./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor816401654

<...>
[    6.305903][   T24] audit: type=1400 audit(1752212245.600:58): avc:  denied  { read } for  pid=187 comm="getty" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:getty_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1

syzkaller
syzkaller login: [   13.613324][   T24] audit: type=1400 audit(1752212252.930:59): avc:  denied  { transition } for  pid=217 comm="sshd-session" path="/bin/sh" dev="sda1" ino=90 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   13.620176][   T24] audit: type=1400 audit(1752212252.930:60): avc:  denied  { noatsecure } for  pid=217 comm="sshd-session" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   13.626454][   T24] audit: type=1400 audit(1752212252.930:61): avc:  denied  { write } for  pid=217 comm="sh" path="pipe:[13966]" dev="pipefs" ino=13966 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   13.632693][   T24] audit: type=1400 audit(1752212252.930:62): avc:  denied  { rlimitinh } for  pid=217 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   13.641497][   T24] audit: type=1400 audit(1752212252.930:63): avc:  denied  { siginh } for  pid=217 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.227' (ED25519) to the list of known hosts.
execve("./syz-executor816401654", ["./syz-executor816401654"], 0x7ffc14cbdcc0 /* 10 vars */) = 0
brk(NULL)                               = 0x555569d63000
brk(0x555569d63d40)                     = 0x555569d63d40
arch_prctl(ARCH_SET_FS, 0x555569d633c0) = 0
set_tid_address(0x555569d63690)         = 282
set_robust_list(0x555569d636a0, 24)     = 0
rseq(0x555569d63ce0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor816401654", 4096) = 27
getrandom("\x1b\x73\x67\x1f\x75\x99\x27\xbf", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555569d63d40
brk(0x555569d84d40)                     = 0x555569d84d40
brk(0x555569d85000)                     = 0x555569d85000
mprotect(0x7fe4f4b61000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 283
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 284
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 285
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 286
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 287
./strace-static-x86_64: Process 287 attached
[pid   287] set_robust_list(0x555569d636a0, 24) = 0
[pid   287] mkdir("./syzkaller.q1hO2M", 0700) = 0
[pid   287] chmod("./syzkaller.q1hO2M", 0777) = 0
[pid   287] chdir("./syzkaller.q1hO2M") = 0
[pid   287] mkdir("./0", 0777)          = 0
[pid   287] openat(AT_FDCWD, "/dev/loop4", O_RDWR./strace-static-x86_64: Process 283 attached
./strace-static-x86_64: Process 285 attached
./strace-static-x86_64: Process 284 attached
 <unfinished ...>
[pid   283] set_robust_list(0x555569d636a0, 24executing program
) = 0
[pid   287] <... openat resumed>)       = 3
[pid   287] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
./strace-static-x86_64: Process 286 attached
[pid   286] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   287] close(3 <unfinished ...>
[pid   286] <... set_robust_list resumed>) = 0
[pid   287] <... close resumed>)        = 0
[pid   286] mkdir("./syzkaller.DvLIJg", 0700 <unfinished ...>
[pid   287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   286] <... mkdir resumed>)        = 0
[pid   287] <... clone resumed>, child_tidptr=0x555569d63690) = 289
[pid   286] chmod("./syzkaller.DvLIJg", 0777) = 0
[pid   286] chdir("./syzkaller.DvLIJg") = 0
[pid   286] mkdir("./0", 0777)          = 0
[pid   286] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 3
[pid   286] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   286] close(3)                    = 0
[pid   286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 291
./strace-static-x86_64: Process 291 attached
[pid   291] set_robust_list(0x555569d636a0, 24) = 0
[pid   291] chdir("./0")                = 0
[pid   291] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   291] setpgid(0, 0)               = 0
[pid   291] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   291] write(3, "1000", 4)         = 4
[pid   291] close(3)                    = 0
[pid   291] symlink("/dev/binderfs", "./binderfs") = 0
[pid   291] write(1, "executing program\n", 18) = 18
[pid   291] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   291] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   291] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   291] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[292]}, 88) = 292
[pid   291] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   291] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 292 attached
 <unfinished ...>
[pid   292] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   292] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   292] memfd_create("syzkaller", 0) = 3
[pid   292] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   292] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288 <unfinished ...>
[pid   283] mkdir("./syzkaller.HtYxAy", 0700 <unfinished ...>
[pid   284] set_robust_list(0x555569d636a0, 24) = 0
[pid   283] <... mkdir resumed>)        = 0
[pid   285] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   283] chmod("./syzkaller.HtYxAy", 0777) = 0
[pid   283] chdir("./syzkaller.HtYxAy" <unfinished ...>
[pid   284] mkdir("./syzkaller.HcTREH", 0700 <unfinished ...>
[pid   283] <... chdir resumed>)        = 0
[pid   283] mkdir("./0", 0777)          = 0
[pid   292] <... write resumed>)        = 524288
[pid   292] munmap(0x7fe4ec67c000, 138412032./strace-static-x86_64: Process 289 attached
 <unfinished ...>
[pid   285] <... set_robust_list resumed>) = 0
[pid   284] <... mkdir resumed>)        = 0
[pid   283] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   292] <... munmap resumed>)       = 0
[pid   292] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4
[pid   289] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[   22.634564][   T24] audit: type=1400 audit(1752212261.950:64): avc:  denied  { execmem } for  pid=282 comm="syz-executor816" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   22.654544][   T24] audit: type=1400 audit(1752212261.970:65): avc:  denied  { read write } for  pid=287 comm="syz-executor816" name="loop4" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid   292] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   289] <... set_robust_list resumed>) = 0
[pid   285] mkdir("./syzkaller.L3JRiM", 0700 <unfinished ...>
[pid   284] chmod("./syzkaller.HcTREH", 0777 <unfinished ...>
[pid   289] chdir("./0" <unfinished ...>
[pid   285] <... mkdir resumed>)        = 0
[pid   284] <... chmod resumed>)        = 0
[pid   289] <... chdir resumed>)        = 0
[pid   284] chdir("./syzkaller.HcTREH" <unfinished ...>
[pid   289] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   285] chmod("./syzkaller.L3JRiM", 0777 <unfinished ...>
[pid   284] <... chdir resumed>)        = 0
[pid   289] <... prctl resumed>)        = 0
[pid   285] <... chmod resumed>)        = 0
[pid   284] mkdir("./0", 0777 <unfinished ...>
[pid   289] setpgid(0, 0 <unfinished ...>
[pid   285] chdir("./syzkaller.L3JRiM" <unfinished ...>
[pid   284] <... mkdir resumed>)        = 0
[pid   289] <... setpgid resumed>)      = 0
[pid   285] <... chdir resumed>)        = 0
[pid   284] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   289] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   285] mkdir("./0", 0777 <unfinished ...>
[pid   289] <... openat resumed>)       = 3
[pid   285] <... mkdir resumed>)        = 0
executing program
[pid   289] write(3, "1000", 4 <unfinished ...>
[pid   285] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   289] <... write resumed>)        = 4
[pid   289] close(3)                    = 0
[pid   289] symlink("/dev/binderfs", "./binderfs") = 0
[pid   289] write(1, "executing program\n", 18) = 18
[pid   289] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   289] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   289] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   289] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   289] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   289] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[294]}, 88) = 294
[pid   289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   289] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 294 attached
 <unfinished ...>
[pid   294] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   294] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   294] memfd_create("syzkaller", 0) = 3
[pid   294] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   294] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
[pid   294] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   294] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   292] <... ioctl resumed>)        = 0
[pid   285] <... openat resumed>)       = 3
[pid   284] <... openat resumed>)       = 3
[pid   283] <... openat resumed>)       = 3
[pid   285] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   284] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   283] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   285] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   284] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   283] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   285] close(3 <unfinished ...>
[pid   284] close(3 <unfinished ...>
[pid   283] close(3 <unfinished ...>
[pid   285] <... close resumed>)        = 0
[pid   284] <... close resumed>)        = 0
[pid   283] <... close resumed>)        = 0
[pid   285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   285] <... clone resumed>, child_tidptr=0x555569d63690) = 295
[pid   283] <... clone resumed>, child_tidptr=0x555569d63690) = 297
[pid   284] <... clone resumed>, child_tidptr=0x555569d63690) = 296
[pid   292] close(3)                    = 0
[pid   292] close(4./strace-static-x86_64: Process 295 attached
 <unfinished ...>
[pid   295] set_robust_list(0x555569d636a0, 24) = 0
[pid   295] chdir("./0")                = 0
[pid   295] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   295] setpgid(0, 0)               = 0
[pid   295] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   295] write(3, "1000", 4)         = 4
[pid   295] close(3)                    = 0
[pid   295] symlink("/dev/binderfs", "./binderfs") = 0
[pid   295] write(1, "executing program\n", 18executing program
) = 18
[pid   295] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   295] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   295] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   295] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[298]}, 88) = 298
[pid   295] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   295] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 296 attached
) = 0
./strace-static-x86_64: Process 298 attached
./strace-static-x86_64: Process 297 attached
[pid   295] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid   298] set_robust_list(0x7fe4f4a9c9a0, 24 <unfinished ...>
[pid   297] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   298] <... set_robust_list resumed>) = 0
[pid   297] <... set_robust_list resumed>) = 0
[pid   298] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   296] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   298] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   297] chdir("./0" <unfinished ...>
[pid   296] <... set_robust_list resumed>) = 0
[pid   298] memfd_create("syzkaller", 0 <unfinished ...>
[pid   297] <... chdir resumed>)        = 0
executing program
[pid   298] <... memfd_create resumed>) = 3
[pid   297] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   298] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid   297] <... prctl resumed>)        = 0
[pid   298] <... mmap resumed>)         = 0x7fe4ec67c000
[pid   297] setpgid(0, 0 <unfinished ...>
[pid   296] chdir("./0")                = 0
[pid   296] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   296] setpgid(0, 0)               = 0
[pid   296] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   296] write(3, "1000", 4)         = 4
[pid   296] close(3)                    = 0
[pid   296] symlink("/dev/binderfs", "./binderfs") = 0
[pid   296] write(1, "executing program\n", 18) = 18
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   296] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   296] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   296] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   296] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   296] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   296] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[299]}, 88) = 299
[pid   296] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   298] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288 <unfinished ...>
[pid   297] <... setpgid resumed>)      = 0
[pid   296] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   296] <... futex resumed>)        = 0
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid   297] <... openat resumed>)       = 3
./strace-static-x86_64: Process 299 attached
[pid   299] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   299] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   299] memfd_create("syzkaller", 0) = 3
[pid   299] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   298] <... write resumed>)        = 524288
[pid   297] write(3, "1000", 4)         = 4
[pid   297] close(3)                    = 0
[pid   298] munmap(0x7fe4ec67c000, 138412032 <unfinished ...>
[pid   297] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   297] write(1, "executing program\n", 18) = 18
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   297] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   297] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   298] <... munmap resumed>)       = 0
[pid   297] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   298] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   297] <... rt_sigprocmask resumed>[], 8) = 0
[pid   297] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[300]}, 88) = 300
[pid   297] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   297] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 300 attached
 <unfinished ...>
[pid   300] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   300] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   300] memfd_create("syzkaller", 0) = 3
[pid   300] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   299] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
[pid   300] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288 <unfinished ...>
[pid   299] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   299] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   300] <... write resumed>)        = 524288
[pid   300] munmap(0x7fe4ec67c000, 138412032) = 0
[   22.682197][   T24] audit: type=1400 audit(1752212261.970:66): avc:  denied  { open } for  pid=287 comm="syz-executor816" path="/dev/loop4" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   22.708370][   T24] audit: type=1400 audit(1752212261.970:67): avc:  denied  { ioctl } for  pid=287 comm="syz-executor816" path="/dev/loop4" dev="devtmpfs" ino=119 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid   300] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   292] <... close resumed>)        = 0
[pid   294] <... openat resumed>)       = 4
[pid   294] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   292] mkdir("./file1", 0777)      = 0
[   22.772143][  T292] ======================================================
[   22.772143][  T292] WARNING: the mand mount option is being deprecated and
[   22.772143][  T292]          will be removed in v5.15!
[   22.772143][  T292] ======================================================
[   22.772166][   T24] audit: type=1400 audit(1752212262.100:68): avc:  denied  { mounton } for  pid=291 comm="syz-executor816" path="/root/syzkaller.DvLIJg/0/file1" dev="sda1" ino=2039 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[pid   292] mount("/dev/loop3", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   300] <... openat resumed>)       = 4
[pid   299] <... openat resumed>)       = 4
[pid   298] <... openat resumed>)       = 4
[pid   300] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   299] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   298] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   294] <... ioctl resumed>)        = 0
[pid   294] close(3)                    = 0
[pid   294] close(4)                    = 0
[pid   294] mkdir("./file1", 0777)      = 0
[pid   300] <... ioctl resumed>)        = 0
[pid   300] close(3 <unfinished ...>
[pid   294] mount("/dev/loop4", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   300] <... close resumed>)        = 0
[pid   300] close(4 <unfinished ...>
[pid   298] <... ioctl resumed>)        = 0
[pid   298] close(3)                    = 0
[pid   298] close(4)                    = 0
[   22.872249][  T292] EXT4-fs (loop3): Ignoring removed nobh option
[   22.878584][  T292] EXT4-fs (loop3): Ignoring removed bh option
[   22.884680][  T292] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[pid   298] mkdir("./file1", 0777)      = 0
[pid   298] mount("/dev/loop2", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   299] <... ioctl resumed>)        = 0
[pid   300] <... close resumed>)        = 0
[pid   300] mkdir("./file1", 0777)      = 0
[pid   299] close(3)                    = 0
[pid   299] close(4 <unfinished ...>
[pid   300] mount("/dev/loop0", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   292] <... mount resumed>)        = 0
[pid   292] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid   292] chdir("./file1")            = 0
[pid   292] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   299] <... close resumed>)        = 0
[   22.907940][  T292] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   22.932582][   T24] audit: type=1400 audit(1752212262.250:69): avc:  denied  { mount } for  pid=291 comm="syz-executor816" name="/" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[pid   299] mkdir("./file1", 0777)      = 0
[   22.988710][  T298] EXT4-fs (loop2): Ignoring removed nobh option
[   22.994042][  T294] EXT4-fs (loop4): Ignoring removed nobh option
[   22.995384][  T300] EXT4-fs (loop0): Ignoring removed nobh option
[   23.001840][  T294] EXT4-fs (loop4): Ignoring removed bh option
[   23.007614][  T300] EXT4-fs (loop0): Ignoring removed bh option
[   23.007631][  T300] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.007888][  T298] EXT4-fs (loop2): Ignoring removed bh option
[pid   299] mount("/dev/loop1", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   292] <... openat resumed>)       = 4
[pid   292] ioctl(4, LOOP_CLR_FD)       = 0
[pid   292] close(4)                    = 0
[pid   292] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[   23.014491][  T294] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.020039][  T298] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.033747][  T300] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[pid   292] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   300] <... mount resumed>)        = 0
[pid   294] <... mount resumed>)        = 0
[pid   291] <... futex resumed>)        = 0
[pid   300] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   294] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   300] <... openat resumed>)       = 3
[pid   294] <... openat resumed>)       = 3
[pid   300] chdir("./file1" <unfinished ...>
[pid   294] chdir("./file1" <unfinished ...>
[pid   300] <... chdir resumed>)        = 0
[pid   294] <... chdir resumed>)        = 0
[pid   300] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   294] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   300] <... openat resumed>)       = 4
[pid   294] <... openat resumed>)       = 4
[pid   300] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   294] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   300] <... ioctl resumed>)        = 0
[pid   294] <... ioctl resumed>)        = 0
[pid   300] close(4 <unfinished ...>
[pid   294] close(4 <unfinished ...>
[pid   300] <... close resumed>)        = 0
[pid   294] <... close resumed>)        = 0
[pid   291] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   300] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   294] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   300] <... futex resumed>)        = 1
[pid   294] <... futex resumed>)        = 1
[pid   300] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   294] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   297] <... futex resumed>)        = 0
[pid   292] <... futex resumed>)        = 0
[pid   291] <... futex resumed>)        = 1
[pid   289] <... futex resumed>)        = 0
[   23.039437][  T294] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   23.066777][  T299] EXT4-fs (loop1): Ignoring removed nobh option
[pid   297] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   292] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   291] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   289] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   297] <... futex resumed>)        = 1
[pid   289] <... futex resumed>)        = 1
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   289] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   300] <... futex resumed>)        = 0
[pid   294] <... futex resumed>)        = 0
[pid   292] <... openat resumed>)       = 4
[pid   292] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   291] <... futex resumed>)        = 0
[pid   292] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   291] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   292] <... pwrite64 resumed>)     = 87490
[pid   291] <... futex resumed>)        = 0
[pid   291] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   292] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   291] <... futex resumed>)        = 0
[pid   291] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   292] <... futex resumed>)        = 1
[pid   292] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   292] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   291] <... futex resumed>)        = 0
[pid   291] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   291] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   292] <... futex resumed>)        = 1
[pid   291] <... mprotect resumed>)     = 0
[pid   292] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   291] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   300] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   297] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   294] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   291] <... rt_sigprocmask resumed>[], 8) = 0
[pid   297] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} <unfinished ...>
[pid   297] <... futex resumed>)        = 0
[pid   297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   291] <... clone3 resumed> => {parent_tid=[315]}, 88) = 315
[pid   297] <... mmap resumed>)         = 0x7fe4f4a5b000
[pid   291] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   297] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   291] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   297] <... mprotect resumed>)     = 0
[pid   291] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   297] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   291] <... futex resumed>)        = 0
[pid   297] <... rt_sigprocmask resumed>[], 8) = 0
[pid   291] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   297] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[316]}, 88) = 316
[pid   297] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   297] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 316 attached
 <unfinished ...>
[pid   316] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   316] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   316] pwrite64(-1, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900) = -1 EBADF (Bad file descriptor)
[pid   316] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   297] <... futex resumed>)        = 0
[pid   297] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   316] <... futex resumed>)        = 1
[pid   316] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 4
./strace-static-x86_64: Process 315 attached
[pid   315] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   315] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   315] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   316] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   297] <... futex resumed>)        = 0
[pid   297] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a3a000
[pid   297] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   297] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   297] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} => {parent_tid=[317]}, 88) = 317
[pid   297] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   297] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   297] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   316] <... futex resumed>)        = 1
[   23.119549][   T24] audit: type=1400 audit(1752212262.440:70): avc:  denied  { read write } for  pid=291 comm="syz-executor816" name="file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   23.131157][  T299] EXT4-fs (loop1): Ignoring removed bh option
[   23.150142][  T299] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.153336][  T292] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   316] pwrite64(4, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   300] <... openat resumed>)       = 5
[pid   298] <... mount resumed>)        = 0
[pid   294] <... openat resumed>)       = 4
[pid   289] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   289] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   289] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   289] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   289] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[318]}, 88) = 318
[pid   289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   289] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 317 attached
 <unfinished ...>
[pid   317] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[pid   317] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   317] pwrite64(4, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864./strace-static-x86_64: Process 318 attached
 <unfinished ...>
[pid   318] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   318] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   318] pwrite64(-1, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900) = -1 EBADF (Bad file descriptor)
[pid   318] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   289] <... futex resumed>)        = 0
[pid   289] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   318] <... futex resumed>)        = 1
[pid   318] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   318] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   289] <... futex resumed>)        = 0
[pid   289] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a3a000
[pid   289] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   289] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   289] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} => {parent_tid=[319]}, 88) = 319
[pid   289] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   289] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   289] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   318] <... futex resumed>)        = 1
[pid   318] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864./strace-static-x86_64: Process 319 attached
 <unfinished ...>
[pid   319] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[pid   319] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[   23.162903][  T298] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   23.189147][  T316] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   23.202012][   T24] audit: type=1400 audit(1752212262.440:71): avc:  denied  { open } for  pid=291 comm="syz-executor816" path="/root/syzkaller.DvLIJg/0/file1/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[pid   319] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   300] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   298] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   297] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   294] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   291] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   300] <... futex resumed>)        = 0
[pid   298] <... openat resumed>)       = 3
[pid   297] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   294] <... futex resumed>)        = 0
[pid   291] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   300] truncate("./file1", 1 <unfinished ...>
[pid   298] chdir("./file1" <unfinished ...>
[pid   297] <... futex resumed>)        = 0
[pid   294] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   291] <... futex resumed>)        = 0
[pid   298] <... chdir resumed>)        = 0
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   291] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   298] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   291] <... mmap resumed>)         = 0x7fe4f4a3a000
[pid   298] <... openat resumed>)       = 4
[pid   291] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   298] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   291] <... mprotect resumed>)     = 0
[pid   298] <... ioctl resumed>)        = 0
[pid   291] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   298] close(4 <unfinished ...>
[pid   291] <... rt_sigprocmask resumed>[], 8) = 0
[pid   298] <... close resumed>)        = 0
[pid   291] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} <unfinished ...>
[pid   298] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   295] <... futex resumed>)        = 0
[pid   291] <... clone3 resumed> => {parent_tid=[321]}, 88) = 321
[pid   298] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   295] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   291] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   295] <... futex resumed>)        = 0
[pid   291] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   295] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   291] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[   23.227882][  T318] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   23.240489][   T24] audit: type=1400 audit(1752212262.500:72): avc:  denied  { write } for  pid=297 comm="syz-executor816" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   23.259130][  T315] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   291] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   298] <... openat resumed>)       = 4
[pid   289] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   298] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   289] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   298] <... futex resumed>)        = 1
[pid   295] <... futex resumed>)        = 0
[pid   294] <... futex resumed>)        = 0
[pid   289] <... futex resumed>)        = 1
[pid   298] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   295] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   294] truncate("./file1", 1 <unfinished ...>
[pid   289] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   295] <... futex resumed>)        = 0
[pid   295] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   298] <... pwrite64 resumed>)     = 87490
[pid   298] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   295] <... futex resumed>)        = 0
[pid   295] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   298] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   298] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   295] <... futex resumed>)        = 0
[pid   295] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   295] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   295] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[322]}, 88) = 322
[pid   295] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   295] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   298] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   292] <... pwrite64 resumed>)     = 176128
[pid   292] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   292] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 321 attached
 <unfinished ...>
[pid   321] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[pid   321] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   297] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid   297] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid   321] <... rt_sigprocmask resumed>NULL, 8) = 0
./strace-static-x86_64: Process 322 attached
[pid   321] truncate("./file1", 1 <unfinished ...>
[pid   291] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[   23.276330][   T24] audit: type=1400 audit(1752212262.500:73): avc:  denied  { add_name } for  pid=297 comm="syz-executor816" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   23.307589][  T298] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   23.316887][  T316] EXT4-fs (loop0): pa ffff8881214490a8: logic 128, phys. 385, len 8
[pid   322] set_robust_list(0x7fe4f4a7b9a0, 24 <unfinished ...>
[pid   321] <... truncate resumed>)     = 0
[pid   315] <... pwrite64 resumed>)     = 176128
[pid   299] <... mount resumed>)        = 0
[pid   295] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   289] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   322] <... set_robust_list resumed>) = 0
[pid   299] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   295] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   322] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   299] <... openat resumed>)       = 3
[pid   295] <... futex resumed>)        = 0
[pid   322] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   299] chdir("./file1" <unfinished ...>
[pid   295] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   322] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   299] <... chdir resumed>)        = 0
[pid   295] <... mmap resumed>)         = 0x7fe4f4a3a000
[pid   299] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   295] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   299] <... openat resumed>)       = 4
[pid   295] <... mprotect resumed>)     = 0
[pid   299] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   295] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   299] <... ioctl resumed>)        = 0
[pid   295] <... rt_sigprocmask resumed>[], 8) = 0
[pid   299] close(4 <unfinished ...>
[pid   295] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} <unfinished ...>
[pid   299] <... close resumed>)        = 0
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   295] <... clone3 resumed> => {parent_tid=[324]}, 88) = 324
[pid   299] <... futex resumed>)        = 1
[pid   295] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   299] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   295] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   295] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   321] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   321] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   315] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   291] exit_group(0 <unfinished ...>
[pid   292] <... futex resumed>)        = ?
[pid   291] <... exit_group resumed>)   = ?
[pid   292] +++ exited with 0 +++
[pid   321] <... futex resumed>)        = ?
[pid   321] +++ exited with 0 +++
[pid   315] +++ exited with 0 +++
[pid   291] +++ exited with 0 +++
[pid   286] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=291, si_uid=0, si_status=0, si_utime=0, si_stime=9} ---
[pid   286] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 324 attached
 <unfinished ...>
[pid   317] <... pwrite64 resumed>)     = 307200
[pid   316] <... pwrite64 resumed>)     = 208896
[pid   298] <... pwrite64 resumed>)     = 176128
[pid   296] <... futex resumed>)        = 0
[pid   324] set_robust_list(0x7fe4f4a5a9a0, 24 <unfinished ...>
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   324] <... set_robust_list resumed>) = 0
[pid   296] <... futex resumed>)        = 1
[pid   324] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   324] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   324] truncate("./file1", 1 <unfinished ...>
[pid   317] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   317] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   316] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   298] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   316] <... futex resumed>)        = 0
[pid   298] <... futex resumed>)        = 0
[pid   316] futex(0x7fe4f4b676d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   298] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   300] <... truncate resumed>)     = 0
[pid   300] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   300] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   299] <... futex resumed>)        = 0
[pid   286] <... restart_syscall resumed>) = 0
[pid   299] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   297] exit_group(0 <unfinished ...>
[pid   317] <... futex resumed>)        = ?
[pid   316] <... futex resumed>)        = ?
[pid   300] <... futex resumed>)        = ?
[pid   297] <... exit_group resumed>)   = ?
[pid   317] +++ exited with 0 +++
[pid   316] +++ exited with 0 +++
[pid   300] +++ exited with 0 +++
[pid   297] +++ exited with 0 +++
[pid   286] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   286] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=297, si_uid=0, si_status=0, si_utime=0, si_stime=14} ---
[pid   286] <... openat resumed>)       = 3
[pid   283] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   286] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   286] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[   23.326340][  T299] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   23.333318][  T316] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 1
[   23.368860][  T322] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   286] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   324] <... truncate resumed>)     = 0
[pid   324] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   295] <... futex resumed>)        = 0
[pid   324] <... futex resumed>)        = 1
[pid   324] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   322] <... pwrite64 resumed>)     = 176128
[pid   322] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   295] exit_group(0 <unfinished ...>
[pid   298] <... futex resumed>)        = ?
[pid   295] <... exit_group resumed>)   = ?
[pid   298] +++ exited with 0 +++
[pid   324] <... futex resumed>)        = ?
[pid   324] +++ exited with 0 +++
[pid   322] +++ exited with 0 +++
[pid   295] +++ exited with 0 +++
[pid   285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=295, si_uid=0, si_status=0, si_utime=0, si_stime=8} ---
[pid   285] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   299] <... openat resumed>)       = 4
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   296] <... futex resumed>)        = 0
[pid   299] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   299] <... pwrite64 resumed>)     = 87490
[pid   296] <... futex resumed>)        = 0
[pid   285] <... restart_syscall resumed>) = 0
[pid   283] <... restart_syscall resumed>) = 0
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   285] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   283] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   283] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   285] <... openat resumed>)       = 3
[pid   283] <... openat resumed>)       = 3
[pid   285] newfstatat(3, "",  <unfinished ...>
[pid   283] newfstatat(3, "",  <unfinished ...>
[pid   285] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   283] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   285] getdents64(3,  <unfinished ...>
[pid   283] getdents64(3,  <unfinished ...>
[pid   285] <... getdents64 resumed>0x555569d64730 /* 4 entries */, 32768) = 112
[pid   283] <... getdents64 resumed>0x555569d64730 /* 4 entries */, 32768) = 112
[pid   285] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   319] <... pwrite64 resumed>)     = 307200
[pid   318] <... pwrite64 resumed>)     = 208896
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   294] <... truncate resumed>)     = 0
[pid   299] <... futex resumed>)        = 1
[pid   294] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   296] <... futex resumed>)        = 0
[pid   299] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000 <unfinished ...>
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   294] <... futex resumed>)        = 0
[pid   299] <... openat resumed>)       = 5
[pid   296] <... futex resumed>)        = 0
[pid   294] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   299] <... futex resumed>)        = 0
[pid   299] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   296] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid   299] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   299] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   296] <... futex resumed>)        = 0
[pid   319] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   296] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   319] <... futex resumed>)        = 0
[pid   319] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   296] <... futex resumed>)        = 0
[pid   318] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   296] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   296] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   289] exit_group(0 <unfinished ...>
[pid   319] <... futex resumed>)        = ?
[pid   296] <... mprotect resumed>)     = 0
[pid   294] <... futex resumed>)        = ?
[pid   289] <... exit_group resumed>)   = ?
[pid   319] +++ exited with 0 +++
[pid   296] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   294] +++ exited with 0 +++
[pid   296] <... rt_sigprocmask resumed>[], 8) = 0
[pid   296] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[325]}, 88) = 325
[pid   296] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   296] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   296] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   318] <... futex resumed>)        = ?
[pid   318] +++ exited with 0 +++
[pid   289] +++ exited with 0 +++
[pid   287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=289, si_uid=0, si_status=0, si_utime=0, si_stime=13} ---
[pid   287] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 325 attached
 <unfinished ...>
[pid   325] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   325] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   325] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   287] <... restart_syscall resumed>) = 0
[pid   287] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   287] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   287] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   287] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[pid   287] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   299] <... pwrite64 resumed>)     = 176128
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[   23.383307][  T318] EXT4-fs (loop4): pa ffff8881214492a0: logic 128, phys. 385, len 8
[   23.391437][  T318] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4359: group 0, free 0, pa_free 1
[   23.414287][  T299] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   299] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   325] <... pwrite64 resumed>)     = 176128
[pid   325] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   296] <... futex resumed>)        = 0
[pid   296] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   296] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   325] <... futex resumed>)        = 1
[pid   325] futex(0x7fe4f4b676d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   299] <... futex resumed>)        = 0
[pid   299] truncate("./file1", 1)      = 0
[pid   299] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   286] <... umount2 resumed>)      = 0
[pid   299] <... futex resumed>)        = 1
[pid   296] <... futex resumed>)        = 0
[pid   286] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   296] exit_group(0)               = ?
[pid   286] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   286] newfstatat(AT_FDCWD, "./0/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   286] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   286] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   286] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   286] getdents64(4, 0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   286] getdents64(4, 0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   286] close(4)                    = 0
[pid   286] rmdir("./0/file1" <unfinished ...>
[pid   325] <... futex resumed>)        = ?
[pid   299] +++ exited with 0 +++
[pid   286] <... rmdir resumed>)        = 0
[pid   286] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   325] +++ exited with 0 +++
[pid   296] +++ exited with 0 +++
[pid   286] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   286] newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   286] unlink("./0/binderfs")      = 0
[pid   286] getdents64(3, 0x555569d64730 /* 0 entries */, 32768) = 0
[pid   286] close(3)                    = 0
[pid   286] rmdir("./0")                = 0
[pid   284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=296, si_uid=0, si_status=0, si_utime=0, si_stime=12} ---
[pid   286] mkdir("./1", 0777)          = 0
[pid   286] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   284] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   284] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   284] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   284] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   284] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[   23.430441][  T325] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   284] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOWexecuting program
 <unfinished ...>
[pid   286] <... openat resumed>)       = 3
[pid   286] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   286] close(3)                    = 0
[pid   286] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 326
./strace-static-x86_64: Process 326 attached
[pid   326] set_robust_list(0x555569d636a0, 24) = 0
[pid   326] chdir("./1")                = 0
[pid   326] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   326] setpgid(0, 0)               = 0
[pid   326] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   326] write(3, "1000", 4)         = 4
[pid   326] close(3)                    = 0
[pid   326] symlink("/dev/binderfs", "./binderfs") = 0
[pid   326] write(1, "executing program\n", 18) = 18
[pid   326] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   326] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   326] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[327]}, 88) = 327
[pid   326] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   326] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 327 attached
 <unfinished ...>
[pid   327] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   327] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   327] memfd_create("syzkaller", 0) = 3
[pid   327] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   327] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
[pid   327] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   327] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   285] <... umount2 resumed>)      = 0
[pid   283] <... umount2 resumed>)      = 0
[pid   285] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   283] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] newfstatat(AT_FDCWD, "./0/file1",  <unfinished ...>
[pid   283] newfstatat(AT_FDCWD, "./0/file1",  <unfinished ...>
[pid   285] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   285] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   283] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] <... openat resumed>)       = 4
[pid   284] <... umount2 resumed>)      = 0
[pid   283] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   284] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   284] newfstatat(AT_FDCWD, "./0/file1",  <unfinished ...>
[pid   285] newfstatat(4, "",  <unfinished ...>
[pid   284] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] <... openat resumed>)       = 4
[pid   284] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   284] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   285] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   284] newfstatat(4, "",  <unfinished ...>
[pid   283] newfstatat(4, "",  <unfinished ...>
[pid   284] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   284] getdents64(4,  <unfinished ...>
[pid   285] getdents64(4,  <unfinished ...>
[pid   284] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   283] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   284] getdents64(4, 0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   284] close(4)                    = 0
[pid   284] rmdir("./0/file1" <unfinished ...>
[pid   285] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   284] <... rmdir resumed>)        = 0
[pid   283] getdents64(4,  <unfinished ...>
[pid   285] getdents64(4, 0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   284] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   285] close(4 <unfinished ...>
[pid   283] getdents64(4,  <unfinished ...>
[pid   285] <... close resumed>)        = 0
[pid   283] <... getdents64 resumed>0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   285] rmdir("./0/file1" <unfinished ...>
[pid   283] close(4 <unfinished ...>
[pid   284] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] <... rmdir resumed>)        = 0
[pid   284] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid   285] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   283] <... close resumed>)        = 0
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   284] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] rmdir("./0/file1" <unfinished ...>
[pid   285] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid   284] unlink("./0/binderfs" <unfinished ...>
[pid   285] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   284] <... unlink resumed>)       = 0
[pid   283] <... rmdir resumed>)        = 0
[pid   285] unlink("./0/binderfs" <unfinished ...>
[pid   283] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   284] getdents64(3, 0x555569d64730 /* 0 entries */, 32768) = 0
[pid   285] <... unlink resumed>)       = 0
[pid   284] close(3 <unfinished ...>
[pid   283] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] getdents64(3,  <unfinished ...>
[pid   283] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid   327] <... openat resumed>)       = 4
[pid   285] <... getdents64 resumed>0x555569d64730 /* 0 entries */, 32768) = 0
[pid   284] <... close resumed>)        = 0
[pid   283] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   285] close(3 <unfinished ...>
[pid   283] unlink("./0/binderfs" <unfinished ...>
[pid   327] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   287] <... umount2 resumed>)      = 0
[pid   285] <... close resumed>)        = 0
[pid   284] rmdir("./0" <unfinished ...>
[pid   283] <... unlink resumed>)       = 0
[pid   287] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] rmdir("./0" <unfinished ...>
[pid   283] getdents64(3,  <unfinished ...>
[pid   284] <... rmdir resumed>)        = 0
[pid   284] mkdir("./1", 0777 <unfinished ...>
[pid   287] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] <... rmdir resumed>)        = 0
[pid   284] <... mkdir resumed>)        = 0
[pid   283] <... getdents64 resumed>0x555569d64730 /* 0 entries */, 32768) = 0
[pid   327] <... ioctl resumed>)        = 0
[pid   284] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 3
[pid   284] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   284] close(3 <unfinished ...>
[pid   327] close(3 <unfinished ...>
[pid   287] newfstatat(AT_FDCWD, "./0/file1",  <unfinished ...>
[pid   285] mkdir("./1", 0777 <unfinished ...>
[pid   284] <... close resumed>)        = 0
[pid   283] close(3 <unfinished ...>
[pid   284] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid   285] <... mkdir resumed>)        = 0
[pid   283] <... close resumed>)        = 0
[pid   285] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   284] <... clone resumed>, child_tidptr=0x555569d63690) = 330
[pid   283] rmdir("./0" <unfinished ...>
[pid   285] <... openat resumed>)       = 3
./strace-static-x86_64: Process 330 attached
[pid   330] set_robust_list(0x555569d636a0, 24) = 0
[pid   283] <... rmdir resumed>)        = 0
[pid   285] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   283] mkdir("./1", 0777 <unfinished ...>
[pid   285] close(3 <unfinished ...>
[pid   330] chdir("./1")                = 0
[pid   330] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   283] <... mkdir resumed>)        = 0
[pid   285] <... close resumed>)        = 0
[pid   283] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   285] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 331 attached
 <unfinished ...>
[pid   330] <... prctl resumed>)        = 0
[pid   327] <... close resumed>)        = 0
[pid   287] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] <... openat resumed>)       = 3
[pid   285] <... clone resumed>, child_tidptr=0x555569d63690) = 331
[pid   283] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid   283] close(3)                    = 0
[pid   283] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 332
[pid   287] umount2("./0/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   287] openat(AT_FDCWD, "./0/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   287] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
./strace-static-x86_64: Process 332 attached
[pid   331] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   330] setpgid(0, 0 <unfinished ...>
[pid   327] close(4 <unfinished ...>
[pid   287] getdents64(4, 0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   287] getdents64(4, 0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   287] close(4)                    = 0
[pid   330] <... setpgid resumed>)      = 0
[pid   287] rmdir("./0/file1" <unfinished ...>
[pid   330] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   287] <... rmdir resumed>)        = 0
[pid   332] set_robust_list(0x555569d636a0, 24 <unfinished ...>
[pid   331] <... set_robust_list resumed>) = 0
[pid   330] <... openat resumed>)       = 3
[pid   287] umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   330] write(3, "1000", 4 <unfinished ...>
[pid   287] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   330] <... write resumed>)        = 4
[pid   287] newfstatat(AT_FDCWD, "./0/binderfs",  <unfinished ...>
[pid   330] close(3 <unfinished ...>
[pid   287] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   330] <... close resumed>)        = 0
[pid   287] unlink("./0/binderfs" <unfinished ...>
[pid   332] <... set_robust_list resumed>) = 0
[pid   331] chdir("./1" <unfinished ...>
[pid   330] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid   287] <... unlink resumed>)       = 0
[pid   330] <... symlink resumed>)      = 0
[pid   287] getdents64(3,  <unfinished ...>
[pid   330] write(1, "executing program\n", 18executing program
) = 18
[pid   330] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   330] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   330] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   330] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   331] <... chdir resumed>)        = 0
[pid   287] <... getdents64 resumed>0x555569d64730 /* 0 entries */, 32768) = 0
[pid   287] close(3)                    = 0
[pid   287] rmdir("./0" <unfinished ...>
[pid   330] <... rt_sigprocmask resumed>[], 8) = 0
[pid   330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} <unfinished ...>
[pid   287] <... rmdir resumed>)        = 0
[pid   330] <... clone3 resumed> => {parent_tid=[333]}, 88) = 333
[pid   287] mkdir("./1", 0777 <unfinished ...>
[pid   330] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   330] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid   331] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   287] <... mkdir resumed>)        = 0
[pid   331] <... prctl resumed>)        = 0
[pid   331] setpgid(0, 0)               = 0
[pid   331] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 333 attached
) = 3
[pid   287] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   331] write(3, "1000", 4)         = 4
[pid   331] close(3)                    = 0
[pid   331] symlink("/dev/binderfs", "./binderfs") = 0
executing program
[pid   331] write(1, "executing program\n", 18) = 18
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   331] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   331] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   331] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   331] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   331] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[334]}, 88) = 334
[pid   332] chdir("./1" <unfinished ...>
[pid   331] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 334 attached
 <unfinished ...>
[pid   334] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   334] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   334] memfd_create("syzkaller", 0) = 3
[pid   334] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   333] set_robust_list(0x7fe4f4a9c9a0, 24 <unfinished ...>
[pid   332] <... chdir resumed>)        = 0
[pid   333] <... set_robust_list resumed>) = 0
[pid   332] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid   333] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   332] <... prctl resumed>)        = 0
[pid   333] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   333] memfd_create("syzkaller", 0 <unfinished ...>
[pid   332] setpgid(0, 0 <unfinished ...>
[pid   333] <... memfd_create resumed>) = 3
[pid   332] <... setpgid resumed>)      = 0
[pid   332] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid   333] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   332] <... openat resumed>)       = 3
[pid   334] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
[pid   334] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   334] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   332] write(3, "1000", 4)         = 4
[pid   332] close(3)                    = 0
[pid   332] symlink("/dev/binderfs", "./binderfs") = 0
[pid   333] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288 <unfinished ...>
executing program
[pid   332] write(1, "executing program\n", 18) = 18
[pid   332] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   332] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   332] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   332] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   332] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   332] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[335]}, 88) = 335
[pid   332] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   332] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 335 attached
 <unfinished ...>
[pid   335] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   335] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   335] memfd_create("syzkaller", 0) = 3
[pid   335] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   333] <... write resumed>)        = 524288
[pid   333] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   333] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   335] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288 <unfinished ...>
[pid   334] <... openat resumed>)       = 4
[pid   333] <... openat resumed>)       = 4
[pid   327] <... close resumed>)        = 0
[pid   287] <... openat resumed>)       = 3
[pid   334] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   333] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   327] mkdir("./file1", 0777 <unfinished ...>
[pid   287] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   335] <... write resumed>)        = 524288
[pid   335] munmap(0x7fe4ec67c000, 138412032 <unfinished ...>
[pid   327] <... mkdir resumed>)        = 0
[pid   335] <... munmap resumed>)       = 0
[pid   335] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   327] mount("/dev/loop3", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   287] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid   287] close(3 <unfinished ...>
[pid   334] <... ioctl resumed>)        = 0
[pid   334] close(3)                    = 0
[pid   334] close(4)                    = 0
[pid   335] <... openat resumed>)       = 4
[pid   335] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   334] mkdir("./file1", 0777)      = 0
[pid   287] <... close resumed>)        = 0
[pid   334] mount("/dev/loop2", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   287] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555569d63690) = 339
[pid   333] <... ioctl resumed>)        = 0
[pid   333] close(3)                    = 0
[pid   333] close(4./strace-static-x86_64: Process 339 attached
 <unfinished ...>
[pid   339] set_robust_list(0x555569d636a0, 24) = 0
[pid   339] chdir("./1")                = 0
[pid   339] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   339] setpgid(0, 0)               = 0
[pid   339] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   339] write(3, "1000", 4)         = 4
[pid   339] close(3)                    = 0
[pid   339] symlink("/dev/binderfs", "./binderfs") = 0
[pid   339] write(1, "executing program\n", 18executing program
) = 18
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   339] rt_sigaction(SIGRT_1, {sa_handler=0x7fe4f4b062a0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fe4f4af7450}, NULL, 8) = 0
[pid   339] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid   339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a7c000
[pid   339] mprotect(0x7fe4f4a7d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   339] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   339] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a9c990, parent_tid=0x7fe4f4a9c990, exit_signal=0, stack=0x7fe4f4a7c000, stack_size=0x20300, tls=0x7fe4f4a9c6c0} => {parent_tid=[340]}, 88) = 340
[pid   339] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 340 attached
 <unfinished ...>
[pid   340] set_robust_list(0x7fe4f4a9c9a0, 24) = 0
[pid   340] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   340] memfd_create("syzkaller", 0) = 3
[pid   340] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4ec67c000
[pid   340] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288
[pid   340] munmap(0x7fe4ec67c000, 138412032) = 0
[pid   340] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4
[pid   340] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid   333] <... close resumed>)        = 0
[pid   333] mkdir("./file1", 0777)      = 0
[pid   333] mount("/dev/loop1", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   335] <... ioctl resumed>)        = 0
[pid   335] close(3)                    = 0
[   23.811769][  T327] EXT4-fs (loop3): Ignoring removed nobh option
[   23.819893][  T327] EXT4-fs (loop3): Ignoring removed bh option
[   23.826466][  T327] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.841443][  T334] EXT4-fs (loop2): Ignoring removed nobh option
[   23.841598][  T333] EXT4-fs (loop1): Ignoring removed nobh option
[   23.848013][  T334] EXT4-fs (loop2): Ignoring removed bh option
[pid   335] close(4 <unfinished ...>
[pid   340] <... ioctl resumed>)        = 0
[pid   335] <... close resumed>)        = 0
[pid   335] mkdir("./file1", 0777)      = 0
[pid   335] mount("/dev/loop0", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   340] close(3)                    = 0
[   23.855060][  T333] EXT4-fs (loop1): Ignoring removed bh option
[   23.866451][  T334] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.867940][  T335] EXT4-fs (loop0): Ignoring removed nobh option
[   23.878850][  T333] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   23.887412][  T335] EXT4-fs (loop0): Ignoring removed bh option
[pid   340] close(4 <unfinished ...>
[pid   327] <... mount resumed>)        = 0
[pid   327] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid   327] chdir("./file1")            = 0
[pid   327] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid   340] <... close resumed>)        = 0
[pid   340] mkdir("./file1", 0777)      = 0
[   23.898403][  T327] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   23.903103][  T335] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[pid   340] mount("/dev/loop4", "./file1", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00"... <unfinished ...>
[pid   334] <... mount resumed>)        = 0
[pid   327] <... openat resumed>)       = 4
[pid   327] ioctl(4, LOOP_CLR_FD)       = 0
[pid   327] close(4)                    = 0
[pid   327] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   326] <... futex resumed>)        = 0
[pid   327] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   326] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   334] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid   334] chdir("./file1" <unfinished ...>
[pid   327] <... openat resumed>)       = 4
[pid   327] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   326] <... futex resumed>)        = 0
[pid   327] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   326] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   327] <... pwrite64 resumed>)     = 87490
[pid   326] <... futex resumed>)        = 0
[pid   326] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   327] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   326] <... futex resumed>)        = 0
[pid   326] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   327] <... futex resumed>)        = 1
[pid   327] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   327] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   326] <... futex resumed>)        = 0
[pid   326] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   326] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[348]}, 88) = 348
[pid   326] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   326] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   327] <... futex resumed>)        = 1
[pid   327] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   334] <... chdir resumed>)        = 0
[pid   334] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = 4
[pid   334] ioctl(4, LOOP_CLR_FD)       = 0
[pid   334] close(4)                    = 0
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   331] <... futex resumed>)        = 0
[pid   334] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   334] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid   331] <... futex resumed>)        = 0
[pid   334] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   334] <... openat resumed>)       = 4
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   331] <... futex resumed>)        = 0
[pid   334] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   334] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid   331] <... futex resumed>)        = 0
[pid   334] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   334] <... pwrite64 resumed>)     = 87490
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   331] <... futex resumed>)        = 0
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   334] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   331] <... futex resumed>)        = 0
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   331] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   331] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   331] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[349]}, 88) = 349
[pid   331] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   331] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   331] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[   23.929011][  T334] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   23.942431][  T340] EXT4-fs (loop4): Ignoring removed nobh option
[   23.969736][  T340] EXT4-fs (loop4): Ignoring removed bh option
[   23.976577][  T340] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[pid   334] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864./strace-static-x86_64: Process 348 attached
) = 176128
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   334] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 349 attached
 <unfinished ...>
[pid   349] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   349] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   349] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   348] set_robust_list(0x7fe4f4a7b9a0, 24 <unfinished ...>
[pid   331] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   327] <... pwrite64 resumed>)     = 176128
[pid   326] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   331] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   327] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   326] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   331] <... futex resumed>)        = 1
[pid   327] <... futex resumed>)        = 0
[pid   326] <... futex resumed>)        = 0
[pid   331] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   327] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   326] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a3a000
[pid   326] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   326] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   326] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} => {parent_tid=[353]}, 88) = 353
[pid   326] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   326] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   326] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   334] <... futex resumed>)        = 0
[pid   334] truncate("./file1", 1./strace-static-x86_64: Process 353 attached
 <unfinished ...>
[pid   353] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[pid   353] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   353] truncate("./file1", 1)      = 0
[pid   353] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   326] <... futex resumed>)        = 0
[pid   353] <... futex resumed>)        = 1
[   24.002407][  T334] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.011569][  T327] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.033646][  T349] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[pid   353] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   348] <... set_robust_list resumed>) = 0
[pid   335] <... mount resumed>)        = 0
[pid   348] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   335] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   348] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   335] <... openat resumed>)       = 3
[pid   348] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   335] chdir("./file1" <unfinished ...>
[pid   349] <... pwrite64 resumed>)     = 176128
[pid   340] <... mount resumed>)        = 0
[pid   335] <... chdir resumed>)        = 0
[pid   334] <... truncate resumed>)     = 0
[   24.037256][  T335] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   24.056055][  T340] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   24.078045][  T348] ------------[ cut here ]------------
[pid   349] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   340] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid   335] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid   334] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   333] <... mount resumed>)        = 0
[pid   331] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   349] <... futex resumed>)        = 0
[pid   340] <... openat resumed>)       = 3
[pid   335] <... openat resumed>)       = 4
[pid   334] <... futex resumed>)        = 0
[pid   331] exit_group(0 <unfinished ...>
[pid   340] chdir("./file1" <unfinished ...>
[pid   335] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   331] <... exit_group resumed>)   = ?
[pid   349] +++ exited with 0 +++
[pid   340] <... chdir resumed>)        = 0
[pid   335] <... ioctl resumed>)        = 0
[pid   334] +++ exited with 0 +++
[pid   331] +++ exited with 0 +++
[pid   340] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid   335] close(4 <unfinished ...>
[pid   340] <... openat resumed>)       = 4
[pid   335] <... close resumed>)        = 0
[pid   285] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=331, si_uid=0, si_status=0, si_utime=0, si_stime=8} ---
[pid   340] ioctl(4, LOOP_CLR_FD <unfinished ...>
[pid   335] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   285] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   340] <... ioctl resumed>)        = 0
[pid   335] <... futex resumed>)        = 1
[pid   332] <... futex resumed>)        = 0
[pid   340] close(4 <unfinished ...>
[pid   335] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   332] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   340] <... close resumed>)        = 0
[pid   332] <... futex resumed>)        = 0
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   340] <... futex resumed>)        = 1
[pid   340] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   333] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3
[pid   333] chdir("./file1")            = 0
[pid   333] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4
[pid   333] ioctl(4, LOOP_CLR_FD)       = 0
[pid   333] close(4)                    = 0
[pid   333] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] <... futex resumed>)        = 0
[pid   330] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   333] <... futex resumed>)        = 1
[pid   333] openat(AT_FDCWD, "./file1", O_RDWR) = 4
[pid   333] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] <... futex resumed>)        = 0
[pid   330] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   333] <... futex resumed>)        = 1
[pid   333] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900) = 87490
[pid   333] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] <... futex resumed>)        = 0
[pid   330] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   335] <... openat resumed>)       = 4
[pid   330] <... futex resumed>)        = 0
[pid   335] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   335] <... futex resumed>)        = 1
[pid   332] <... futex resumed>)        = 0
[pid   335] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   332] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   339] <... futex resumed>)        = 0
[pid   332] <... futex resumed>)        = 0
[pid   285] <... restart_syscall resumed>) = 0
[pid   332] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   285] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   285] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   285] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   285] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[pid   285] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   340] <... futex resumed>)        = 0
[pid   339] <... futex resumed>)        = 1
[pid   340] openat(AT_FDCWD, "./file1", O_RDWR <unfinished ...>
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   340] <... openat resumed>)       = 4
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   339] <... futex resumed>)        = 0
[pid   340] pwrite64(4, "\x32\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 87490, 134220900 <unfinished ...>
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   340] <... pwrite64 resumed>)     = 87490
[pid   339] <... futex resumed>)        = 0
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   335] <... pwrite64 resumed>)     = 87490
[pid   335] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] <... futex resumed>)        = 0
[pid   332] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   335] <... futex resumed>)        = 1
[pid   335] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   335] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] <... futex resumed>)        = 0
[pid   332] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   332] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   332] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   332] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[355]}, 88) = 355
[pid   332] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   332] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   332] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   335] <... futex resumed>)        = 1
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   335] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   340] <... futex resumed>)        = 1
[pid   339] <... futex resumed>)        = 0
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   340] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[   24.099619][  T333] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,data_err=abort,barrier=0x0000000000000002,dioread_lock,data_err=ignore,max_dir_size_kb=0x00000000004007b1,data_err=ignore,grpquota,nobh,user_xattr,bh,dioread_nolock,,errors=continue
[   24.102161][  T348] kernel BUG at fs/ext4/extents.c:1014!
[   24.148115][  T348] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   24.154232][  T348] CPU: 0 PID: 348 Comm: syz-executor816 Not tainted 5.10.238-syzkaller-00008-g59e9a7228857 #0
[   24.156448][  T335] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.164464][  T348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   24.164496][  T348] RIP: 0010:ext4_ext_insert_index+0x52d/0x530
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid   340] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   333] <... futex resumed>)        = 1
[pid   333] openat(AT_FDCWD, "./file1", O_RDWR|O_CREAT, 000) = 5
[pid   333] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] <... futex resumed>)        = 0
[pid   330] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fe4f4a5b000
[pid   330] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   330] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid   330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} => {parent_tid=[356]}, 88) = 356
[pid   330] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   330] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   330] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   333] <... futex resumed>)        = 1
[pid   333] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864./strace-static-x86_64: Process 355 attached
 <unfinished ...>
[pid   355] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   355] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   355] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864./strace-static-x86_64: Process 356 attached
 <unfinished ...>
[pid   356] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   356] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   356] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   339] <... futex resumed>)        = 0
[pid   332] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   330] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   340] <... futex resumed>)        = 0
[pid   339] <... futex resumed>)        = 1
[pid   332] <... futex resumed>)        = 0
[pid   330] <... futex resumed>)        = 0
[pid   340] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   339] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   330] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   339] <... futex resumed>)        = 0
[pid   332] <... mmap resumed>)         = 0x7fe4f4a3a000
[pid   330] <... mmap resumed>)         = 0x7fe4f4a3a000
[pid   339] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid   332] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   330] mprotect(0x7fe4f4a3b000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   339] <... mmap resumed>)         = 0x7fe4f4a5b000
[pid   332] <... mprotect resumed>)     = 0
[pid   330] <... mprotect resumed>)     = 0
[pid   339] mprotect(0x7fe4f4a5c000, 131072, PROT_READ|PROT_WRITE <unfinished ...>
[pid   332] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   330] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   339] <... mprotect resumed>)     = 0
[pid   332] <... rt_sigprocmask resumed>[], 8) = 0
[pid   330] <... rt_sigprocmask resumed>[], 8) = 0
[pid   339] rt_sigprocmask(SIG_BLOCK, ~[],  <unfinished ...>
[pid   332] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} <unfinished ...>
[pid   330] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a5a990, parent_tid=0x7fe4f4a5a990, exit_signal=0, stack=0x7fe4f4a3a000, stack_size=0x20300, tls=0x7fe4f4a5a6c0} <unfinished ...>
[pid   339] <... rt_sigprocmask resumed>[], 8) = 0
[pid   339] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fe4f4a7b990, parent_tid=0x7fe4f4a7b990, exit_signal=0, stack=0x7fe4f4a5b000, stack_size=0x20300, tls=0x7fe4f4a7b6c0} <unfinished ...>
[pid   332] <... clone3 resumed> => {parent_tid=[358]}, 88) = 358
[pid   330] <... clone3 resumed> => {parent_tid=[357]}, 88) = 357
[pid   332] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   330] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   339] <... clone3 resumed> => {parent_tid=[359]}, 88) = 359
[pid   332] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   330] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   339] rt_sigprocmask(SIG_SETMASK, [],  <unfinished ...>
[pid   332] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] futex(0x7fe4f4b676e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   339] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid   332] <... futex resumed>)        = 0
[pid   330] <... futex resumed>)        = 0
[pid   339] futex(0x7fe4f4b676d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   332] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   330] futex(0x7fe4f4b676ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   339] <... futex resumed>)        = 0
[pid   339] futex(0x7fe4f4b676dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   333] <... pwrite64 resumed>)     = 176128
[pid   333] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   333] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   340] <... pwrite64 resumed>)     = 176128
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   340] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   356] <... pwrite64 resumed>)     = 176128
[pid   356] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   356] futex(0x7fe4f4b676d8, FUTEX_WAIT_PRIVATE, 0, NULL./strace-static-x86_64: Process 357 attached
 <unfinished ...>
[pid   357] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[pid   357] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   357] truncate("./file1", 1)      = 0
[pid   357] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   330] <... futex resumed>)        = 0
[pid   330] exit_group(0 <unfinished ...>
[pid   333] <... futex resumed>)        = ?
[pid   330] <... exit_group resumed>)   = ?
[pid   333] +++ exited with 0 +++
[pid   356] <... futex resumed>)        = ?
[pid   356] +++ exited with 0 +++
[pid   357] <... futex resumed>)        = ?
[pid   357] +++ exited with 0 +++
[pid   330] +++ exited with 0 +++
[pid   284] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=330, si_uid=0, si_status=0, si_utime=0, si_stime=8} ---
[pid   284] restart_syscall(<... resuming interrupted clone ...>./strace-static-x86_64: Process 358 attached
 <unfinished ...>
[pid   358] set_robust_list(0x7fe4f4a5a9a0, 24) = 0
[   24.164506][  T348] Code: 4c 89 fa e9 ca fd ff ff 44 89 f1 80 e1 07 fe c1 38 c1 0f 8c dd fd ff ff 4c 89 f7 e8 ad a2 d3 ff e9 d0 fd ff ff e8 83 b2 99 ff <0f> 0b 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec c0 00 00
[   24.164513][  T348] RSP: 0018:ffffc90000f96b20 EFLAGS: 00010293
[   24.182272][  T333] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.188797][  T348] RAX: ffffffff81c9e18d RBX: ffff888120d99424 RCX: ffff88810c1f13c0
[   24.188804][  T348] RDX: 0000000000000000 RSI: 00000000fffffffe RDI: 0000000000000000
[   24.188811][  T348] RBP: ffffc90000f96b90 R08: dffffc0000000000 R09: ffffed1024296a7f
[pid   358] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid   358] truncate("./file1", 1./strace-static-x86_64: Process 359 attached
 <unfinished ...>
[pid   359] set_robust_list(0x7fe4f4a7b9a0, 24) = 0
[pid   359] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[   24.188826][  T348] R10: ffffed1024296a7f R11: 1ffff11024296a7e R12: 0000000000000000
[   24.195744][  T356] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.214471][  T348] R13: 00000000000000cb R14: 00000000fffffffe R15: 0000000000000054
[   24.214480][  T348] FS:  00007fe4f4a7b6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   24.214488][  T348] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   24.214495][  T348] CR2: 00007f462f332000 CR3: 000000010a7a0000 CR4: 00000000003506b0
[   24.214507][  T348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   24.214514][  T348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   24.214517][  T348] Call Trace:
[   24.214534][  T348]  ext4_ext_insert_extent+0x38c3/0x4530
[   24.214547][  T348]  ? ext4_ext_next_allocated_block+0x2e0/0x2e0
[   24.214556][  T348]  ? get_implied_cluster_alloc+0x526/0x940
[   24.214573][  T348]  ext4_ext_map_blocks+0x148c/0x5d40
[   24.230930][  T340] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.234897][  T348]  ? _raw_write_trylock+0x140/0x140
[   24.234909][  T348]  ? _raw_write_unlock+0x2b/0x60
[   24.234928][  T348]  ? ext4_ext_release+0x10/0x10
[   24.252968][  T359] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.258841][  T348]  ? ext4_fc_track_template+0xb5/0x600
[   24.258851][  T348]  ? ext4_fc_track_range+0x250/0x250
[   24.258863][  T348]  ? ext4_es_lookup_extent+0x32d/0x8c0
[   24.258875][  T348]  ext4_map_blocks+0x978/0x1bc0
[   24.258884][  T348]  ? __kasan_slab_alloc+0xbd/0xf0
[   24.258902][  T348]  ? slab_post_alloc_hook+0x5d/0x2f0
[   24.267724][  T355] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3342: comm syz-executor816: Allocating blocks 497-513 which overlap fs metadata
[   24.281078][  T348]  ? kmem_cache_alloc+0x165/0x2e0
[   24.281092][  T348]  ? ext4_issue_zeroout+0x1a0/0x1a0
[   24.281103][  T348]  _ext4_get_block+0x1bb/0x4b0
[   24.281120][  T348]  ? ext4_get_block+0x50/0x50
[   24.462870][  T348]  ? slab_post_alloc_hook+0x7d/0x2f0
[   24.468148][  T348]  ext4_get_block_unwritten+0x2a/0x40
[   24.473501][  T348]  ext4_block_write_begin+0x567/0x1330
[   24.478949][  T348]  ? alloc_page_buffers+0x3aa/0x4a0
[   24.484144][  T348]  ? _ext4_get_block+0x4b0/0x4b0
[   24.489062][  T348]  ? ext4_print_free_blocks+0x2c0/0x2c0
[   24.494594][  T348]  ? __kasan_check_read+0x11/0x20
[   24.499610][  T348]  ? ext4_inode_journal_mode+0x19a/0x480
[   24.505224][  T348]  ext4_write_begin+0x651/0x1550
[   24.510148][  T348]  ? ext4_readahead+0x110/0x110
[   24.514986][  T348]  ? domain_dirty_limits+0x28f/0x3c0
[   24.520261][  T348]  ? ext4_get_group_desc+0x25f/0x2b0
[   24.525528][  T348]  ? __kasan_check_read+0x11/0x20
[   24.530544][  T348]  ? mark_buffer_dirty+0x1cc/0x330
[   24.536070][  T348]  ? __ext4_handle_dirty_metadata+0x2eb/0x7f0
[   24.542126][  T348]  ? __kasan_check_write+0x14/0x20
[   24.547229][  T348]  ext4_da_write_begin+0x455/0xe80
[   24.552328][  T348]  ? ext4_set_page_dirty+0x1a0/0x1a0
[   24.557701][  T348]  ? down_read_killable+0xe0/0xe0
[   24.562712][  T348]  ? __ext4_journal_stop+0x36/0x1a0
[   24.567900][  T348]  ? ext4_write_end+0xa00/0xed0
[   24.572738][  T348]  ? iov_iter_advance+0x1f7/0x750
[   24.577751][  T348]  generic_perform_write+0x2be/0x510
[   24.583022][  T348]  ? preempt_count_add+0x90/0x1b0
[   24.588037][  T348]  ? grab_cache_page_write_begin+0xb0/0xb0
[   24.593826][  T348]  ? down_write+0xac/0x110
[   24.598229][  T348]  ? down_read_killable+0xe0/0xe0
[   24.603242][  T348]  ? __switch_to+0x50f/0xfc0
[   24.607819][  T348]  ? generic_write_checks+0x3d4/0x480
[   24.613180][  T348]  ext4_buffered_write_iter+0x4b8/0x640
[   24.618711][  T348]  ext4_file_write_iter+0x536/0x1980
[   24.623981][  T348]  ? _raw_spin_unlock_irq+0x4e/0x70
[   24.629165][  T348]  ? finish_task_switch+0x12e/0x5a0
[   24.634347][  T348]  ? avc_policy_seqno+0x1b/0x70
[   24.639185][  T348]  ? selinux_file_permission+0x2a5/0x510
[   24.644802][  T348]  ? ext4_file_read_iter+0x530/0x530
[   24.650078][  T348]  ? security_file_permission+0x83/0xa0
[   24.655610][  T348]  ? iov_iter_init+0x3f/0x120
[   24.660274][  T348]  vfs_write+0x725/0xd60
[   24.664505][  T348]  ? kernel_write+0x3c0/0x3c0
[   24.669169][  T348]  ? ptrace_stop+0x69f/0x9c0
[   24.673744][  T348]  ? __fget_files+0x2c4/0x320
[   24.678407][  T348]  ? __fdget+0x1a1/0x230
[   24.682638][  T348]  ? __x64_sys_pwrite64+0xec/0x220
[   24.687736][  T348]  __x64_sys_pwrite64+0x191/0x220
[   24.692749][  T348]  ? ksys_pwrite64+0x1b0/0x1b0
[   24.697501][  T348]  ? syscall_trace_enter+0x4b/0x170
[   24.702691][  T348]  do_syscall_64+0x31/0x40
[   24.707094][  T348]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   24.712979][  T348] RIP: 0033:0x7fe4f4adfe89
[   24.717384][  T348] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   24.736977][  T348] RSP: 002b:00007fe4f4a7b218 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[   24.745380][  T348] RAX: ffffffffffffffda RBX: 00007fe4f4b676d8 RCX: 00007fe4f4adfe89
[   24.753357][  T348] RDX: 00000000200000c1 RSI: 00002000000000c0 RDI: 0000000000000005
[pid   359] pwrite64(5, "\x61\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 536871105, 36864 <unfinished ...>
[pid   284] <... restart_syscall resumed>) = 0
[pid   339] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   335] <... pwrite64 resumed>)     = 176128
[pid   332] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   339] futex(0x7fe4f4b676c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   335] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   340] <... futex resumed>)        = 0
[pid   339] <... futex resumed>)        = 1
[pid   335] <... futex resumed>)        = 0
[pid   284] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   340] truncate("./file1", 1 <unfinished ...>
[pid   339] futex(0x7fe4f4b676cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   335] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   284] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   284] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   284] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   284] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[pid   284] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   340] <... truncate resumed>)     = 0
[pid   340] futex(0x7fe4f4b676cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   339] <... futex resumed>)        = 0
[pid   340] <... futex resumed>)        = 1
[pid   340] futex(0x7fe4f4b676c8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   359] <... pwrite64 resumed>)     = 176128
[pid   359] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   359] futex(0x7fe4f4b676d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   358] <... truncate resumed>)     = 0
[pid   339] exit_group(0 <unfinished ...>
[pid   359] <... futex resumed>)        = ?
[pid   340] <... futex resumed>)        = ?
[pid   339] <... exit_group resumed>)   = ?
[pid   359] +++ exited with 0 +++
[pid   340] +++ exited with 0 +++
[pid   339] +++ exited with 0 +++
[pid   287] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=339, si_uid=0, si_status=0, si_utime=0, si_stime=10} ---
[pid   287] restart_syscall(<... resuming interrupted clone ...> <unfinished ...>
[pid   358] futex(0x7fe4f4b676ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   358] futex(0x7fe4f4b676e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   355] <... pwrite64 resumed>)     = 176128
[pid   287] <... restart_syscall resumed>) = 0
[pid   287] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   287] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   287] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   287] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[pid   287] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   355] futex(0x7fe4f4b676dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   355] futex(0x7fe4f4b676d8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   332] exit_group(0 <unfinished ...>
[pid   335] <... futex resumed>)        = ?
[pid   332] <... exit_group resumed>)   = ?
[pid   335] +++ exited with 0 +++
[pid   358] <... futex resumed>)        = ?
[pid   358] +++ exited with 0 +++
[pid   355] <... futex resumed>)        = ?
[pid   355] +++ exited with 0 +++
[pid   332] +++ exited with 0 +++
[pid   283] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=332, si_uid=0, si_status=0, si_utime=0, si_stime=12} ---
[pid   283] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid   283] umount2("./1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   283] openat(AT_FDCWD, "./1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid   283] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   283] getdents64(3, 0x555569d64730 /* 4 entries */, 32768) = 112
[pid   283] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   326] exit_group(0 <unfinished ...>
[pid   353] <... futex resumed>)        = ?
[pid   327] <... futex resumed>)        = ?
[pid   326] <... exit_group resumed>)   = ?
[pid   353] +++ exited with 0 +++
[pid   327] +++ exited with 0 +++
[   24.761318][  T348] RBP: 00007fe4f4b676d0 R08: 00007ffcf6783737 R09: 0000000000000000
[   24.769285][  T348] R10: 0000000000009000 R11: 0000000000000246 R12: 00007fe4f4b34614
[   24.777244][  T348] R13: 0031656c69662f2e R14: 00007ffcf6783650 R15: 00007ffcf6783738
[   24.785204][  T348] Modules linked in:
[   24.792797][  T348] ---[ end trace bdeac0f5776081e5 ]---
[   24.798477][  T348] RIP: 0010:ext4_ext_insert_index+0x52d/0x530
[pid   285] <... umount2 resumed>)      = 0
[pid   285] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   285] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   285] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   287] <... umount2 resumed>)      = 0
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   284] <... umount2 resumed>)      = 0
[pid   287] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   284] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   287] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   285] <... openat resumed>)       = 4
[pid   284] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   287] newfstatat(AT_FDCWD, "./1/file1",  <unfinished ...>
[pid   285] newfstatat(4, "",  <unfinished ...>
[pid   284] newfstatat(AT_FDCWD, "./1/file1",  <unfinished ...>
[pid   285] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   287] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   284] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   287] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   285] getdents64(4,  <unfinished ...>
[pid   284] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   287] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   287] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   285] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   284] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   287] <... openat resumed>)       = 4
[pid   285] getdents64(4,  <unfinished ...>
[pid   284] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid   287] newfstatat(4, "",  <unfinished ...>
[pid   285] <... getdents64 resumed>0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   284] <... openat resumed>)       = 4
[pid   287] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   285] close(4 <unfinished ...>
[pid   284] newfstatat(4, "",  <unfinished ...>
[pid   287] getdents64(4,  <unfinished ...>
[pid   285] <... close resumed>)        = 0
[pid   284] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   287] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   287] getdents64(4,  <unfinished ...>
[pid   285] rmdir("./1/file1" <unfinished ...>
[pid   284] getdents64(4,  <unfinished ...>
[pid   287] <... getdents64 resumed>0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   285] <... rmdir resumed>)        = 0
[pid   284] <... getdents64 resumed>0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   287] close(4 <unfinished ...>
[pid   285] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   284] getdents64(4,  <unfinished ...>
[pid   287] <... close resumed>)        = 0
[pid   285] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   284] <... getdents64 resumed>0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   285] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   285] unlink("./1/binderfs")      = 0
[pid   285] getdents64(3,  <unfinished ...>
[pid   287] rmdir("./1/file1" <unfinished ...>
[pid   285] <... getdents64 resumed>0x555569d64730 /* 0 entries */, 32768) = 0
[pid   284] close(4 <unfinished ...>
[pid   285] close(3)                    = 0
[pid   285] rmdir("./1")                = 0
[pid   284] <... close resumed>)        = 0
[pid   287] <... rmdir resumed>)        = 0
[pid   285] mkdir("./2", 0777)          = 0
[pid   285] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid   287] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW <unfinished ...>
[pid   284] rmdir("./1/file1" <unfinished ...>
[pid   287] <... umount2 resumed>)      = -1 EINVAL (Invalid argument)
[pid   287] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid   284] <... rmdir resumed>)        = 0
[pid   287] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   287] unlink("./1/binderfs" <unfinished ...>
[pid   284] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   287] <... unlink resumed>)       = 0
[pid   284] newfstatat(AT_FDCWD, "./1/binderfs",  <unfinished ...>
[pid   287] getdents64(3,  <unfinished ...>
[pid   284] <... newfstatat resumed>{st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   287] <... getdents64 resumed>0x555569d64730 /* 0 entries */, 32768) = 0
[pid   287] close(3 <unfinished ...>
[pid   284] unlink("./1/binderfs" <unfinished ...>
[pid   287] <... close resumed>)        = 0
[pid   287] rmdir("./1" <unfinished ...>
[pid   284] <... unlink resumed>)       = 0
[pid   287] <... rmdir resumed>)        = 0
[pid   284] getdents64(3, 0x555569d64730 /* 0 entries */, 32768) = 0
[pid   284] close(3)                    = 0
[pid   284] rmdir("./1" <unfinished ...>
[pid   287] mkdir("./2", 0777 <unfinished ...>
[pid   284] <... rmdir resumed>)        = 0
[pid   287] <... mkdir resumed>)        = 0
[pid   284] mkdir("./2", 0777)          = 0
[pid   287] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[   24.804552][  T348] Code: 4c 89 fa e9 ca fd ff ff 44 89 f1 80 e1 07 fe c1 38 c1 0f 8c dd fd ff ff 4c 89 f7 e8 ad a2 d3 ff e9 d0 fd ff ff e8 83 b2 99 ff <0f> 0b 90 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 81 ec c0 00 00
[   24.824499][  T348] RSP: 0018:ffffc90000f96b20 EFLAGS: 00010293
[   24.840496][  T348] RAX: ffffffff81c9e18d RBX: ffff888120d99424 RCX: ffff88810c1f13c0
[   24.850463][  T348] RDX: 0000000000000000 RSI: 00000000fffffffe RDI: 0000000000000000
[   24.858570][  T348] RBP: ffffc90000f96b90 R08: dffffc0000000000 R09: ffffed1024296a7f
[pid   284] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid   285] <... openat resumed>)       = 3
[pid   283] <... umount2 resumed>)      = 0
[pid   285] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid   283] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   283] newfstatat(AT_FDCWD, "./1/file1", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] umount2("./1/file1", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   283] openat(AT_FDCWD, "./1/file1", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 4
[pid   283] newfstatat(4, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
[pid   283] getdents64(4, 0x555569d6c770 /* 2 entries */, 32768) = 48
[pid   283] getdents64(4, 0x555569d6c770 /* 0 entries */, 32768) = 0
[pid   283] close(4)                    = 0
[pid   283] rmdir("./1/file1")          = 0
[pid   283] umount2("./1/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
[pid   283] newfstatat(AT_FDCWD, "./1/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
[pid   283] unlink("./1/binderfs")      = 0
[pid   283] getdents64(3, 0x555569d64730 /* 0 entries */, 32768) = 0
[pid   283] close(3)                    = 0
[pid   283] rmdir("./1")                = 0
[pid   283] mkdir("./2", 0777)          = 0
[   24.869907][  T348] R10: ffffed1024296a7f R11: 1ffff11024296a7e R12: 0000000000000000
[   24.878015][  T348] R13: 00000000000000cb R14: 00000000fffffffe R15: 0000000000000054
[   24.886003][  T348] FS:  00007fe4f4a7b6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   24.895098][  T348] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   24.901706][  T348] CR2: 0000555569d74778 CR3: 000000010a7a0000 CR4: 00000000003506a0
[   24.909708][  T348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   24.917784][  T348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   24.925745][  T348] Kernel panic - not syncing: Fatal exception
[   24.931975][  T348] Kernel Offset: disabled
[   24.936286][  T348] Rebooting in 86400 seconds..