./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor975311554 <...> Warning: Permanently added '10.128.0.30' (ED25519) to the list of known hosts. execve("./syz-executor975311554", ["./syz-executor975311554"], 0x7ffc96f1cde0 /* 10 vars */) = 0 brk(NULL) = 0x55558852b000 brk(0x55558852bd00) = 0x55558852bd00 arch_prctl(ARCH_SET_FS, 0x55558852b380) = 0 set_tid_address(0x55558852b650) = 5833 set_robust_list(0x55558852b660, 24) = 0 rseq(0x55558852bca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor975311554", 4096) = 27 getrandom("\x39\x70\x6b\xfb\xe9\x6f\x4d\x65", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558852bd00 brk(0x55558854cd00) = 0x55558854cd00 brk(0x55558854d000) = 0x55558854d000 mprotect(0x7f0d33de6000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5835 attached [pid 5835] set_robust_list(0x55558852b660, 24 [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5835 [pid 5835] <... set_robust_list resumed>) = 0 [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5835] mkdir("./syzkaller.MatSaq", 0700./strace-static-x86_64: Process 5836 attached [pid 5836] set_robust_list(0x55558852b660, 24 [pid 5835] <... mkdir resumed>) = 0 [pid 5836] <... set_robust_list resumed>) = 0 [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5836 [pid 5835] chmod("./syzkaller.MatSaq", 0777) = 0 [pid 5835] chdir("./syzkaller.MatSaq" [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5836] mkdir("./syzkaller.f78Ny7", 0700 [pid 5835] <... chdir resumed>) = 0 [pid 5835] mkdir("./0", 0777./strace-static-x86_64: Process 5837 attached ) = 0 [pid 5837] set_robust_list(0x55558852b660, 24 [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5837 [pid 5836] <... mkdir resumed>) = 0 [pid 5835] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5837] <... set_robust_list resumed>) = 0 [pid 5836] chmod("./syzkaller.f78Ny7", 0777) = 0 [pid 5835] <... openat resumed>) = 3 [pid 5836] chdir("./syzkaller.f78Ny7"./strace-static-x86_64: Process 5838 attached [pid 5837] getrandom( [pid 5835] ioctl(3, LOOP_CLR_FD [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5838 [pid 5838] set_robust_list(0x55558852b660, 24 [pid 5837] <... getrandom resumed>"\x51\xf1\xe2\x89\x06\x4d\x43\x16", 8, GRND_NONBLOCK) = 8 [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5836] <... chdir resumed>) = 0 [pid 5838] <... set_robust_list resumed>) = 0 [pid 5837] mkdir("./syzkaller.HqSOi5", 0700 [pid 5836] mkdir("./0", 0777 [pid 5835] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5838] mkdir("./syzkaller.p9JA66", 0700 [pid 5836] <... mkdir resumed>) = 0 [pid 5836] openat(AT_FDCWD, "/dev/loop1", O_RDWR./strace-static-x86_64: Process 5839 attached [pid 5838] <... mkdir resumed>) = 0 [pid 5837] <... mkdir resumed>) = 0 [pid 5835] close(3 [pid 5839] set_robust_list(0x55558852b660, 24) = 0 [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5839 [pid 5839] mkdir("./syzkaller.rz2Zzt", 0700 [pid 5838] chmod("./syzkaller.p9JA66", 0777 [pid 5836] <... openat resumed>) = 3 [pid 5837] chmod("./syzkaller.HqSOi5", 0777 [pid 5835] <... close resumed>) = 0 [pid 5833] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5839] <... mkdir resumed>) = 0 [pid 5838] <... chmod resumed>) = 0 [pid 5837] <... chmod resumed>) = 0 [pid 5836] ioctl(3, LOOP_CLR_FD [pid 5835] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5836] <... ioctl resumed>) = -1 ENXIO (No such device or address) ./strace-static-x86_64: Process 5841 attached ./strace-static-x86_64: Process 5840 attached [pid 5839] chmod("./syzkaller.rz2Zzt", 0777 [pid 5838] chdir("./syzkaller.p9JA66" [pid 5837] chdir("./syzkaller.HqSOi5" [pid 5836] close(3 [pid 5833] <... clone resumed>, child_tidptr=0x55558852b650) = 5840 [pid 5839] <... chmod resumed>) = 0 [pid 5838] <... chdir resumed>) = 0 [pid 5837] <... chdir resumed>) = 0 [pid 5836] <... close resumed>) = 0 [pid 5838] mkdir("./0", 0777 [pid 5837] mkdir("./0", 0777 [pid 5841] set_robust_list(0x55558852b660, 24 [pid 5840] set_robust_list(0x55558852b660, 24 [pid 5838] <... mkdir resumed>) = 0 [pid 5837] <... mkdir resumed>) = 0 [pid 5836] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5841] <... set_robust_list resumed>) = 0 [pid 5840] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5843 attached [pid 5841] chdir("./0" [pid 5840] getrandom( [pid 5839] chdir("./syzkaller.rz2Zzt" [pid 5840] <... getrandom resumed>"\x84\x70\x87\x32\xe4\xc9\xe8\x80", 8, GRND_NONBLOCK) = 8 [pid 5839] <... chdir resumed>) = 0 [pid 5840] mkdir("./syzkaller.wnkKO2", 0700 [pid 5839] mkdir("./0", 0777 [pid 5838] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5835] <... clone resumed>, child_tidptr=0x55558852b650) = 5841 [pid 5841] <... chdir resumed>) = 0 [pid 5840] <... mkdir resumed>) = 0 [pid 5838] <... openat resumed>) = 3 [pid 5837] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5843] set_robust_list(0x55558852b660, 24 [pid 5841] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5840] chmod("./syzkaller.wnkKO2", 0777 [pid 5843] <... set_robust_list resumed>) = 0 [pid 5841] <... prctl resumed>) = 0 [pid 5843] chdir("./0" [pid 5841] setpgid(0, 0 [pid 5840] <... chmod resumed>) = 0 [pid 5839] <... mkdir resumed>) = 0 [pid 5838] ioctl(3, LOOP_CLR_FD [pid 5837] <... openat resumed>) = 3 [pid 5838] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5836] <... clone resumed>, child_tidptr=0x55558852b650) = 5843 [pid 5838] close(3 [pid 5837] ioctl(3, LOOP_CLR_FD [pid 5838] <... close resumed>) = 0 [pid 5837] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5844 attached [pid 5839] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5837] close(3 [pid 5844] set_robust_list(0x55558852b660, 24 [pid 5839] <... openat resumed>) = 3 [pid 5837] <... close resumed>) = 0 [pid 5844] <... set_robust_list resumed>) = 0 [pid 5837] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] chdir("./0" [pid 5843] <... chdir resumed>) = 0 [pid 5841] <... setpgid resumed>) = 0 [pid 5840] chdir("./syzkaller.wnkKO2" [pid 5839] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5845 attached [pid 5844] <... chdir resumed>) = 0 [pid 5843] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] <... chdir resumed>) = 0 [pid 5839] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5837] <... clone resumed>, child_tidptr=0x55558852b650) = 5845 [pid 5843] <... prctl resumed>) = 0 [pid 5841] <... openat resumed>) = 3 [pid 5838] <... clone resumed>, child_tidptr=0x55558852b650) = 5844 [pid 5844] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5840] mkdir("./0", 0777 [pid 5843] setpgid(0, 0 [pid 5844] <... prctl resumed>) = 0 [pid 5839] close(3 [pid 5844] setpgid(0, 0 [pid 5839] <... close resumed>) = 0 [pid 5839] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] <... setpgid resumed>) = 0 [pid 5845] set_robust_list(0x55558852b660, 24 [pid 5843] <... setpgid resumed>) = 0 [pid 5841] write(3, "1000", 4 [pid 5840] <... mkdir resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5846 attached [pid 5845] <... set_robust_list resumed>) = 0 [pid 5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5841] <... write resumed>) = 4 [pid 5840] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] set_robust_list(0x55558852b660, 24 [pid 5841] close(3 [pid 5844] <... openat resumed>) = 3 [pid 5841] <... close resumed>) = 0 [pid 5840] <... openat resumed>) = 3 [pid 5841] symlink("/dev/binderfs", "./binderfs" [pid 5843] <... openat resumed>) = 3 [pid 5844] write(3, "1000", 4 [pid 5845] chdir("./0" [pid 5844] <... write resumed>) = 4 [pid 5844] close(3 [pid 5841] <... symlink resumed>) = 0 [pid 5844] <... close resumed>) = 0 [pid 5844] symlink("/dev/binderfs", "./binderfs"executing program ) = 0 [pid 5846] <... set_robust_list resumed>) = 0 [pid 5845] <... chdir resumed>) = 0 [pid 5843] write(3, "1000", 4 [pid 5841] write(1, "executing program\n", 18 [pid 5840] ioctl(3, LOOP_CLR_FD [pid 5839] <... clone resumed>, child_tidptr=0x55558852b650) = 5846 [pid 5845] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5843] <... write resumed>) = 4 [pid 5845] <... prctl resumed>) = 0 [pid 5843] close(3 [pid 5841] <... write resumed>) = 18 [pid 5845] setpgid(0, 0 [pid 5843] <... close resumed>) = 0 [pid 5846] chdir("./0" [pid 5845] <... setpgid resumed>) = 0 [pid 5843] symlink("/dev/binderfs", "./binderfs" [pid 5841] memfd_create("syzkaller", 0 executing program [pid 5845] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] write(1, "executing program\n", 18 [pid 5843] <... symlink resumed>) = 0 [pid 5840] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5841] <... memfd_create resumed>) = 3 [pid 5846] <... chdir resumed>) = 0 [pid 5844] <... write resumed>) = 18 executing program [pid 5846] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5845] <... openat resumed>) = 3 [pid 5844] memfd_create("syzkaller", 0 [pid 5843] write(1, "executing program\n", 18 [pid 5841] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] <... prctl resumed>) = 0 [pid 5845] write(3, "1000", 4 [pid 5843] <... write resumed>) = 18 [pid 5841] <... mmap resumed>) = 0x7f0d2b800000 [pid 5846] setpgid(0, 0 [pid 5840] close(3 [pid 5845] <... write resumed>) = 4 [pid 5840] <... close resumed>) = 0 [pid 5845] close(3 [pid 5844] <... memfd_create resumed>) = 3 [pid 5840] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] memfd_create("syzkaller", 0 [pid 5846] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5847 attached [pid 5844] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0d2b800000 [pid 5845] <... close resumed>) = 0 [pid 5847] set_robust_list(0x55558852b660, 24 [pid 5846] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5845] symlink("/dev/binderfs", "./binderfs" [pid 5843] <... memfd_create resumed>) = 3 [pid 5847] <... set_robust_list resumed>) = 0 [pid 5847] chdir("./0" [pid 5840] <... clone resumed>, child_tidptr=0x55558852b650) = 5847 [pid 5847] <... chdir resumed>) = 0 [pid 5847] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5847] setpgid(0, 0) = 0 [pid 5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5845] <... symlink resumed>) = 0 [pid 5843] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5847] write(3, "1000", 4) = 4 executing program [pid 5847] close(3) = 0 [pid 5847] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5847] write(1, "executing program\n", 18) = 18 [pid 5847] memfd_create("syzkaller", 0) = 3 [pid 5847] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0d2b800000 executing program [pid 5846] <... openat resumed>) = 3 [pid 5845] write(1, "executing program\n", 18 [pid 5843] <... mmap resumed>) = 0x7f0d2b800000 [pid 5846] write(3, "1000", 4 [pid 5845] <... write resumed>) = 18 executing program [pid 5846] <... write resumed>) = 4 [pid 5845] memfd_create("syzkaller", 0 [pid 5846] close(3) = 0 [pid 5846] symlink("/dev/binderfs", "./binderfs" [pid 5845] <... memfd_create resumed>) = 3 [pid 5846] <... symlink resumed>) = 0 [pid 5845] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5846] write(1, "executing program\n", 18 [pid 5845] <... mmap resumed>) = 0x7f0d2b800000 [pid 5846] <... write resumed>) = 18 [pid 5846] memfd_create("syzkaller", 0) = 3 [pid 5846] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f0d2b800000 [pid 5844] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5847] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5841] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5843] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5846] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5845] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5844] <... write resumed>) = 16777216 [pid 5847] <... write resumed>) = 16777216 [pid 5844] munmap(0x7f0d2b800000, 138412032 [pid 5841] <... write resumed>) = 16777216 [pid 5846] <... write resumed>) = 16777216 [pid 5843] <... write resumed>) = 16777216 [pid 5841] munmap(0x7f0d2b800000, 138412032 [pid 5847] munmap(0x7f0d2b800000, 138412032 [pid 5846] munmap(0x7f0d2b800000, 138412032 [pid 5845] <... write resumed>) = 16777216 [pid 5843] munmap(0x7f0d2b800000, 138412032 [pid 5844] <... munmap resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5847] <... munmap resumed>) = 0 [pid 5845] munmap(0x7f0d2b800000, 138412032 [pid 5841] <... munmap resumed>) = 0 [pid 5844] ioctl(4, LOOP_SET_FD, 3 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5846] <... munmap resumed>) = 0 [pid 5843] <... munmap resumed>) = 0 [pid 5841] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5847] <... openat resumed>) = 4 [pid 5843] <... openat resumed>) = 4 [pid 5843] ioctl(4, LOOP_SET_FD, 3 [pid 5841] <... openat resumed>) = 4 [pid 5846] <... openat resumed>) = 4 [pid 5847] ioctl(4, LOOP_SET_FD, 3 [pid 5846] ioctl(4, LOOP_SET_FD, 3 [pid 5845] <... munmap resumed>) = 0 [pid 5844] <... ioctl resumed>) = 0 [pid 5843] <... ioctl resumed>) = 0 [pid 5841] ioctl(4, LOOP_SET_FD, 3 [pid 5847] <... ioctl resumed>) = 0 [pid 5847] close(3) = 0 [pid 5847] close(4) = 0 [pid 5847] mkdir("./file0", 0777) = 0 [pid 5847] mount("/dev/loop5", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5846] <... ioctl resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5844] close(3 [pid 5843] close(3 [pid 5846] close(3 [pid 5845] <... openat resumed>) = 4 [pid 5844] <... close resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5841] <... ioctl resumed>) = 0 [pid 5846] <... close resumed>) = 0 [pid 5845] ioctl(4, LOOP_SET_FD, 3 [pid 5844] close(4 [pid 5843] close(4 [pid 5841] close(3 [ 90.232553][ T5844] loop3: detected capacity change from 0 to 32768 [ 90.243695][ T5843] loop1: detected capacity change from 0 to 32768 [ 90.244480][ T5847] loop5: detected capacity change from 0 to 32768 [ 90.263509][ T5841] loop0: detected capacity change from 0 to 32768 [ 90.271057][ T5846] loop4: detected capacity change from 0 to 32768 [pid 5846] close(4) = 0 [pid 5844] <... close resumed>) = 0 [pid 5843] <... close resumed>) = 0 [pid 5841] <... close resumed>) = 0 [pid 5846] mkdir("./file0", 0777 [pid 5844] mkdir("./file0", 0777 [pid 5843] mkdir("./file0", 0777 [pid 5841] close(4 [pid 5846] <... mkdir resumed>) = 0 [pid 5845] <... ioctl resumed>) = 0 [pid 5844] <... mkdir resumed>) = 0 [pid 5847] <... mount resumed>) = 0 [pid 5846] mount("/dev/loop4", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5845] close(3 [pid 5844] mount("/dev/loop3", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5843] <... mkdir resumed>) = 0 [pid 5841] <... close resumed>) = 0 [pid 5847] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5845] <... close resumed>) = 0 [pid 5841] mkdir("./file0", 0777 [pid 5847] <... openat resumed>) = 3 [pid 5845] close(4 [pid 5847] chdir("./file0") = 0 [pid 5845] <... close resumed>) = 0 [pid 5841] <... mkdir resumed>) = 0 [pid 5847] openat(AT_FDCWD, "/dev/loop5", O_RDWR [pid 5845] mkdir("./file0", 0777 [pid 5841] mount("/dev/loop0", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5847] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5847] exit_group(0 [pid 5845] <... mkdir resumed>) = 0 [pid 5847] <... exit_group resumed>) = ? [pid 5847] +++ exited with 0 +++ [pid 5845] mount("/dev/loop2", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5846] <... mount resumed>) = 0 [pid 5840] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5847, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=22 /* 0.22 s */} --- [pid 5846] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5845] <... mount resumed>) = 0 [pid 5844] <... mount resumed>) = 0 [pid 5843] mount("/dev/loop1", "./file0", "jfs", MS_NOSUID|MS_NOATIME|MS_I_VERSION|MS_STRICTATIME, "discard,iocharset=cp737,uid=0x0000000000000000,noquota,nointegrity,grpquota,iocharset=macromanian,ui"... [pid 5840] restart_syscall(<... resuming interrupted clone ...> [pid 5846] <... openat resumed>) = 3 [pid 5845] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5844] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5840] <... restart_syscall resumed>) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5844] <... openat resumed>) = 3 [ 90.284710][ T5845] loop2: detected capacity change from 0 to 32768 [pid 5845] chdir("./file0" [pid 5844] chdir("./file0" [pid 5846] chdir("./file0" [pid 5845] <... chdir resumed>) = 0 [pid 5840] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5846] <... chdir resumed>) = 0 [pid 5845] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5844] <... chdir resumed>) = 0 [pid 5841] <... mount resumed>) = 0 [pid 5845] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5844] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5841] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5845] exit_group(0 [pid 5844] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5841] <... openat resumed>) = 3 [pid 5846] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5841] chdir("./file0" [pid 5840] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5846] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5845] <... exit_group resumed>) = ? [pid 5844] exit_group(0 [pid 5841] <... chdir resumed>) = 0 [pid 5840] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5846] exit_group(0 [pid 5840] <... openat resumed>) = 3 [pid 5846] <... exit_group resumed>) = ? [pid 5841] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5840] newfstatat(3, "", [pid 5845] +++ exited with 0 +++ [pid 5844] <... exit_group resumed>) = ? [pid 5841] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5840] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5846] +++ exited with 0 +++ [pid 5844] +++ exited with 0 +++ [pid 5841] exit_group(0 [pid 5840] getdents64(3, [pid 5837] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5845, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=24 /* 0.24 s */} --- [pid 5841] <... exit_group resumed>) = ? [pid 5837] restart_syscall(<... resuming interrupted clone ...> [pid 5841] +++ exited with 0 +++ [pid 5840] <... getdents64 resumed>0x55558852c6f0 /* 4 entries */, 32768) = 112 [pid 5839] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5846, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=23 /* 0.23 s */} --- [pid 5838] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5844, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=30 /* 0.30 s */} --- [pid 5837] <... restart_syscall resumed>) = 0 [pid 5839] restart_syscall(<... resuming interrupted clone ...> [pid 5838] restart_syscall(<... resuming interrupted clone ...> [pid 5835] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5841, si_uid=0, si_status=0, si_utime=3 /* 0.03 s */, si_stime=27 /* 0.27 s */} --- [pid 5840] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5835] restart_syscall(<... resuming interrupted clone ...> [pid 5843] <... mount resumed>) = 0 [pid 5839] <... restart_syscall resumed>) = 0 [pid 5838] <... restart_syscall resumed>) = 0 [pid 5837] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument) [pid 5843] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY [pid 5837] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... openat resumed>) = 3 [pid 5839] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5838] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5837] <... openat resumed>) = 3 [pid 5835] <... restart_syscall resumed>) = 0 [pid 5843] chdir("./file0" [pid 5839] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5838] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5837] newfstatat(3, "", [pid 5843] <... chdir resumed>) = 0 [pid 5839] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5838] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5837] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5838] <... openat resumed>) = 3 [pid 5837] getdents64(3, [pid 5843] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5839] <... openat resumed>) = 3 [pid 5838] newfstatat(3, "", [pid 5837] <... getdents64 resumed>0x55558852c6f0 /* 4 entries */, 32768) = 112 [pid 5839] newfstatat(3, "", [pid 5838] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5837] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5839] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5838] getdents64(3, [pid 5835] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5843] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5838] <... getdents64 resumed>0x55558852c6f0 /* 4 entries */, 32768) = 112 [pid 5835] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5843] exit_group(0 [pid 5839] getdents64(3, [pid 5838] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5835] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5843] <... exit_group resumed>) = ? [pid 5835] <... openat resumed>) = 3 [pid 5843] +++ exited with 0 +++ [pid 5835] newfstatat(3, "", [pid 5839] <... getdents64 resumed>0x55558852c6f0 /* 4 entries */, 32768) = 112 [pid 5839] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5835] <... newfstatat resumed>{st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [pid 5836] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5843, si_uid=0, si_status=0, si_utime=5 /* 0.05 s */, si_stime=22 /* 0.22 s */} --- [pid 5835] getdents64(3, 0x55558852c6f0 /* 4 entries */, 32768) = 112 [pid 5836] umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5835] umount2("./0/file0", MNT_FORCE|UMOUNT_NOFOLLOW [pid 5836] <... umount2 resumed>) = -1 EINVAL (Invalid argument) [pid 5836] openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5836] newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0 [ 90.408581][ T5837] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000006: 0000 [#1] SMP KASAN NOPTI [ 90.420692][ T5837] KASAN: null-ptr-deref in range [0x0000000000000030-0x0000000000000037] [ 90.429110][ T5837] CPU: 1 UID: 0 PID: 5837 Comm: syz-executor975 Not tainted 6.16.0-rc1-syzkaller-00101-g27605c8c0f69 #0 PREEMPT(full) [ 90.441521][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 90.451579][ T5837] RIP: 0010:lmLogSync+0x1f1/0x9d0 [ 90.456644][ T5837] Code: 26 80 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 9d 9d e3 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 81 9d e3 fe 49 8b 3f e8 79 e7 b6 fe [ 90.476249][ T5837] RSP: 0018:ffffc900034f7a80 EFLAGS: 00010216 [ 90.482321][ T5837] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: ffff888032a8bc00 [ 90.490292][ T5837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 90.498264][ T5837] RBP: ffffc900034f7b88 R08: ffffc900034f79df R09: ffffc900034f7868 [ 90.506234][ T5837] R10: dffffc0000000000 R11: fffff5200069ef3c R12: ffff8880336dd000 [ 90.514206][ T5837] R13: dffffc0000000000 R14: ffff8880267adc38 R15: 0000000000000030 [ 90.522175][ T5837] FS: 000055558852b380(0000) GS:ffff888125d52000(0000) knlGS:0000000000000000 [ 90.531101][ T5837] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 90.537677][ T5837] CR2: 00007fc97c58d000 CR3: 0000000073df9000 CR4: 0000000000350ef0 [ 90.545643][ T5837] Call Trace: [ 90.548919][ T5837] [ 90.551844][ T5837] ? __pfx___mutex_lock+0x10/0x10 [ 90.556877][ T5837] ? __pfx_lmLogSync+0x10/0x10 [ 90.561654][ T5837] ? __pfx_dquot_writeback_dquots+0x10/0x10 [ 90.567546][ T5837] ? __pfx___writeback_inodes_sb_nr+0x10/0x10 [ 90.573651][ T5837] jfs_syncpt+0x7b/0x90 [ 90.577854][ T5837] jfs_sync_fs+0x87/0xa0 [ 90.582126][ T5837] sync_filesystem+0xee/0x230 [ 90.586828][ T5837] generic_shutdown_super+0x6f/0x2c0 [ 90.592265][ T5837] kill_block_super+0x44/0x90 [ 90.597033][ T5837] deactivate_locked_super+0xbc/0x130 [ 90.602417][ T5837] cleanup_mnt+0x425/0x4c0 [ 90.606839][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 90.612473][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.617752][ T5837] task_work_run+0x1d4/0x260 [ 90.622350][ T5837] ? __pfx_task_work_run+0x10/0x10 [ 90.627467][ T5837] ? __x64_sys_umount+0x122/0x160 [ 90.632493][ T5837] ptrace_notify+0x281/0x2c0 [ 90.637089][ T5837] ? __pfx_ptrace_notify+0x10/0x10 [ 90.642221][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 90.647863][ T5837] ? __x64_sys_umount+0x122/0x160 [ 90.652971][ T5837] ? __pfx___x64_sys_umount+0x10/0x10 [ 90.658337][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 90.663974][ T5837] syscall_exit_work+0xc6/0x1d0 [ 90.668833][ T5837] do_syscall_64+0x2ad/0x3b0 [ 90.673428][ T5837] ? lockdep_hardirqs_on+0x9c/0x150 [ 90.678665][ T5837] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.684730][ T5837] ? srso_alias_return_thunk+0x5/0xfbef5 [ 90.690361][ T5837] ? exc_page_fault+0x9f/0xf0 [ 90.695047][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 90.700942][ T5837] RIP: 0033:0x7f0d33d6d5f7 [ 90.705355][ T5837] Code: 07 00 48 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 b8 [ 90.724957][ T5837] RSP: 002b:00007fff3bb71658 EFLAGS: 00000202 ORIG_RAX: 00000000000000a6 [ 90.733373][ T5837] RAX: 0000000000000000 RBX: 0000000000015cd2 RCX: 00007f0d33d6d5f7 [ 90.741775][ T5837] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff3bb71710 [ 90.749741][ T5837] RBP: 00007fff3bb71710 R08: 0000000000000000 R09: 0000000000000000 [pid 5836] getdents64(3, 0x55558852c6f0 /* 4 entries */, 32768) = 112 [ 90.757706][ T5837] R10: 00000000ffffffff R11: 0000000000000202 R12: 00007fff3bb72780 [ 90.765671][ T5837] R13: 000055558852c6c0 R14: 431bde82d7b634db R15: 00007fff3bb727a0 [ 90.773653][ T5837] [ 90.776666][ T5837] Modules linked in: [ 90.780920][ T5837] ---[ end trace 0000000000000000 ]--- [ 90.894195][ T5837] RIP: 0010:lmLogSync+0x1f1/0x9d0 [ 90.899305][ T5837] Code: 26 80 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 9d 9d e3 fe 4d 8b 3f 49 83 c7 30 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 81 9d e3 fe 49 8b 3f e8 79 e7 b6 fe [ 90.979566][ T5837] RSP: 0018:ffffc900034f7a80 EFLAGS: 00010216 [ 90.985699][ T5837] RAX: 0000000000000006 RBX: dffffc0000000000 RCX: ffff888032a8bc00 [ 91.010092][ T5837] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 91.018099][ T5837] RBP: ffffc900034f7b88 R08: ffffc900034f79df R09: ffffc900034f7868 [ 91.027141][ T5837] R10: dffffc0000000000 R11: fffff5200069ef3c R12: ffff8880336dd000 [ 91.035553][ T5837] R13: dffffc0000000000 R14: ffff8880267adc38 R15: 0000000000000030 [ 91.043635][ T5837] FS: 000055558852b380(0000) GS:ffff888125c52000(0000) knlGS:0000000000000000 [ 91.052982][ T5837] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 91.059640][ T5837] CR2: 00007fc97c595000 CR3: 0000000073df9000 CR4: 0000000000350ef0 [ 91.067642][ T5837] Kernel panic - not syncing: Fatal exception [ 91.073906][ T5837] Kernel Offset: disabled [ 91.078219][ T5837] Rebooting in 86400 seconds..