./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1487683832 <...> Warning: Permanently added '10.128.1.23' (ED25519) to the list of known hosts. execve("./syz-executor1487683832", ["./syz-executor1487683832"], 0x7fffeaacdcf0 /* 10 vars */) = 0 brk(NULL) = 0x5555754c1000 brk(0x5555754c1d00) = 0x5555754c1d00 arch_prctl(ARCH_SET_FS, 0x5555754c1380) = 0 set_tid_address(0x5555754c1650) = 5779 set_robust_list(0x5555754c1660, 24) = 0 rseq(0x5555754c1ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1487683832", 4096) = 28 getrandom("\xff\x69\x0b\xbf\xff\x10\xa8\xf9", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555754c1d00 brk(0x5555754e2d00) = 0x5555754e2d00 brk(0x5555754e3000) = 0x5555754e3000 mprotect(0x7f5d6bda2000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = 5780 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = 5781 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5781 attached ./strace-static-x86_64: Process 5780 attached ./strace-static-x86_64: Process 5782 attached , child_tidptr=0x5555754c1650) = 5782 [pid 5780] set_robust_list(0x5555754c1660, 24 [pid 5781] set_robust_list(0x5555754c1660, 24 [pid 5780] <... set_robust_list resumed>) = 0 [pid 5781] <... set_robust_list resumed>) = 0 [pid 5779] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5782] set_robust_list(0x5555754c1660, 24 [pid 5781] unshare(CLONE_NEWPID [pid 5780] unshare(CLONE_NEWPID [pid 5782] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5783 attached [pid 5782] unshare(CLONE_NEWPID [pid 5781] <... unshare resumed>) = 0 [pid 5780] <... unshare resumed>) = 0 [pid 5782] <... unshare resumed>) = 0 [pid 5782] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5783] set_robust_list(0x5555754c1660, 24 [pid 5781] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5780] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5784 attached [pid 5779] <... clone resumed>, child_tidptr=0x5555754c1650) = 5783 [pid 5779] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5784] set_robust_list(0x5555754c1660, 24 [pid 5783] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5785 attached [pid 5784] <... set_robust_list resumed>) = 0 [pid 5782] <... clone resumed>, child_tidptr=0x5555754c1650) = 5784 [pid 5784] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5785] set_robust_list(0x5555754c1660, 24 [pid 5784] <... prctl resumed>) = 0 [pid 5785] <... set_robust_list resumed>) = 0 [pid 5784] getppid() = 0 [pid 5783] unshare(CLONE_NEWPID./strace-static-x86_64: Process 5786 attached ./strace-static-x86_64: Process 5787 attached [pid 5779] <... clone resumed>, child_tidptr=0x5555754c1650) = 5785 [pid 5786] set_robust_list(0x5555754c1660, 24 [pid 5785] unshare(CLONE_NEWPID [pid 5784] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 5783] <... unshare resumed>) = 0 [pid 5787] set_robust_list(0x5555754c1660, 24 [pid 5785] <... unshare resumed>) = 0 [pid 5784] <... prlimit64 resumed>NULL) = 0 [pid 5784] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 5783] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5787] <... set_robust_list resumed>) = 0 [pid 5785] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5784] <... prlimit64 resumed>NULL) = 0 [pid 5787] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5786] <... set_robust_list resumed>) = 0 [pid 5781] <... clone resumed>, child_tidptr=0x5555754c1650) = 5786 [pid 5780] <... clone resumed>, child_tidptr=0x5555754c1650) = 5787 [pid 5784] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5787] <... prctl resumed>) = 0 [pid 5784] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 5787] getppid( [pid 5784] <... prlimit64 resumed>NULL) = 0 [pid 5784] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 5787] <... getppid resumed>) = 0 [pid 5784] <... prlimit64 resumed>NULL) = 0 [pid 5787] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 5784] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, ./strace-static-x86_64: Process 5788 attached [pid 5787] <... prlimit64 resumed>NULL) = 0 [pid 5785] <... clone resumed>, child_tidptr=0x5555754c1650) = 5788 [pid 5784] <... prlimit64 resumed>NULL) = 0 [pid 5788] set_robust_list(0x5555754c1660, 24 [pid 5787] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 5784] unshare(CLONE_NEWNS./strace-static-x86_64: Process 5789 attached [pid 5788] <... set_robust_list resumed>) = 0 [pid 5787] <... prlimit64 resumed>NULL) = 0 [pid 5786] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5784] <... unshare resumed>) = 0 [pid 5788] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5783] <... clone resumed>, child_tidptr=0x5555754c1650) = 5789 [pid 5789] set_robust_list(0x5555754c1660, 24 [pid 5788] <... prctl resumed>) = 0 [pid 5787] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 5786] <... prctl resumed>) = 0 [pid 5789] <... set_robust_list resumed>) = 0 [pid 5788] getppid( [pid 5787] <... prlimit64 resumed>NULL) = 0 [pid 5788] <... getppid resumed>) = 0 [pid 5787] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 5784] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 5789] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5788] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 5787] <... prlimit64 resumed>NULL) = 0 [pid 5786] getppid( [pid 5784] <... mount resumed>) = 0 [pid 5789] <... prctl resumed>) = 0 [pid 5788] <... prlimit64 resumed>NULL) = 0 [pid 5787] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 5786] <... getppid resumed>) = 0 [pid 5787] <... prlimit64 resumed>NULL) = 0 [pid 5788] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 5787] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5788] <... prlimit64 resumed>NULL) = 0 [pid 5787] unshare(CLONE_NEWNS [pid 5786] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 5789] getppid( [pid 5788] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 5787] <... unshare resumed>) = 0 [pid 5784] unshare(CLONE_NEWIPC [pid 5788] <... prlimit64 resumed>NULL) = 0 [pid 5789] <... getppid resumed>) = 0 [pid 5788] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5789] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, [pid 5786] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5788] <... prlimit64 resumed>NULL) = 0 [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5784] <... unshare resumed>) = 0 [pid 5789] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, [pid 5788] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5787] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5788] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 5787] <... mount resumed>) = 0 [pid 5786] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 5784] unshare(CLONE_NEWCGROUP [pid 5788] <... prlimit64 resumed>NULL) = 0 [pid 5788] unshare(CLONE_NEWNS [pid 5787] unshare(CLONE_NEWIPC [pid 5784] <... unshare resumed>) = 0 [pid 5789] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, [pid 5788] <... unshare resumed>) = 0 [pid 5787] <... unshare resumed>) = 0 [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5784] unshare(CLONE_NEWUTS [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5784] <... unshare resumed>) = 0 [pid 5784] unshare(CLONE_SYSVSEM [pid 5787] unshare(CLONE_NEWCGROUP [pid 5784] <... unshare resumed>) = 0 [pid 5789] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 5786] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, [pid 5788] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 5787] <... unshare resumed>) = 0 [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5788] <... mount resumed>) = 0 [pid 5787] unshare(CLONE_NEWUTS [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 5788] unshare(CLONE_NEWIPC [pid 5787] <... unshare resumed>) = 0 [pid 5789] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 5788] <... unshare resumed>) = 0 [pid 5787] unshare(CLONE_SYSVSEM [pid 5786] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, [pid 5784] <... openat resumed>) = 3 [pid 5787] <... unshare resumed>) = 0 [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 5788] unshare(CLONE_NEWCGROUP [pid 5789] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 5788] <... unshare resumed>) = 0 [pid 5787] <... openat resumed>) = 3 [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5788] unshare(CLONE_NEWUTS [pid 5784] write(3, "16777216", 8 [pid 5788] <... unshare resumed>) = 0 [pid 5788] unshare(CLONE_SYSVSEM [pid 5787] write(3, "16777216", 8 [pid 5784] <... write resumed>) = 8 [pid 5789] <... prlimit64 resumed>NULL) = 0 [pid 5788] <... unshare resumed>) = 0 [pid 5787] <... write resumed>) = 8 [pid 5786] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, [pid 5784] close(3 [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 5787] close(3 [pid 5784] <... close resumed>) = 0 [pid 5789] unshare(CLONE_NEWNS [pid 5786] <... prlimit64 resumed>NULL) = 0 [pid 5788] <... openat resumed>) = 3 [pid 5787] <... close resumed>) = 0 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 5789] <... unshare resumed>) = 0 [pid 5788] write(3, "16777216", 8 [pid 5787] <... openat resumed>) = 3 [pid 5786] unshare(CLONE_NEWNS [pid 5784] <... openat resumed>) = 3 [pid 5788] <... write resumed>) = 8 [pid 5788] close(3 [pid 5787] write(3, "536870912", 9 [pid 5788] <... close resumed>) = 0 [pid 5787] <... write resumed>) = 9 [pid 5787] close(3) = 0 [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 5786] <... unshare resumed>) = 0 [pid 5788] <... openat resumed>) = 3 [pid 5784] write(3, "536870912", 9 [pid 5789] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 5788] write(3, "536870912", 9 [pid 5786] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL [pid 5784] <... write resumed>) = 9 [pid 5788] <... write resumed>) = 9 [pid 5787] <... openat resumed>) = 3 [pid 5784] close(3 [pid 5788] close(3 [pid 5787] write(3, "1024", 4 [pid 5784] <... close resumed>) = 0 [pid 5789] <... mount resumed>) = 0 [pid 5788] <... close resumed>) = 0 [pid 5787] <... write resumed>) = 4 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 5789] unshare(CLONE_NEWIPC [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 5787] close(3 [pid 5786] <... mount resumed>) = 0 [pid 5784] <... openat resumed>) = 3 [pid 5788] <... openat resumed>) = 3 [pid 5787] <... close resumed>) = 0 [pid 5784] write(3, "1024", 4 [pid 5789] <... unshare resumed>) = 0 [pid 5786] unshare(CLONE_NEWIPC [pid 5784] <... write resumed>) = 4 [pid 5788] write(3, "1024", 4 [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 5784] close(3 [pid 5788] <... write resumed>) = 4 [pid 5787] <... openat resumed>) = 3 [pid 5784] <... close resumed>) = 0 [pid 5788] close(3 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 5788] <... close resumed>) = 0 [pid 5784] <... openat resumed>) = 3 [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5787] write(3, "8192", 4 [pid 5784] write(3, "8192", 4 [pid 5789] unshare(CLONE_NEWCGROUP [pid 5787] <... write resumed>) = 4 [pid 5786] <... unshare resumed>) = 0 [pid 5784] <... write resumed>) = 4 [pid 5788] write(3, "8192", 4 [pid 5787] close(3 [pid 5784] close(3 [pid 5788] <... write resumed>) = 4 [pid 5787] <... close resumed>) = 0 [pid 5784] <... close resumed>) = 0 [pid 5789] <... unshare resumed>) = 0 [pid 5788] close(3 [pid 5786] unshare(CLONE_NEWCGROUP [pid 5788] <... close resumed>) = 0 [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 5789] unshare(CLONE_NEWUTS [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC [pid 5787] <... openat resumed>) = 3 [pid 5786] <... unshare resumed>) = 0 [pid 5784] <... openat resumed>) = 3 [pid 5788] <... openat resumed>) = 3 [pid 5788] write(3, "1024", 4 [pid 5786] unshare(CLONE_NEWUTS [pid 5789] <... unshare resumed>) = 0 [pid 5788] <... write resumed>) = 4 [pid 5786] <... unshare resumed>) = 0 [pid 5784] write(3, "1024", 4 [pid 5788] close(3 [pid 5787] write(3, "1024", 4 [pid 5784] <... write resumed>) = 4 [pid 5788] <... close resumed>) = 0 [pid 5787] <... write resumed>) = 4 [pid 5784] close(3 [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 5789] unshare(CLONE_SYSVSEM [pid 5788] <... openat resumed>) = 3 [pid 5787] close(3 [pid 5786] unshare(CLONE_SYSVSEM [pid 5784] <... close resumed>) = 0 [pid 5789] <... unshare resumed>) = 0 [pid 5786] <... unshare resumed>) = 0 [pid 5787] <... close resumed>) = 0 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 5784] <... openat resumed>) = 3 [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC [pid 5787] <... openat resumed>) = 3 [pid 5786] <... openat resumed>) = 3 [pid 5788] write(3, "1024", 4 [pid 5787] write(3, "1024", 4 [pid 5784] write(3, "1024", 4 [pid 5789] <... openat resumed>) = 3 [pid 5788] <... write resumed>) = 4 [pid 5787] <... write resumed>) = 4 [pid 5784] <... write resumed>) = 4 [pid 5788] close(3 [pid 5787] close(3 [pid 5784] close(3 [pid 5789] write(3, "16777216", 8 [pid 5788] <... close resumed>) = 0 [pid 5786] write(3, "16777216", 8 [pid 5788] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 5787] <... close resumed>) = 0 [pid 5784] <... close resumed>) = 0 [pid 5789] <... write resumed>) = 8 [pid 5788] <... openat resumed>) = 3 [pid 5787] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 5786] <... write resumed>) = 8 [pid 5784] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 5787] <... openat resumed>) = 3 [pid 5789] close(3 [pid 5786] close(3 [pid 5784] <... openat resumed>) = 3 [pid 5787] write(3, "1024 1048576 500 1024", 21 [pid 5788] write(3, "1024 1048576 500 1024", 21 [pid 5787] <... write resumed>) = 21 [pid 5784] write(3, "1024 1048576 500 1024", 21 [pid 5789] <... close resumed>) = 0 [pid 5788] <... write resumed>) = 21 [pid 5787] close(3 [pid 5786] <... close resumed>) = 0 [pid 5784] <... write resumed>) = 21 [pid 5788] close(3 [pid 5787] <... close resumed>) = 0 [pid 5784] close(3 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 5788] <... close resumed>) = 0 [pid 5787] getpid( [pid 5784] <... close resumed>) = 0 [pid 5788] getpid( [pid 5787] <... getpid resumed>) = 1 [pid 5784] getpid( [pid 5788] <... getpid resumed>) = 1 [pid 5787] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 5784] <... getpid resumed>) = 1 [pid 5788] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, [pid 5787] <... capget resumed>{effective=1<{effective=1< [pid 5788] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5787] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5784] <... capget resumed>{effective=1<) = 0 [pid 5787] <... capset resumed>) = 0 [pid 5784] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5788] unshare(CLONE_NEWNET [pid 5789] <... openat resumed>) = 3 [pid 5787] unshare(CLONE_NEWNET [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC [pid 5784] <... capset resumed>) = 0 [pid 5789] write(3, "536870912", 9) = 9 [pid 5786] <... openat resumed>) = 3 [pid 5789] close(3 [pid 5786] write(3, "536870912", 9 [pid 5789] <... close resumed>) = 0 [pid 5786] <... write resumed>) = 9 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC [pid 5786] close(3 [pid 5789] <... openat resumed>) = 3 [pid 5789] write(3, "1024", 4 [pid 5786] <... close resumed>) = 0 [pid 5789] <... write resumed>) = 4 [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] close(3 [pid 5786] write(3, "1024", 4 [pid 5789] <... close resumed>) = 0 [pid 5786] <... write resumed>) = 4 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC [pid 5786] close(3 [pid 5789] <... openat resumed>) = 3 [pid 5786] <... close resumed>) = 0 [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] write(3, "8192", 4) = 4 [pid 5789] close(3) = 0 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] write(3, "1024", 4) = 4 [pid 5789] close(3) = 0 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 5786] write(3, "8192", 4 [pid 5789] <... openat resumed>) = 3 [pid 5786] <... write resumed>) = 4 [pid 5786] close(3) = 0 [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] write(3, "1024", 4 [pid 5786] write(3, "1024", 4 [pid 5789] <... write resumed>) = 4 [pid 5786] <... write resumed>) = 4 [pid 5789] close(3 [pid 5786] close(3 [pid 5789] <... close resumed>) = 0 [pid 5786] <... close resumed>) = 0 [pid 5789] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC [pid 5789] <... openat resumed>) = 3 [pid 5786] <... openat resumed>) = 3 [pid 5786] write(3, "1024", 4 [pid 5789] write(3, "1024 1048576 500 1024", 21 [pid 5786] <... write resumed>) = 4 [pid 5789] <... write resumed>) = 21 [pid 5786] close(3 [pid 5789] close(3) = 0 [pid 5789] getpid() = 1 [pid 5789] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5786] <... close resumed>) = 0 [pid 5789] <... capset resumed>) = 0 [pid 5786] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC [pid 5789] unshare(CLONE_NEWNET [pid 5786] <... openat resumed>) = 3 [pid 5786] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5786] close(3) = 0 [pid 5786] getpid() = 1 [pid 5786] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5784] unshare(CLONE_NEWNET [pid 5788] <... unshare resumed>) = 0 [pid 5788] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 5788] write(3, "0 65535", 7) = 7 [pid 5788] close(3) = 0 [pid 5788] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5788] write(3, "100000", 6) = 6 [pid 5788] close(3) = 0 [pid 5788] mkdir("./syz-tmp", 0777) = 0 [pid 5788] mount("", "./syz-tmp", "tmpfs", 0, NULL) = 0 [pid 5788] mkdir("./syz-tmp/newroot", 0777) = 0 [pid 5788] mkdir("./syz-tmp/newroot/dev", 0700) = 0 [pid 5788] mount("/dev", "./syz-tmp/newroot/dev", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0 [pid 5788] mkdir("./syz-tmp/newroot/proc", 0700) = 0 [pid 5788] mount("syz-proc", "./syz-tmp/newroot/proc", "proc", 0, NULL) = 0 [pid 5788] mkdir("./syz-tmp/newroot/selinux", 0700) = 0 [pid 5788] mount("/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory) [pid 5788] mount("/sys/fs/selinux", "./syz-tmp/newroot/selinux", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory) [pid 5788] mkdir("./syz-tmp/newroot/sys", 0700) = 0 [pid 5788] mount("/sys", "./syz-tmp/newroot/sys", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0 [pid 5788] mount("/sys/kernel/debug", "./syz-tmp/newroot/sys/kernel/debug", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0 [pid 5788] mount("/sys/fs/smackfs", "./syz-tmp/newroot/sys/fs/smackfs", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = -1 ENOENT (No such file or directory) [pid 5788] mount("/proc/sys/fs/binfmt_misc", "./syz-tmp/newroot/proc/sys/fs/binfmt_misc", NULL, MS_BIND|MS_REC|MS_PRIVATE, NULL) = 0 [pid 5788] mkdir("./syz-tmp/pivot", 0777) = 0 [pid 5788] pivot_root("./syz-tmp", "./syz-tmp/pivot") = 0 [pid 5788] chdir("/") = 0 [pid 5788] umount2("./pivot", MNT_DETACH) = 0 [pid 5788] chroot("./newroot") = 0 [pid 5788] chdir("/") = 0 [pid 5788] mkdir("/dev/gadgetfs", 0777) = 0 [pid 5788] mount("gadgetfs", "/dev/gadgetfs", "gadgetfs", 0, NULL) = 0 [pid 5788] mkdir("/dev/binderfs", 0777) = 0 [pid 5788] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0 [pid 5788] symlink("/dev/binderfs", "./binderfs") = 0 [pid 5788] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5788] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5788] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5788] close(3) = 0 [pid 5788] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5792 attached , child_tidptr=0x5555754c1650) = 2 [pid 5792] set_robust_list(0x5555754c1660, 24) = 0 [pid 5792] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5792] setpgid(0, 0) = 0 [pid 5792] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5792] write(3, "1000", 4) = 4 [pid 5792] close(3) = 0 [pid 5792] write(1, "executing program\n", 18executing program ) = 18 [pid 5792] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=8, rlim_max=8589934731}, NULL) = 0 [pid 5792] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5792] memfd_create("syzkaller", 0) = 3 [pid 5792] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5d63800000 [pid 5789] <... unshare resumed>) = 0 [pid 5789] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] write(3, "0 65535", 7) = 7 [pid 5789] close(3) = 0 [pid 5789] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5789] write(3, "100000", 6) = 6 [pid 5789] close(3) = 0 [pid 5789] mkdir("./syz-tmp", 0777) = -1 EEXIST (File exists) [pid 5789] exit_group(1) = ? [pid 5787] <... unshare resumed>) = 0 [pid 5787] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 5787] write(3, "0 65535", 7) = 7 [pid 5787] close(3) = 0 [pid 5787] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC [pid 5792] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216 [pid 5789] +++ exited with 1 +++ [pid 5787] <... openat resumed>) = 3 [pid 5783] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5789, si_uid=0, si_status=1, si_utime=0, si_stime=20 /* 0.20 s */} --- [pid 5783] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5787] write(3, "100000", 6) = 6 [pid 5787] close(3) = 0 [pid 5787] mkdir("./syz-tmp", 0777) = -1 EEXIST (File exists) [pid 5787] exit_group(1) = ? [pid 5783] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5787] +++ exited with 1 +++ [pid 5780] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5787, si_uid=0, si_status=1, si_utime=0, si_stime=19 /* 0.19 s */} --- [pid 5780] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5780] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5786] <... unshare resumed>) = 0 [pid 5786] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3 [pid 5780] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5786] write(3, "0 65535", 7) = 7 [pid 5786] close(3 [pid 5780] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5786] <... close resumed>) = 0 [pid 5786] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5786] write(3, "100000", 6) = 6 [pid 5786] close(3 [pid 5784] <... unshare resumed>) = 0 [pid 5786] <... close resumed>) = 0 [pid 5784] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC [pid 5786] mkdir("./syz-tmp", 0777 [pid 5784] <... openat resumed>) = 3 [pid 5786] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5784] write(3, "0 65535", 7) = 7 [pid 5786] exit_group(1 [pid 5780] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5786] <... exit_group resumed>) = ? [pid 5784] close(3) = 0 [pid 5784] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5784] write(3, "100000", 6) = 6 [pid 5784] close(3) = 0 [pid 5784] mkdir("./syz-tmp", 0777 [pid 5786] +++ exited with 1 +++ [pid 5784] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5784] exit_group(1 [pid 5792] <... write resumed>) = 16777216 [pid 5792] munmap(0x7f5d63800000, 138412032 [pid 5784] <... exit_group resumed>) = ? [pid 5781] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5786, si_uid=0, si_status=1, si_utime=0, si_stime=21 /* 0.21 s */} --- [pid 5781] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5792] <... munmap resumed>) = 0 [pid 5792] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5792] ioctl(4, LOOP_SET_FD, 3 [pid 5784] +++ exited with 1 +++ [pid 5792] <... ioctl resumed>) = 0 [pid 5792] close(3 [pid 5782] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5784, si_uid=0, si_status=1, si_utime=0, si_stime=26 /* 0.26 s */} --- [pid 5792] <... close resumed>) = 0 [pid 5782] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5792] close(4) = 0 [pid 5792] mkdir("./file1", 0777) = 0 [pid 5792] mount("/dev/loop4", "./file1", "bcachefs", 0, "\x64\x61\x74\x61\x5f\x63\x68\x65\x63\x6b\x73\x75\x6d\x3d\x63\x72\x63\x36\x34\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x74\x72\x61\x6e\x73\x61\x63\x74\x69\x6f\x6e\x5f\x6e\x61\x6d\x65\x73\x2c\x6e\x6f\x72\x65\x63\x6f\x76\x65\x72\x79\x2c\x73\x68\x61\x72\x64\x5f\x69\x6e\x6f\x05\x65\x5f\x6e\x75\x6d\x62\x65\x72\x73\x2c\x6a\x6f\x75\x72\x6e\x61\x6c\x5f\x74\x72\x61\x6e\x73\x61\x63\x74\x69\x6f\x6e\x5f\x6e\x61\x6d"... [pid 5781] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5781] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [ 206.660684][ T5792] loop4: detected capacity change from 0 to 32768 [pid 5781] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5782] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5782] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5781] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [pid 5782] <... clone resumed>, child_tidptr=0x5555754c1650) = -1 ENOMEM (Cannot allocate memory) [ 206.834887][ T5792] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=crc64,norecovery,reconstruct_alloc [ 206.849882][ T5792] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 206.859846][ T5792] bcachefs (loop4): Version upgrade required: [ 206.859846][ T5792] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 206.859846][ T5792] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots [ 206.859846][ T5792] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 206.966163][ T5792] bcachefs (loop4): dropping and reconstructing all alloc info [ 207.035867][ T5792] bcachefs (loop4): accounting_read... done [ 207.120421][ T5792] bcachefs (loop4): alloc_read... done [ 207.126558][ T5792] bcachefs (loop4): stripes_read... done [ 207.132703][ T5792] bcachefs (loop4): snapshots_read... done [pid 5792] <... mount resumed>) = 0 [pid 5792] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5792] chdir("./file1") = 0 [pid 5792] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 4 [pid 5792] ioctl(4, LOOP_CLR_FD) = 0 [pid 5792] close(4) = 0 [pid 5792] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 5792] ioctl(4, SIOCETHTOOL, NULL) = -1 EFAULT (Bad address) [ 207.139859][ T5792] bcachefs (loop4): check_allocations... done [ 207.292280][ T5792] bcachefs (loop4): going read-write [ 207.314603][ T5792] bcachefs (loop4): done starting filesystem [pid 5792] openat(AT_FDCWD, "./bus", O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_NOATIME, 000) = 5 [pid 5792] ioctl(-1, UFFDIO_API, NULL) = -1 EBADF (Bad file descriptor) [pid 5792] ioctl(-1, USB_RAW_IOCTL_EVENT_FETCH, 0x7ffec9cc8750) = -1 EBADF (Bad file descriptor) [pid 5792] close(3) = 0 [pid 5792] close(4) = 0 [pid 5792] close(5) = 0 [pid 5792] close(6) = -1 EBADF (Bad file descriptor) [pid 5792] close(7) = -1 EBADF (Bad file descriptor) [pid 5792] close(8) = -1 EBADF (Bad file descriptor) [pid 5792] close(9) = -1 EBADF (Bad file descriptor) [pid 5792] close(10) = -1 EBADF (Bad file descriptor) [pid 5792] close(11) = -1 EBADF (Bad file descriptor) [pid 5792] close(12) = -1 EBADF (Bad file descriptor) [pid 5792] close(13) = -1 EBADF (Bad file descriptor) [pid 5792] close(14) = -1 EBADF (Bad file descriptor) [pid 5792] close(15) = -1 EBADF (Bad file descriptor) [pid 5792] close(16) = -1 EBADF (Bad file descriptor) [pid 5792] close(17) = -1 EBADF (Bad file descriptor) [pid 5792] close(18) = -1 EBADF (Bad file descriptor) [pid 5792] close(19) = -1 EBADF (Bad file descriptor) [pid 5792] close(20) = -1 EBADF (Bad file descriptor) [pid 5792] close(21) = -1 EBADF (Bad file descriptor) [pid 5792] close(22) = -1 EBADF (Bad file descriptor) [pid 5792] close(23) = -1 EBADF (Bad file descriptor) [pid 5792] close(24) = -1 EBADF (Bad file descriptor) [pid 5792] close(25) = -1 EBADF (Bad file descriptor) [pid 5792] close(26) = -1 EBADF (Bad file descriptor) [pid 5792] close(27) = -1 EBADF (Bad file descriptor) [pid 5792] close(28) = -1 EBADF (Bad file descriptor) [pid 5792] close(29) = -1 EBADF (Bad file descriptor) [pid 5792] exit_group(0) = ? [pid 5792] +++ exited with 0 +++ [pid 5788] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=4 /* 0.04 s */, si_stime=104 /* 1.04 s */} --- [pid 5788] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3 [pid 5788] ioctl(3, LOOP_CLR_FD) = 0 [pid 5788] close(3) = 0 [pid 5788] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5818 attached [pid 5818] set_robust_list(0x5555754c1660, 24) = 0 [pid 5818] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5788] <... clone resumed>, child_tidptr=0x5555754c1650) = 3 [pid 5818] setpgid(0, 0) = 0 [pid 5818] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5818] write(3, "1000", 4executing program ) = 4 [pid 5818] close(3) = 0 [pid 5818] write(1, "executing program\n", 18) = 18 [pid 5818] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=8, rlim_max=8589934731}, NULL) = 0 [pid 5818] sched_setscheduler(0, SCHED_FIFO, [7]) = 0 [pid 5818] memfd_create("syzkaller", 0) = 3 [pid 5818] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f5d63800000 [ 207.754949][ T5815] ===================================================== [ 207.762266][ T5815] BUG: KMSAN: uninit-value in bch2_inode_v3_validate+0x481/0x5a0 [ 207.770460][ T5815] bch2_inode_v3_validate+0x481/0x5a0 [ 207.776281][ T5815] bch2_bkey_val_validate+0x2b5/0x440 [ 207.781955][ T5815] validate_bset_keys+0x1531/0x2080 [ 207.787604][ T5815] validate_bset_for_write+0x142/0x290 [ 207.793349][ T5815] __bch2_btree_node_write+0x53df/0x6830 [ 207.799363][ T5815] bch2_btree_node_write+0xa5/0x2e0 [ 207.804920][ T5815] __btree_node_flush+0x606/0x680 [ 207.810181][ T5815] bch2_btree_node_flush1+0x38/0x60 [ 207.815714][ T5815] journal_flush_pins+0xce6/0x1780 [ 207.821043][ T5815] __bch2_journal_reclaim+0xda8/0x1670 [ 207.826847][ T5815] bch2_journal_reclaim_thread+0x18e/0x760 [ 207.832873][ T5815] kthread+0x3e2/0x540 [ 207.837303][ T5815] ret_from_fork+0x6d/0x90 [ 207.841949][ T5815] ret_from_fork_asm+0x1a/0x30 [ 207.847147][ T5815] [ 207.849592][ T5815] Uninit was stored to memory at: [ 207.855058][ T5815] bch2_sort_keys_keep_unwritten_whiteouts+0x12d5/0x19d0 [ 207.862397][ T5815] __bch2_btree_node_write+0x3ae8/0x6830 [ 207.868420][ T5815] bch2_btree_node_write+0xa5/0x2e0 [ 207.874568][ T5815] __btree_node_flush+0x606/0x680 [ 207.879830][ T5815] bch2_btree_node_flush1+0x38/0x60 [ 207.885354][ T5815] journal_flush_pins+0xce6/0x1780 [ 207.890700][ T5815] __bch2_journal_reclaim+0xda8/0x1670 [ 207.896479][ T5815] bch2_journal_reclaim_thread+0x18e/0x760 [ 207.902518][ T5815] kthread+0x3e2/0x540 [ 207.906883][ T5815] ret_from_fork+0x6d/0x90 [ 207.911537][ T5815] ret_from_fork_asm+0x1a/0x30 [ 207.916643][ T5815] [ 207.919085][ T5815] Uninit was created at: [ 207.923758][ T5815] ___kmalloc_large_node+0x22c/0x370 [ 207.929294][ T5815] __kmalloc_large_node_noprof+0x3f/0x1e0 [ 207.935397][ T5815] __kmalloc_node_noprof+0xc96/0x1250 [ 207.941027][ T5815] __kvmalloc_node_noprof+0xc0/0x2d0 [ 207.946825][ T5815] btree_node_sort+0x78a/0x1d30 [ 207.951966][ T5815] bch2_btree_post_write_cleanup+0x1b0/0xf20 [ 207.958430][ T5815] bch2_btree_node_write+0x21c/0x2e0 [ 207.964065][ T5815] __btree_node_flush+0x606/0x680 [ 207.969364][ T5815] bch2_btree_node_flush0+0x35/0x60 [ 207.975091][ T5815] journal_flush_pins+0xce6/0x1780 [ 207.980430][ T5815] __bch2_journal_reclaim+0xda8/0x1670 [ 207.986229][ T5815] bch2_journal_reclaim_thread+0x18e/0x760 [ 207.992288][ T5815] kthread+0x3e2/0x540 [ 207.996649][ T5815] ret_from_fork+0x6d/0x90 [ 208.001286][ T5815] ret_from_fork_asm+0x1a/0x30 [ 208.006417][ T5815] [ 208.008889][ T5815] CPU: 0 UID: 0 PID: 5815 Comm: bch-reclaim/loo Not tainted 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0 [ 208.020333][ T5815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 208.030713][ T5815] ===================================================== [ 208.038054][ T5815] Disabling lock debugging due to kernel taint [ 208.044493][ T5815] Kernel panic - not syncing: kmsan.panic set ... [ 208.051091][ T5815] CPU: 0 UID: 0 PID: 5815 Comm: bch-reclaim/loo Tainted: G B 6.13.0-rc5-syzkaller-00163-gab75170520d4 #0 [ 208.064052][ T5815] Tainted: [B]=BAD_PAGE [ 208.068373][ T5815] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 208.078646][ T5815] Call Trace: [ 208.082084][ T5815] [ 208.085165][ T5815] dump_stack_lvl+0x216/0x2d0 [ 208.090129][ T5815] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 208.096194][ T5815] dump_stack+0x1e/0x24 [ 208.100614][ T5815] panic+0x4e2/0xcf0 [ 208.104762][ T5815] ? kmsan_get_metadata+0xb1/0x1c0 [ 208.110121][ T5815] kmsan_report+0x2c7/0x2d0 [ 208.114838][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.120271][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.125705][ T5815] ? __msan_warning+0x95/0x120 [ 208.130739][ T5815] ? bch2_inode_v3_validate+0x481/0x5a0 [ 208.136554][ T5815] ? bch2_bkey_val_validate+0x2b5/0x440 [ 208.142391][ T5815] ? validate_bset_keys+0x1531/0x2080 [ 208.148056][ T5815] ? validate_bset_for_write+0x142/0x290 [ 208.153989][ T5815] ? __bch2_btree_node_write+0x53df/0x6830 [ 208.160088][ T5815] ? bch2_btree_node_write+0xa5/0x2e0 [ 208.165741][ T5815] ? __btree_node_flush+0x606/0x680 [ 208.171185][ T5815] ? bch2_btree_node_flush1+0x38/0x60 [ 208.176820][ T5815] ? journal_flush_pins+0xce6/0x1780 [ 208.182344][ T5815] ? __bch2_journal_reclaim+0xda8/0x1670 [ 208.188224][ T5815] ? bch2_journal_reclaim_thread+0x18e/0x760 [ 208.194461][ T5815] ? kthread+0x3e2/0x540 [ 208.198927][ T5815] ? ret_from_fork+0x6d/0x90 [ 208.203766][ T5815] ? ret_from_fork_asm+0x1a/0x30 [ 208.209067][ T5815] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 208.215120][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.220552][ T5815] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 208.227179][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.232610][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.238024][ T5815] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 208.244070][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.249508][ T5815] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 208.255568][ T5815] ? kmsan_get_metadata+0x13e/0x1c0 [ 208.260995][ T5815] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 208.267054][ T5815] __msan_warning+0x95/0x120 [ 208.271935][ T5815] bch2_inode_v3_validate+0x481/0x5a0 [ 208.277611][ T5815] ? __pfx_bch2_inode_v3_validate+0x10/0x10 [ 208.283804][ T5815] bch2_bkey_val_validate+0x2b5/0x440 [ 208.289484][ T5815] validate_bset_keys+0x1531/0x2080 [ 208.295016][ T5815] validate_bset_for_write+0x142/0x290 [ 208.300829][ T5815] __bch2_btree_node_write+0x53df/0x6830 [ 208.306723][ T5815] ? __update_load_avg_se+0xbb0/0x11a0 [ 208.312492][ T5815] bch2_btree_node_write+0xa5/0x2e0 [ 208.317933][ T5815] __btree_node_flush+0x606/0x680 [ 208.323165][ T5815] ? __btree_node_flush+0xd3/0x680 [ 208.328503][ T5815] ? __pfx_bch2_btree_node_flush1+0x10/0x10 [ 208.334650][ T5815] bch2_btree_node_flush1+0x38/0x60 [ 208.340065][ T5815] journal_flush_pins+0xce6/0x1780 [ 208.345425][ T5815] __bch2_journal_reclaim+0xda8/0x1670 [ 208.351095][ T5815] ? __try_to_del_timer_sync+0x3d3/0x420 [ 208.356995][ T5815] bch2_journal_reclaim_thread+0x18e/0x760 [ 208.363034][ T5815] kthread+0x3e2/0x540 [ 208.367295][ T5815] ? __pfx_bch2_journal_reclaim_thread+0x10/0x10 [ 208.373846][ T5815] ? __pfx_kthread+0x10/0x10 [ 208.378627][ T5815] ret_from_fork+0x6d/0x90 [ 208.383244][ T5815] ? __pfx_kthread+0x10/0x10 [ 208.388119][ T5815] ret_from_fork_asm+0x1a/0x30 [ 208.393144][ T5815] [ 208.396652][ T5815] Kernel Offset: disabled [ 208.401087][ T5815] Rebooting in 86400 seconds..