./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2434562912
<...>
Warning: Permanently added '10.128.1.24' (ECDSA) to the list of known hosts.
execve("./syz-executor2434562912", ["./syz-executor2434562912"], 0x7ffd9f149c90 /* 10 vars */) = 0
brk(NULL) = 0x5555555cb000
brk(0x5555555cbc40) = 0x5555555cbc40
arch_prctl(ARCH_SET_FS, 0x5555555cb300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2434562912", 4096) = 28
brk(0x5555555ecc40) = 0x5555555ecc40
brk(0x5555555ed000) = 0x5555555ed000
mprotect(0x7f0db09df000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
getpid() = 5068
mkdir("./syzkaller.3vgBIn", 0700) = 0
chmod("./syzkaller.3vgBIn", 0777) = 0
chdir("./syzkaller.3vgBIn") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5069
./strace-static-x86_64: Process 5069 attached
[pid 5069] chdir("./0") = 0
[pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5069] setpgid(0, 0) = 0
[pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5069] write(3, "1000", 4) = 4
[pid 5069] close(3) = 0
[pid 5069] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5069] memfd_create("syzkaller", 0) = 3
[pid 5069] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5069] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5069] munmap(0x7f0da8523000, 65536) = 0
[pid 5069] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5069] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5069] close(3) = 0
[pid 5069] mkdir("./file0", 0777) = 0
[pid 5069] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5069] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5069] ioctl(4, LOOP_CLR_FD) = 0
[pid 5069] close(4) = 0
[pid 5069] chdir("./file0") = 0
[pid 5069] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5069] write(4, "26", 2) = 2
[ 54.298853][ T5069] loop0: detected capacity change from 0 to 128
[ 54.312425][ T5069] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 54.324778][ T5069] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 54.352445][ T5069] FAULT_INJECTION: forcing a failure.
[ 54.352445][ T5069] name failslab, interval 1, probability 0, space 0, times 1
[ 54.365299][ T5069] CPU: 1 PID: 5069 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 54.375738][ T5069] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 54.385826][ T5069] Call Trace:
[ 54.389122][ T5069]
[ 54.392061][ T5069] dump_stack_lvl+0x1b1/0x290
[ 54.396778][ T5069] ? nf_tcp_handle_invalid+0x630/0x630
[ 54.402243][ T5069] ? panic+0x710/0x710
[ 54.406327][ T5069] ? arch_stack_walk+0x98/0xe0
[ 54.411129][ T5069] ? __might_sleep+0xc0/0xc0
[ 54.415725][ T5069] should_fail_ex+0x3aa/0x4e0
[ 54.420413][ T5069] ? tomoyo_init_log+0x16a/0x1f80
[ 54.425442][ T5069] should_failslab+0x5/0x20
[ 54.429944][ T5069] __kmem_cache_alloc_node+0x68/0x340
[ 54.435317][ T5069] ? format_decode+0x43e/0x1a50
[ 54.440164][ T5069] ? __stack_depot_save+0x36/0x4a0
[ 54.445287][ T5069] ? tomoyo_init_log+0x16a/0x1f80
[ 54.450336][ T5069] kmalloc_trace+0x26/0x60
[ 54.454801][ T5069] tomoyo_init_log+0x16a/0x1f80
[ 54.459662][ T5069] ? slab_free_freelist_hook+0x12e/0x1a0
[ 54.465294][ T5069] ? __kmem_cache_free+0x71/0x110
[ 54.470319][ T5069] ? tomoyo_realpath_from_path+0x5b9/0x5f0
[ 54.476124][ T5069] ? widen_string+0x3a/0x2b0
[ 54.480710][ T5069] ? string+0x289/0x2d0
[ 54.484862][ T5069] ? vsnprintf+0x1c0b/0x1cb0
[ 54.489473][ T5069] ? rcu_lock_release+0x20/0x20
[ 54.494338][ T5069] ? tomoyo_profile+0xd/0x50
[ 54.499009][ T5069] ? tomoyo_profile+0xd/0x50
[ 54.503721][ T5069] tomoyo_supervisor+0x38d/0x14f0
[ 54.508755][ T5069] ? print_irqtrace_events+0x220/0x220
[ 54.514226][ T5069] ? tomoyo_profile+0x50/0x50
[ 54.518940][ T5069] ? tomoyo_realpath_from_path+0x5c3/0x5f0
[ 54.524761][ T5069] ? full_name_hash+0x95/0xe0
[ 54.529446][ T5069] ? tomoyo_check_acl+0x39d/0x410
[ 54.534480][ T5069] ? tomoyo_path2_perm+0xb20/0xb20
[ 54.539597][ T5069] tomoyo_path2_perm+0x812/0xb20
[ 54.544544][ T5069] ? tomoyo_check_mkdev_acl+0x4b0/0x4b0
[ 54.550089][ T5069] ? do_raw_spin_lock+0x147/0x3a0
[ 54.555122][ T5069] ? __lock_acquire+0x1f60/0x1f60
[ 54.560180][ T5069] ? d_splice_alias+0x122/0x3b0
[ 54.565055][ T5069] ? udf_lookup+0x28a/0x340
[ 54.569586][ T5069] ? d_alloc+0x193/0x1d0
[ 54.574021][ T5069] tomoyo_path_rename+0x194/0x1e0
[ 54.579044][ T5069] ? tomoyo_path_link+0x170/0x170
[ 54.584107][ T5069] ? __d_alloc+0x557/0x750
[ 54.588529][ T5069] ? _raw_spin_unlock+0x24/0x40
[ 54.593396][ T5069] security_path_rename+0x161/0x230
[ 54.598617][ T5069] do_renameat2+0x755/0x12d0
[ 54.603212][ T5069] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 54.609212][ T5069] ? fsnotify_move+0x4e0/0x4e0
[ 54.613980][ T5069] ? __lock_acquire+0x1f60/0x1f60
[ 54.619014][ T5069] ? getname_flags+0xb8/0x4e0
[ 54.623706][ T5069] ? __virt_addr_valid+0x21b/0x2d0
[ 54.628866][ T5069] ? check_heap_object+0x244/0x810
[ 54.633984][ T5069] ? __phys_addr_symbol+0x2b/0x70
[ 54.639011][ T5069] ? strncpy_from_user+0x1d6/0x330
[ 54.644119][ T5069] ? getname_flags+0x1ea/0x4e0
[ 54.648898][ T5069] __x64_sys_rename+0x82/0x90
[ 54.653584][ T5069] do_syscall_64+0x3d/0xb0
[ 54.657997][ T5069] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 54.663890][ T5069] RIP: 0033:0x7f0db09709f9
[ 54.668301][ T5069] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 54.687929][ T5069] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 54.696369][ T5069] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[pid 5069] rename("./file0/file0", "./bus") = 0
[pid 5069] exit_group(0) = ?
[pid 5069] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5069, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./0/binderfs") = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./0/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./0/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./0/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./0") = 0
mkdir("./1", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5071
./strace-static-x86_64: Process 5071 attached
[pid 5071] chdir("./1") = 0
[pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5071] setpgid(0, 0) = 0
[pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[ 54.704359][ T5069] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 54.712327][ T5069] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 54.720309][ T5069] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 54.728284][ T5069] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000000
[ 54.736279][ T5069]
[pid 5071] write(3, "1000", 4) = 4
[pid 5071] close(3) = 0
[pid 5071] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5071] memfd_create("syzkaller", 0) = 3
[pid 5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5071] munmap(0x7f0da8523000, 65536) = 0
[pid 5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5071] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5071] close(3) = 0
[pid 5071] mkdir("./file0", 0777) = 0
[pid 5071] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5071] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5071] ioctl(4, LOOP_CLR_FD) = 0
[pid 5071] close(4) = 0
[pid 5071] chdir("./file0") = 0
[pid 5071] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5071] write(4, "26", 2) = 2
[ 54.791734][ T5071] loop0: detected capacity change from 0 to 128
[ 54.802861][ T5071] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 54.814347][ T5071] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 54.847037][ T5071] FAULT_INJECTION: forcing a failure.
[ 54.847037][ T5071] name failslab, interval 1, probability 0, space 0, times 0
[ 54.860138][ T5071] CPU: 0 PID: 5071 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 54.870568][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 54.880627][ T5071] Call Trace:
[ 54.883912][ T5071]
[ 54.886837][ T5071] dump_stack_lvl+0x1b1/0x290
[ 54.891512][ T5071] ? nf_tcp_handle_invalid+0x630/0x630
[ 54.896981][ T5071] ? panic+0x710/0x710
[ 54.901044][ T5071] ? tomoyo_init_log+0x1be7/0x1f80
[ 54.906159][ T5071] should_fail_ex+0x3aa/0x4e0
[ 54.910832][ T5071] ? tomoyo_supervisor+0xf4d/0x14f0
[ 54.916022][ T5071] should_failslab+0x5/0x20
[ 54.920557][ T5071] __kmem_cache_alloc_node+0x68/0x340
[ 54.925930][ T5071] ? rcu_lock_release+0x20/0x20
[ 54.930791][ T5071] ? tomoyo_supervisor+0xf4d/0x14f0
[ 54.936000][ T5071] __kmalloc+0x9e/0x190
[ 54.940156][ T5071] tomoyo_supervisor+0xf4d/0x14f0
[ 54.945176][ T5071] ? print_irqtrace_events+0x220/0x220
[ 54.950639][ T5071] ? tomoyo_profile+0x50/0x50
[ 54.955323][ T5071] ? tomoyo_realpath_from_path+0x5c3/0x5f0
[ 54.961132][ T5071] ? full_name_hash+0x95/0xe0
[ 54.965818][ T5071] ? tomoyo_check_acl+0x39d/0x410
[ 54.970848][ T5071] ? tomoyo_path2_perm+0xb20/0xb20
[ 54.975970][ T5071] tomoyo_path2_perm+0x812/0xb20
[ 54.980924][ T5071] ? tomoyo_check_mkdev_acl+0x4b0/0x4b0
[ 54.986475][ T5071] ? do_raw_spin_lock+0x147/0x3a0
[ 54.991513][ T5071] ? __lock_acquire+0x1f60/0x1f60
[ 54.996585][ T5071] ? d_splice_alias+0x122/0x3b0
[ 55.001447][ T5071] ? udf_lookup+0x28a/0x340
[ 55.005958][ T5071] ? d_alloc+0x193/0x1d0
[ 55.010199][ T5071] tomoyo_path_rename+0x194/0x1e0
[ 55.015221][ T5071] ? tomoyo_path_link+0x170/0x170
[ 55.020243][ T5071] ? __d_alloc+0x557/0x750
[ 55.024663][ T5071] ? _raw_spin_unlock+0x24/0x40
[ 55.029776][ T5071] security_path_rename+0x161/0x230
[ 55.034991][ T5071] do_renameat2+0x755/0x12d0
[ 55.039687][ T5071] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 55.045688][ T5071] ? fsnotify_move+0x4e0/0x4e0
[ 55.050543][ T5071] ? __lock_acquire+0x1f60/0x1f60
[ 55.055581][ T5071] ? getname_flags+0xb8/0x4e0
[ 55.060436][ T5071] ? __virt_addr_valid+0x21b/0x2d0
[ 55.065566][ T5071] ? check_heap_object+0x244/0x810
[ 55.070767][ T5071] ? __phys_addr_symbol+0x2b/0x70
[ 55.075804][ T5071] ? strncpy_from_user+0x1d6/0x330
[ 55.080931][ T5071] ? getname_flags+0x1ea/0x4e0
[ 55.085696][ T5071] __x64_sys_rename+0x82/0x90
[ 55.090372][ T5071] do_syscall_64+0x3d/0xb0
[ 55.094784][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 55.100946][ T5071] RIP: 0033:0x7f0db09709f9
[ 55.105368][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 55.125065][ T5071] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 55.133481][ T5071] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[pid 5071] rename("./file0/file0", "./bus") = 0
[pid 5071] exit_group(0) = ?
[pid 5071] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5071, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./1", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./1/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./1/binderfs") = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./1/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./1/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./1/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./1/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./1") = 0
mkdir("./2", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5072
./strace-static-x86_64: Process 5072 attached
[pid 5072] chdir("./2") = 0
[pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5072] setpgid(0, 0) = 0
[pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5072] write(3, "1000", 4) = 4
[pid 5072] close(3) = 0
[pid 5072] symlink("/dev/binderfs", "./binderfs") = 0
[ 55.141461][ T5071] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 55.149440][ T5071] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 55.157404][ T5071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 55.165379][ T5071] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000001
[ 55.173362][ T5071]
[pid 5072] memfd_create("syzkaller", 0) = 3
[pid 5072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5072] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5072] munmap(0x7f0da8523000, 65536) = 0
[pid 5072] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5072] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5072] close(3) = 0
[pid 5072] mkdir("./file0", 0777) = 0
[pid 5072] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5072] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5072] ioctl(4, LOOP_CLR_FD) = 0
[pid 5072] close(4) = 0
[pid 5072] chdir("./file0") = 0
[pid 5072] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5072] write(4, "26", 2) = 2
[ 55.236437][ T5072] loop0: detected capacity change from 0 to 128
[ 55.247882][ T5072] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 55.261174][ T5072] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 55.284740][ T5072] FAULT_INJECTION: forcing a failure.
[ 55.284740][ T5072] name failslab, interval 1, probability 0, space 0, times 0
[ 55.297489][ T5072] CPU: 1 PID: 5072 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 55.307994][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 55.318050][ T5072] Call Trace:
[ 55.321328][ T5072]
[ 55.324257][ T5072] dump_stack_lvl+0x1b1/0x290
[ 55.328938][ T5072] ? nf_tcp_handle_invalid+0x630/0x630
[ 55.334399][ T5072] ? panic+0x710/0x710
[ 55.338494][ T5072] should_fail_ex+0x3aa/0x4e0
[ 55.343267][ T5072] ? tomoyo_init_log+0x1a16/0x1f80
[ 55.348390][ T5072] should_failslab+0x5/0x20
[ 55.352895][ T5072] __kmem_cache_alloc_node+0x68/0x340
[ 55.358353][ T5072] ? make_kgid+0x710/0x710
[ 55.362771][ T5072] ? tomoyo_init_log+0x1a16/0x1f80
[ 55.367887][ T5072] __kmalloc+0x9e/0x190
[ 55.372051][ T5072] tomoyo_init_log+0x1a16/0x1f80
[ 55.377006][ T5072] ? rcu_lock_release+0x20/0x20
[ 55.381856][ T5072] ? tomoyo_profile+0xd/0x50
[ 55.386442][ T5072] ? tomoyo_profile+0xd/0x50
[ 55.391040][ T5072] tomoyo_supervisor+0x38d/0x14f0
[ 55.396064][ T5072] ? print_irqtrace_events+0x220/0x220
[ 55.401626][ T5072] ? tomoyo_profile+0x50/0x50
[ 55.406322][ T5072] ? tomoyo_realpath_from_path+0x5c3/0x5f0
[ 55.412146][ T5072] ? full_name_hash+0x95/0xe0
[ 55.416840][ T5072] ? tomoyo_check_acl+0x39d/0x410
[ 55.421891][ T5072] ? tomoyo_path2_perm+0xb20/0xb20
[ 55.427012][ T5072] tomoyo_path2_perm+0x812/0xb20
[ 55.432049][ T5072] ? tomoyo_check_mkdev_acl+0x4b0/0x4b0
[ 55.437592][ T5072] ? do_raw_spin_lock+0x147/0x3a0
[ 55.442614][ T5072] ? __lock_acquire+0x1f60/0x1f60
[ 55.447834][ T5072] ? d_splice_alias+0x122/0x3b0
[ 55.452688][ T5072] ? udf_lookup+0x28a/0x340
[ 55.457193][ T5072] ? d_alloc+0x193/0x1d0
[ 55.461461][ T5072] tomoyo_path_rename+0x194/0x1e0
[ 55.466531][ T5072] ? tomoyo_path_link+0x170/0x170
[ 55.471568][ T5072] ? __d_alloc+0x557/0x750
[ 55.476037][ T5072] ? _raw_spin_unlock+0x24/0x40
[ 55.480992][ T5072] security_path_rename+0x161/0x230
[ 55.486207][ T5072] do_renameat2+0x755/0x12d0
[ 55.490887][ T5072] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 55.496904][ T5072] ? fsnotify_move+0x4e0/0x4e0
[ 55.501841][ T5072] ? __lock_acquire+0x1f60/0x1f60
[ 55.506878][ T5072] ? getname_flags+0xb8/0x4e0
[ 55.511560][ T5072] ? __virt_addr_valid+0x21b/0x2d0
[ 55.516681][ T5072] ? check_heap_object+0x244/0x810
[ 55.521807][ T5072] ? __phys_addr_symbol+0x2b/0x70
[ 55.526857][ T5072] ? strncpy_from_user+0x1d6/0x330
[ 55.531986][ T5072] ? getname_flags+0x1ea/0x4e0
[ 55.536768][ T5072] __x64_sys_rename+0x82/0x90
[ 55.541452][ T5072] do_syscall_64+0x3d/0xb0
[ 55.545872][ T5072] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 55.551764][ T5072] RIP: 0033:0x7f0db09709f9
[ 55.556176][ T5072] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 55.575779][ T5072] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[pid 5072] rename("./file0/file0", "./bus") = 0
[pid 5072] exit_group(0) = ?
[pid 5072] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
umount2("./2", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./2/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./2/binderfs") = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./2/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./2/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./2/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./2/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./2") = 0
[ 55.584196][ T5072] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[ 55.592171][ T5072] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 55.600161][ T5072] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 55.608131][ T5072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 55.616128][ T5072] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000002
[ 55.624112][ T5072]
mkdir("./3", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5073 attached
, child_tidptr=0x5555555cb5d0) = 5073
[pid 5073] chdir("./3") = 0
[pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5073] setpgid(0, 0) = 0
[pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5073] write(3, "1000", 4) = 4
[pid 5073] close(3) = 0
[pid 5073] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5073] memfd_create("syzkaller", 0) = 3
[pid 5073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5073] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5073] munmap(0x7f0da8523000, 65536) = 0
[pid 5073] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5073] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5073] close(3) = 0
[pid 5073] mkdir("./file0", 0777) = 0
[pid 5073] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5073] ioctl(4, LOOP_CLR_FD) = 0
[pid 5073] close(4) = 0
[pid 5073] chdir("./file0") = 0
[pid 5073] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5073] write(4, "26", 2) = 2
[ 55.692737][ T5073] loop0: detected capacity change from 0 to 128
[ 55.703665][ T5073] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 55.715499][ T5073] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 55.756645][ T5073] FAULT_INJECTION: forcing a failure.
[ 55.756645][ T5073] name failslab, interval 1, probability 0, space 0, times 0
[ 55.769693][ T5073] CPU: 0 PID: 5073 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 55.780128][ T5073] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 55.790182][ T5073] Call Trace:
[ 55.793461][ T5073]
[ 55.796405][ T5073] dump_stack_lvl+0x1b1/0x290
[ 55.801099][ T5073] ? nf_tcp_handle_invalid+0x630/0x630
[ 55.806553][ T5073] ? panic+0x710/0x710
[ 55.810622][ T5073] ? __might_sleep+0xc0/0xc0
[ 55.815240][ T5073] should_fail_ex+0x3aa/0x4e0
[ 55.819920][ T5073] ? udf_add_entry+0x2a3/0x3300
[ 55.824766][ T5073] should_failslab+0x5/0x20
[ 55.829260][ T5073] __kmem_cache_alloc_node+0x68/0x340
[ 55.834629][ T5073] ? udf_add_entry+0x2a3/0x3300
[ 55.839483][ T5073] kmalloc_trace+0x26/0x60
[ 55.843924][ T5073] udf_add_entry+0x2a3/0x3300
[ 55.848638][ T5073] ? udf_add_nondir+0x580/0x580
[ 55.853493][ T5073] ? mark_lock+0x9a/0x350
[ 55.857839][ T5073] ? udf_get_pblock+0x137/0x1a0
[ 55.862690][ T5073] udf_rename+0x663/0x1450
[ 55.867116][ T5073] ? udf_mknod+0x90/0x90
[ 55.871360][ T5073] ? vfs_rename+0x728/0x1130
[ 55.875952][ T5073] ? read_lock_is_recursive+0x10/0x10
[ 55.881342][ T5073] ? down_read_non_owner+0xa0/0xa0
[ 55.886447][ T5073] ? do_raw_spin_unlock+0x134/0x8a0
[ 55.891654][ T5073] ? memcpy+0x3c/0x60
[ 55.895637][ T5073] vfs_rename+0xd53/0x1130
[ 55.900066][ T5073] ? __ia32_sys_link+0x90/0x90
[ 55.904835][ T5073] ? _raw_spin_unlock+0x24/0x40
[ 55.909690][ T5073] ? security_path_rename+0x1ab/0x230
[ 55.915070][ T5073] do_renameat2+0xaad/0x12d0
[ 55.919665][ T5073] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 55.925666][ T5073] ? fsnotify_move+0x4e0/0x4e0
[ 55.930438][ T5073] ? check_heap_object+0x244/0x810
[ 55.935556][ T5073] ? __phys_addr_symbol+0x2b/0x70
[ 55.940610][ T5073] ? strncpy_from_user+0x1d6/0x330
[ 55.945736][ T5073] ? getname_flags+0x1ea/0x4e0
[ 55.950512][ T5073] __x64_sys_rename+0x82/0x90
[ 55.955186][ T5073] do_syscall_64+0x3d/0xb0
[ 55.959605][ T5073] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 55.965500][ T5073] RIP: 0033:0x7f0db09709f9
[ 55.969912][ T5073] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 55.989605][ T5073] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 55.998034][ T5073] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[pid 5073] rename("./file0/file0", "./bus") = -1 ENOMEM (Cannot allocate memory)
[pid 5073] exit_group(0) = ?
[pid 5073] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5073, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
umount2("./3", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./3/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./3/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./3/binderfs") = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./3/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./3/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./3/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./3/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./3") = 0
mkdir("./4", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5074
./strace-static-x86_64: Process 5074 attached
[pid 5074] chdir("./4") = 0
[pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5074] setpgid(0, 0) = 0
[pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5074] write(3, "1000", 4) = 4
[pid 5074] close(3) = 0
[pid 5074] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5074] memfd_create("syzkaller", 0) = 3
[ 56.006020][ T5073] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 56.014074][ T5073] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 56.022144][ T5073] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 56.030107][ T5073] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000003
[ 56.038092][ T5073]
[pid 5074] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5074] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5074] munmap(0x7f0da8523000, 65536) = 0
[pid 5074] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5074] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5074] close(3) = 0
[pid 5074] mkdir("./file0", 0777) = 0
[pid 5074] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5074] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5074] ioctl(4, LOOP_CLR_FD) = 0
[pid 5074] close(4) = 0
[pid 5074] chdir("./file0") = 0
[pid 5074] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5074] write(4, "26", 2) = 2
[ 56.093442][ T5074] loop0: detected capacity change from 0 to 128
[ 56.103728][ T5074] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 56.116321][ T5074] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 56.146411][ T5074] FAULT_INJECTION: forcing a failure.
[ 56.146411][ T5074] name failslab, interval 1, probability 0, space 0, times 0
[ 56.159332][ T5074] CPU: 0 PID: 5074 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 56.169760][ T5074] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 56.179809][ T5074] Call Trace:
[ 56.183080][ T5074]
[ 56.186009][ T5074] dump_stack_lvl+0x1b1/0x290
[ 56.190689][ T5074] ? nf_tcp_handle_invalid+0x630/0x630
[ 56.196148][ T5074] ? panic+0x710/0x710
[ 56.200236][ T5074] ? __might_sleep+0xc0/0xc0
[ 56.204841][ T5074] should_fail_ex+0x3aa/0x4e0
[ 56.209520][ T5074] ? udf_find_entry+0x44b/0x14f0
[ 56.214459][ T5074] should_failslab+0x5/0x20
[ 56.218959][ T5074] __kmem_cache_alloc_node+0x68/0x340
[ 56.224320][ T5074] ? __x64_sys_rename+0x82/0x90
[ 56.229159][ T5074] ? do_syscall_64+0x3d/0xb0
[ 56.233753][ T5074] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.239825][ T5074] ? udf_find_entry+0x44b/0x14f0
[ 56.244762][ T5074] kmalloc_trace+0x26/0x60
[ 56.249188][ T5074] udf_find_entry+0x44b/0x14f0
[ 56.253958][ T5074] ? register_lock_class+0xc2/0x930
[ 56.259153][ T5074] ? udf_tmpfile+0x170/0x170
[ 56.263738][ T5074] ? mark_lock+0x9a/0x350
[ 56.268094][ T5074] udf_rename+0x173/0x1450
[ 56.272541][ T5074] ? read_lock_is_recursive+0x10/0x10
[ 56.277928][ T5074] ? udf_mknod+0x90/0x90
[ 56.282184][ T5074] ? vfs_rename+0x728/0x1130
[ 56.286788][ T5074] ? read_lock_is_recursive+0x10/0x10
[ 56.292163][ T5074] ? vfs_rename+0x728/0x1130
[ 56.296753][ T5074] ? do_raw_spin_lock+0x147/0x3a0
[ 56.301785][ T5074] ? down_write_nested+0x1ab/0x280
[ 56.306904][ T5074] ? down_read_non_owner+0xa0/0xa0
[ 56.312003][ T5074] ? do_raw_spin_unlock+0x134/0x8a0
[ 56.317198][ T5074] ? memcpy+0x3c/0x60
[ 56.321191][ T5074] vfs_rename+0xd53/0x1130
[ 56.325625][ T5074] ? __ia32_sys_link+0x90/0x90
[ 56.330379][ T5074] ? _raw_spin_unlock+0x24/0x40
[ 56.335244][ T5074] ? security_path_rename+0x1ab/0x230
[ 56.340722][ T5074] do_renameat2+0xaad/0x12d0
[ 56.345350][ T5074] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 56.351338][ T5074] ? fsnotify_move+0x4e0/0x4e0
[ 56.356112][ T5074] ? check_heap_object+0x244/0x810
[ 56.361263][ T5074] ? __phys_addr_symbol+0x2b/0x70
[ 56.366294][ T5074] ? strncpy_from_user+0x1d6/0x330
[ 56.371420][ T5074] ? getname_flags+0x1ea/0x4e0
[ 56.376197][ T5074] __x64_sys_rename+0x82/0x90
[ 56.380871][ T5074] do_syscall_64+0x3d/0xb0
[ 56.385289][ T5074] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.391191][ T5074] RIP: 0033:0x7f0db09709f9
[ 56.395619][ T5074] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 56.415222][ T5074] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 56.423631][ T5074] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[ 56.431609][ T5074] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 56.439676][ T5074] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[pid 5074] rename("./file0/file0", "./bus") = -1 ENOMEM (Cannot allocate memory)
[pid 5074] exit_group(0) = ?
[pid 5074] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5074, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./4", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./4/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./4/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./4/binderfs") = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./4/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./4/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./4/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./4/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./4") = 0
mkdir("./5", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5075
./strace-static-x86_64: Process 5075 attached
[pid 5075] chdir("./5") = 0
[pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5075] setpgid(0, 0) = 0
[pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5075] write(3, "1000", 4) = 4
[pid 5075] close(3) = 0
[pid 5075] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5075] memfd_create("syzkaller", 0) = 3
[pid 5075] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5075] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5075] munmap(0x7f0da8523000, 65536) = 0
[pid 5075] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[ 56.447643][ T5074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 56.455630][ T5074] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000004
[ 56.463627][ T5074]
[pid 5075] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5075] close(3) = 0
[pid 5075] mkdir("./file0", 0777) = 0
[pid 5075] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5075] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5075] ioctl(4, LOOP_CLR_FD) = 0
[pid 5075] close(4) = 0
[pid 5075] chdir("./file0") = 0
[pid 5075] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5075] write(4, "26", 2) = 2
[ 56.508218][ T5075] loop0: detected capacity change from 0 to 128
[ 56.509461][ T5070] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 56.527398][ T5075] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 56.539178][ T5075] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 56.565107][ T5075] FAULT_INJECTION: forcing a failure.
[ 56.565107][ T5075] name failslab, interval 1, probability 0, space 0, times 0
[ 56.578089][ T5075] CPU: 0 PID: 5075 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 56.588527][ T5075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 56.598585][ T5075] Call Trace:
[ 56.601857][ T5075]
[ 56.604781][ T5075] dump_stack_lvl+0x1b1/0x290
[ 56.609455][ T5075] ? nf_tcp_handle_invalid+0x630/0x630
[ 56.614911][ T5075] ? panic+0x710/0x710
[ 56.618973][ T5075] ? __might_sleep+0xc0/0xc0
[ 56.623572][ T5075] should_fail_ex+0x3aa/0x4e0
[ 56.628259][ T5075] ? udf_add_entry+0x2a3/0x3300
[ 56.633119][ T5075] should_failslab+0x5/0x20
[ 56.637611][ T5075] __kmem_cache_alloc_node+0x68/0x340
[ 56.642985][ T5075] ? udf_add_entry+0x2a3/0x3300
[ 56.647831][ T5075] kmalloc_trace+0x26/0x60
[ 56.652239][ T5075] udf_add_entry+0x2a3/0x3300
[ 56.656956][ T5075] ? udf_add_nondir+0x580/0x580
[ 56.661813][ T5075] ? mark_lock+0x9a/0x350
[ 56.666140][ T5075] ? udf_get_pblock+0x137/0x1a0
[ 56.670984][ T5075] udf_rename+0x663/0x1450
[ 56.675398][ T5075] ? udf_mknod+0x90/0x90
[ 56.679627][ T5075] ? vfs_rename+0x728/0x1130
[ 56.684210][ T5075] ? read_lock_is_recursive+0x10/0x10
[ 56.689582][ T5075] ? down_read_non_owner+0xa0/0xa0
[ 56.694682][ T5075] ? do_raw_spin_unlock+0x134/0x8a0
[ 56.699892][ T5075] ? memcpy+0x3c/0x60
[ 56.703985][ T5075] vfs_rename+0xd53/0x1130
[ 56.708421][ T5075] ? __ia32_sys_link+0x90/0x90
[ 56.713175][ T5075] ? _raw_spin_unlock+0x24/0x40
[ 56.718033][ T5075] ? security_path_rename+0x1ab/0x230
[ 56.723432][ T5075] do_renameat2+0xaad/0x12d0
[ 56.728028][ T5075] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 56.734039][ T5075] ? fsnotify_move+0x4e0/0x4e0
[ 56.738816][ T5075] ? check_heap_object+0x244/0x810
[ 56.743962][ T5075] ? __phys_addr_symbol+0x2b/0x70
[ 56.748987][ T5075] ? strncpy_from_user+0x1d6/0x330
[ 56.754107][ T5075] ? getname_flags+0x1ea/0x4e0
[ 56.758889][ T5075] __x64_sys_rename+0x82/0x90
[ 56.763557][ T5075] do_syscall_64+0x3d/0xb0
[ 56.767992][ T5075] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 56.773901][ T5075] RIP: 0033:0x7f0db09709f9
[ 56.778305][ T5075] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 56.797909][ T5075] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 56.806336][ T5075] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[pid 5075] rename("./file0/file0", "./bus") = -1 ENOMEM (Cannot allocate memory)
[pid 5075] exit_group(0) = ?
[pid 5075] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5075, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./5", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./5/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./5/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./5/binderfs") = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./5/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./5/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./5/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./5/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./5") = 0
mkdir("./6", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5076
./strace-static-x86_64: Process 5076 attached
[pid 5076] chdir("./6") = 0
[pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5076] setpgid(0, 0) = 0
[pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5076] write(3, "1000", 4) = 4
[pid 5076] close(3) = 0
[pid 5076] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5076] memfd_create("syzkaller", 0) = 3
[pid 5076] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5076] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5076] munmap(0x7f0da8523000, 65536) = 0
[pid 5076] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[ 56.814300][ T5075] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 56.822285][ T5075] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 56.830262][ T5075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 56.838225][ T5075] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000005
[ 56.846199][ T5075]
[pid 5076] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5076] close(3) = 0
[pid 5076] mkdir("./file0", 0777) = 0
[pid 5076] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5076] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5076] ioctl(4, LOOP_CLR_FD) = 0
[pid 5076] close(4) = 0
[pid 5076] chdir("./file0") = 0
[pid 5076] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5076] write(4, "26", 2) = 2
[ 56.889873][ T5076] loop0: detected capacity change from 0 to 128
[ 56.901014][ T5076] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 56.912658][ T5076] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 56.933304][ T5076] FAULT_INJECTION: forcing a failure.
[ 56.933304][ T5076] name failslab, interval 1, probability 0, space 0, times 0
[ 56.946388][ T5076] CPU: 0 PID: 5076 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 56.956805][ T5076] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 56.966859][ T5076] Call Trace:
[ 56.970136][ T5076]
[ 56.973072][ T5076] dump_stack_lvl+0x1b1/0x290
[ 56.977752][ T5076] ? nf_tcp_handle_invalid+0x630/0x630
[ 56.983208][ T5076] ? panic+0x710/0x710
[ 56.987277][ T5076] ? __might_sleep+0xc0/0xc0
[ 56.991872][ T5076] should_fail_ex+0x3aa/0x4e0
[ 56.996562][ T5076] ? udf_add_entry+0x2a3/0x3300
[ 57.001412][ T5076] should_failslab+0x5/0x20
[ 57.005913][ T5076] __kmem_cache_alloc_node+0x68/0x340
[ 57.011293][ T5076] ? udf_add_entry+0x2a3/0x3300
[ 57.016141][ T5076] kmalloc_trace+0x26/0x60
[ 57.020558][ T5076] udf_add_entry+0x2a3/0x3300
[ 57.025257][ T5076] ? udf_add_nondir+0x580/0x580
[ 57.030110][ T5076] ? mark_lock+0x9a/0x350
[ 57.034448][ T5076] ? udf_get_pblock+0x137/0x1a0
[ 57.039300][ T5076] udf_rename+0x663/0x1450
[ 57.043734][ T5076] ? udf_mknod+0x90/0x90
[ 57.047977][ T5076] ? vfs_rename+0x728/0x1130
[ 57.052573][ T5076] ? read_lock_is_recursive+0x10/0x10
[ 57.057974][ T5076] ? down_read_non_owner+0xa0/0xa0
[ 57.063085][ T5076] ? do_raw_spin_unlock+0x134/0x8a0
[ 57.068282][ T5076] ? memcpy+0x3c/0x60
[ 57.072261][ T5076] vfs_rename+0xd53/0x1130
[ 57.076682][ T5076] ? __ia32_sys_link+0x90/0x90
[ 57.081442][ T5076] ? _raw_spin_unlock+0x24/0x40
[ 57.086295][ T5076] ? security_path_rename+0x1ab/0x230
[ 57.091669][ T5076] do_renameat2+0xaad/0x12d0
[ 57.096253][ T5076] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 57.102264][ T5076] ? fsnotify_move+0x4e0/0x4e0
[ 57.107042][ T5076] ? check_heap_object+0x244/0x810
[ 57.112152][ T5076] ? __phys_addr_symbol+0x2b/0x70
[ 57.117181][ T5076] ? strncpy_from_user+0x1d6/0x330
[ 57.122310][ T5076] ? getname_flags+0x1ea/0x4e0
[ 57.127081][ T5076] __x64_sys_rename+0x82/0x90
[ 57.131761][ T5076] do_syscall_64+0x3d/0xb0
[ 57.136183][ T5076] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.142073][ T5076] RIP: 0033:0x7f0db09709f9
[ 57.146485][ T5076] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.166087][ T5076] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[ 57.174500][ T5076] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[ 57.182466][ T5076] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[pid 5076] rename("./file0/file0", "./bus") = -1 ENOMEM (Cannot allocate memory)
[pid 5076] exit_group(0) = ?
[pid 5076] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5076, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./6", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./6/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./6/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./6/binderfs") = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./6/file0", {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
umount2("./6/file0", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./6/file0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
fstat(4, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(4, 0x5555555d4660 /* 2 entries */, 32768) = 48
getdents64(4, 0x5555555d4660 /* 0 entries */, 32768) = 0
close(4) = 0
rmdir("./6/file0") = 0
getdents64(3, 0x5555555cc620 /* 0 entries */, 32768) = 0
close(3) = 0
rmdir("./6") = 0
mkdir("./7", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555555cb5d0) = 5077
./strace-static-x86_64: Process 5077 attached
[pid 5077] chdir("./7") = 0
[pid 5077] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5077] setpgid(0, 0) = 0
[ 57.190431][ T5076] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 57.198397][ T5076] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 57.206651][ T5076] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000006
[ 57.214646][ T5076]
[pid 5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5077] write(3, "1000", 4) = 4
[pid 5077] close(3) = 0
[pid 5077] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5077] memfd_create("syzkaller", 0) = 3
[pid 5077] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0da8523000
[pid 5077] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 65536) = 65536
[pid 5077] munmap(0x7f0da8523000, 65536) = 0
[pid 5077] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5077] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5077] close(3) = 0
[pid 5077] mkdir("./file0", 0777) = 0
[pid 5077] mount("/dev/loop0", "./file0", "udf", MS_I_VERSION, "longad,mode=00000000000000000000001,rootdir=00000000000000000006,") = 0
[pid 5077] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid 5077] ioctl(4, LOOP_CLR_FD) = 0
[pid 5077] close(4) = 0
[pid 5077] chdir("./file0") = 0
[pid 5077] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 5077] write(4, "26", 2) = 2
[ 57.282806][ T5077] loop0: detected capacity change from 0 to 128
[ 57.302457][ T5077] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 57.314334][ T5077] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 57.339518][ T5077] FAULT_INJECTION: forcing a failure.
[ 57.339518][ T5077] name failslab, interval 1, probability 0, space 0, times 0
[ 57.352651][ T5077] CPU: 0 PID: 5077 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 57.363067][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 57.373388][ T5077] Call Trace:
[ 57.376677][ T5077]
[ 57.379604][ T5077] dump_stack_lvl+0x1b1/0x290
[ 57.384279][ T5077] ? nf_tcp_handle_invalid+0x630/0x630
[ 57.389734][ T5077] ? panic+0x710/0x710
[ 57.393792][ T5077] ? __might_sleep+0xc0/0xc0
[ 57.398405][ T5077] should_fail_ex+0x3aa/0x4e0
[ 57.403099][ T5077] ? udf_find_entry+0x44b/0x14f0
[ 57.408048][ T5077] should_failslab+0x5/0x20
[ 57.412560][ T5077] __kmem_cache_alloc_node+0x68/0x340
[ 57.417934][ T5077] ? __getblk_gfp+0x50/0x290
[ 57.422534][ T5077] ? udf_find_entry+0x44b/0x14f0
[ 57.427471][ T5077] kmalloc_trace+0x26/0x60
[ 57.431921][ T5077] udf_find_entry+0x44b/0x14f0
[ 57.436714][ T5077] ? udf_tmpfile+0x170/0x170
[ 57.441303][ T5077] ? mark_lock+0x9a/0x350
[ 57.445654][ T5077] ? udf_get_pblock+0x137/0x1a0
[ 57.450505][ T5077] udf_rename+0x369/0x1450
[ 57.454932][ T5077] ? udf_mknod+0x90/0x90
[ 57.459167][ T5077] ? vfs_rename+0x728/0x1130
[ 57.463764][ T5077] ? read_lock_is_recursive+0x10/0x10
[ 57.469171][ T5077] ? down_write_nested+0x1ab/0x280
[ 57.474278][ T5077] ? down_read_non_owner+0xa0/0xa0
[ 57.479400][ T5077] ? do_raw_spin_unlock+0x134/0x8a0
[ 57.484597][ T5077] ? memcpy+0x3c/0x60
[ 57.488582][ T5077] vfs_rename+0xd53/0x1130
[ 57.493015][ T5077] ? __ia32_sys_link+0x90/0x90
[ 57.497773][ T5077] ? _raw_spin_unlock+0x24/0x40
[ 57.502623][ T5077] ? security_path_rename+0x1ab/0x230
[ 57.507994][ T5077] do_renameat2+0xaad/0x12d0
[ 57.512577][ T5077] ? __bpf_trace_rcu_stall_warning+0x10/0x10
[ 57.518570][ T5077] ? fsnotify_move+0x4e0/0x4e0
[ 57.523418][ T5077] ? check_heap_object+0x244/0x810
[ 57.528533][ T5077] ? __phys_addr_symbol+0x2b/0x70
[ 57.533560][ T5077] ? strncpy_from_user+0x1d6/0x330
[ 57.538668][ T5077] ? getname_flags+0x1ea/0x4e0
[ 57.543432][ T5077] __x64_sys_rename+0x82/0x90
[ 57.548101][ T5077] do_syscall_64+0x3d/0xb0
[ 57.552515][ T5077] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.558409][ T5077] RIP: 0033:0x7f0db09709f9
[ 57.562902][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.582501][ T5077] RSP: 002b:00007ffd443faf98 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[pid 5077] rename("./file0/file0", "./bus") = -1 ENOMEM (Cannot allocate memory)
[pid 5077] exit_group(0) = ?
[pid 5077] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5077, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
umount2("./7", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./7", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
fstat(3, {st_mode=S_IFDIR|0700, st_size=4096, ...}) = 0
getdents64(3, 0x5555555cc620 /* 4 entries */, 32768) = 112
umount2("./7/binderfs", MNT_DETACH|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
lstat("./7/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}) = 0
unlink("./7/binderfs") = 0
[ 57.590913][ T5077] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f0db09709f9
[ 57.598879][ T5077] RDX: 0000000000000fc0 RSI: 0000000020000200 RDI: 00000000200001c0
[ 57.606844][ T5077] RBP: 00007ffd443fafc0 R08: 0000000000000002 R09: 00007ffd443fafd0
[ 57.614815][ T5077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 57.622780][ T5077] R13: 00007ffd443fb000 R14: 00007ffd443fafe0 R15: 0000000000000007
[ 57.630763][ T5077]
[ 57.645695][ T5068] ------------[ cut here ]------------
[ 57.651256][ T5068] VFS: brelse: Trying to free free buffer
[ 57.657048][ T5068] WARNING: CPU: 0 PID: 5068 at fs/buffer.c:1145 brelse+0x78/0xa0
[ 57.664761][ T5068] Modules linked in:
[ 57.668639][ T5068] CPU: 0 PID: 5068 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 57.679032][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 57.689074][ T5068] RIP: 0010:brelse+0x78/0xa0
[ 57.693656][ T5068] Code: df be 04 00 00 00 e8 f7 fe df ff f0 ff 0b eb 1c e8 ad 53 8a ff eb 15 e8 a6 53 8a ff 48 c7 c7 80 55 fe 8a 31 c0 e8 68 43 51 ff <0f> 0b 5b 5d c3 89 d9 80 e1 07 80 c1 03 38 c1 7c af 48 89 df e8 ff
[ 57.713248][ T5068] RSP: 0018:ffffc90003d9f968 EFLAGS: 00010046
[ 57.719328][ T5068] RAX: 96e1635ab0e62d00 RBX: ffff88807215cd10 RCX: ffff88802a139d40
[ 57.727291][ T5068] RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
[ 57.735260][ T5068] RBP: 0000000000000000 R08: ffffffff816f2c9d R09: ffffed1017304f5b
[ 57.743328][ T5068] R10: ffffed1017304f5b R11: 1ffff11017304f5a R12: ffff8880b9836110
[ 57.751305][ T5068] R13: 0000000000000000 R14: ffff8880b98360f8 R15: dffffc0000000000
[ 57.759272][ T5068] FS: 00005555555cb300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 57.768198][ T5068] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 57.774779][ T5068] CR2: 00005555555d4628 CR3: 0000000026e1e000 CR4: 00000000003506f0
[ 57.783009][ T5068] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 57.790980][ T5068] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 57.798946][ T5068] Call Trace:
[ 57.802221][ T5068]
[ 57.805145][ T5068] __invalidate_bh_lrus+0xe4/0x3c0
[ 57.810258][ T5068] invalidate_bh_lru+0x66/0xb0
[ 57.815194][ T5068] smp_call_function_many_cond+0xcb2/0x13d0
[ 57.821179][ T5068] ? __bread_gfp+0x320/0x320
[ 57.825775][ T5068] ? invalidate_bh_lrus+0x30/0x30
[ 57.830796][ T5068] ? smp_call_function_many+0x30/0x30
[ 57.836168][ T5068] ? xas_next_entry+0x3c0/0x3c0
[ 57.841199][ T5068] ? __lock_acquire+0x1f60/0x1f60
[ 57.846222][ T5068] ? invalidate_bh_lrus+0x30/0x30
[ 57.851239][ T5068] ? __bread_gfp+0x320/0x320
[ 57.855829][ T5068] on_each_cpu_cond_mask+0x3b/0x80
[ 57.860946][ T5068] blkdev_flush_mapping+0x149/0x2c0
[ 57.866147][ T5068] blkdev_put+0x4a5/0x730
[ 57.870477][ T5068] deactivate_locked_super+0xa7/0xf0
[ 57.875762][ T5068] cleanup_mnt+0x494/0x520
[ 57.880174][ T5068] ? lockdep_hardirqs_on+0x8d/0x130
[ 57.885369][ T5068] task_work_run+0x243/0x300
[ 57.889960][ T5068] ? task_work_cancel+0x290/0x290
[ 57.894982][ T5068] ? path_umount+0x1e0/0xf90
[ 57.899571][ T5068] ptrace_notify+0x29a/0x340
[ 57.904162][ T5068] ? do_notify_parent+0xe00/0xe00
[ 57.909180][ T5068] ? user_path_at_empty+0x149/0x1a0
[ 57.914379][ T5068] ? __x64_sys_umount+0x113/0x150
[ 57.919405][ T5068] syscall_exit_work+0x8c/0xe0
[ 57.924172][ T5068] syscall_exit_to_user_mode_prepare+0x63/0xc0
[ 57.930411][ T5068] syscall_exit_to_user_mode+0xa/0x60
[ 57.935781][ T5068] do_syscall_64+0x49/0xb0
[ 57.940194][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 57.946085][ T5068] RIP: 0033:0x7f0db0971d97
[ 57.950497][ T5068] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 57.970097][ T5068] RSP: 002b:00007ffd443f9ea8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 57.978504][ T5068] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f0db0971d97
[ 57.986477][ T5068] RDX: 00007ffd443f9f69 RSI: 000000000000000a RDI: 00007ffd443f9f60
[ 57.994462][ T5068] RBP: 00007ffd443f9f60 R08: 00000000ffffffff R09: 00007ffd443f9d40
[ 58.002432][ T5068] R10: 00005555555cc653 R11: 0000000000000202 R12: 00007ffd443fafe0
[ 58.010395][ T5068] R13: 00005555555cc5f0 R14: 00007ffd443f9ed0 R15: 0000000000000008
[ 58.018375][ T5068]
[ 58.021393][ T5068] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 58.028667][ T5068] CPU: 0 PID: 5068 Comm: syz-executor243 Not tainted 6.2.0-rc3-syzkaller-00008-g1fe4fd6f5cad #0
[ 58.039070][ T5068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 58.049119][ T5068] Call Trace:
[ 58.052396][ T5068]
[ 58.055328][ T5068] dump_stack_lvl+0x1b1/0x290
[ 58.060017][ T5068] ? nf_tcp_handle_invalid+0x630/0x630
[ 58.065475][ T5068] ? panic+0x710/0x710
[ 58.069543][ T5068] ? vscnprintf+0x59/0x80
[ 58.073867][ T5068] ? __breadahead+0x1b0/0x200
[ 58.078542][ T5068] panic+0x2d6/0x710
[ 58.082432][ T5068] ? __warn+0x16d/0x2d0
[ 58.086584][ T5068] ? memcpy_page_flushcache+0x100/0x100
[ 58.092139][ T5068] ? brelse+0x78/0xa0
[ 58.096118][ T5068] __warn+0x284/0x2d0
[ 58.100099][ T5068] ? brelse+0x78/0xa0
[ 58.104167][ T5068] report_bug+0x1b3/0x2d0
[ 58.108509][ T5068] handle_bug+0x3d/0x70
[ 58.112663][ T5068] exc_invalid_op+0x16/0x40
[ 58.117185][ T5068] asm_exc_invalid_op+0x16/0x20
[ 58.122035][ T5068] RIP: 0010:brelse+0x78/0xa0
[ 58.126626][ T5068] Code: df be 04 00 00 00 e8 f7 fe df ff f0 ff 0b eb 1c e8 ad 53 8a ff eb 15 e8 a6 53 8a ff 48 c7 c7 80 55 fe 8a 31 c0 e8 68 43 51 ff <0f> 0b 5b 5d c3 89 d9 80 e1 07 80 c1 03 38 c1 7c af 48 89 df e8 ff
[ 58.146233][ T5068] RSP: 0018:ffffc90003d9f968 EFLAGS: 00010046
[ 58.152300][ T5068] RAX: 96e1635ab0e62d00 RBX: ffff88807215cd10 RCX: ffff88802a139d40
[ 58.160265][ T5068] RDX: 0000000000000000 RSI: 0000000080000002 RDI: 0000000000000000
[ 58.168228][ T5068] RBP: 0000000000000000 R08: ffffffff816f2c9d R09: ffffed1017304f5b
[ 58.176193][ T5068] R10: ffffed1017304f5b R11: 1ffff11017304f5a R12: ffff8880b9836110
[ 58.184161][ T5068] R13: 0000000000000000 R14: ffff8880b98360f8 R15: dffffc0000000000
[ 58.192135][ T5068] ? __wake_up_klogd+0xcd/0x100
[ 58.196996][ T5068] ? brelse+0x78/0xa0
[ 58.200977][ T5068] __invalidate_bh_lrus+0xe4/0x3c0
[ 58.206089][ T5068] invalidate_bh_lru+0x66/0xb0
[ 58.210848][ T5068] smp_call_function_many_cond+0xcb2/0x13d0
[ 58.216741][ T5068] ? __bread_gfp+0x320/0x320
[ 58.221449][ T5068] ? invalidate_bh_lrus+0x30/0x30
[ 58.226472][ T5068] ? smp_call_function_many+0x30/0x30
[ 58.231929][ T5068] ? xas_next_entry+0x3c0/0x3c0
[ 58.236789][ T5068] ? __lock_acquire+0x1f60/0x1f60
[ 58.241825][ T5068] ? invalidate_bh_lrus+0x30/0x30
[ 58.246847][ T5068] ? __bread_gfp+0x320/0x320
[ 58.251431][ T5068] on_each_cpu_cond_mask+0x3b/0x80
[ 58.256542][ T5068] blkdev_flush_mapping+0x149/0x2c0
[ 58.261740][ T5068] blkdev_put+0x4a5/0x730
[ 58.266080][ T5068] deactivate_locked_super+0xa7/0xf0
[ 58.271365][ T5068] cleanup_mnt+0x494/0x520
[ 58.275775][ T5068] ? lockdep_hardirqs_on+0x8d/0x130
[ 58.280970][ T5068] task_work_run+0x243/0x300
[ 58.285567][ T5068] ? task_work_cancel+0x290/0x290
[ 58.290592][ T5068] ? path_umount+0x1e0/0xf90
[ 58.295186][ T5068] ptrace_notify+0x29a/0x340
[ 58.299782][ T5068] ? do_notify_parent+0xe00/0xe00
[ 58.304812][ T5068] ? user_path_at_empty+0x149/0x1a0
[ 58.310011][ T5068] ? __x64_sys_umount+0x113/0x150
[ 58.315040][ T5068] syscall_exit_work+0x8c/0xe0
[ 58.319801][ T5068] syscall_exit_to_user_mode_prepare+0x63/0xc0
[ 58.325970][ T5068] syscall_exit_to_user_mode+0xa/0x60
[ 58.331347][ T5068] do_syscall_64+0x49/0xb0
[ 58.335769][ T5068] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 58.341666][ T5068] RIP: 0033:0x7f0db0971d97
[ 58.346074][ T5068] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 58.366284][ T5068] RSP: 002b:00007ffd443f9ea8 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6
[ 58.374701][ T5068] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f0db0971d97
[ 58.382668][ T5068] RDX: 00007ffd443f9f69 RSI: 000000000000000a RDI: 00007ffd443f9f60
[ 58.390635][ T5068] RBP: 00007ffd443f9f60 R08: 00000000ffffffff R09: 00007ffd443f9d40
[ 58.398681][ T5068] R10: 00005555555cc653 R11: 0000000000000202 R12: 00007ffd443fafe0
[ 58.406649][ T5068] R13: 00005555555cc5f0 R14: 00007ffd443f9ed0 R15: 0000000000000008
[ 58.414645][ T5068]
[ 58.417713][ T5068] Kernel Offset: disabled
[ 58.422100][ T5068] Rebooting in 86400 seconds..