid 362] write(1, "executing program\n", 18) = 18 [pid 362] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 362] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 362] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 362] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 362] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 362] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 362] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[363]}, 88) = 363 [pid 362] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 362] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 362] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 357] <... close resumed>) = 0 [pid 357] close(3./strace-static-x86_64: Process 363 attached [pid 363] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 363] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 363] memfd_create("syzkaller", 0) = 3 [pid 363] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 359] <... write resumed>) = 67108864 [pid 359] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 359] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 359] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 359] ioctl(4, LOOP_CLR_FD) = 0 [pid 359] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 359] close(4) = 0 [pid 359] close(3 [pid 361] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 355] <... close resumed>) = 0 [pid 355] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 354] <... futex resumed>) = 0 [pid 354] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 355] truncate("./file3", 7326 [pid 354] <... futex resumed>) = 0 [pid 354] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 355] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 355] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 354] <... futex resumed>) = 0 [pid 354] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 355] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 354] <... futex resumed>) = 0 [pid 355] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 354] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 355] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 354] <... futex resumed>) = 0 [pid 355] <... futex resumed>) = 1 [pid 354] exit_group(0) = ? [pid 355] +++ exited with 0 +++ [pid 354] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=354, si_uid=0, si_status=0, si_utime=15, si_stime=37} --- [pid 284] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 364 ./strace-static-x86_64: Process 364 attached [pid 364] set_robust_list(0x5555596e66a0, 24) = 0 [pid 364] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 364] setpgid(0, 0) = 0 [pid 364] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 364] write(3, "1000", 4) = 4 [pid 364] close(3) = 0 [pid 364] write(1, "executing program\n", 18executing program ) = 18 [pid 364] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 364] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 364] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 364] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 364] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 364] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 364] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[365]}, 88) = 365 [pid 364] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 364] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 364] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 365 attached [pid 365] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 365] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 365] memfd_create("syzkaller", 0) = 3 [pid 365] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 357] <... close resumed>) = 0 [pid 357] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 356] <... futex resumed>) = 0 [pid 356] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 357] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 356] <... futex resumed>) = 0 [pid 356] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 357] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 356] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 357] <... futex resumed>) = 0 [pid 356] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 357] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 356] <... futex resumed>) = 0 [pid 357] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 357] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 356] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 357] <... futex resumed>) = 0 [pid 356] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 357] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 356] exit_group(0 [pid 357] <... futex resumed>) = ? [pid 356] <... exit_group resumed>) = ? [pid 357] +++ exited with 0 +++ [pid 356] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=356, si_uid=0, si_status=0, si_utime=16, si_stime=32} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 366 ./strace-static-x86_64: Process 366 attached [pid 366] set_robust_list(0x5555596e66a0, 24) = 0 [pid 366] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 366] setpgid(0, 0) = 0 [pid 366] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 366] write(3, "1000", 4) = 4 [pid 366] close(3) = 0 [pid 366] write(1, "executing program\n", 18executing program ) = 18 [pid 366] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 366] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 366] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 366] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 366] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 366] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 366] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[367]}, 88) = 367 [pid 366] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 366] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 366] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 367 attached [pid 367] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 367] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 367] memfd_create("syzkaller", 0) = 3 [pid 367] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 359] <... close resumed>) = 0 [pid 359] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 359] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 358] <... futex resumed>) = 0 [pid 358] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 359] <... futex resumed>) = 0 [pid 358] <... futex resumed>) = 1 [pid 359] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 359] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 359] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 358] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 358] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 359] <... futex resumed>) = 0 [pid 358] <... futex resumed>) = 1 [pid 359] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 358] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 359] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 359] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 359] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 358] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 358] exit_group(0 [pid 359] <... futex resumed>) = ? [pid 358] <... exit_group resumed>) = ? [pid 359] +++ exited with 0 +++ [pid 358] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=358, si_uid=0, si_status=0, si_utime=17, si_stime=38} --- [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 368 ./strace-static-x86_64: Process 368 attached [pid 368] set_robust_list(0x5555596e66a0, 24) = 0 [pid 368] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 368] setpgid(0, 0) = 0 [pid 368] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 368] write(3, "1000", 4) = 4 [pid 368] close(3) = 0 executing program [pid 368] write(1, "executing program\n", 18) = 18 [pid 368] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 368] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 368] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 368] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 368] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 368] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 368] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[369]}, 88) = 369 [pid 368] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 368] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 368] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 369 attached [pid 369] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 369] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 369] memfd_create("syzkaller", 0) = 3 [pid 369] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 363] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 361] <... write resumed>) = 67108864 [pid 361] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 361] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 361] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 361] ioctl(4, LOOP_CLR_FD) = 0 [pid 361] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 361] close(4) = 0 [pid 361] close(3 [pid 365] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 361] <... close resumed>) = 0 [pid 361] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 360] <... futex resumed>) = 0 [pid 360] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 360] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 361] <... futex resumed>) = 1 [pid 361] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 361] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 360] <... futex resumed>) = 0 [pid 360] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 360] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 361] <... futex resumed>) = 1 [pid 361] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 361] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 360] <... futex resumed>) = 0 [pid 360] exit_group(0) = ? [pid 361] <... futex resumed>) = ? [pid 361] +++ exited with 0 +++ [pid 360] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=360, si_uid=0, si_status=0, si_utime=15, si_stime=32} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 370 [pid 367] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864./strace-static-x86_64: Process 370 attached [pid 370] set_robust_list(0x5555596e66a0, 24) = 0 [pid 370] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 370] setpgid(0, 0) = 0 [pid 370] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 370] write(3, "1000", 4) = 4 [pid 370] close(3executing program ) = 0 [pid 370] write(1, "executing program\n", 18) = 18 [pid 370] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 370] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 370] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 370] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 370] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 370] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 370] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[371]}, 88) = 371 [pid 370] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 370] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 370] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 371 attached [pid 371] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 371] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 371] memfd_create("syzkaller", 0) = 3 [pid 371] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 363] <... write resumed>) = 67108864 [pid 363] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 363] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 363] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 363] ioctl(4, LOOP_CLR_FD) = 0 [pid 363] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 363] close(4) = 0 [pid 369] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 363] close(3 [pid 365] <... write resumed>) = 67108864 [pid 365] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 365] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 365] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 365] ioctl(4, LOOP_CLR_FD) = 0 [pid 365] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 365] close(4) = 0 [pid 365] close(3 [pid 363] <... close resumed>) = 0 [pid 363] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 362] <... futex resumed>) = 0 [pid 362] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 362] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 363] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 363] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 362] <... futex resumed>) = 0 [pid 363] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 362] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 362] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 363] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 363] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 363] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 362] <... futex resumed>) = 0 [pid 362] exit_group(0 [pid 363] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 362] <... exit_group resumed>) = ? [pid 363] <... futex resumed>) = ? [pid 363] +++ exited with 0 +++ [pid 362] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=362, si_uid=0, si_status=0, si_utime=15, si_stime=34} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 372 ./strace-static-x86_64: Process 372 attached [pid 372] set_robust_list(0x5555596e66a0, 24) = 0 [pid 372] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 372] setpgid(0, 0) = 0 [pid 372] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 372] write(3, "1000", 4) = 4 [pid 372] close(3) = 0 [pid 372] write(1, "executing program\n", 18executing program ) = 18 [pid 372] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 372] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 372] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 372] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 372] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 372] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 372] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[373]}, 88) = 373 [pid 372] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 372] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 372] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 367] <... write resumed>) = 67108864 ./strace-static-x86_64: Process 373 attached [pid 373] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 373] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 373] memfd_create("syzkaller", 0) = 3 [pid 373] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 367] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 367] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 367] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 367] ioctl(4, LOOP_CLR_FD) = 0 [pid 367] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 367] close(4) = 0 [pid 367] close(3 [pid 371] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 365] <... close resumed>) = 0 [pid 365] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 364] <... futex resumed>) = 0 [pid 364] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 364] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 365] <... futex resumed>) = 1 [pid 365] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 365] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 364] <... futex resumed>) = 0 [pid 364] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 364] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 365] <... futex resumed>) = 1 [pid 365] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 365] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 364] <... futex resumed>) = 0 [pid 364] exit_group(0) = ? [pid 365] <... futex resumed>) = ? [pid 365] +++ exited with 0 +++ [pid 364] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=364, si_uid=0, si_status=0, si_utime=17, si_stime=39} --- [pid 284] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 374 [pid 369] <... write resumed>) = 67108864 [pid 369] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 369] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 369] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 369] ioctl(4, LOOP_CLR_FD) = 0 [pid 369] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 369] close(4) = 0 ./strace-static-x86_64: Process 374 attached [pid 374] set_robust_list(0x5555596e66a0, 24) = 0 [pid 374] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 374] setpgid(0, 0) = 0 [pid 369] close(3 [pid 374] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 374] write(3, "1000", 4) = 4 [pid 374] close(3) = 0 [pid 374] write(1, "executing program\n", 18executing program ) = 18 [pid 374] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 374] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 374] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 374] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 374] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 374] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 374] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[375]}, 88) = 375 [pid 374] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 374] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 374] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 375 attached [pid 375] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 375] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 375] memfd_create("syzkaller", 0) = 3 [pid 375] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 367] <... close resumed>) = 0 [pid 367] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 367] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 366] <... futex resumed>) = 0 [pid 366] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 367] <... futex resumed>) = 0 [pid 366] <... futex resumed>) = 1 [pid 367] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 366] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 367] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 366] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 367] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 366] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 367] <... futex resumed>) = 0 [pid 366] <... futex resumed>) = 1 [pid 367] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 366] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 367] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 366] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 367] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 366] exit_group(0 [pid 367] <... futex resumed>) = ? [pid 366] <... exit_group resumed>) = ? [pid 367] +++ exited with 0 +++ [pid 366] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=366, si_uid=0, si_status=0, si_utime=13, si_stime=33} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 376 ./strace-static-x86_64: Process 376 attached [pid 376] set_robust_list(0x5555596e66a0, 24) = 0 [pid 376] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 376] setpgid(0, 0) = 0 [pid 376] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 376] write(3, "1000", 4) = 4 [pid 376] close(3) = 0 [pid 376] write(1, "executing program\n", 18executing program ) = 18 [pid 376] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 376] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 376] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 376] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 376] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 376] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 376] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[377]}, 88) = 377 [pid 376] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 376] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 376] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 377 attached [pid 377] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 377] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 377] memfd_create("syzkaller", 0) = 3 [pid 377] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 369] <... close resumed>) = 0 [pid 369] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 368] <... futex resumed>) = 0 [pid 369] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 368] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 369] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 368] <... futex resumed>) = 0 [pid 369] truncate("./file3", 7326 [pid 368] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 369] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 369] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 368] <... futex resumed>) = 0 [pid 369] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 368] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 369] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 368] <... futex resumed>) = 0 [pid 369] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 368] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 369] <... futex resumed>) = 0 [pid 369] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 368] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 368] exit_group(0) = ? [pid 369] <... futex resumed>) = ? [pid 369] +++ exited with 0 +++ [pid 368] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=368, si_uid=0, si_status=0, si_utime=18, si_stime=33} --- [pid 285] restart_syscall(<... resuming interrupted clone ...> [pid 371] <... write resumed>) = 67108864 [pid 285] <... restart_syscall resumed>) = 0 [pid 371] munmap(0x7f3eab7b4000, 138412032 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 378 ./strace-static-x86_64: Process 378 attached [pid 378] set_robust_list(0x5555596e66a0, 24) = 0 [pid 378] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 378] setpgid(0, 0) = 0 [pid 371] <... munmap resumed>) = 0 [pid 371] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 378] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 371] <... openat resumed>) = 4 [pid 378] write(3, "1000", 4) = 4 [pid 371] ioctl(4, LOOP_SET_FD, 3 [pid 378] close(3) = 0 [pid 378] write(1, "executing program\n", 18executing program ) = 18 [pid 371] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 378] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 371] ioctl(4, LOOP_CLR_FD [pid 378] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 378] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 378] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 378] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 371] <... ioctl resumed>) = 0 [pid 378] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 378] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[379]}, 88) = 379 [pid 378] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 378] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 378] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 371] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 371] close(4) = 0 [pid 371] close(3./strace-static-x86_64: Process 379 attached [pid 379] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 379] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 379] memfd_create("syzkaller", 0) = 3 [pid 379] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 373] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 375] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 371] <... close resumed>) = 0 [pid 371] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 370] <... futex resumed>) = 0 [pid 370] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 370] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 371] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 371] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 370] <... futex resumed>) = 0 [pid 370] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 370] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 371] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 371] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 370] <... futex resumed>) = 0 [pid 370] exit_group(0) = ? [pid 371] +++ exited with 0 +++ [pid 370] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=370, si_uid=0, si_status=0, si_utime=22, si_stime=31} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 380 ./strace-static-x86_64: Process 380 attached [pid 380] set_robust_list(0x5555596e66a0, 24) = 0 [pid 380] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 380] setpgid(0, 0) = 0 [pid 380] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 380] write(3, "1000", 4) = 4 [pid 380] close(3) = 0 [pid 380] write(1, "executing program\n", 18executing program ) = 18 [pid 380] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 380] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 380] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 380] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 380] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 380] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 380] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[381]}, 88) = 381 [pid 380] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 380] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 380] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 381 attached [pid 381] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 381] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 381] memfd_create("syzkaller", 0) = 3 [pid 381] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 377] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 379] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 373] <... write resumed>) = 67108864 [pid 373] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 373] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 373] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 373] ioctl(4, LOOP_CLR_FD) = 0 [pid 373] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 373] close(4) = 0 [pid 373] close(3 [pid 375] <... write resumed>) = 67108864 [pid 375] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 375] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 375] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 375] ioctl(4, LOOP_CLR_FD) = 0 [pid 375] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 375] close(4) = 0 [pid 375] close(3 [pid 377] <... write resumed>) = 67108864 [pid 377] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 377] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 377] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 377] ioctl(4, LOOP_CLR_FD) = 0 [pid 377] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 377] close(4) = 0 [pid 377] close(3 [pid 381] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 373] <... close resumed>) = 0 [pid 373] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 372] <... futex resumed>) = 0 [pid 372] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 372] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 373] <... futex resumed>) = 1 [pid 373] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 373] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 372] <... futex resumed>) = 0 [pid 372] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 372] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 373] <... futex resumed>) = 1 [pid 373] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 373] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 372] <... futex resumed>) = 0 [pid 372] exit_group(0) = ? [pid 373] <... futex resumed>) = ? [pid 373] +++ exited with 0 +++ [pid 372] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=372, si_uid=0, si_status=0, si_utime=17, si_stime=31} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 382 ./strace-static-x86_64: Process 382 attached [pid 382] set_robust_list(0x5555596e66a0, 24) = 0 [pid 382] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 382] setpgid(0, 0) = 0 [pid 382] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 382] write(3, "1000", 4) = 4 [pid 382] close(3) = 0 [pid 382] write(1, "executing program\n", 18executing program ) = 18 [pid 382] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 382] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 382] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 382] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 382] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 382] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 382] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[383]}, 88) = 383 [pid 382] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 382] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 382] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 375] <... close resumed>) = 0 [pid 375] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 374] <... futex resumed>) = 0 [pid 374] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 375] truncate("./file3", 7326 [pid 374] <... futex resumed>) = 0 [pid 375] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 375] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 374] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 375] <... futex resumed>) = 0 [pid 375] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 374] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 374] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 375] <... futex resumed>) = 0 [pid 374] <... futex resumed>) = 1 [pid 375] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 374] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 375] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 375] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 374] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 375] <... futex resumed>) = 0 [pid 375] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 374] exit_group(0) = ? [pid 375] <... futex resumed>) = ? [pid 375] +++ exited with 0 +++ [pid 374] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=374, si_uid=0, si_status=0, si_utime=13, si_stime=36} --- [pid 284] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 384 ./strace-static-x86_64: Process 383 attached [pid 383] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 383] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 383] memfd_create("syzkaller", 0) = 3 [pid 383] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0./strace-static-x86_64: Process 384 attached ) = 0x7f3eab7b4000 [pid 384] set_robust_list(0x5555596e66a0, 24) = 0 [pid 384] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 384] setpgid(0, 0) = 0 [pid 384] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 384] write(3, "1000", 4) = 4 [pid 384] close(3) = 0 [pid 384] write(1, "executing program\n", 18executing program ) = 18 [pid 384] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 384] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 384] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 384] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 384] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 384] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 384] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[385]}, 88) = 385 [pid 384] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 384] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 384] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 385 attached [pid 385] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 385] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 385] memfd_create("syzkaller", 0) = 3 [pid 385] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 379] <... write resumed>) = 67108864 [pid 379] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 377] <... close resumed>) = 0 [pid 379] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 379] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 379] ioctl(4, LOOP_CLR_FD) = 0 [pid 377] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 379] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 377] <... futex resumed>) = 1 [pid 379] close(4 [pid 376] <... futex resumed>) = 0 [pid 376] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 379] <... close resumed>) = 0 [pid 377] truncate("./file3", 7326 [pid 376] <... futex resumed>) = 0 [pid 379] close(3 [pid 377] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 376] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 377] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 376] <... futex resumed>) = 0 [pid 377] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 376] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 377] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 376] <... futex resumed>) = 0 [pid 377] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 376] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 377] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 377] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 376] <... futex resumed>) = 0 [pid 377] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 376] exit_group(0 [pid 377] <... futex resumed>) = ? [pid 376] <... exit_group resumed>) = ? [pid 377] +++ exited with 0 +++ [pid 376] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=376, si_uid=0, si_status=0, si_utime=9, si_stime=32} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 386 ./strace-static-x86_64: Process 386 attached [pid 386] set_robust_list(0x5555596e66a0, 24) = 0 [pid 386] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 386] setpgid(0, 0) = 0 [pid 386] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 386] write(3, "1000", 4) = 4 [pid 386] close(3) = 0 [pid 386] write(1, "executing program\n", 18) = 18 [pid 386] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 386] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 386] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 386] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 386] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 386] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 386] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[387]}, 88) = 387 [pid 386] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 386] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 386] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 387 attached [pid 387] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 387] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 387] memfd_create("syzkaller", 0) = 3 [pid 387] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 379] <... close resumed>) = 0 [pid 381] <... write resumed>) = 67108864 [pid 381] munmap(0x7f3eab7b4000, 138412032 [pid 379] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 379] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 381] <... munmap resumed>) = 0 [pid 378] <... futex resumed>) = 0 [pid 381] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 378] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 381] <... openat resumed>) = 4 [pid 378] <... futex resumed>) = 1 [pid 381] ioctl(4, LOOP_SET_FD, 3 [pid 378] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 381] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 381] ioctl(4, LOOP_CLR_FD [pid 379] <... futex resumed>) = 0 [pid 381] <... ioctl resumed>) = 0 [pid 379] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 379] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 378] <... futex resumed>) = 0 [pid 378] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 378] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 379] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 381] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 381] close(4) = 0 [pid 379] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 379] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 381] close(3 [pid 378] <... futex resumed>) = 0 [pid 378] exit_group(0) = ? [pid 379] <... futex resumed>) = ? [pid 379] +++ exited with 0 +++ [pid 378] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=378, si_uid=0, si_status=0, si_utime=16, si_stime=37} --- [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 388 ./strace-static-x86_64: Process 388 attached [pid 388] set_robust_list(0x5555596e66a0, 24) = 0 [pid 388] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 388] setpgid(0, 0) = 0 [pid 388] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 388] write(3, "1000", 4) = 4 [pid 388] close(3) = 0 [pid 388] write(1, "executing program\n", 18executing program ) = 18 [pid 388] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 388] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 388] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 388] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 388] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 388] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 388] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[389]}, 88) = 389 [pid 388] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 388] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 388] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 389 attached [pid 389] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 389] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 389] memfd_create("syzkaller", 0) = 3 [pid 389] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 385] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 383] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 387] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 381] <... close resumed>) = 0 [pid 381] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 380] <... futex resumed>) = 0 [pid 380] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 380] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 381] <... futex resumed>) = 1 [pid 381] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 381] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 380] <... futex resumed>) = 0 [pid 380] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 380] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 381] <... futex resumed>) = 1 [pid 381] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 381] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 380] <... futex resumed>) = 0 [pid 380] exit_group(0) = ? [pid 381] <... futex resumed>) = ? [pid 381] +++ exited with 0 +++ [pid 380] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=380, si_uid=0, si_status=0, si_utime=19, si_stime=39} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 390 ./strace-static-x86_64: Process 390 attached [pid 390] set_robust_list(0x5555596e66a0, 24) = 0 [pid 390] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 390] setpgid(0, 0) = 0 [pid 390] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 390] write(3, "1000", 4) = 4 [pid 390] close(3) = 0 [pid 390] write(1, "executing program\n", 18executing program ) = 18 [pid 390] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 390] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 390] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 390] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 390] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 390] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 390] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[391]}, 88) = 391 [pid 390] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 390] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 390] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 391 attached [pid 391] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 391] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 391] memfd_create("syzkaller", 0) = 3 [pid 391] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 385] <... write resumed>) = 67108864 [pid 385] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 385] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 385] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 385] ioctl(4, LOOP_CLR_FD) = 0 [pid 385] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 385] close(4) = 0 [pid 385] close(3 [pid 389] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 383] <... write resumed>) = 67108864 [pid 383] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 383] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 383] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 383] ioctl(4, LOOP_CLR_FD) = 0 [pid 383] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 383] close(4) = 0 [pid 383] close(3 [pid 387] <... write resumed>) = 67108864 [pid 387] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 387] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 387] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 387] ioctl(4, LOOP_CLR_FD) = 0 [pid 387] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 387] close(4) = 0 [pid 387] close(3 [pid 385] <... close resumed>) = 0 [pid 385] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 384] <... futex resumed>) = 0 [pid 384] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 384] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 385] <... futex resumed>) = 1 [pid 385] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 385] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 384] <... futex resumed>) = 0 [pid 384] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 384] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 385] <... futex resumed>) = 1 [pid 385] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 385] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 384] <... futex resumed>) = 0 [pid 384] exit_group(0) = ? [pid 385] <... futex resumed>) = ? [pid 385] +++ exited with 0 +++ [pid 384] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=384, si_uid=0, si_status=0, si_utime=17, si_stime=32} --- [pid 284] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 392 ./strace-static-x86_64: Process 392 attached [pid 392] set_robust_list(0x5555596e66a0, 24) = 0 [pid 392] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 392] setpgid(0, 0) = 0 [pid 392] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 392] write(3, "1000", 4) = 4 [pid 392] close(3) = 0 [pid 392] write(1, "executing program\n", 18executing program ) = 18 [pid 392] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 392] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 392] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 392] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 392] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 392] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 392] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[393]}, 88) = 393 [pid 392] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 392] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 392] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 393 attached [pid 393] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 393] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 393] memfd_create("syzkaller", 0) = 3 [pid 393] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 391] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 383] <... close resumed>) = 0 [pid 383] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 382] <... futex resumed>) = 0 [pid 382] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 383] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 382] <... futex resumed>) = 0 [pid 382] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 383] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 383] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 382] <... futex resumed>) = 0 [pid 382] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 383] <... futex resumed>) = 0 [pid 382] <... futex resumed>) = 1 [pid 383] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 382] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 383] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 382] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 383] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 382] exit_group(0 [pid 383] <... futex resumed>) = ? [pid 382] <... exit_group resumed>) = ? [pid 383] +++ exited with 0 +++ [pid 382] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=382, si_uid=0, si_status=0, si_utime=19, si_stime=35} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 394 ./strace-static-x86_64: Process 394 attached [pid 394] set_robust_list(0x5555596e66a0, 24) = 0 [pid 394] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 394] setpgid(0, 0) = 0 [pid 394] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 394] write(3, "1000", 4) = 4 [pid 394] close(3) = 0 executing program [pid 394] write(1, "executing program\n", 18) = 18 [pid 394] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 394] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 394] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 394] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 394] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 394] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 394] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[395]}, 88) = 395 [pid 394] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 394] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 394] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 395 attached [pid 395] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 395] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 395] memfd_create("syzkaller", 0) = 3 [pid 395] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 389] <... write resumed>) = 67108864 [pid 387] <... close resumed>) = 0 [pid 387] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 386] <... futex resumed>) = 0 [pid 386] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 386] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 387] <... futex resumed>) = 1 [pid 387] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 387] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 386] <... futex resumed>) = 0 [pid 386] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 386] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 387] <... futex resumed>) = 1 [pid 387] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 387] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 386] <... futex resumed>) = 0 [pid 386] exit_group(0) = ? [pid 387] <... futex resumed>) = ? [pid 387] +++ exited with 0 +++ [pid 386] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=386, si_uid=0, si_status=0, si_utime=13, si_stime=35} --- [pid 287] restart_syscall(<... resuming interrupted clone ...> [pid 389] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 389] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 287] <... restart_syscall resumed>) = 0 [pid 389] <... openat resumed>) = 4 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 389] ioctl(4, LOOP_SET_FD, 3 [pid 287] <... openat resumed>) = 3 [pid 389] <... ioctl resumed>) = -1 EBUSY (Device or resource busy) [pid 287] ioctl(3, LOOP_CLR_FD [pid 389] ioctl(4, LOOP_CLR_FD [pid 287] <... ioctl resumed>) = 0 [pid 389] <... ioctl resumed>) = 0 [pid 287] close(3) = 0 [pid 389] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 389] close(4) = 0 [pid 389] close(3 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 396 ./strace-static-x86_64: Process 396 attached [pid 396] set_robust_list(0x5555596e66a0, 24) = 0 [pid 396] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 396] setpgid(0, 0) = 0 [pid 396] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 396] write(3, "1000", 4) = 4 [pid 396] close(3) = 0 [pid 396] write(1, "executing program\n", 18executing program ) = 18 [pid 396] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 396] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 396] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 396] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 396] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 396] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 396] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[397]}, 88) = 397 [pid 396] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 396] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 396] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 397 attached [pid 397] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 397] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 397] memfd_create("syzkaller", 0) = 3 [pid 397] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 391] <... write resumed>) = 67108864 [pid 391] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 391] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 391] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 391] ioctl(4, LOOP_CLR_FD) = 0 [pid 391] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 391] close(4) = 0 [pid 391] close(3 [pid 393] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 389] <... close resumed>) = 0 [pid 389] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 388] <... futex resumed>) = 0 [pid 388] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 388] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 389] <... futex resumed>) = 1 [pid 389] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 389] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 388] <... futex resumed>) = 0 [pid 388] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 388] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 389] <... futex resumed>) = 1 [pid 389] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 389] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 388] <... futex resumed>) = 0 [pid 388] exit_group(0) = ? [pid 389] <... futex resumed>) = ? [pid 389] +++ exited with 0 +++ [pid 388] +++ exited with 0 +++ [pid 285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=388, si_uid=0, si_status=0, si_utime=12, si_stime=34} --- [pid 285] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 285] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 3 [pid 285] ioctl(3, LOOP_CLR_FD) = 0 [pid 285] close(3) = 0 [pid 285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 398 ./strace-static-x86_64: Process 398 attached [pid 398] set_robust_list(0x5555596e66a0, 24) = 0 [pid 398] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 398] setpgid(0, 0) = 0 [pid 398] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 398] write(3, "1000", 4) = 4 [pid 398] close(3) = 0 executing program [pid 398] write(1, "executing program\n", 18) = 18 [pid 398] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 398] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 398] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 398] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 398] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 398] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 398] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[399]}, 88) = 399 [pid 398] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 398] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 398] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 399 attached [pid 399] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 399] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 399] memfd_create("syzkaller", 0) = 3 [pid 399] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 395] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 397] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 391] <... close resumed>) = 0 [pid 391] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 390] <... futex resumed>) = 0 [pid 390] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 391] truncate("./file3", 7326 [pid 390] <... futex resumed>) = 0 [pid 390] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 391] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 391] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 390] <... futex resumed>) = 0 [pid 391] <... futex resumed>) = 1 [pid 390] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 391] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 390] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 391] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 391] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 390] <... futex resumed>) = 0 [pid 391] <... futex resumed>) = 1 [pid 390] exit_group(0 [pid 391] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 390] <... exit_group resumed>) = ? [pid 391] <... futex resumed>) = ? [pid 391] +++ exited with 0 +++ [pid 390] +++ exited with 0 +++ [pid 283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=390, si_uid=0, si_status=0, si_utime=16, si_stime=32} --- [pid 283] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 283] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 [pid 283] ioctl(3, LOOP_CLR_FD) = 0 [pid 283] close(3) = 0 [pid 283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 400 ./strace-static-x86_64: Process 400 attached [pid 400] set_robust_list(0x5555596e66a0, 24) = 0 [pid 400] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 400] setpgid(0, 0) = 0 [pid 400] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 400] write(3, "1000", 4) = 4 [pid 400] close(3) = 0 [pid 400] write(1, "executing program\n", 18executing program ) = 18 [pid 400] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 400] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 400] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 400] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 400] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 400] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 400] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[401]}, 88) = 401 [pid 400] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 400] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 400] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 401 attached [pid 401] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 401] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 401] memfd_create("syzkaller", 0) = 3 [pid 401] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 393] <... write resumed>) = 67108864 [pid 393] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 393] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 393] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 393] ioctl(4, LOOP_CLR_FD) = 0 [pid 393] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 393] close(4) = 0 [pid 393] close(3 [pid 399] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 395] <... write resumed>) = 67108864 [pid 395] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 395] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 395] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 395] ioctl(4, LOOP_CLR_FD) = 0 [pid 395] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 395] close(4) = 0 [pid 395] close(3 [pid 397] <... write resumed>) = 67108864 [pid 397] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 397] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 397] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 397] ioctl(4, LOOP_CLR_FD) = 0 [pid 397] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 397] close(4) = 0 [pid 397] close(3 [pid 393] <... close resumed>) = 0 [pid 393] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 393] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 392] <... futex resumed>) = 0 [pid 392] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 393] <... futex resumed>) = 0 [pid 392] <... futex resumed>) = 1 [pid 393] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 393] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 393] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 392] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 392] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 393] <... futex resumed>) = 0 [pid 392] <... futex resumed>) = 1 [pid 393] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 393] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 393] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 392] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable) [pid 392] exit_group(0) = ? [pid 393] <... futex resumed>) = ? [pid 393] +++ exited with 0 +++ [pid 392] +++ exited with 0 +++ [pid 284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=392, si_uid=0, si_status=0, si_utime=15, si_stime=37} --- [pid 284] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3 [pid 284] ioctl(3, LOOP_CLR_FD) = 0 [pid 284] close(3) = 0 [pid 284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 402 ./strace-static-x86_64: Process 402 attached [pid 402] set_robust_list(0x5555596e66a0, 24) = 0 [pid 402] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 402] setpgid(0, 0) = 0 [pid 402] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 402] write(3, "1000", 4) = 4 [pid 402] close(3) = 0 [pid 402] write(1, "executing program\n", 18executing program ) = 18 [pid 402] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 402] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 402] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 402] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 402] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 402] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 402] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[403]}, 88) = 403 [pid 402] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 402] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 402] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 403 attached [pid 403] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 403] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 403] memfd_create("syzkaller", 0) = 3 [pid 403] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 401] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 67108864 [pid 395] <... close resumed>) = 0 [pid 395] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 394] <... futex resumed>) = 0 [pid 394] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 394] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 395] truncate("./file3", 7326) = -1 ENOENT (No such file or directory) [pid 395] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 394] <... futex resumed>) = 0 [pid 394] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 394] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 395] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC) = -1 ENOENT (No such file or directory) [pid 395] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 394] <... futex resumed>) = 0 [pid 394] exit_group(0) = ? [pid 395] +++ exited with 0 +++ [pid 394] +++ exited with 0 +++ [pid 286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=394, si_uid=0, si_status=0, si_utime=15, si_stime=32} --- [pid 286] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3 [pid 286] ioctl(3, LOOP_CLR_FD) = 0 [pid 286] close(3) = 0 [pid 286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 404 ./strace-static-x86_64: Process 404 attached [pid 404] set_robust_list(0x5555596e66a0, 24) = 0 [pid 404] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 404] setpgid(0, 0) = 0 [pid 404] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 404] write(3, "1000", 4) = 4 [pid 404] close(3) = 0 executing program [pid 404] write(1, "executing program\n", 18) = 18 [pid 404] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 404] rt_sigaction(SIGRT_1, {sa_handler=0x7f3eb3c3d420, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f3eb3c2ead0}, NULL, 8) = 0 [pid 404] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 404] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f3eb3bb4000 [pid 404] mprotect(0x7f3eb3bb5000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 404] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 404] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f3eb3bd4990, parent_tid=0x7f3eb3bd4990, exit_signal=0, stack=0x7f3eb3bb4000, stack_size=0x20300, tls=0x7f3eb3bd46c0} => {parent_tid=[405]}, 88) = 405 [pid 404] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 404] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 404] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 399] <... write resumed>) = 67108864 [pid 399] munmap(0x7f3eab7b4000, 138412032) = 0 [pid 399] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4 [pid 399] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 399] ioctl(4, LOOP_CLR_FD) = 0 ./strace-static-x86_64: Process 405 attached [pid 405] set_robust_list(0x7f3eb3bd49a0, 24) = 0 [pid 405] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 399] ioctl(4, LOOP_SET_FD, 3) = -1 EBUSY (Device or resource busy) [pid 399] close(4 [pid 405] memfd_create("syzkaller", 0 [pid 399] <... close resumed>) = 0 [pid 399] close(3 [pid 405] <... memfd_create resumed>) = 3 [pid 405] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f3eab7b4000 [pid 397] <... close resumed>) = 0 [pid 397] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 396] <... futex resumed>) = 0 [pid 396] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 397] truncate("./file3", 7326 [pid 396] <... futex resumed>) = 0 [pid 397] <... truncate resumed>) = -1 ENOENT (No such file or directory) [pid 396] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 397] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000 [pid 396] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 397] <... futex resumed>) = 0 [pid 396] futex(0x7f3eb3cae5e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 397] openat(AT_FDCWD, "./file2", O_RDONLY|O_SYNC [pid 396] <... futex resumed>) = 0 [pid 396] futex(0x7f3eb3cae5ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 397] <... openat resumed>) = -1 ENOENT (No such file or directory) [pid 397] futex(0x7f3eb3cae5ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 396] <... futex resumed>) = 0 [pid 396] exit_group(0 [pid 397] futex(0x7f3eb3cae5e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 396] <... exit_group resumed>) = ? [pid 397] +++ exited with 0 +++ [pid 396] +++ exited with 0 +++ [pid 287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=396, si_uid=0, si_status=0, si_utime=17, si_stime=33} --- [pid 287] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 287] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 287] ioctl(3, LOOP_CLR_FD) = 0 [pid 287] close(3) = 0 [pid 287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555596e6690) = 406