./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3328924937

<...>
Warning: Permanently added '10.128.1.119' (ED25519) to the list of known hosts.
execve("./syz-executor3328924937", ["./syz-executor3328924937"], 0x7fffeb828700 /* 10 vars */) = 0
brk(NULL)                               = 0x555555827000
brk(0x555555827d00)                     = 0x555555827d00
arch_prctl(ARCH_SET_FS, 0x555555827380) = 0
set_tid_address(0x555555827650)         = 5032
set_robust_list(0x555555827660, 24)     = 0
rseq(0x555555827ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3328924937", 4096) = 28
getrandom("\x63\x19\xbc\xdc\x91\xf4\xa0\xc8", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555555827d00
brk(0x555555848d00)                     = 0x555555848d00
brk(0x555555849000)                     = 0x555555849000
mprotect(0x7ff93b24e000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555827650) = 5033
./strace-static-x86_64: Process 5033 attached
[pid  5033] set_robust_list(0x555555827660, 24) = 0
[pid  5033] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5033] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5033] setsid()                    = 1
[pid  5033] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5033] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5033] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5033] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5033] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5033] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5033] unshare(CLONE_NEWNS)        = 0
[pid  5033] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5033] unshare(CLONE_NEWIPC)       = 0
[pid  5033] unshare(CLONE_NEWCGROUP)    = 0
[pid  5033] unshare(CLONE_NEWUTS)       = 0
[pid  5033] unshare(CLONE_SYSVSEM)      = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "16777216", 8)     = 8
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "536870912", 9)    = 9
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "1024", 4)         = 4
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "8192", 4)         = 4
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "1024", 4)         = 4
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "1024", 4)         = 4
[pid  5033] close(3)                    = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5033] close(3)                    = 0
[pid  5033] getpid()                    = 1
[pid  5033] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5033] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5033] unshare(CLONE_NEWNET)       = 0
[pid  5033] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5033] write(3, "0 65535", 7)      = 7
[pid  5033] close(3)                    = 0
[pid  5033] mkdir("/dev/binderfs", 0777) = 0
[pid  5033] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5033] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555827650) = 2
./strace-static-x86_64: Process 5036 attached
[pid  5036] set_robust_list(0x555555827660, 24) = 0
[pid  5036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5036] setpgid(0, 0)               = 0
[pid  5036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5036] write(3, "1000", 4)         = 4
[pid  5036] close(3)                    = 0
[pid  5036] memfd_create("syzkaller", 0) = 3
[pid  5036] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   61.145575][ T5036] syz-executor332[5036]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5036] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5036] munmap(0x7ff932d92000, 16777216) = 0
[pid  5036] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5036] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5036] close(3)                    = 0
[pid  5036] mkdir("./file0", 0777)      = 0
[   61.324616][ T5036] loop0: detected capacity change from 0 to 32768
[   61.339708][ T5036] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[pid  5036] mount("/dev/loop0", "./file0", "xfs", MS_NODIRATIME|MS_RELATIME, "pqnoenforce,,nouuid") = 0
[pid  5036] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5036] chdir("./file0")            = 0
[   61.379256][ T5036] XFS (loop0): Ending clean mount
[   61.385866][ T5036] XFS (loop0): Quotacheck needed: Please wait.
[   61.399955][ T5036] XFS (loop0): Quotacheck: Done.
[pid  5036] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5036] close(4)                    = 0
[pid  5036] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 4
[pid  5036] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 5
[pid  5036] ftruncate(5, 33587195)      = 0
[pid  5036] open("./bus", O_RDONLY)     = 6
[pid  5036] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 6, 0) = 0x20001000
[pid  5036] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 7
[pid  5036] pwritev2(7, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5036] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=2, si_uid=0} ---
[   61.410748][   T28] audit: type=1804 audit(1693945240.704:2): pid=5036 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/file0/bus" dev="loop0" ino=9290 res=1 errno=0
[   61.451162][   T28] audit: type=1804 audit(1693945240.704:3): pid=5036 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/file0/bus" dev="loop0" ino=9290 res=1 errno=0
[   61.507507][ T5036] BUG: Bad page map in process syz-executor332  pte:fffff8ce8c120 pmd:79462067
[   61.516507][ T5036] page:ffffea0001cc5cc0 refcount:9 mapcount:-1 mapping:ffff8880774b1b50 index:0x3 pfn:0x73173
[   61.526821][ T5036] head:ffffea0001cc5c00 order:2 entire_mapcount:0 nr_pages_mapped:8388607 pincount:0
[   61.536609][ T5036] memcg:ffff888015e5a000
[   61.540973][ T5036] aops:xfs_address_space_operations ino:244a dentry name:"bus"
[   61.548604][ T5036] flags: 0xfff0000000816c(referenced|uptodate|lru|active|private|head|node=0|zone=1|lastcpupid=0x7ff)
[   61.559587][ T5036] page_type: 0xffffffff()
[   61.563947][ T5036] raw: 00fff00000000000 ffffea0001cc5c01 dead000000000122 dead000000000400
[   61.572628][ T5036] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[   61.581261][ T5036] head: 00fff0000000816c ffffea00007c9948 ffff888013245030 ffff8880774b1b50
[   61.590014][ T5036] head: 0000000000000000 ffff888027450e00 00000009ffffffff ffff888015e5a000
[   61.598746][ T5036] page dumped because: bad pte
[   61.603523][ T5036] page_owner tracks the page as allocated
[   61.609296][ T5036] page last allocated via order 2, migratetype Movable, gfp_mask 0x152c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 5036, tgid 5036 (syz-executor332), ts 61415422939, free_ts 21789924659
[   61.632429][ T5036]  post_alloc_hook+0x1e6/0x210
[   61.637292][ T5036]  get_page_from_freelist+0x31ec/0x3370
[   61.642870][ T5036]  __alloc_pages+0x255/0x670
[   61.647534][ T5036]  folio_alloc+0x1e/0x60
[   61.651808][ T5036]  filemap_alloc_folio+0xde/0x500
[   61.656933][ T5036]  page_cache_ra_order+0x423/0xcc0
[   61.662117][ T5036]  do_sync_mmap_readahead+0x444/0x850
[   61.667549][ T5036]  filemap_fault+0x7d3/0x1710
[   61.672258][ T5036]  __xfs_filemap_fault+0x286/0x960
[   61.677418][ T5036]  __do_fault+0x133/0x4e0
[   61.681768][ T5036]  handle_mm_fault+0x48d2/0x6200
[   61.686708][ T5036]  __get_user_pages+0x6bd/0x15e0
[   61.691740][ T5036]  get_dump_page+0x146/0x2b0
[   61.696355][ T5036]  dump_user_range+0x126/0x910
[   61.701190][ T5036]  elf_core_dump+0x3b75/0x4490
[   61.705986][ T5036]  do_coredump+0x1b73/0x2ab0
[   61.710632][ T5036] page last free stack trace:
[   61.715319][ T5036]  free_unref_page_prepare+0x8c3/0x9f0
[   61.720841][ T5036]  free_unref_page+0x37/0x3f0
[   61.725558][ T5036]  free_contig_range+0x9e/0x150
[   61.730476][ T5036]  destroy_args+0x95/0x7c0
[   61.734933][ T5036]  debug_vm_pgtable+0x4ac/0x540
[   61.739857][ T5036]  do_one_initcall+0x23d/0x7d0
[   61.744740][ T5036]  do_initcall_level+0x157/0x210
[   61.749737][ T5036]  do_initcalls+0x3f/0x80
[   61.754091][ T5036]  kernel_init_freeable+0x440/0x5d0
[   61.759356][ T5036]  kernel_init+0x1d/0x2a0
[   61.763722][ T5036]  ret_from_fork+0x48/0x80
[   61.768227][ T5036]  ret_from_fork_asm+0x11/0x20
[   61.773028][ T5036] addr:0000000020006000 vm_flags:080000d0 anon_vma:0000000000000000 mapping:ffff8880774b1b50 index:5
[   61.783942][ T5036] file:bus fault:xfs_filemap_fault mmap:xfs_file_mmap read_folio:xfs_vm_read_folio
[   61.793303][ T5036] CPU: 1 PID: 5036 Comm: syz-executor332 Not tainted 6.5.0-syzkaller-11704-g3f86ed6ec0b3 #0
[   61.803376][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   61.813460][ T5036] Call Trace:
[   61.816766][ T5036]  <TASK>
[   61.819700][ T5036]  dump_stack_lvl+0x1e7/0x2d0
[   61.824394][ T5036]  ? nf_tcp_handle_invalid+0x650/0x650
[   61.829888][ T5036]  ? panic+0x770/0x770
[   61.833972][ T5036]  ? dump_page+0x9c2/0x1090
[   61.838515][ T5036]  ? xfs_dio_write_end_io+0x6f0/0x6f0
[   61.843898][ T5036]  ? xfs_file_write_iter+0x620/0x620
[   61.849241][ T5036]  print_bad_pte+0x581/0x5c0
[   61.854021][ T5036]  unmap_page_range+0x1a76/0x3300
[   61.859082][ T5036]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[   61.865594][ T5036]  ? __might_sleep+0xc0/0xc0
[   61.870194][ T5036]  ? uprobe_munmap+0x183/0x410
[   61.874962][ T5036]  ? unmap_single_vma+0x1b9/0x2a0
[   61.880001][ T5036]  unmap_vmas+0x209/0x3a0
[   61.884344][ T5036]  ? unmap_page_range+0x3300/0x3300
[   61.889584][ T5036]  ? tlb_gather_mmu_fullmm+0x160/0x210
[   61.895088][ T5036]  exit_mmap+0x297/0xc50
[   61.899360][ T5036]  ? vm_brk+0x30/0x30
[   61.903359][ T5036]  ? __asan_memset+0x23/0x40
[   61.907974][ T5036]  ? uprobe_clear_state+0x275/0x290
[   61.913211][ T5036]  ? mm_update_next_owner+0x4a3/0x520
[   61.918599][ T5036]  __mmput+0x115/0x3c0
[   61.922714][ T5036]  exit_mm+0x21f/0x300
[   61.926799][ T5036]  ? coredump_task_exit+0x460/0x460
[   61.932011][ T5036]  ? taskstats_exit+0x39d/0x920
[   61.936880][ T5036]  ? tty_audit_exit+0x154/0x1f0
[   61.941741][ T5036]  do_exit+0x612/0x2290
[   61.945920][ T5036]  ? put_task_struct+0xc0/0xc0
[   61.950706][ T5036]  do_group_exit+0x206/0x2c0
[   61.955305][ T5036]  get_signal+0x175d/0x1840
[   61.959824][ T5036]  ? ptrace_notify+0x380/0x380
[   61.964598][ T5036]  arch_do_signal_or_restart+0x96/0x860
[   61.970163][ T5036]  ? rcu_is_watching+0x15/0xb0
[   61.974969][ T5036]  ? get_sigframe_size+0x20/0x20
[   61.979928][ T5036]  ? rcu_is_watching+0x15/0xb0
[   61.984699][ T5036]  exit_to_user_mode_loop+0x6a/0x100
[   61.989996][ T5036]  exit_to_user_mode_prepare+0xb1/0x140
[   61.995554][ T5036]  syscall_exit_to_user_mode+0x64/0x280
[   62.001120][ T5036]  do_syscall_64+0x4d/0xc0
[   62.005548][ T5036]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   62.011475][ T5036] RIP: 0033:0x7ff93b1d0eb9
[   62.015901][ T5036] Code: Unable to access opcode bytes at 0x7ff93b1d0e8f.
[   62.022933][ T5036] RSP: 002b:00007ffc50f66f08 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   62.031376][ T5036] RAX: ffffffffffffffe5 RBX: 0000000000000003 RCX: 00007ff93b1d0eb9
[   62.039357][ T5036] RDX: 0000000000000002 RSI: 0000000020000300 RDI: 0000000000000007
[   62.047334][ T5036] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   62.055311][ T5036] R10: 0000000008800000 R11: 0000000000000246 R12: 00000000000f4240
[   62.063294][ T5036] R13: 00007ffc50f67188 R14: 0000000000000001 R15: 00007ffc50f66f50
[   62.071286][ T5036]  </TASK>
[   62.074756][ T5036] BUG: Bad page map in process syz-executor332  pte:fffff8ce8d120 pmd:79462067
[   62.083772][ T5036] page:ffffea0001cc5c80 refcount:9 mapcount:-1 mapping:ffff8880774b1b50 index:0x2 pfn:0x73172
[   62.094087][ T5036] head:ffffea0001cc5c00 order:2 entire_mapcount:0 nr_pages_mapped:8388606 pincount:0
[   62.103629][ T5036] memcg:ffff888015e5a000
[   62.107911][ T5036] aops:xfs_address_space_operations ino:244a dentry name:"bus"
[   62.115471][ T5036] flags: 0xfff0000000816c(referenced|uptodate|lru|active|private|head|node=0|zone=1|lastcpupid=0x7ff)
[   62.126436][ T5036] page_type: 0xffffffff()
[   62.130814][ T5036] raw: 00fff00000000000 ffffea0001cc5c01 ffffea0001cc5c90 ffffea0001cc5c90
[   62.139536][ T5036] raw: 0000000000000001 0000000000000000 00000000fffffffe 0000000000000000
[   62.148153][ T5036] head: 00fff0000000816c ffffea00007c9948 ffff888013245030 ffff8880774b1b50
[   62.156838][ T5036] head: 0000000000000000 ffff888027450e00 00000009ffffffff ffff888015e5a000
[   62.165549][ T5036] page dumped because: bad pte
[   62.170369][ T5036] page_owner tracks the page as allocated
[   62.176091][ T5036] page last allocated via order 2, migratetype Movable, gfp_mask 0x152c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 5036, tgid 5036 (syz-executor332), ts 61415422939, free_ts 21789914922
[   62.199168][ T5036]  post_alloc_hook+0x1e6/0x210
[   62.203985][ T5036]  get_page_from_freelist+0x31ec/0x3370
[   62.209599][ T5036]  __alloc_pages+0x255/0x670
[   62.214221][ T5036]  folio_alloc+0x1e/0x60
[   62.218529][ T5036]  filemap_alloc_folio+0xde/0x500
[   62.223596][ T5036]  page_cache_ra_order+0x423/0xcc0
[   62.228750][ T5036]  do_sync_mmap_readahead+0x444/0x850
[   62.234147][ T5036]  filemap_fault+0x7d3/0x1710
[   62.238866][ T5036]  __xfs_filemap_fault+0x286/0x960
[   62.244000][ T5036]  __do_fault+0x133/0x4e0
[   62.248374][ T5036]  handle_mm_fault+0x48d2/0x6200
[   62.253332][ T5036]  __get_user_pages+0x6bd/0x15e0
[   62.258418][ T5036]  get_dump_page+0x146/0x2b0
[   62.263042][ T5036]  dump_user_range+0x126/0x910
[   62.267868][ T5036]  elf_core_dump+0x3b75/0x4490
[   62.272659][ T5036]  do_coredump+0x1b73/0x2ab0
[   62.277288][ T5036] page last free stack trace:
[   62.282009][ T5036]  free_unref_page_prepare+0x8c3/0x9f0
[   62.287517][ T5036]  free_unref_page+0x37/0x3f0
[   62.292240][ T5036]  free_contig_range+0x9e/0x150
[   62.297153][ T5036]  destroy_args+0x95/0x7c0
[   62.301608][ T5036]  debug_vm_pgtable+0x4ac/0x540
[   62.306469][ T5036]  do_one_initcall+0x23d/0x7d0
[   62.311301][ T5036]  do_initcall_level+0x157/0x210
[   62.316261][ T5036]  do_initcalls+0x3f/0x80
[   62.320639][ T5036]  kernel_init_freeable+0x440/0x5d0
[   62.325860][ T5036]  kernel_init+0x1d/0x2a0
[   62.330246][ T5036]  ret_from_fork+0x48/0x80
[   62.334702][ T5036]  ret_from_fork_asm+0x11/0x20
[   62.339535][ T5036] addr:0000000020007000 vm_flags:080000d0 anon_vma:0000000000000000 mapping:ffff8880774b1b50 index:6
[   62.350435][ T5036] file:bus fault:xfs_filemap_fault mmap:xfs_file_mmap read_folio:xfs_vm_read_folio
[   62.359803][ T5036] CPU: 0 PID: 5036 Comm: syz-executor332 Tainted: G    B              6.5.0-syzkaller-11704-g3f86ed6ec0b3 #0
[   62.371369][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   62.381434][ T5036] Call Trace:
[   62.384730][ T5036]  <TASK>
[   62.387668][ T5036]  dump_stack_lvl+0x1e7/0x2d0
[   62.392372][ T5036]  ? nf_tcp_handle_invalid+0x650/0x650
[   62.397859][ T5036]  ? panic+0x770/0x770
[   62.401941][ T5036]  ? dump_page+0x9c2/0x1090
[   62.406452][ T5036]  ? xfs_dio_write_end_io+0x6f0/0x6f0
[   62.411843][ T5036]  ? xfs_file_write_iter+0x620/0x620
[   62.417164][ T5036]  print_bad_pte+0x581/0x5c0
[   62.421793][ T5036]  unmap_page_range+0x1a76/0x3300
[   62.426843][ T5036]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[   62.433361][ T5036]  ? __might_sleep+0xc0/0xc0
[   62.437974][ T5036]  ? uprobe_munmap+0x183/0x410
[   62.442765][ T5036]  ? unmap_single_vma+0x1b9/0x2a0
[   62.447801][ T5036]  unmap_vmas+0x209/0x3a0
[   62.452152][ T5036]  ? unmap_page_range+0x3300/0x3300
[   62.457413][ T5036]  ? tlb_gather_mmu_fullmm+0x160/0x210
[   62.462906][ T5036]  exit_mmap+0x297/0xc50
[   62.467171][ T5036]  ? vm_brk+0x30/0x30
[   62.471167][ T5036]  ? __asan_memset+0x23/0x40
[   62.475784][ T5036]  ? uprobe_clear_state+0x275/0x290
[   62.480989][ T5036]  ? mm_update_next_owner+0x4a3/0x520
[   62.486382][ T5036]  __mmput+0x115/0x3c0
[   62.490544][ T5036]  exit_mm+0x21f/0x300
[   62.494634][ T5036]  ? coredump_task_exit+0x460/0x460
[   62.499880][ T5036]  ? taskstats_exit+0x39d/0x920
[   62.504744][ T5036]  ? tty_audit_exit+0x154/0x1f0
[   62.509605][ T5036]  do_exit+0x612/0x2290
[   62.513779][ T5036]  ? put_task_struct+0xc0/0xc0
[   62.518570][ T5036]  do_group_exit+0x206/0x2c0
[   62.523169][ T5036]  get_signal+0x175d/0x1840
[   62.527691][ T5036]  ? ptrace_notify+0x380/0x380
[   62.532470][ T5036]  arch_do_signal_or_restart+0x96/0x860
[   62.538034][ T5036]  ? rcu_is_watching+0x15/0xb0
[   62.542810][ T5036]  ? get_sigframe_size+0x20/0x20
[   62.547768][ T5036]  ? rcu_is_watching+0x15/0xb0
[   62.552541][ T5036]  exit_to_user_mode_loop+0x6a/0x100
[   62.557835][ T5036]  exit_to_user_mode_prepare+0xb1/0x140
[   62.563393][ T5036]  syscall_exit_to_user_mode+0x64/0x280
[   62.568959][ T5036]  do_syscall_64+0x4d/0xc0
[   62.573384][ T5036]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   62.579315][ T5036] RIP: 0033:0x7ff93b1d0eb9
[   62.583731][ T5036] Code: Unable to access opcode bytes at 0x7ff93b1d0e8f.
[   62.590751][ T5036] RSP: 002b:00007ffc50f66f08 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   62.599174][ T5036] RAX: ffffffffffffffe5 RBX: 0000000000000003 RCX: 00007ff93b1d0eb9
[   62.607149][ T5036] RDX: 0000000000000002 RSI: 0000000020000300 RDI: 0000000000000007
[   62.615129][ T5036] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   62.623102][ T5036] R10: 0000000008800000 R11: 0000000000000246 R12: 00000000000f4240
[   62.631103][ T5036] R13: 00007ffc50f67188 R14: 0000000000000001 R15: 00007ffc50f66f50
[   62.639096][ T5036]  </TASK>
[   62.642266][ T5036] BUG: Bad page map in process syz-executor332  pte:fffff8ce8e120 pmd:79462067
[   62.651325][ T5036] page:ffffea0001cc5c40 refcount:9 mapcount:-1 mapping:ffff8880774b1b50 index:0x1 pfn:0x73171
[   62.661622][ T5036] head:ffffea0001cc5c00 order:2 entire_mapcount:0 nr_pages_mapped:8388605 pincount:0
[   62.671211][ T5036] memcg:ffff888015e5a000
[   62.675451][ T5036] aops:xfs_address_space_operations ino:244a dentry name:"bus"
[   62.683055][ T5036] flags: 0xfff0000000816c(referenced|uptodate|lru|active|private|head|node=0|zone=1|lastcpupid=0x7ff)
[   62.694058][ T5036] page_type: 0xffffffff()
[   62.698425][ T5036] raw: 00fff00000000202 ffffea0001cc5c01 dead000000000122 fffffffdffffffff
[   62.707068][ T5036] raw: 0000000400000000 0000000000000000 00000000fffffffe 0000000000000000
[   62.715663][ T5036] head: 00fff0000000816c ffffea00007c9948 ffff888013245030 ffff8880774b1b50
[   62.724398][ T5036] head: 0000000000000000 ffff888027450e00 00000009ffffffff ffff888015e5a000
[   62.733158][ T5036] page dumped because: bad pte
[   62.738000][ T5036] page_owner tracks the page as allocated
[   62.743754][ T5036] page last allocated via order 2, migratetype Movable, gfp_mask 0x152c4a(GFP_NOFS|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 5036, tgid 5036 (syz-executor332), ts 61415422939, free_ts 21789904946
[   62.766853][ T5036]  post_alloc_hook+0x1e6/0x210
[   62.771694][ T5036]  get_page_from_freelist+0x31ec/0x3370
[   62.777319][ T5036]  __alloc_pages+0x255/0x670
[   62.781942][ T5036]  folio_alloc+0x1e/0x60
[   62.786235][ T5036]  filemap_alloc_folio+0xde/0x500
[   62.791413][ T5036]  page_cache_ra_order+0x423/0xcc0
[   62.796558][ T5036]  do_sync_mmap_readahead+0x444/0x850
[   62.802017][ T5036]  filemap_fault+0x7d3/0x1710
[   62.806740][ T5036]  __xfs_filemap_fault+0x286/0x960
[   62.811935][ T5036]  __do_fault+0x133/0x4e0
[   62.816303][ T5036]  handle_mm_fault+0x48d2/0x6200
[   62.821312][ T5036]  __get_user_pages+0x6bd/0x15e0
[   62.826287][ T5036]  get_dump_page+0x146/0x2b0
[   62.830940][ T5036]  dump_user_range+0x126/0x910
[   62.835786][ T5036]  elf_core_dump+0x3b75/0x4490
[   62.840641][ T5036]  do_coredump+0x1b73/0x2ab0
[   62.845272][ T5036] page last free stack trace:
[   62.850022][ T5036]  free_unref_page_prepare+0x8c3/0x9f0
[   62.855527][ T5036]  free_unref_page+0x37/0x3f0
[   62.860278][ T5036]  free_contig_range+0x9e/0x150
[   62.865164][ T5036]  destroy_args+0x95/0x7c0
[   62.869662][ T5036]  debug_vm_pgtable+0x4ac/0x540
[   62.874546][ T5036]  do_one_initcall+0x23d/0x7d0
[   62.879406][ T5036]  do_initcall_level+0x157/0x210
[   62.884373][ T5036]  do_initcalls+0x3f/0x80
[   62.888751][ T5036]  kernel_init_freeable+0x440/0x5d0
[   62.893975][ T5036]  kernel_init+0x1d/0x2a0
[   62.898380][ T5036]  ret_from_fork+0x48/0x80
[   62.902850][ T5036]  ret_from_fork_asm+0x11/0x20
[   62.907687][ T5036] addr:0000000020008000 vm_flags:080000d0 anon_vma:0000000000000000 mapping:ffff8880774b1b50 index:7
[   62.918615][ T5036] file:bus fault:xfs_filemap_fault mmap:xfs_file_mmap read_folio:xfs_vm_read_folio
[   62.928077][ T5036] CPU: 1 PID: 5036 Comm: syz-executor332 Tainted: G    B              6.5.0-syzkaller-11704-g3f86ed6ec0b3 #0
[   62.939641][ T5036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   62.949712][ T5036] Call Trace:
[   62.953000][ T5036]  <TASK>
[   62.955931][ T5036]  dump_stack_lvl+0x1e7/0x2d0
[   62.960633][ T5036]  ? nf_tcp_handle_invalid+0x650/0x650
[   62.966094][ T5036]  ? panic+0x770/0x770
[   62.970170][ T5036]  ? dump_page+0x9c2/0x1090
[   62.974690][ T5036]  ? xfs_dio_write_end_io+0x6f0/0x6f0
[   62.980065][ T5036]  ? xfs_file_write_iter+0x620/0x620
[   62.985371][ T5036]  print_bad_pte+0x581/0x5c0
[   62.989995][ T5036]  unmap_page_range+0x1a76/0x3300
[   62.995071][ T5036]  ? mmu_notifier_invalidate_range_start+0xf0/0xf0
[   63.001630][ T5036]  ? __might_sleep+0xc0/0xc0
[   63.006257][ T5036]  ? uprobe_munmap+0x183/0x410
[   63.011044][ T5036]  ? unmap_single_vma+0x1b9/0x2a0
[   63.016084][ T5036]  unmap_vmas+0x209/0x3a0
[   63.020428][ T5036]  ? unmap_page_range+0x3300/0x3300
[   63.025645][ T5036]  ? tlb_gather_mmu_fullmm+0x160/0x210
[   63.031116][ T5036]  exit_mmap+0x297/0xc50
[   63.035380][ T5036]  ? vm_brk+0x30/0x30
[   63.039378][ T5036]  ? __asan_memset+0x23/0x40
[   63.044341][ T5036]  ? uprobe_clear_state+0x275/0x290
[   63.049550][ T5036]  ? mm_update_next_owner+0x4a3/0x520
[   63.055031][ T5036]  __mmput+0x115/0x3c0
[   63.059109][ T5036]  exit_mm+0x21f/0x300
[   63.063199][ T5036]  ? coredump_task_exit+0x460/0x460
[   63.068412][ T5036]  ? taskstats_exit+0x39d/0x920
[   63.073284][ T5036]  ? tty_audit_exit+0x154/0x1f0
[   63.078152][ T5036]  do_exit+0x612/0x2290
[   63.082348][ T5036]  ? put_task_struct+0xc0/0xc0
[   63.087140][ T5036]  do_group_exit+0x206/0x2c0
[   63.091742][ T5036]  get_signal+0x175d/0x1840
[   63.096259][ T5036]  ? ptrace_notify+0x380/0x380
[   63.101032][ T5036]  arch_do_signal_or_restart+0x96/0x860
[   63.106606][ T5036]  ? rcu_is_watching+0x15/0xb0
[   63.111379][ T5036]  ? get_sigframe_size+0x20/0x20
[   63.116337][ T5036]  ? rcu_is_watching+0x15/0xb0
[   63.121111][ T5036]  exit_to_user_mode_loop+0x6a/0x100
[   63.126413][ T5036]  exit_to_user_mode_prepare+0xb1/0x140
[   63.131972][ T5036]  syscall_exit_to_user_mode+0x64/0x280
[   63.137540][ T5036]  do_syscall_64+0x4d/0xc0
[   63.141968][ T5036]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   63.147869][ T5036] RIP: 0033:0x7ff93b1d0eb9
[   63.152288][ T5036] Code: Unable to access opcode bytes at 0x7ff93b1d0e8f.
[pid  5036] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=2, si_uid=0, si_status=SIGXFSZ, si_utime=4 /* 0.04 s */, si_stime=110 /* 1.10 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555827650) = 3
./strace-static-x86_64: Process 5045 attached
[pid  5045] set_robust_list(0x555555827660, 24) = 0
[pid  5045] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5045] setpgid(0, 0)               = 0
[pid  5045] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5045] write(3, "1000", 4)         = 4
[pid  5045] close(3)                    = 0
[   63.159304][ T5036] RSP: 002b:00007ffc50f66f08 EFLAGS: 00000246 ORIG_RAX: 0000000000000148
[   63.167727][ T5036] RAX: ffffffffffffffe5 RBX: 0000000000000003 RCX: 00007ff93b1d0eb9
[   63.175704][ T5036] RDX: 0000000000000002 RSI: 0000000020000300 RDI: 0000000000000007
[   63.183680][ T5036] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   63.191651][ T5036] R10: 0000000008800000 R11: 0000000000000246 R12: 00000000000f4240
[   63.199630][ T5036] R13: 00007ffc50f67188 R14: 0000000000000001 R15: 00007ffc50f66f50
[   63.207612][ T5036]  </TASK>
[pid  5045] memfd_create("syzkaller", 0) = 3
[pid  5045] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   63.223879][ T5045] syz-executor332[5045]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5045] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5045] munmap(0x7ff932d92000, 16777216) = 0
[pid  5045] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5045] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5045] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5045] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5045] close(4)                    = 0
[pid  5045] close(3)                    = 0
[pid  5045] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5045] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5045] ftruncate(4, 33587195)      = 0
[pid  5045] open("./bus", O_RDONLY)     = 5
[pid  5045] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5045] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5045] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5045] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=3, si_uid=0} ---
[   63.492365][   T28] audit: type=1804 audit(1693945242.784:4): pid=5045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   63.513319][   T28] audit: type=1804 audit(1693945242.784:5): pid=5045 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5045] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=3, si_uid=0, si_status=SIGXFSZ, si_utime=3 /* 0.03 s */, si_stime=29 /* 0.29 s */} ---
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5046 attached
 <unfinished ...>
[pid  5046] set_robust_list(0x555555827660, 24) = 0
[pid  5046] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5046] setpgid(0, 0)               = 0
[pid  5046] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 4
[pid  5046] <... openat resumed>)       = 3
[pid  5046] write(3, "1000", 4)         = 4
[pid  5046] close(3)                    = 0
[pid  5046] memfd_create("syzkaller", 0) = 3
[pid  5046] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   63.617035][ T5046] syz-executor332[5046]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5046] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5046] munmap(0x7ff932d92000, 16777216) = 0
[pid  5046] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5046] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5046] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5046] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5046] close(4)                    = 0
[pid  5046] close(3)                    = 0
[pid  5046] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5046] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5046] ftruncate(4, 33587195)      = 0
[pid  5046] open("./bus", O_RDONLY)     = 5
[pid  5046] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5046] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5046] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5046] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=4, si_uid=0} ---
[   64.195749][   T28] audit: type=1804 audit(1693945243.484:6): pid=5046 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   64.216425][   T28] audit: type=1804 audit(1693945243.494:7): pid=5046 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5046] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=4, si_uid=0, si_status=SIGXFSZ, si_utime=5 /* 0.05 s */, si_stime=58 /* 0.58 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5047 attached
, child_tidptr=0x555555827650) = 5
[pid  5047] set_robust_list(0x555555827660, 24) = 0
[pid  5047] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5047] setpgid(0, 0)               = 0
[pid  5047] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5047] write(3, "1000", 4)         = 4
[pid  5047] close(3)                    = 0
[pid  5047] memfd_create("syzkaller", 0) = 3
[pid  5047] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   64.315533][ T5047] syz-executor332[5047]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5047] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5047] munmap(0x7ff932d92000, 16777216) = 0
[pid  5047] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5047] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5047] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5047] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5047] close(4)                    = 0
[pid  5047] close(3)                    = 0
[pid  5047] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5047] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5047] ftruncate(4, 33587195)      = 0
[pid  5047] open("./bus", O_RDONLY)     = 5
[pid  5047] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5047] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5047] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5047] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=5, si_uid=0} ---
[   64.745703][   T28] audit: type=1804 audit(1693945244.034:8): pid=5047 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   64.766494][   T28] audit: type=1804 audit(1693945244.054:9): pid=5047 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5047] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=5, si_uid=0, si_status=SIGXFSZ, si_utime=4 /* 0.04 s */, si_stime=45 /* 0.45 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5048 attached
 <unfinished ...>
[pid  5048] set_robust_list(0x555555827660, 24) = 0
[pid  5048] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 6
[pid  5048] <... prctl resumed>)        = 0
[pid  5048] setpgid(0, 0)               = 0
[pid  5048] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5048] write(3, "1000", 4)         = 4
[pid  5048] close(3)                    = 0
[pid  5048] memfd_create("syzkaller", 0) = 3
[pid  5048] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   64.871804][ T5048] syz-executor332[5048]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5048] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5048] munmap(0x7ff932d92000, 16777216) = 0
[pid  5048] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5048] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5048] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5048] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5048] close(4)                    = 0
[pid  5048] close(3)                    = 0
[pid  5048] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5048] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5048] ftruncate(4, 33587195)      = 0
[pid  5048] open("./bus", O_RDONLY)     = 5
[pid  5048] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5048] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5048] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5048] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=6, si_uid=0} ---
[   65.289274][   T28] audit: type=1804 audit(1693945244.584:10): pid=5048 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   65.309595][   T28] audit: type=1804 audit(1693945244.594:11): pid=5048 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5048] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=6, si_uid=0, si_status=SIGXFSZ, si_utime=2 /* 0.02 s */, si_stime=45 /* 0.45 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5049 attached
 <unfinished ...>
[pid  5049] set_robust_list(0x555555827660, 24) = 0
[pid  5049] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5049] setpgid(0, 0)               = 0
[pid  5049] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 7
[pid  5049] <... openat resumed>)       = 3
[pid  5049] write(3, "1000", 4)         = 4
[pid  5049] close(3)                    = 0
[pid  5049] memfd_create("syzkaller", 0) = 3
[pid  5049] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   65.413555][ T5049] syz-executor332[5049]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5049] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5049] munmap(0x7ff932d92000, 16777216) = 0
[pid  5049] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5049] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5049] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5049] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5049] close(4)                    = 0
[pid  5049] close(3)                    = 0
[pid  5049] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5049] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5049] ftruncate(4, 33587195)      = 0
[pid  5049] open("./bus", O_RDONLY)     = 5
[pid  5049] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5049] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5049] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5049] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=7, si_uid=0} ---
[pid  5049] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=7, si_uid=0, si_status=SIGXFSZ, si_utime=1 /* 0.01 s */, si_stime=47 /* 0.47 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5050 attached
, child_tidptr=0x555555827650) = 8
[pid  5050] set_robust_list(0x555555827660, 24) = 0
[pid  5050] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5050] setpgid(0, 0)               = 0
[pid  5050] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5050] write(3, "1000", 4)         = 4
[pid  5050] close(3)                    = 0
[pid  5050] memfd_create("syzkaller", 0) = 3
[pid  5050] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   65.933787][ T5050] syz-executor332[5050]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5050] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5050] munmap(0x7ff932d92000, 16777216) = 0
[pid  5050] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5050] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5050] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5050] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5050] close(4)                    = 0
[pid  5050] close(3)                    = 0
[pid  5050] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5050] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5050] ftruncate(4, 33587195)      = 0
[pid  5050] open("./bus", O_RDONLY)     = 5
[pid  5050] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5050] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5050] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5050] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=8, si_uid=0} ---
[pid  5050] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=8, si_uid=0, si_status=SIGXFSZ, si_utime=3 /* 0.03 s */, si_stime=44 /* 0.44 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5051 attached
, child_tidptr=0x555555827650) = 9
[pid  5051] set_robust_list(0x555555827660, 24) = 0
[pid  5051] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5051] setpgid(0, 0)               = 0
[pid  5051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5051] write(3, "1000", 4)         = 4
[pid  5051] close(3)                    = 0
[pid  5051] memfd_create("syzkaller", 0) = 3
[pid  5051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   66.451499][ T5051] syz-executor332[5051]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5051] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5051] munmap(0x7ff932d92000, 16777216) = 0
[pid  5051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5051] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5051] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5051] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5051] close(4)                    = 0
[pid  5051] close(3)                    = 0
[pid  5051] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5051] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5051] ftruncate(4, 33587195)      = 0
[pid  5051] open("./bus", O_RDONLY)     = 5
[pid  5051] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5051] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5051] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5051] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=9, si_uid=0} ---
[   66.870186][   T28] kauditd_printk_skb: 4 callbacks suppressed
[   66.870198][   T28] audit: type=1804 audit(1693945246.164:16): pid=5051 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   66.898517][   T28] audit: type=1804 audit(1693945246.194:17): pid=5051 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5051] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=9, si_uid=0, si_status=SIGXFSZ, si_utime=5 /* 0.05 s */, si_stime=45 /* 0.45 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5052 attached
, child_tidptr=0x555555827650) = 10
[pid  5052] set_robust_list(0x555555827660, 24) = 0
[pid  5052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5052] setpgid(0, 0)               = 0
[pid  5052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5052] write(3, "1000", 4)         = 4
[pid  5052] close(3)                    = 0
[pid  5052] memfd_create("syzkaller", 0) = 3
[pid  5052] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   67.001576][ T5052] syz-executor332[5052]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5052] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5052] munmap(0x7ff932d92000, 16777216) = 0
[pid  5052] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5052] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5052] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5052] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5052] close(4)                    = 0
[pid  5052] close(3)                    = 0
[pid  5052] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5052] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5052] ftruncate(4, 33587195)      = 0
[pid  5052] open("./bus", O_RDONLY)     = 5
[pid  5052] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5052] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5052] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5052] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=10, si_uid=0} ---
[   67.416106][   T28] audit: type=1804 audit(1693945246.704:18): pid=5052 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   67.436380][   T28] audit: type=1804 audit(1693945246.704:19): pid=5052 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5052] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=10, si_uid=0, si_status=SIGXFSZ, si_utime=2 /* 0.02 s */, si_stime=47 /* 0.47 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5053 attached
, child_tidptr=0x555555827650) = 11
[pid  5053] set_robust_list(0x555555827660, 24) = 0
[pid  5053] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5053] setpgid(0, 0)               = 0
[pid  5053] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5053] write(3, "1000", 4)         = 4
[pid  5053] close(3)                    = 0
[pid  5053] memfd_create("syzkaller", 0) = 3
[pid  5053] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   67.529273][ T5053] syz-executor332[5053]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5053] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5053] munmap(0x7ff932d92000, 16777216) = 0
[pid  5053] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5053] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5053] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5053] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5053] close(4)                    = 0
[pid  5053] close(3)                    = 0
[pid  5053] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5053] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5053] ftruncate(4, 33587195)      = 0
[pid  5053] open("./bus", O_RDONLY)     = 5
[pid  5053] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5053] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5053] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5053] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=11, si_uid=0} ---
[   67.948132][   T28] audit: type=1804 audit(1693945247.244:20): pid=5053 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   67.968306][   T28] audit: type=1804 audit(1693945247.244:21): pid=5053 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5053] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=11, si_uid=0, si_status=SIGXFSZ, si_utime=4 /* 0.04 s */, si_stime=46 /* 0.46 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5054 attached
, child_tidptr=0x555555827650) = 12
[pid  5054] set_robust_list(0x555555827660, 24) = 0
[pid  5054] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5054] setpgid(0, 0)               = 0
[pid  5054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5054] write(3, "1000", 4)         = 4
[pid  5054] close(3)                    = 0
[pid  5054] memfd_create("syzkaller", 0) = 3
[pid  5054] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   68.062555][ T5054] syz-executor332[5054]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5054] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5054] munmap(0x7ff932d92000, 16777216) = 0
[pid  5054] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5054] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5054] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5054] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5054] close(4)                    = 0
[pid  5054] close(3)                    = 0
[pid  5054] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5054] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5054] ftruncate(4, 33587195)      = 0
[pid  5054] open("./bus", O_RDONLY)     = 5
[pid  5054] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5054] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5054] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5054] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=12, si_uid=0} ---
[   68.482604][   T28] audit: type=1804 audit(1693945247.774:22): pid=5054 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   68.502746][   T28] audit: type=1804 audit(1693945247.774:23): pid=5054 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5054] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=12, si_uid=0, si_status=SIGXFSZ, si_utime=5 /* 0.05 s */, si_stime=42 /* 0.42 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5055 attached
, child_tidptr=0x555555827650) = 13
[pid  5055] set_robust_list(0x555555827660, 24) = 0
[pid  5055] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5055] setpgid(0, 0)               = 0
[pid  5055] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5055] write(3, "1000", 4)         = 4
[pid  5055] close(3)                    = 0
[pid  5055] memfd_create("syzkaller", 0) = 3
[pid  5055] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   68.599386][ T5055] syz-executor332[5055]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5055] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5055] munmap(0x7ff932d92000, 16777216) = 0
[pid  5055] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5055] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5055] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5055] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5055] close(4)                    = 0
[pid  5055] close(3)                    = 0
[pid  5055] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5055] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5055] ftruncate(4, 33587195)      = 0
[pid  5055] open("./bus", O_RDONLY)     = 5
[pid  5055] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5055] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5055] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5055] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=13, si_uid=0} ---
[   69.015777][   T28] audit: type=1804 audit(1693945248.304:24): pid=5055 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[   69.035906][   T28] audit: type=1804 audit(1693945248.304:25): pid=5055 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz-executor332" name="/root/bus" dev="sda1" ino=1929 res=1 errno=0
[pid  5055] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=13, si_uid=0, si_status=SIGXFSZ, si_utime=0, si_stime=48 /* 0.48 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5056 attached
, child_tidptr=0x555555827650) = 14
[pid  5056] set_robust_list(0x555555827660, 24) = 0
[pid  5056] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5056] setpgid(0, 0)               = 0
[pid  5056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5056] write(3, "1000", 4)         = 4
[pid  5056] close(3)                    = 0
[pid  5056] memfd_create("syzkaller", 0) = 3
[pid  5056] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   69.126579][ T5056] syz-executor332[5056]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5056] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5056] munmap(0x7ff932d92000, 16777216) = 0
[pid  5056] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5056] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5056] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5056] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5056] close(4)                    = 0
[pid  5056] close(3)                    = 0
[pid  5056] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5056] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5056] ftruncate(4, 33587195)      = 0
[pid  5056] open("./bus", O_RDONLY)     = 5
[pid  5056] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5056] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5056] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5056] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=14, si_uid=0} ---
[pid  5056] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=14, si_uid=0, si_status=SIGXFSZ, si_utime=4 /* 0.04 s */, si_stime=44 /* 0.44 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5057 attached
 <unfinished ...>
[pid  5057] set_robust_list(0x555555827660, 24 <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 15
[pid  5057] <... set_robust_list resumed>) = 0
[pid  5057] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5057] setpgid(0, 0)               = 0
[pid  5057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5057] write(3, "1000", 4)         = 4
[pid  5057] close(3)                    = 0
[pid  5057] memfd_create("syzkaller", 0) = 3
[pid  5057] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   69.659978][ T5057] syz-executor332[5057]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5057] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5057] munmap(0x7ff932d92000, 16777216) = 0
[pid  5057] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5057] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5057] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5057] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5057] close(4)                    = 0
[pid  5057] close(3)                    = 0
[pid  5057] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5057] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5057] ftruncate(4, 33587195)      = 0
[pid  5057] open("./bus", O_RDONLY)     = 5
[pid  5057] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5057] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5057] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5057] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=15, si_uid=0} ---
[pid  5057] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=15, si_uid=0, si_status=SIGXFSZ, si_utime=2 /* 0.02 s */, si_stime=45 /* 0.45 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5058 attached
 <unfinished ...>
[pid  5058] set_robust_list(0x555555827660, 24) = 0
[pid  5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5058] setpgid(0, 0)               = 0
[pid  5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 16
[pid  5058] <... openat resumed>)       = 3
[pid  5058] write(3, "1000", 4)         = 4
[pid  5058] close(3)                    = 0
[pid  5058] memfd_create("syzkaller", 0) = 3
[pid  5058] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   70.183521][ T5058] syz-executor332[5058]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5058] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5058] munmap(0x7ff932d92000, 16777216) = 0
[pid  5058] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5058] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5058] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5058] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5058] close(4)                    = 0
[pid  5058] close(3)                    = 0
[pid  5058] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5058] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5058] ftruncate(4, 33587195)      = 0
[pid  5058] open("./bus", O_RDONLY)     = 5
[pid  5058] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5058] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5058] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5058] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=16, si_uid=0} ---
[pid  5058] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=16, si_uid=0, si_status=SIGXFSZ, si_utime=1 /* 0.01 s */, si_stime=47 /* 0.47 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5059 attached
 <unfinished ...>
[pid  5059] set_robust_list(0x555555827660, 24 <unfinished ...>
[pid  5033] <... clone resumed>, child_tidptr=0x555555827650) = 17
[pid  5059] <... set_robust_list resumed>) = 0
[pid  5059] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5059] setpgid(0, 0)               = 0
[pid  5059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5059] write(3, "1000", 4)         = 4
[pid  5059] close(3)                    = 0
[pid  5059] memfd_create("syzkaller", 0) = 3
[pid  5059] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   70.693045][ T5059] syz-executor332[5059]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5059] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5059] munmap(0x7ff932d92000, 16777216) = 0
[pid  5059] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5059] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5059] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5059] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5059] close(4)                    = 0
[pid  5059] close(3)                    = 0
[pid  5059] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_NOFOLLOW|O_NOATIME, 000) = 3
[pid  5059] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_DIRECT|O_NOATIME, 000) = 4
[pid  5059] ftruncate(4, 33587195)      = 0
[pid  5059] open("./bus", O_RDONLY)     = 5
[pid  5059] mmap(0x20001000, 40960, PROT_NONE, MAP_SHARED|MAP_FIXED, 5, 0) = 0x20001000
[pid  5059] open("./bus", O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_LARGEFILE|O_NOFOLLOW|O_NOATIME|O_CLOEXEC|FASYNC, 000) = 6
[pid  5059] pwritev2(6, [{iov_base="\x1d", iov_len=1}, {iov_base=NULL, iov_len=0}], 2, 142606336, 0) = -1 EFBIG (File too large)
[pid  5059] --- SIGXFSZ {si_signo=SIGXFSZ, si_code=SI_USER, si_pid=17, si_uid=0} ---
[pid  5059] +++ killed by SIGXFSZ (core dumped) +++
[pid  5033] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=17, si_uid=0, si_status=SIGXFSZ, si_utime=5 /* 0.05 s */, si_stime=44 /* 0.44 s */} ---
[pid  5033] restart_syscall(<... resuming interrupted clone ...>) = 0
[pid  5033] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
[pid  5033] ioctl(3, LOOP_CLR_FD)       = 0
[pid  5033] close(3)                    = 0
[pid  5033] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5060 attached
, child_tidptr=0x555555827650) = 18
[pid  5060] set_robust_list(0x555555827660, 24) = 0
[pid  5060] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5060] setpgid(0, 0)               = 0
[pid  5060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5060] write(3, "1000", 4)         = 4
[pid  5060] close(3)                    = 0
[pid  5060] memfd_create("syzkaller", 0) = 3
[pid  5060] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff932d92000
[   71.223422][ T5060] syz-executor332[5060]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[pid  5060] write(3, "\x58\x46\x53\x42\x00\x00\x08\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xbf\xdc\x47\xfc\x10\xd8\x4e\xed\xa5\x62\x11\xa8\x31\xb3\xf7\x91\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x24\x40\x00\x00\x00\x00\x00\x00\x24\x41\x00\x00\x00\x00\x00\x00\x24\x42\x00\x00\x00\x02\x00\x00\x20\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x12\x00"..., 16777216) = 16777216
[pid  5060] munmap(0x7ff932d92000, 16777216) = 0
[pid  5060] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5060] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5060] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5060] ioctl(4, LOOP_SET_FD, 3)    = -1 EBUSY (Device or resource busy)
[pid  5060] close(4)                    = 0
[pid  5060] close(3)                    = 0