./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3980440519

<...>
forked to background, child pid 4661
[   28.975682][ T4662] 8021q: adding VLAN 0 to HW filter on device bond0
[   28.992020][ T4662] eql: remember to turn off Van-Jacobson compression on your slave devices
[   29.134242][ T4734] ssh-keygen (4734) used greatest stack depth: 18224 bytes left
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.149' (ECDSA) to the list of known hosts.
execve("./syz-executor3980440519", ["./syz-executor3980440519"], 0x7ffd2c31f410 /* 10 vars */) = 0
brk(NULL)                               = 0x5555565dd000
brk(0x5555565ddd40)                     = 0x5555565ddd40
arch_prctl(ARCH_SET_FS, 0x5555565dd400) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
set_tid_address(0x5555565dd6d0)         = 4992
set_robust_list(0x5555565dd6e0, 24)     = 0
rt_sigaction(SIGRTMIN, {sa_handler=0x7faa9c1888c0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7faa9c187e10}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7faa9c188960, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7faa9c187e10}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3980440519", 4096) = 28
brk(0x5555565fed40)                     = 0x5555565fed40
brk(0x5555565ff000)                     = 0x5555565ff000
mprotect(0x7faa9c24b000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7faa9c182400, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7faa9c187e10}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7faa9c182400, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7faa9c187e10}, NULL, 8) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = -1 ENXIO (No such device or address)
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 4993
./strace-static-x86_64: Process 4993 attached
[pid  4993] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  4993] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  4993] setpgid(0, 0)               = 0
[pid  4993] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  4993] write(3, "1000", 4)         = 4
[pid  4993] close(3)                    = 0
[pid  4993] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4993] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  4993] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  4993] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[4995], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 4995
[pid  4993] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4993] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 4995 attached
 <unfinished ...>
[pid  4995] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  4995] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  4995] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4995] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4993] <... futex resumed>)        = 0
[pid  4993] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4995] <... futex resumed>)        = 0
[pid  4995] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  4993] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4995] <... openat resumed>)       = 3
[pid  4995] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4995] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4993] <... futex resumed>)        = 0
[pid  4993] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4993] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4995] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  4993] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  4995] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  4993] <... mmap resumed>)         = 0x7faa9c136000
[pid  4993] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  4993] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[4996], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 4996
[pid  4993] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4993] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 4996 attached
 <unfinished ...>
[pid  4996] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  4996] memfd_create("syzkaller", 0) = 4
[pid  4996] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  4996] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  4996] munmap(0x7faa93d36000, 131072) = 0
[pid  4996] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  4996] ioctl(5, LOOP_SET_FD, 4)    = 0
[pid  4996] close(4)                    = 0
[pid  4996] mkdir("./file0", 0777)      = 0
[pid  4996] mount("/dev/loop0", "./file0", "exfat", MS_DIRSYNC|MS_RELATIME|MS_STRICTATIME, "") = 0
[pid  4996] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 4
[pid  4996] chdir("./file0")            = 0
[pid  4996] ioctl(5, LOOP_CLR_FD)       = 0
[pid  4996] close(5)                    = 0
[pid  4996] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4993] <... futex resumed>)        = 0
[pid  4993] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4993] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4996] <... futex resumed>)        = 1
[pid  4996] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  4995] <... write resumed>)        = 2310144
[pid  4995] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4995] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4996] <... mmap resumed>)         = 0x20000000
[pid  4996] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4993] <... futex resumed>)        = 0
[pid  4993] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4993] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4995] <... futex resumed>)        = 0
[pid  4996] <... futex resumed>)        = 1
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  4995] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  4996] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4995] <... openat resumed>)       = 5
[pid  4995] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4993] <... futex resumed>)        = 0
[pid  4995] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4993] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4995] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  4993] <... futex resumed>)        = 0
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  4993] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  4995] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  4995] write(5, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  4995] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4993] <... futex resumed>)        = 0
[pid  4995] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4993] exit_group(0)               = ?
[pid  4995] <... futex resumed>)        = ?
[pid  4996] <... futex resumed>)        = ?
[pid  4996] +++ exited with 0 +++
[pid  4995] +++ exited with 0 +++
[pid  4993] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4993, si_uid=0, si_status=0, si_utime=0, si_stime=11 /* 0.11 s */} ---
syzkaller login: [   57.717906][ T4996] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4996 'syz-executor398'
[   57.740170][ T4996] loop0: detected capacity change from 0 to 256
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 4997
./strace-static-x86_64: Process 4997 attached
[pid  4997] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  4997] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  4997] setpgid(0, 0)               = 0
[pid  4997] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  4997] write(3, "1000", 4)         = 4
[pid  4997] close(3)                    = 0
[pid  4997] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4997] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  4997] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  4997] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 4998 attached
 <unfinished ...>
[pid  4998] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  4998] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4997] <... clone resumed>, parent_tid=[4998], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 4998
[pid  4997] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4998] <... futex resumed>)        = 0
[pid  4998] mount("/dev/sg0", NULL, NULL, 0, NULL <unfinished ...>
[pid  4997] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4998] <... mount resumed>)        = -1 EFAULT (Bad address)
[pid  4998] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4998] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4997] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  4997] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4998] <... futex resumed>)        = 0
[pid  4998] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  4997] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4998] <... openat resumed>)       = 3
[pid  4998] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4998] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4997] <... futex resumed>)        = 0
[pid  4997] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4998] <... futex resumed>)        = 0
[pid  4998] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  4997] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4997] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  4997] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  4997] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 4999 attached
, parent_tid=[4999], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 4999
[pid  4999] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  4997] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4999] <... set_robust_list resumed>) = 0
[pid  4997] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  4999] memfd_create("syzkaller", 0) = 4
[pid  4999] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  4999] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  4999] munmap(0x7faa93d36000, 131072) = 0
[pid  4999] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  4999] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  4999] ioctl(5, LOOP_CLR_FD)       = 0
[pid  4999] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  4999] close(5)                    = 0
[pid  4999] close(4)                    = 0
[pid  4999] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4997] <... futex resumed>)        = 0
[pid  4999] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  4997] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4999] <... mmap resumed>)         = 0x20000000
[pid  4997] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4999] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4997] <... futex resumed>)        = 0
[pid  4999] <... futex resumed>)        = 1
[pid  4997] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  4999] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  4998] <... write resumed>)        = 1576960
[pid  4999] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  4998] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4997] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4999] <... openat resumed>)       = 4
[pid  4998] <... futex resumed>)        = 0
[pid  4999] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  4998] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4999] <... futex resumed>)        = 1
[pid  4997] <... futex resumed>)        = 0
[pid  4997] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4997] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  4999] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  4998] <... futex resumed>)        = 0
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  4998] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  4998] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  4998] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  4997] <... futex resumed>)        = 0
[pid  4997] exit_group(0)               = ?
[pid  4999] <... futex resumed>)        = ?
[pid  4999] +++ exited with 0 +++
[pid  4998] +++ exited with 0 +++
[pid  4997] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=4997, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5000
./strace-static-x86_64: Process 5000 attached
[pid  5000] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5000] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5000] setpgid(0, 0)               = 0
[pid  5000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5000] write(3, "1000", 4)         = 4
[pid  5000] close(3)                    = 0
[pid  5000] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5000] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5000] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5001], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5001
[pid  5000] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5001 attached
 <unfinished ...>
[pid  5001] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5001] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5001] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5000] <... futex resumed>)        = 0
[pid  5000] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5001] <... futex resumed>)        = 1
[pid  5001] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5001] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5000] <... futex resumed>)        = 0
[pid  5000] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5000] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5000] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5002 attached
, parent_tid=[5002], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5002
[pid  5000] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5001] <... futex resumed>)        = 1
[pid  5001] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5002] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5002] memfd_create("syzkaller", 0) = 4
[pid  5002] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5002] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5002] munmap(0x7faa93d36000, 131072) = 0
[pid  5002] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5002] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5002] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5002] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5002] close(5)                    = 0
[pid  5002] close(4)                    = 0
[pid  5002] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5000] <... futex resumed>)        = 0
[pid  5000] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5002] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5001] <... write resumed>)        = 901120
[pid  5001] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5001] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5002] <... mmap resumed>)         = 0x20000000
[pid  5002] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5000] <... futex resumed>)        = 0
[pid  5000] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5000] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5001] <... futex resumed>)        = 0
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5001] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5001] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5000] <... futex resumed>)        = 0
[pid  5000] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5000] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5001] <... futex resumed>)        = 1
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5001] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5001] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5001] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5000] <... futex resumed>)        = 0
[pid  5000] exit_group(0)               = ?
[pid  5001] <... futex resumed>)        = ?
[pid  5001] +++ exited with 0 +++
[pid  5002] +++ exited with 0 +++
[pid  5000] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5000, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5003 attached
 <unfinished ...>
[pid  5003] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  4992] <... clone resumed>, child_tidptr=0x5555565dd6d0) = 5003
[pid  5003] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5003] setpgid(0, 0)               = 0
[pid  5003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5003] write(3, "1000", 4)         = 4
[pid  5003] close(3)                    = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5003] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5003] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5004], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5004
[pid  5003] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5004 attached
 <unfinished ...>
[pid  5004] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5004] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5004] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5004] <... futex resumed>)        = 1
[pid  5004] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5004] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5003] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5003] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5005], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5005
[pid  5003] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5004] <... futex resumed>)        = 1
[pid  5004] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5005 attached
 <unfinished ...>
[pid  5005] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5005] memfd_create("syzkaller", 0) = 4
[pid  5005] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5005] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5005] munmap(0x7faa93d36000, 131072) = 0
[pid  5005] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5005] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5005] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5005] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5005] close(5)                    = 0
[pid  5005] close(4)                    = 0
[pid  5005] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5005] <... futex resumed>)        = 1
[pid  5005] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5004] <... write resumed>)        = 503808
[pid  5004] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5005] <... mmap resumed>)         = 0x20000000
[pid  5005] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5005] <... futex resumed>)        = 1
[pid  5005] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5004] <... futex resumed>)        = 1
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5004] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5004] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5003] <... futex resumed>)        = 0
[pid  5003] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5003] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5004] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5004] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5004] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5003] <... futex resumed>)        = 0
[pid  5004] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5003] exit_group(0 <unfinished ...>
[pid  5004] <... futex resumed>)        = ?
[pid  5003] <... exit_group resumed>)   = ?
[pid  5004] +++ exited with 0 +++
[pid  5005] <... futex resumed>)        = ?
[pid  5005] +++ exited with 0 +++
[pid  5003] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5003, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5006 attached
, child_tidptr=0x5555565dd6d0) = 5006
[pid  5006] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5006] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5006] setpgid(0, 0)               = 0
[pid  5006] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5006] write(3, "1000", 4)         = 4
[pid  5006] close(3)                    = 0
[pid  5006] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5006] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5006] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5007 attached
, parent_tid=[5007], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5007
[pid  5006] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5007] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5007] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5007] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5006] <... futex resumed>)        = 0
[pid  5006] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5007] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5007] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5006] <... futex resumed>)        = 0
[pid  5006] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5006] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5006] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5008], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5008
[pid  5006] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5007] <... futex resumed>)        = 1
[pid  5007] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5008 attached
 <unfinished ...>
[pid  5008] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5008] memfd_create("syzkaller", 0) = 4
[pid  5008] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5008] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5008] munmap(0x7faa93d36000, 131072) = 0
[pid  5008] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5008] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5008] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5008] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5008] close(5)                    = 0
[pid  5008] close(4)                    = 0
[pid  5008] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5006] <... futex resumed>)        = 0
[pid  5006] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5008] <... futex resumed>)        = 1
[pid  5008] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5008] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5006] <... futex resumed>)        = 0
[pid  5006] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5008] <... futex resumed>)        = 1
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5008] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5008] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5006] <... futex resumed>)        = 0
[pid  5006] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5006] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5008] <... futex resumed>)        = 1
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5008] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5008] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5008] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5006] <... futex resumed>)        = 0
[pid  5008] <... futex resumed>)        = 1
[pid  5008] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5007] <... write resumed>)        = 1376256
[pid  5007] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5007] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5006] exit_group(0)               = ?
[pid  5008] <... futex resumed>)        = ?
[pid  5008] +++ exited with 0 +++
[pid  5007] <... futex resumed>)        = ?
[pid  5007] +++ exited with 0 +++
[pid  5006] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5006, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5009
./strace-static-x86_64: Process 5009 attached
[pid  5009] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5009] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5009] setpgid(0, 0)               = 0
[pid  5009] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5009] write(3, "1000", 4)         = 4
[pid  5009] close(3)                    = 0
[pid  5009] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5009] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5009] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5009] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5010 attached
 <unfinished ...>
[pid  5010] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5010] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] <... clone resumed>, parent_tid=[5010], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5010
[pid  5009] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5010] <... futex resumed>)        = 0
[pid  5010] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5010] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5009] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5010] <... futex resumed>)        = 0
[pid  5010] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5009] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5009] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5010] <... futex resumed>)        = 0
[pid  5010] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5010] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5009] <... futex resumed>)        = 0
[pid  5010] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5009] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5009] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5009] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5009] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5009] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5011 attached
, parent_tid=[5011], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5011
[pid  5011] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5011] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5011] <... futex resumed>)        = 0
[pid  5009] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5011] memfd_create("syzkaller", 0) = 4
[pid  5011] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5011] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5011] munmap(0x7faa93d36000, 131072) = 0
[pid  5011] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5011] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5011] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5011] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5011] close(5)                    = 0
[pid  5011] close(4)                    = 0
[pid  5011] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5009] <... futex resumed>)        = 0
[pid  5011] <... futex resumed>)        = 1
[pid  5011] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5011] <... futex resumed>)        = 0
[pid  5011] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5009] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5010] <... write resumed>)        = 573440
[pid  5010] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5010] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5011] <... mmap resumed>)         = 0x20000000
[pid  5011] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5011] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] <... futex resumed>)        = 0
[pid  5009] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5009] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5010] <... futex resumed>)        = 0
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5010] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5010] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5009] <... futex resumed>)        = 0
[pid  5010] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid  5009] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5009] <... futex resumed>)        = 0
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5009] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5010] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5010] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5010] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5009] <... futex resumed>)        = 0
[pid  5010] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5009] exit_group(0)               = ?
[pid  5011] <... futex resumed>)        = ?
[pid  5010] <... futex resumed>)        = ?
[pid  5010] +++ exited with 0 +++
[pid  5011] +++ exited with 0 +++
[pid  5009] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5009, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5012 attached
, child_tidptr=0x5555565dd6d0) = 5012
[pid  5012] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5012] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5012] setpgid(0, 0)               = 0
[pid  5012] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5012] write(3, "1000", 4)         = 4
[pid  5012] close(3)                    = 0
[pid  5012] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5012] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5012] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5012] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5013 attached
, parent_tid=[5013], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5013
[pid  5013] set_robust_list(0x7faa9c1779e0, 24 <unfinished ...>
[pid  5012] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5013] <... set_robust_list resumed>) = 0
[pid  5012] <... futex resumed>)        = 0
[pid  5013] mount("/dev/sg0", NULL, NULL, 0, NULL <unfinished ...>
[pid  5012] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5013] <... mount resumed>)        = -1 EFAULT (Bad address)
[pid  5013] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5012] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5013] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5013] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5013] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5012] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5012] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5012] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5014 attached
, parent_tid=[5014], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5014
[pid  5014] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5012] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5014] <... set_robust_list resumed>) = 0
[pid  5012] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5014] memfd_create("syzkaller", 0) = 4
[pid  5014] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5014] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5014] munmap(0x7faa93d36000, 131072) = 0
[pid  5014] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5014] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5014] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5014] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5014] close(5)                    = 0
[pid  5014] close(4)                    = 0
[pid  5014] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5014] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5012] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5014] <... mmap resumed>)         = 0x20000000
[pid  5014] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5014] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5013] <... write resumed>)        = 1507328
[pid  5013] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5013] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5012] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5013] <... futex resumed>)        = 0
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5013] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5013] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5012] <... futex resumed>)        = 0
[pid  5012] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5012] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5013] <... futex resumed>)        = 1
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5013] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5013] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5013] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5012] <... futex resumed>)        = 0
[pid  5012] exit_group(0)               = ?
[pid  5014] <... futex resumed>)        = ?
[pid  5014] +++ exited with 0 +++
[pid  5013] <... futex resumed>)        = ?
[pid  5013] +++ exited with 0 +++
[pid  5012] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5012, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5015
./strace-static-x86_64: Process 5015 attached
[pid  5015] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5015] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5015] setpgid(0, 0)               = 0
[pid  5015] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5015] write(3, "1000", 4)         = 4
[pid  5015] close(3)                    = 0
[pid  5015] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5015] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5015] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5016], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5016
[pid  5015] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5016 attached
 <unfinished ...>
[pid  5016] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5016] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5016] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5015] <... futex resumed>)        = 0
[pid  5015] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5016] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5016] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5015] <... futex resumed>)        = 0
[pid  5015] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5015] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5015] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5017], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5017
[pid  5015] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5016] <... futex resumed>)        = 1
[pid  5016] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5017 attached
 <unfinished ...>
[pid  5017] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5017] memfd_create("syzkaller", 0) = 4
[pid  5017] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5017] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5017] munmap(0x7faa93d36000, 131072) = 0
[pid  5017] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5017] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5017] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5017] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5017] close(5)                    = 0
[pid  5017] close(4)                    = 0
[pid  5017] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5015] <... futex resumed>)        = 0
[pid  5015] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5017] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5016] <... write resumed>)        = 688128
[pid  5017] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5016] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5017] <... futex resumed>)        = 1
[pid  5016] <... futex resumed>)        = 0
[pid  5015] <... futex resumed>)        = 0
[pid  5015] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5017] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5016] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5016] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5015] <... futex resumed>)        = 0
[pid  5015] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5015] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5016] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5016] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5016] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5015] <... futex resumed>)        = 0
[pid  5015] exit_group(0 <unfinished ...>
[pid  5017] <... futex resumed>)        = ?
[pid  5015] <... exit_group resumed>)   = ?
[pid  5017] +++ exited with 0 +++
[pid  5016] <... futex resumed>)        = ?
[pid  5016] +++ exited with 0 +++
[pid  5015] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5015, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5018
./strace-static-x86_64: Process 5018 attached
[pid  5018] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5018] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5018] setpgid(0, 0)               = 0
[pid  5018] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5018] write(3, "1000", 4)         = 4
[pid  5018] close(3)                    = 0
[pid  5018] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5018] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5018] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5018] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5019 attached
 <unfinished ...>
[pid  5019] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5019] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5018] <... clone resumed>, parent_tid=[5019], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5019
[pid  5018] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5019] <... futex resumed>)        = 0
[pid  5018] <... futex resumed>)        = 1
[pid  5018] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5019] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5019] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5018] <... futex resumed>)        = 0
[pid  5019] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5018] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5019] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5019] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5019] <... openat resumed>)       = 3
[pid  5019] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5019] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5018] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5018] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5018] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5020], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5020
[pid  5018] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5018] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5020 attached
 <unfinished ...>
[pid  5020] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5020] memfd_create("syzkaller", 0) = 4
[pid  5020] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5020] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5020] munmap(0x7faa93d36000, 131072) = 0
[pid  5020] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5020] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5020] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5020] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5020] close(5)                    = 0
[pid  5020] close(4)                    = 0
[pid  5020] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5018] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5020] <... futex resumed>)        = 1
[pid  5020] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5019] <... write resumed>)        = 1368064
[pid  5019] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5019] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5020] <... mmap resumed>)         = 0x20000000
[pid  5020] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5018] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5019] <... futex resumed>)        = 0
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5019] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5019] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5018] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5019] <... futex resumed>)        = 1
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5019] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5019] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5019] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5018] <... futex resumed>)        = 0
[pid  5018] exit_group(0)               = ?
[pid  5019] <... futex resumed>)        = ?
[pid  5019] +++ exited with 0 +++
[pid  5020] <... futex resumed>)        = ?
[pid  5020] +++ exited with 0 +++
[pid  5018] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5018, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5021
./strace-static-x86_64: Process 5021 attached
[pid  5021] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5021] setpgid(0, 0)               = 0
[pid  5021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5021] write(3, "1000", 4)         = 4
[pid  5021] close(3)                    = 0
[pid  5021] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5021] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5021] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5021] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5022], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5022
[pid  5021] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
./strace-static-x86_64: Process 5022 attached
[pid  5022] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5022] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5022] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5022] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  5021] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5022] <... futex resumed>)        = 0
[pid  5022] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5021] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] <... openat resumed>)       = 3
[pid  5022] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5021] <... futex resumed>)        = 0
[pid  5021] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5021] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5021] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  5022] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5021] <... mmap resumed>)         = 0x7faa9c136000
[pid  5021] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5021] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5023], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5023
[pid  5021] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5021] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5023 attached
 <unfinished ...>
[pid  5023] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5023] memfd_create("syzkaller", 0) = 4
[pid  5023] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5023] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5023] munmap(0x7faa93d36000, 131072) = 0
[pid  5023] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5023] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5023] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5023] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5023] close(5)                    = 0
[pid  5023] close(4)                    = 0
[pid  5023] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5023] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] <... futex resumed>)        = 0
[pid  5021] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5023] <... futex resumed>)        = 0
[pid  5021] <... futex resumed>)        = 1
[pid  5023] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5021] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5023] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5021] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5023] <... futex resumed>)        = 0
[pid  5023] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5022] <... write resumed>)        = 1126400
[pid  5022] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5022] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5022] <... futex resumed>)        = 0
[pid  5021] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5022] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5022] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5022] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5021] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5022] <... futex resumed>)        = 0
[pid  5021] <... futex resumed>)        = 1
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5021] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5022] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5022] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5022] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5021] <... futex resumed>)        = 0
[pid  5022] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5021] exit_group(0 <unfinished ...>
[pid  5023] <... futex resumed>)        = ?
[pid  5021] <... exit_group resumed>)   = ?
[pid  5023] +++ exited with 0 +++
[pid  5022] <... futex resumed>)        = ?
[pid  5022] +++ exited with 0 +++
[pid  5021] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5021, si_uid=0, si_status=0, si_utime=0, si_stime=7 /* 0.07 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5024 attached
, child_tidptr=0x5555565dd6d0) = 5024
[pid  5024] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5024] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5024] setpgid(0, 0)               = 0
[pid  5024] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5024] write(3, "1000", 4)         = 4
[pid  5024] close(3)                    = 0
[pid  5024] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5024] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5024] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5025 attached
 <unfinished ...>
[pid  5025] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5024] <... clone resumed>, parent_tid=[5025], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5025
[pid  5025] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5025] <... futex resumed>)        = 0
[pid  5025] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5024] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5025] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5025] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5025] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5024] <... futex resumed>)        = 0
[pid  5025] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5024] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5025] <... openat resumed>)       = 3
[pid  5025] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5025] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5025] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5024] <... futex resumed>)        = 0
[pid  5025] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5024] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5024] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5024] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5026], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5026
[pid  5024] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5026 attached
 <unfinished ...>
[pid  5026] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5026] memfd_create("syzkaller", 0) = 4
[pid  5026] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5026] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5026] munmap(0x7faa93d36000, 131072) = 0
[pid  5026] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5026] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5026] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5026] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5026] close(5)                    = 0
[pid  5026] close(4)                    = 0
[pid  5026] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5026] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] <... futex resumed>)        = 0
[pid  5024] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5026] <... futex resumed>)        = 0
[pid  5026] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5026] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5026] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5025] <... write resumed>)        = 704512
[pid  5025] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] <... futex resumed>)        = 0
[pid  5024] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5024] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5025] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5025] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5025] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5025] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5024] <... futex resumed>)        = 0
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5024] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5025] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5025] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5025] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5024] <... futex resumed>)        = 0
[pid  5025] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5024] exit_group(0)               = ?
[pid  5026] <... futex resumed>)        = ?
[pid  5026] +++ exited with 0 +++
[pid  5025] <... futex resumed>)        = ?
[pid  5025] +++ exited with 0 +++
[pid  5024] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5024, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5027
./strace-static-x86_64: Process 5027 attached
[pid  5027] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5027] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5027] setpgid(0, 0)               = 0
[pid  5027] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5027] write(3, "1000", 4)         = 4
[pid  5027] close(3)                    = 0
[pid  5027] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5027] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5027] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5027] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5028], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5028
[pid  5027] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5028 attached
 <unfinished ...>
[pid  5028] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5028] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5028] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5028] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5027] <... futex resumed>)        = 1
[pid  5028] <... futex resumed>)        = 0
[pid  5028] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5027] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  5027] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5028] <... futex resumed>)        = 0
[pid  5027] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5028] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5028] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5028] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5027] <... futex resumed>)        = 0
[pid  5027] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5028] <... futex resumed>)        = 0
[pid  5027] <... futex resumed>)        = 1
[pid  5027] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5028] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5027] <... futex resumed>)        = 0
[pid  5027] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5027] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5027] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5029 attached
, parent_tid=[5029], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5029
[pid  5029] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5027] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5029] <... set_robust_list resumed>) = 0
[pid  5027] <... futex resumed>)        = 0
[pid  5029] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5027] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5029] <... memfd_create resumed>) = 4
[pid  5029] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5029] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5029] munmap(0x7faa93d36000, 131072) = 0
[pid  5029] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5029] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5029] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5029] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5029] close(5)                    = 0
[pid  5029] close(4)                    = 0
[pid  5029] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5027] <... futex resumed>)        = 0
[pid  5029] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5027] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5027] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5029] <... futex resumed>)        = 0
[pid  5029] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5028] <... write resumed>)        = 1867776
[pid  5028] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5028] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5029] <... mmap resumed>)         = 0x20000000
[pid  5029] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5027] <... futex resumed>)        = 0
[pid  5027] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5027] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5028] <... futex resumed>)        = 0
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5028] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5028] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5027] <... futex resumed>)        = 0
[pid  5027] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5027] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5028] <... futex resumed>)        = 1
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5028] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5028] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5028] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5027] <... futex resumed>)        = 0
[pid  5027] exit_group(0)               = ?
[pid  5028] <... futex resumed>)        = ?
[pid  5028] +++ exited with 0 +++
[pid  5029] +++ exited with 0 +++
[pid  5027] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5027, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5030 attached
, child_tidptr=0x5555565dd6d0) = 5030
[pid  5030] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5030] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5030] setpgid(0, 0)               = 0
[pid  5030] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5030] write(3, "1000", 4)         = 4
[pid  5030] close(3)                    = 0
[pid  5030] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5030] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5030] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5030] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5031], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5031
[pid  5030] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5030] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5031 attached
 <unfinished ...>
[pid  5031] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5031] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5031] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5030] <... futex resumed>)        = 0
[pid  5030] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5031] <... futex resumed>)        = 1
[pid  5030] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5031] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5031] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5031] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5030] <... futex resumed>)        = 0
[pid  5030] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5031] <... futex resumed>)        = 0
[pid  5030] <... futex resumed>)        = 1
[pid  5031] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5030] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5030] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5030] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5030] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5032], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5032
[pid  5030] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5030] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5032 attached
 <unfinished ...>
[pid  5032] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5032] memfd_create("syzkaller", 0) = 4
[pid  5032] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5032] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5032] munmap(0x7faa93d36000, 131072) = 0
[pid  5032] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5032] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5032] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5032] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5032] close(5)                    = 0
[pid  5032] close(4)                    = 0
[pid  5032] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5030] <... futex resumed>)        = 0
[pid  5032] <... futex resumed>)        = 1
[pid  5030] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5032] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5030] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5031] <... write resumed>)        = 1146880
[pid  5031] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5031] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5032] <... mmap resumed>)         = 0x20000000
[pid  5032] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5030] <... futex resumed>)        = 0
[pid  5030] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5031] <... futex resumed>)        = 0
[pid  5030] <... futex resumed>)        = 1
[pid  5030] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5032] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5031] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5031] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5030] <... futex resumed>)        = 0
[pid  5030] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5030] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5031] <... futex resumed>)        = 1
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5031] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5031] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5031] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5030] <... futex resumed>)        = 0
[pid  5030] exit_group(0)               = ?
[pid  5032] <... futex resumed>)        = ?
[pid  5031] <... futex resumed>)        = ?
[pid  5032] +++ exited with 0 +++
[pid  5031] +++ exited with 0 +++
[pid  5030] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5030, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5033
./strace-static-x86_64: Process 5033 attached
[pid  5033] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5033] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5033] setpgid(0, 0)               = 0
[pid  5033] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "1000", 4)         = 4
[pid  5033] close(3)                    = 0
[pid  5033] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5033] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5033] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5034], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5034
[pid  5033] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5034 attached
 <unfinished ...>
[pid  5034] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5034] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5034] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[pid  5033] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5034] <... futex resumed>)        = 1
[pid  5034] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5034] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[pid  5033] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5033] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5033] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5035], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5035
[pid  5033] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5034] <... futex resumed>)        = 1
[pid  5034] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5035 attached
 <unfinished ...>
[pid  5035] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5035] memfd_create("syzkaller", 0) = 4
[pid  5035] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5035] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5035] munmap(0x7faa93d36000, 131072) = 0
[pid  5035] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5035] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5035] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5035] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5035] close(5)                    = 0
[pid  5035] close(4)                    = 0
[pid  5035] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5033] <... futex resumed>)        = 0
[pid  5033] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5035] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5034] <... write resumed>)        = 1863680
[pid  5034] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5034] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5035] <... mmap resumed>)         = 0x20000000
[pid  5035] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[pid  5033] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5033] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5034] <... futex resumed>)        = 0
[pid  5035] <... futex resumed>)        = 1
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5035] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5034] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5034] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[pid  5033] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5033] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5034] <... futex resumed>)        = 1
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5034] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5034] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5034] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5033] <... futex resumed>)        = 0
[pid  5033] exit_group(0)               = ?
[pid  5035] <... futex resumed>)        = ?
[pid  5035] +++ exited with 0 +++
[pid  5034] <... futex resumed>)        = ?
[pid  5034] +++ exited with 0 +++
[pid  5033] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5033, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5036
./strace-static-x86_64: Process 5036 attached
[pid  5036] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5036] setpgid(0, 0)               = 0
[pid  5036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5036] write(3, "1000", 4)         = 4
[pid  5036] close(3)                    = 0
[pid  5036] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5036] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5036] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5036] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5037], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5037
./strace-static-x86_64: Process 5037 attached
[pid  5037] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5037] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5036] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5037] <... futex resumed>)        = 0
[pid  5037] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5037] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5037] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5036] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 EAGAIN (Resource temporarily unavailable)
[pid  5036] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5037] <... futex resumed>)        = 0
[pid  5036] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5037] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5037] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5037] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5036] <... futex resumed>)        = 0
[pid  5036] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5037] <... futex resumed>)        = 0
[pid  5036] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5037] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5036] <... futex resumed>)        = 0
[pid  5036] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5036] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5036] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5038], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5038
[pid  5036] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5036] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5038 attached
 <unfinished ...>
[pid  5038] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5038] memfd_create("syzkaller", 0) = 4
[pid  5038] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5038] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5038] munmap(0x7faa93d36000, 131072) = 0
[pid  5038] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5038] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5038] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5038] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5038] close(5)                    = 0
[pid  5038] close(4)                    = 0
[pid  5038] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5038] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5036] <... futex resumed>)        = 0
[pid  5036] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5038] <... futex resumed>)        = 0
[pid  5036] <... futex resumed>)        = 1
[pid  5038] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5036] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5038] <... mmap resumed>)         = 0x20000000
[pid  5037] <... write resumed>)        = 749568
[pid  5038] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5037] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5038] <... futex resumed>)        = 1
[pid  5036] <... futex resumed>)        = 0
[pid  5038] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5036] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5036] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5037] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5037] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5036] <... futex resumed>)        = 0
[pid  5036] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5036] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5037] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5037] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5037] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5036] <... futex resumed>)        = 0
[pid  5037] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5036] exit_group(0 <unfinished ...>
[pid  5037] <... futex resumed>)        = ?
[pid  5036] <... exit_group resumed>)   = ?
[pid  5037] +++ exited with 0 +++
[pid  5038] <... futex resumed>)        = ?
[pid  5038] +++ exited with 0 +++
[pid  5036] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5036, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5039
./strace-static-x86_64: Process 5039 attached
[pid  5039] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5039] setpgid(0, 0)               = 0
[pid  5039] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "1000", 4)         = 4
[pid  5039] close(3)                    = 0
[pid  5039] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5039] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5039] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5039] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5040 attached
, parent_tid=[5040], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5040
[pid  5039] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5039] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5040] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5040] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5040] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5039] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5039] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5040] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5040] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5039] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5039] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5039] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5039] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5039] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID <unfinished ...>
[pid  5040] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5039] <... clone resumed>, parent_tid=[5041], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5041
./strace-static-x86_64: Process 5041 attached
[pid  5039] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5041] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5039] <... futex resumed>)        = 0
[pid  5041] <... set_robust_list resumed>) = 0
[pid  5039] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5041] memfd_create("syzkaller", 0) = 4
[pid  5041] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5041] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5041] munmap(0x7faa93d36000, 131072) = 0
[pid  5041] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5041] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5041] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5041] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5041] close(5)                    = 0
[pid  5041] close(4)                    = 0
[pid  5041] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5041] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5039] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5041] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5039] <... futex resumed>)        = 0
[pid  5041] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5039] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5041] <... mmap resumed>)         = 0x20000000
[pid  5040] <... write resumed>)        = 3440640
[pid  5041] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5041] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5040] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5039] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5041] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5040] <... futex resumed>)        = 0
[pid  5039] <... futex resumed>)        = 0
[pid  5041] <... openat resumed>)       = 4
[pid  5040] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5039] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5041] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5041] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5039] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5040] <... futex resumed>)        = 0
[pid  5039] <... futex resumed>)        = 1
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5039] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5040] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5040] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5040] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5039] <... futex resumed>)        = 0
[pid  5040] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5039] exit_group(0 <unfinished ...>
[pid  5041] <... futex resumed>)        = ?
[pid  5040] <... futex resumed>)        = ?
[pid  5039] <... exit_group resumed>)   = ?
[pid  5041] +++ exited with 0 +++
[pid  5040] +++ exited with 0 +++
[pid  5039] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5039, si_uid=0, si_status=0, si_utime=0, si_stime=10 /* 0.10 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5042
./strace-static-x86_64: Process 5042 attached
[pid  5042] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5042] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5042] setpgid(0, 0)               = 0
[pid  5042] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5042] write(3, "1000", 4)         = 4
[pid  5042] close(3)                    = 0
[pid  5042] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5042] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5042] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5043 attached
, parent_tid=[5043], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5043
[pid  5042] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5043] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5043] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5043] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5042] <... futex resumed>)        = 0
[pid  5042] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5043] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5043] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5042] <... futex resumed>)        = 0
[pid  5042] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5042] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5042] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5044], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5044
[pid  5042] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5043] <... futex resumed>)        = 1
[pid  5043] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5044 attached
 <unfinished ...>
[pid  5044] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5044] memfd_create("syzkaller", 0) = 4
[pid  5044] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5044] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5044] munmap(0x7faa93d36000, 131072) = 0
[pid  5044] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5044] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5044] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5044] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5044] close(5)                    = 0
[pid  5044] close(4)                    = 0
[pid  5044] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5042] <... futex resumed>)        = 0
[pid  5042] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5044] <... futex resumed>)        = 1
[pid  5044] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5043] <... write resumed>)        = 761856
[pid  5043] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5043] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5044] <... mmap resumed>)         = 0x20000000
[pid  5044] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5042] <... futex resumed>)        = 0
[pid  5042] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5044] <... futex resumed>)        = 1
[pid  5044] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5043] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5043] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5043] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5042] <... futex resumed>)        = 0
[pid  5042] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5042] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5043] <... futex resumed>)        = 1
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5043] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5043] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5043] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5042] <... futex resumed>)        = 0
[pid  5042] exit_group(0)               = ?
[pid  5044] <... futex resumed>)        = ?
[pid  5044] +++ exited with 0 +++
[pid  5043] <... futex resumed>)        = ?
[pid  5043] +++ exited with 0 +++
[pid  5042] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5042, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5045
./strace-static-x86_64: Process 5045 attached
[pid  5045] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5045] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5045] setpgid(0, 0)               = 0
[pid  5045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5045] write(3, "1000", 4)         = 4
[pid  5045] close(3)                    = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5045] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5045] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5045] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5046 attached
, parent_tid=[5046], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5046
[pid  5046] set_robust_list(0x7faa9c1779e0, 24 <unfinished ...>
[pid  5045] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5046] <... set_robust_list resumed>) = 0
[pid  5045] <... futex resumed>)        = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5046] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5046] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5045] <... futex resumed>)        = 0
[pid  5046] <... futex resumed>)        = 1
[pid  5045] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5046] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5045] <... futex resumed>)        = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5046] <... openat resumed>)       = 3
[pid  5046] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5045] <... futex resumed>)        = 0
[pid  5046] <... futex resumed>)        = 1
[pid  5045] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5046] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5045] <... futex resumed>)        = 0
[pid  5045] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5045] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5045] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5045] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5047], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5047
[pid  5045] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5045] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5047 attached
 <unfinished ...>
[pid  5047] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5047] memfd_create("syzkaller", 0) = 4
[pid  5047] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5047] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5047] munmap(0x7faa93d36000, 131072) = 0
[pid  5047] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5047] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5047] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5047] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5047] close(5)                    = 0
[pid  5047] close(4)                    = 0
[pid  5047] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5045] <... futex resumed>)        = 0
[pid  5047] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5045] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5047] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5045] <... futex resumed>)        = 0
[pid  5047] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5045] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5047] <... mmap resumed>)         = 0x20000000
[pid  5047] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5046] <... write resumed>)        = 1306624
[pid  5047] <... futex resumed>)        = 1
[pid  5045] <... futex resumed>)        = 0
[pid  5047] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5046] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5045] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5046] <... futex resumed>)        = 1
[pid  5045] <... futex resumed>)        = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5046] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5046] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5045] <... futex resumed>)        = 0
[pid  5045] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5045] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5046] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5046] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5046] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5045] <... futex resumed>)        = 0
[pid  5046] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5045] exit_group(0)               = ?
[pid  5047] <... futex resumed>)        = ?
[pid  5047] +++ exited with 0 +++
[pid  5046] <... futex resumed>)        = ?
[pid  5046] +++ exited with 0 +++
[pid  5045] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5045, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5048
./strace-static-x86_64: Process 5048 attached
[pid  5048] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5048] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5048] setpgid(0, 0)               = 0
[pid  5048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5048] write(3, "1000", 4)         = 4
[pid  5048] close(3)                    = 0
[pid  5048] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5048] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5048] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5049], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5049
[pid  5048] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5049 attached
 <unfinished ...>
[pid  5049] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5049] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5049] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5048] <... futex resumed>)        = 0
[pid  5048] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5049] <... futex resumed>)        = 1
[pid  5049] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5049] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5048] <... futex resumed>)        = 0
[pid  5048] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5048] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5048] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5050], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5050
[pid  5048] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5049] <... futex resumed>)        = 1
[pid  5049] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651./strace-static-x86_64: Process 5050 attached
 <unfinished ...>
[pid  5050] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5050] memfd_create("syzkaller", 0) = 4
[pid  5050] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5050] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5050] munmap(0x7faa93d36000, 131072) = 0
[pid  5050] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5050] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5050] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5050] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5050] close(5)                    = 0
[pid  5050] close(4)                    = 0
[pid  5050] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5048] <... futex resumed>)        = 0
[pid  5048] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5050] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5049] <... write resumed>)        = 1683456
[pid  5049] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5049] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5050] <... mmap resumed>)         = 0x20000000
[pid  5050] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5048] <... futex resumed>)        = 0
[pid  5048] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5048] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5049] <... futex resumed>)        = 0
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5049] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5050] <... futex resumed>)        = 1
[pid  5049] <... openat resumed>)       = 4
[pid  5050] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5049] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5048] <... futex resumed>)        = 0
[pid  5048] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5048] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5049] <... futex resumed>)        = 1
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5049] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5049] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5049] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5048] <... futex resumed>)        = 0
[pid  5048] exit_group(0)               = ?
[pid  5050] <... futex resumed>)        = ?
[pid  5050] +++ exited with 0 +++
[pid  5049] <... futex resumed>)        = ?
[pid  5049] +++ exited with 0 +++
[pid  5048] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5048, si_uid=0, si_status=0, si_utime=0, si_stime=8 /* 0.08 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5051
./strace-static-x86_64: Process 5051 attached
[pid  5051] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5051] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5051] setpgid(0, 0)               = 0
[pid  5051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5051] write(3, "1000", 4)         = 4
[pid  5051] close(3)                    = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5051] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5051] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5051] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5052 attached
, parent_tid=[5052], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5052
[pid  5052] set_robust_list(0x7faa9c1779e0, 24 <unfinished ...>
[pid  5051] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5052] <... set_robust_list resumed>) = 0
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5052] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5052] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5051] <... futex resumed>)        = 0
[pid  5052] <... futex resumed>)        = 1
[pid  5051] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5052] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5052] <... openat resumed>)       = 3
[pid  5052] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5051] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5051] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 <unfinished ...>
[pid  5052] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5051] <... mmap resumed>)         = 0x7faa9c136000
[pid  5051] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5051] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5053 attached
 <unfinished ...>
[pid  5053] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5051] <... clone resumed>, parent_tid=[5053], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5053
[pid  5053] <... set_robust_list resumed>) = 0
[pid  5051] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5051] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5053] memfd_create("syzkaller", 0) = 4
[pid  5053] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5053] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5053] munmap(0x7faa93d36000, 131072) = 0
[pid  5053] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5053] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5053] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5053] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5053] close(5)                    = 0
[pid  5053] close(4)                    = 0
[pid  5053] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5051] <... futex resumed>)        = 0
[pid  5053] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5051] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5053] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5051] <... futex resumed>)        = 0
[pid  5053] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5051] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5052] <... write resumed>)        = 585728
[pid  5053] <... mmap resumed>)         = 0x20000000
[pid  5052] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5053] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5051] <... futex resumed>)        = 0
[pid  5053] <... futex resumed>)        = 1
[pid  5051] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5053] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5052] <... futex resumed>)        = 1
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=49000000} <unfinished ...>
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5052] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5052] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5051] <... futex resumed>)        = 0
[pid  5051] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5051] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5052] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5052] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5052] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5051] <... futex resumed>)        = 0
[pid  5052] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5051] exit_group(0)               = ?
[pid  5053] <... futex resumed>)        = ?
[pid  5052] <... futex resumed>)        = ?
[pid  5053] +++ exited with 0 +++
[pid  5052] +++ exited with 0 +++
[pid  5051] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5051, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5054
./strace-static-x86_64: Process 5054 attached
[pid  5054] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5054] setpgid(0, 0)               = 0
[pid  5054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5054] write(3, "1000", 4)         = 4
[pid  5054] close(3)                    = 0
[pid  5054] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5054] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5054] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5055 attached
 <unfinished ...>
[pid  5055] set_robust_list(0x7faa9c1779e0, 24 <unfinished ...>
[pid  5054] <... clone resumed>, parent_tid=[5055], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5055
[pid  5055] <... set_robust_list resumed>) = 0
[pid  5054] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5055] mount("/dev/sg0", NULL, NULL, 0, NULL <unfinished ...>
[pid  5054] <... futex resumed>)        = 0
[pid  5055] <... mount resumed>)        = -1 EFAULT (Bad address)
[pid  5054] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5055] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5054] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5055] <... futex resumed>)        = 0
[pid  5054] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5055] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5054] <... futex resumed>)        = 0
[pid  5054] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5055] <... openat resumed>)       = 3
[pid  5055] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5054] <... futex resumed>)        = 0
[pid  5054] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5054] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5054] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5054] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5054] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5056], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5056
./strace-static-x86_64: Process 5056 attached
[pid  5054] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5054] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5055] <... futex resumed>)        = 1
[pid  5056] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5055] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5056] <... set_robust_list resumed>) = 0
[pid  5056] memfd_create("syzkaller", 0) = 4
[pid  5056] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5056] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5056] munmap(0x7faa93d36000, 131072) = 0
[pid  5056] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5056] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5056] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5056] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5056] close(5)                    = 0
[pid  5056] close(4)                    = 0
[pid  5056] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5054] <... futex resumed>)        = 0
[pid  5054] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5054] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5056] <... futex resumed>)        = 1
[pid  5056] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5055] <... write resumed>)        = 364544
[pid  5056] <... mmap resumed>)         = 0x20000000
[pid  5056] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5054] <... futex resumed>)        = 0
[pid  5056] <... futex resumed>)        = 1
[pid  5054] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5054] <... futex resumed>)        = 0
[pid  5056] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5054] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5056] <... openat resumed>)       = 4
[pid  5056] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5054] <... futex resumed>)        = 0
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5054] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5054] <... futex resumed>)        = 0
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5054] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5055] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5055] <... futex resumed>)        = 0
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5056] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5056] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5055] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5056] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5054] <... futex resumed>)        = 0
[pid  5056] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5054] exit_group(0 <unfinished ...>
[pid  5056] <... futex resumed>)        = ?
[pid  5055] <... futex resumed>)        = ?
[pid  5054] <... exit_group resumed>)   = ?
[pid  5056] +++ exited with 0 +++
[pid  5055] +++ exited with 0 +++
[pid  5054] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5054, si_uid=0, si_status=0, si_utime=0, si_stime=5 /* 0.05 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5057 attached
 <unfinished ...>
[pid  5057] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5057] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5057] setpgid(0, 0)               = 0
[pid  5057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5057] write(3, "1000", 4)         = 4
[pid  5057] close(3)                    = 0
[pid  5057] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5057] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5057] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5058], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5058
[pid  5057] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5058 attached
 <unfinished ...>
[pid  5058] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5058] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5058] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5057] <... futex resumed>)        = 0
[pid  5057] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5058] <... futex resumed>)        = 1
[pid  5058] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5058] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5057] <... futex resumed>)        = 0
[pid  5057] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5057] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5057] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5059], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5059
[pid  5057] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5058] <... futex resumed>)        = 1
[pid  5058] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  4992] <... clone resumed>, child_tidptr=0x5555565dd6d0) = 5057
./strace-static-x86_64: Process 5059 attached
[pid  5059] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5059] memfd_create("syzkaller", 0) = 4
[pid  5059] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5059] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5059] munmap(0x7faa93d36000, 131072) = 0
[pid  5059] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5059] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5059] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5059] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5059] close(5)                    = 0
[pid  5059] close(4)                    = 0
[pid  5059] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5057] <... futex resumed>)        = 0
[pid  5057] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5059] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5058] <... write resumed>)        = 462848
[pid  5059] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5058] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5059] <... futex resumed>)        = 1
[pid  5058] <... futex resumed>)        = 0
[pid  5057] <... futex resumed>)        = 0
[pid  5059] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5057] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5058] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5057] <... futex resumed>)        = 0
[pid  5057] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5058] <... openat resumed>)       = 4
[pid  5058] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5057] <... futex resumed>)        = 0
[pid  5057] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5057] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5058] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5058] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5058] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5057] <... futex resumed>)        = 0
[pid  5057] exit_group(0)               = ?
[pid  5059] <... futex resumed>)        = ?
[pid  5059] +++ exited with 0 +++
[pid  5058] +++ exited with 0 +++
[pid  5057] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5057, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5060
./strace-static-x86_64: Process 5060 attached
[pid  5060] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5060] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5060] setpgid(0, 0)               = 0
[pid  5060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5060] write(3, "1000", 4)         = 4
[pid  5060] close(3)                    = 0
[pid  5060] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5060] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5060] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5061 attached
, parent_tid=[5061], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5061
[pid  5061] set_robust_list(0x7faa9c1779e0, 24 <unfinished ...>
[pid  5060] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5061] <... set_robust_list resumed>) = 0
[pid  5060] <... futex resumed>)        = 0
[pid  5061] mount("/dev/sg0", NULL, NULL, 0, NULL <unfinished ...>
[pid  5060] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5061] <... mount resumed>)        = -1 EFAULT (Bad address)
[pid  5061] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5060] <... futex resumed>)        = 0
[pid  5061] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000 <unfinished ...>
[pid  5060] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5061] <... openat resumed>)       = 3
[pid  5061] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5060] <... futex resumed>)        = 0
[pid  5061] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5060] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5060] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5060] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5062 attached
 <unfinished ...>
[pid  5062] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5062] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5060] <... clone resumed>, parent_tid=[5062], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5062
[pid  5060] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5062] <... futex resumed>)        = 0
[pid  5060] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5062] memfd_create("syzkaller", 0) = 4
[pid  5062] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5062] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5062] munmap(0x7faa93d36000, 131072) = 0
[pid  5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5062] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5062] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5062] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5062] close(5)                    = 0
[pid  5062] close(4)                    = 0
[pid  5062] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5060] <... futex resumed>)        = 0
[pid  5060] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5062] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5060] <... futex resumed>)        = 0
[pid  5062] <... mmap resumed>)         = 0x20000000
[pid  5060] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5062] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5061] <... write resumed>)        = 716800
[pid  5060] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5062] <... futex resumed>)        = 0
[pid  5061] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5060] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5062] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5062] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5062] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5060] <... futex resumed>)        = 0
[pid  5060] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5060] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5062] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5060] <... futex resumed>)        = 0
[pid  5060] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5061] <... futex resumed>)        = 1
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5061] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5061] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5061] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5060] <... futex resumed>)        = 0
[pid  5060] exit_group(0 <unfinished ...>
[pid  5062] <... futex resumed>)        = ?
[pid  5060] <... exit_group resumed>)   = ?
[pid  5062] +++ exited with 0 +++
[pid  5061] <... futex resumed>)        = ?
[pid  5061] +++ exited with 0 +++
[pid  5060] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5060, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5063
./strace-static-x86_64: Process 5063 attached
[pid  5063] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5063] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5063] setpgid(0, 0)               = 0
[pid  5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5063] write(3, "1000", 4)         = 4
[pid  5063] close(3)                    = 0
[pid  5063] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5063] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5063] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5064], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5064
[pid  5063] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5064 attached
 <unfinished ...>
[pid  5064] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5064] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5064] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5063] <... futex resumed>)        = 0
[pid  5063] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5064] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5064] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5063] <... futex resumed>)        = 0
[pid  5063] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5064] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5063] <... futex resumed>)        = 0
[pid  5063] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5063] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5063] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5065], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5065
[pid  5063] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 5065 attached
 <unfinished ...>
[pid  5065] set_robust_list(0x7faa9c1569e0, 24) = 0
[pid  5065] memfd_create("syzkaller", 0) = 4
[pid  5065] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5065] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5065] munmap(0x7faa93d36000, 131072) = 0
[pid  5065] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5065] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5065] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5065] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5065] close(5)                    = 0
[pid  5065] close(4)                    = 0
[pid  5065] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5063] <... futex resumed>)        = 0
[pid  5063] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5065] <... futex resumed>)        = 1
[pid  5065] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5065] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5063] <... futex resumed>)        = 0
[pid  5063] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5065] <... futex resumed>)        = 1
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5065] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5065] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5063] <... futex resumed>)        = 0
[pid  5063] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5063] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5065] <... futex resumed>)        = 1
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5065] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5065] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5065] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5063] <... futex resumed>)        = 0
[pid  5065] <... futex resumed>)        = 1
[pid  5065] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5064] <... write resumed>)        = 1056768
[pid  5064] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5064] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5063] exit_group(0)               = ?
[pid  5064] <... futex resumed>)        = ?
[pid  5065] <... futex resumed>)        = ?
[pid  5064] +++ exited with 0 +++
[pid  5065] +++ exited with 0 +++
[pid  5063] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5063, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5066
./strace-static-x86_64: Process 5066 attached
[pid  5066] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5066] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5066] setpgid(0, 0)               = 0
[pid  5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5066] write(3, "1000", 4)         = 4
[pid  5066] close(3)                    = 0
[pid  5066] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5066] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5066] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5067], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5067
[pid  5066] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5066] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5067 attached
 <unfinished ...>
[pid  5067] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5067] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5067] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5067] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5066] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5066] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5067] <... futex resumed>)        = 0
[pid  5067] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5067] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5067] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5066] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5067] <... futex resumed>)        = 0
[pid  5067] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5066] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5066] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5066] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5066] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5068 attached
, parent_tid=[5068], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5068
[pid  5068] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5066] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5068] <... set_robust_list resumed>) = 0
[pid  5066] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5068] memfd_create("syzkaller", 0) = 4
[pid  5068] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5068] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5068] munmap(0x7faa93d36000, 131072) = 0
[pid  5068] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5068] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5068] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5068] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5068] close(5)                    = 0
[pid  5068] close(4)                    = 0
[pid  5068] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5066] <... futex resumed>)        = 0
[pid  5068] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0 <unfinished ...>
[pid  5066] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5068] <... mmap resumed>)         = 0x20000000
[pid  5066] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5068] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5066] <... futex resumed>)        = -1 EAGAIN (Resource temporarily unavailable)
[pid  5068] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5066] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5068] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5068] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5066] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5066] <... futex resumed>)        = 0
[pid  5066] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5068] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5068] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48) = 48
[pid  5067] <... write resumed>)        = 1069056
[pid  5068] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5067] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5068] <... futex resumed>)        = 1
[pid  5067] <... futex resumed>)        = 0
[pid  5066] <... futex resumed>)        = 0
[pid  5066] exit_group(0 <unfinished ...>
[pid  5068] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5066] <... exit_group resumed>)   = ?
[pid  5068] <... futex resumed>)        = ?
[pid  5068] +++ exited with 0 +++
[pid  5067] +++ exited with 0 +++
[pid  5066] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5066, si_uid=0, si_status=0, si_utime=0, si_stime=6 /* 0.06 s */} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555565dd6d0) = 5069
./strace-static-x86_64: Process 5069 attached
[pid  5069] set_robust_list(0x5555565dd6e0, 24) = 0
[pid  5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5069] setpgid(0, 0)               = 0
[pid  5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5069] write(3, "1000", 4)         = 4
[pid  5069] close(3)                    = 0
[pid  5069] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c157000
[pid  5069] mprotect(0x7faa9c158000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5069] clone(child_stack=0x7faa9c1772f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[5070], tls=0x7faa9c177700, child_tidptr=0x7faa9c1779d0) = 5070
[pid  5069] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5070 attached
 <unfinished ...>
[pid  5070] set_robust_list(0x7faa9c1779e0, 24) = 0
[pid  5070] mount("/dev/sg0", NULL, NULL, 0, NULL) = -1 EFAULT (Bad address)
[pid  5070] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5069] <... futex resumed>)        = 0
[pid  5069] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5070] <... futex resumed>)        = 1
[pid  5070] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 3
[pid  5070] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5069] <... futex resumed>)        = 0
[pid  5069] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7faa9c136000
[pid  5069] mprotect(0x7faa9c137000, 131072, PROT_READ|PROT_WRITE) = 0
[pid  5069] clone(child_stack=0x7faa9c1562f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5071 attached
, parent_tid=[5071], tls=0x7faa9c156700, child_tidptr=0x7faa9c1569d0) = 5071
[pid  5069] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} <unfinished ...>
[pid  5071] set_robust_list(0x7faa9c1569e0, 24 <unfinished ...>
[pid  5070] <... futex resumed>)        = 1
[pid  5071] <... set_robust_list resumed>) = 0
[pid  5070] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 <unfinished ...>
[pid  5071] memfd_create("syzkaller", 0) = 4
[pid  5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7faa93d36000
[pid  5071] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x03\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072
[pid  5071] munmap(0x7faa93d36000, 131072) = 0
[pid  5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid  5071] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5071] ioctl(5, LOOP_CLR_FD)       = 0
[pid  5071] ioctl(5, LOOP_SET_FD, 4)    = -1 EBUSY (Device or resource busy)
[pid  5071] close(5)                    = 0
[pid  5071] close(4)                    = 0
[pid  5071] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5069] <... futex resumed>)        = 0
[pid  5069] futex(0x7faa9c2516f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5071] <... futex resumed>)        = 1
[pid  5071] mmap(0x20000000, 11755520, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 3, 0) = 0x20000000
[pid  5070] <... write resumed>)        = 253952
[pid  5070] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5070] futex(0x7faa9c2516e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5071] futex(0x7faa9c2516fc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5069] <... futex resumed>)        = 0
[pid  5069] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid  5069] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5070] <... futex resumed>)        = 0
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000192} ---
[pid  5070] openat(AT_FDCWD, "/dev/sg0", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid  5070] futex(0x7faa9c2516ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid  5069] <... futex resumed>)        = 0
[pid  5069] futex(0x7faa9c2516e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid  5069] futex(0x7faa9c2516ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid  5070] <... futex resumed>)        = 1
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000000} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000004} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000008} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000010} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000018} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000020} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x20000028} ---
[pid  5070] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_ACCERR, si_addr=0x2000002c} ---
[pid  5071] <... futex resumed>)        = 1
[pid  5070] write(4, "\x65\x78\x66\x61\x74\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 48 <unfinished ...>
[   60.135323][ T5070] sg_write: data in/out 80/6 bytes for SCSI command 0x0-- guessing data in;
[   60.135323][ T5070]    program syz-executor398 not setting count and/or reply_len properly
[   60.152664][ T5070] ------------[ cut here ]------------
[   60.158121][ T5070] WARNING: CPU: 0 PID: 5070 at lib/iov_iter.c:644 _copy_from_iter+0x2d9/0x1190
[   60.167142][ T5070] Modules linked in:
[   60.171048][ T5070] CPU: 0 PID: 5070 Comm: syz-executor398 Not tainted 6.4.0-rc5-syzkaller-00245-g64569520920a #0
[pid  5071] futex(0x7faa9c2516f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid  5069] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[   60.181714][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   60.191817][ T5070] RIP: 0010:_copy_from_iter+0x2d9/0x1190
[   60.197473][ T5070] Code: 25 28 00 00 00 48 3b 84 24 00 01 00 00 0f 85 92 0e 00 00 4c 89 f0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 0a 5a fd <0f> 0b 45 31 f6 eb a7 e8 db 0a 5a fd 49 89 de e9 52 fe ff ff e8 ce
[   60.217138][ T5070] RSP: 0018:ffffc90003c7f280 EFLAGS: 00010293
[   60.223250][ T5070] RAX: ffffffff843174b9 RBX: 0000000000000000 RCX: ffff88801f7c8000
[   60.231217][ T5070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.239238][ T5070] RBP: ffffc90003c7f3d8 R08: ffffffff84317292 R09: 0000000000000200
[   60.247273][ T5070] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200078fe60
[   60.255293][ T5070] R13: dffffc0000000000 R14: 0000000000000050 R15: ffffc90003c7f5f0
[   60.263321][ T5070] FS:  00007faa9c177700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   60.272300][ T5070] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   60.278898][ T5070] CR2: 000000002000002c CR3: 000000001eaea000 CR4: 00000000003506f0
[   60.286917][ T5070] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   60.294952][ T5070] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   60.302987][ T5070] Call Trace:
[   60.306281][ T5070]  <TASK>
[   60.309215][ T5070]  ? __warn+0x162/0x4a0
[   60.313428][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.318467][ T5070]  ? report_bug+0x2b3/0x500
[   60.323021][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.328061][ T5070]  ? handle_bug+0x3d/0x70
[pid  5069] exit_group(0 <unfinished ...>
[pid  5071] <... futex resumed>)        = ?
[pid  5069] <... exit_group resumed>)   = ?
[pid  5071] +++ exited with 0 +++
[   60.332428][ T5070]  ? exc_invalid_op+0x1a/0x50
[   60.337113][ T5070]  ? asm_exc_invalid_op+0x1a/0x20
[   60.342204][ T5070]  ? _copy_from_iter+0xb2/0x1190
[   60.347163][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.352261][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.357310][ T5070]  ? bio_add_hw_page+0x3bf/0x750
[   60.362338][ T5070]  ? copyout_mc+0x80/0x80
[   60.366686][ T5070]  ? bio_add_pc_page+0xb8/0x110
[   60.371536][ T5070]  ? bio_add_hw_page+0x750/0x750
[   60.376542][ T5070]  ? page_copy_sane+0x46/0x270
[   60.381317][ T5070]  copy_page_from_iter+0x7a/0x100
[   60.386398][ T5070]  blk_rq_map_user_iov+0x13f0/0x2380
[   60.391770][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.396802][ T5070]  ? blk_rq_append_bio+0x510/0x510
[   60.401967][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.407029][ T5070]  ? import_ubuf+0x93/0x290
[   60.411545][ T5070]  blk_rq_map_user_io+0x288/0x420
[   60.416639][ T5070]  ? sg_common_write+0xb76/0x14d0
[   60.423039][ T5070]  ? blk_rq_map_user+0x190/0x190
[   60.427992][ T5070]  ? rcu_is_watching+0x15/0xb0
[   60.432822][ T5070]  ? __mutex_lock_common+0x42d/0x2530
[   60.438221][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   60.444277][ T5070]  ? __mutex_unlock_slowpath+0x21c/0x750
[   60.449941][ T5070]  ? sg_common_write+0x9f9/0x14d0
[   60.455025][ T5070]  ? mutex_unlock+0x10/0x10
[   60.459545][ T5070]  ? _raw_spin_unlock+0x40/0x40
[   60.464457][ T5070]  ? __debug_object_init+0xeb/0x640
[   60.469667][ T5070]  ? sg_link_reserve+0x28a/0x530
[   60.474663][ T5070]  sg_common_write+0xd7f/0x14d0
[   60.479528][ T5070]  ? sg_add_request+0x650/0x650
[   60.484425][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   60.490428][ T5070]  ? __might_fault+0xba/0x120
[   60.495169][ T5070]  sg_write+0xa5e/0xf10
[   60.499341][ T5070]  ? sg_read+0x1720/0x1720
[   60.503807][ T5070]  ? mark_lock+0x9a/0x340
[   60.508160][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.513266][ T5070]  ? fsnotify_perm+0x67/0x590
[   60.517955][ T5070]  ? bpf_lsm_file_permission+0x9/0x10
[   60.523385][ T5070]  ? sg_read+0x1720/0x1720
[   60.527825][ T5070]  vfs_write+0x28d/0xb20
[   60.532145][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   60.538135][ T5070]  ? file_end_write+0x250/0x250
[   60.543043][ T5070]  ? __fget_files+0x3cf/0x440
[   60.547730][ T5070]  ? __fdget_pos+0x1df/0x2f0
[   60.552354][ T5070]  ? ksys_write+0x7b/0x2c0
[   60.556796][ T5070]  ksys_write+0x1a0/0x2c0
[   60.561138][ T5070]  ? __ia32_sys_read+0x90/0x90
[   60.565945][ T5070]  ? syscall_enter_from_user_mode+0x32/0x230
[   60.571963][ T5070]  ? syscall_enter_from_user_mode+0x8c/0x230
[   60.577940][ T5070]  do_syscall_64+0x41/0xc0
[   60.582416][ T5070]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   60.588426][ T5070] RIP: 0033:0x7faa9c1cb379
[   60.592915][ T5070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   60.612566][ T5070] RSP: 002b:00007faa9c177208 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   60.620992][ T5070] RAX: ffffffffffffffda RBX: 00007faa9c2516e8 RCX: 00007faa9c1cb379
[   60.629023][ T5070] RDX: 0000000000000030 RSI: 0000000020000000 RDI: 0000000000000004
[   60.637048][ T5070] RBP: 00007faa9c2516e0 R08: 00007faa9c2516e0 R09: 0000000000000000
[   60.645115][ T5070] R10: 00007faa9c177210 R11: 0000000000000246 R12: 00007faa9c2516ec
[   60.653145][ T5070] R13: 00007ffeb9aef6ff R14: 00007faa9c177300 R15: 0000000000022000
[   60.661155][ T5070]  </TASK>
[   60.664253][ T5070] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   60.671538][ T5070] CPU: 0 PID: 5070 Comm: syz-executor398 Not tainted 6.4.0-rc5-syzkaller-00245-g64569520920a #0
[   60.681948][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[   60.692011][ T5070] Call Trace:
[   60.695288][ T5070]  <TASK>
[   60.698214][ T5070]  dump_stack_lvl+0x1e7/0x2d0
[   60.702893][ T5070]  ? nf_tcp_handle_invalid+0x650/0x650
[   60.708360][ T5070]  ? panic+0x770/0x770
[   60.712429][ T5070]  ? vscnprintf+0x5d/0x80
[   60.716758][ T5070]  panic+0x30f/0x770
[   60.720651][ T5070]  ? __warn+0x171/0x4a0
[   60.724828][ T5070]  ? __memcpy_flushcache+0x2b0/0x2b0
[   60.730142][ T5070]  __warn+0x314/0x4a0
[   60.734141][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.739179][ T5070]  report_bug+0x2b3/0x500
[   60.743501][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.748522][ T5070]  handle_bug+0x3d/0x70
[   60.752675][ T5070]  exc_invalid_op+0x1a/0x50
[   60.757172][ T5070]  asm_exc_invalid_op+0x1a/0x20
[   60.762016][ T5070] RIP: 0010:_copy_from_iter+0x2d9/0x1190
[   60.767652][ T5070] Code: 25 28 00 00 00 48 3b 84 24 00 01 00 00 0f 85 92 0e 00 00 4c 89 f0 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 e7 0a 5a fd <0f> 0b 45 31 f6 eb a7 e8 db 0a 5a fd 49 89 de e9 52 fe ff ff e8 ce
[   60.787253][ T5070] RSP: 0018:ffffc90003c7f280 EFLAGS: 00010293
[   60.793318][ T5070] RAX: ffffffff843174b9 RBX: 0000000000000000 RCX: ffff88801f7c8000
[   60.801290][ T5070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   60.809251][ T5070] RBP: ffffc90003c7f3d8 R08: ffffffff84317292 R09: 0000000000000200
[   60.817212][ T5070] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200078fe60
[   60.825177][ T5070] R13: dffffc0000000000 R14: 0000000000000050 R15: ffffc90003c7f5f0
[   60.833145][ T5070]  ? _copy_from_iter+0xb2/0x1190
[   60.838079][ T5070]  ? _copy_from_iter+0x2d9/0x1190
[   60.843105][ T5070]  ? bio_add_hw_page+0x3bf/0x750
[   60.848039][ T5070]  ? copyout_mc+0x80/0x80
[   60.852364][ T5070]  ? bio_add_pc_page+0xb8/0x110
[   60.857211][ T5070]  ? bio_add_hw_page+0x750/0x750
[   60.862141][ T5070]  ? page_copy_sane+0x46/0x270
[   60.866902][ T5070]  copy_page_from_iter+0x7a/0x100
[   60.871923][ T5070]  blk_rq_map_user_iov+0x13f0/0x2380
[   60.877210][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.882230][ T5070]  ? blk_rq_append_bio+0x510/0x510
[   60.887337][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.892365][ T5070]  ? import_ubuf+0x93/0x290
[   60.896865][ T5070]  blk_rq_map_user_io+0x288/0x420
[   60.901888][ T5070]  ? sg_common_write+0xb76/0x14d0
[   60.906904][ T5070]  ? blk_rq_map_user+0x190/0x190
[   60.911835][ T5070]  ? rcu_is_watching+0x15/0xb0
[   60.916589][ T5070]  ? __mutex_lock_common+0x42d/0x2530
[   60.921958][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   60.927937][ T5070]  ? __mutex_unlock_slowpath+0x21c/0x750
[   60.933564][ T5070]  ? sg_common_write+0x9f9/0x14d0
[   60.938753][ T5070]  ? mutex_unlock+0x10/0x10
[   60.943266][ T5070]  ? _raw_spin_unlock+0x40/0x40
[   60.948120][ T5070]  ? __debug_object_init+0xeb/0x640
[   60.953320][ T5070]  ? sg_link_reserve+0x28a/0x530
[   60.958262][ T5070]  sg_common_write+0xd7f/0x14d0
[   60.963121][ T5070]  ? sg_add_request+0x650/0x650
[   60.967981][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   60.973967][ T5070]  ? __might_fault+0xba/0x120
[   60.978669][ T5070]  sg_write+0xa5e/0xf10
[   60.982854][ T5070]  ? sg_read+0x1720/0x1720
[   60.987281][ T5070]  ? mark_lock+0x9a/0x340
[   60.991618][ T5070]  ? __lock_acquire+0x1316/0x2070
[   60.996669][ T5070]  ? fsnotify_perm+0x67/0x590
[   61.001343][ T5070]  ? bpf_lsm_file_permission+0x9/0x10
[   61.006710][ T5070]  ? sg_read+0x1720/0x1720
[   61.011123][ T5070]  vfs_write+0x28d/0xb20
[   61.015368][ T5070]  ? lockdep_hardirqs_on_prepare+0x43c/0x7a0
[   61.021343][ T5070]  ? file_end_write+0x250/0x250
[   61.026195][ T5070]  ? __fget_files+0x3cf/0x440
[   61.030866][ T5070]  ? __fdget_pos+0x1df/0x2f0
[   61.035467][ T5070]  ? ksys_write+0x7b/0x2c0
[   61.039904][ T5070]  ksys_write+0x1a0/0x2c0
[   61.044324][ T5070]  ? __ia32_sys_read+0x90/0x90
[   61.049089][ T5070]  ? syscall_enter_from_user_mode+0x32/0x230
[   61.055071][ T5070]  ? syscall_enter_from_user_mode+0x8c/0x230
[   61.061047][ T5070]  do_syscall_64+0x41/0xc0
[   61.065460][ T5070]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   61.071344][ T5070] RIP: 0033:0x7faa9c1cb379
[   61.075756][ T5070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 41 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   61.095356][ T5070] RSP: 002b:00007faa9c177208 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   61.103760][ T5070] RAX: ffffffffffffffda RBX: 00007faa9c2516e8 RCX: 00007faa9c1cb379
[   61.111723][ T5070] RDX: 0000000000000030 RSI: 0000000020000000 RDI: 0000000000000004
[   61.119686][ T5070] RBP: 00007faa9c2516e0 R08: 00007faa9c2516e0 R09: 0000000000000000
[   61.127655][ T5070] R10: 00007faa9c177210 R11: 0000000000000246 R12: 00007faa9c2516ec
[   61.135706][ T5070] R13: 00007ffeb9aef6ff R14: 00007faa9c177300 R15: 0000000000022000
[   61.143680][ T5070]  </TASK>
[   61.146847][ T5070] Kernel Offset: disabled
[   61.151210][ T5070] Rebooting in 86400 seconds..